$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a313030303a3a2f34382d3438203d3e203535373031.roa File: 323430353a623930303a313030303a3a2f34382d3438203d3e203535373031.roa (raw, json) Hash identifier: NtKzA6ttjT1T8CHeG1yxMnK/yGhCUD/h6h6MlHEoVZg= Subject key identifier: A4:58:44:FD:37:61:30:FD:74:B2:0F:B4:C9:A1:FF:40:AC:68:4B:BE Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 179DC979A4BEC64FE1B206E1BF920E50BDFBD6C9 Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a313030303a3a2f34382d3438203d3e203535373031.roa Signing time: Thu 08 Jun 2023 03:02:04 +0000 ROA not before: Thu 08 Jun 2023 02:57:04 +0000 ROA not after: Thu 06 Jun 2024 03:02:04 +0000 asID: 55701 IP address blocks: 2405:b900:1000::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 20:55:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:9d:c9:79:a4:be:c6:4f:e1:b2:06:e1:bf:92:0e:50:bd:fb:d6:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: Jun 8 02:57:04 2023 GMT Not After : Jun 6 03:02:04 2024 GMT Subject: CN=A45844FD376130FD74B20FB4C9A1FF40AC684BBE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:90:df:19:3e:0d:d0:b3:51:96:a9:58:75:0b: b8:05:94:84:a3:56:44:a2:76:e1:b1:e9:df:52:70: c2:d6:15:06:ca:de:50:de:bb:c5:21:d6:c8:eb:f6: 47:3f:7a:ff:23:44:a4:e3:72:45:05:46:7b:28:78: 9c:14:55:02:62:4c:9e:78:3d:36:00:ad:98:9d:87: f8:9c:e5:43:d1:b7:73:79:86:43:15:3f:fa:1d:4c: c6:d5:f6:ce:af:4d:d7:ae:4d:c4:b0:8e:fb:81:c6: 7c:52:15:6d:1d:01:54:d6:78:bc:64:c5:83:6d:46: 9d:f5:08:25:02:d3:ab:58:a2:98:e0:ac:5a:d7:5b: c2:7a:1e:76:27:80:9e:20:09:40:40:77:b9:05:e2: e8:d9:c1:ba:e7:a2:d0:81:99:f3:f5:b6:f8:01:35: 96:3e:93:5c:26:23:05:69:dd:7c:9a:3e:a0:0e:57: 1c:c9:33:ee:80:79:2f:a8:5f:06:91:b0:48:4c:a9: 37:1a:70:72:9c:b1:29:88:8b:bb:3b:8d:9a:bc:ba: de:28:bc:d6:27:3a:2d:6b:79:a0:a8:70:f8:5c:8e: 19:c3:ee:c6:3e:81:8b:f5:59:6e:4f:d1:78:36:60: e9:c5:53:62:aa:82:f1:5f:e9:9b:d1:fc:b4:32:68: 50:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:58:44:FD:37:61:30:FD:74:B2:0F:B4:C9:A1:FF:40:AC:68:4B:BE X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a313030303a3a2f34382d3438203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:b900:1000::/48 Signature Algorithm: sha256WithRSAEncryption d6:b2:64:32:d7:af:68:81:77:03:0d:d2:5e:c1:b3:c5:32:01: c6:05:40:87:6b:b4:6e:b6:f5:3a:c9:c5:18:a1:11:5b:73:bf: 21:55:06:09:9e:72:ff:e1:40:23:64:12:54:30:83:6c:4c:c3: 77:8c:6a:99:75:8c:81:8c:eb:4f:97:28:8d:dc:60:d3:fb:6e: ce:f4:e2:2e:16:13:bc:45:f0:c1:a2:de:bd:7c:1e:df:37:72: 90:b4:70:8c:6a:31:bf:0a:d1:df:40:b5:fa:72:40:2f:d2:f2: 65:7d:97:fa:5c:1b:e4:e3:22:10:fa:e4:98:e2:1c:14:71:d0: be:15:fd:8c:8d:61:7d:bf:70:5a:57:49:14:42:d3:80:60:d2: 0b:b1:6b:45:6a:d6:68:bf:d5:a0:c6:3d:2c:b6:fd:50:13:d1: 81:4e:58:7e:c8:ca:a0:e4:99:7f:1a:4c:c3:6b:db:fb:bf:97: a1:9e:de:01:74:9d:b1:80:18:a5:8c:5b:41:96:9d:70:6d:a5: 5a:12:e4:40:5a:c8:7d:65:20:6c:57:e9:aa:10:ff:27:47:86: ca:82:7c:2a:c9:51:2c:fe:6c:6a:49:cb:b4:73:d6:b3:fe:6a: 14:4d:c9:5f:10:26:23:96:2a:a6:bb:f8:3f:ab:90:56:92:76: ac:84:0a:07 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUF53JeaS+xk/hsgbhv5IOUL371skwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yMzA2MDgwMjU3MDRaFw0yNDA2MDYwMzAyMDRaMDMxMTAvBgNV BAMTKEE0NTg0NEZEMzc2MTMwRkQ3NEIyMEZCNEM5QTFGRjQwQUM2ODRCQkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClkN8ZPg3Qs1GWqVh1C7gFlISj VkSiduGx6d9ScMLWFQbK3lDeu8Uh1sjr9kc/ev8jRKTjckUFRnsoeJwUVQJiTJ54 PTYArZidh/ic5UPRt3N5hkMVP/odTMbV9s6vTdeuTcSwjvuBxnxSFW0dAVTWeLxk xYNtRp31CCUC06tYopjgrFrXW8J6HnYngJ4gCUBAd7kF4ujZwbrnotCBmfP1tvgB NZY+k1wmIwVp3XyaPqAOVxzJM+6AeS+oXwaRsEhMqTcacHKcsSmIi7s7jZq8ut4o vNYnOi1reaCocPhcjhnD7sY+gYv1WW5P0Xg2YOnFU2KqgvFf6ZvR/LQyaFD5AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUpFhE/TdhMP10sg+0yaH/QKxoS74wHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzQzMDM1M2E2MjM5MzAzMDNhMzEzMDMwMzAz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzNTM1MzczMDMxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAW5 ABAAMA0GCSqGSIb3DQEBCwUAA4IBAQDWsmQy169ogXcDDdJewbPFMgHGBUCHa7Ru tvU6ycUYoRFbc78hVQYJnnL/4UAjZBJUMINsTMN3jGqZdYyBjOtPlyiN3GDT+27O 9OIuFhO8RfDBot69fB7fN3KQtHCMajG/CtHfQLX6ckAv0vJlfZf6XBvk4yIQ+uSY 4hwUcdC+Ff2MjWF9v3BaV0kUQtOAYNILsWtFatZov9Wgxj0stv1QE9GBTlh+yMqg 5Jl/GkzDa9v7v5ehnt4BdJ2xgBiljFtBlp1wbaVaEuRAWsh9ZSBsV+mqEP8nR4bK gnwqyVEs/mxqScu0c9az/moUTclfECYjliqmu/g/q5BWknashAoH -----END CERTIFICATE-----Generated at Thu Apr 25 21:25:09 2024 by rpki-client on console-ams.rpki-client.org