$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a31303a3a2f34382d3438203d3e203535373031.roa File: 323430353a623930303a31303a3a2f34382d3438203d3e203535373031.roa (raw, json) Hash identifier: GpSsPscuKmXTH2dQIj7wwLdn2Gw4dLUFWKmO3QYHtuU= Subject key identifier: 1B:9D:9F:B3:C7:B1:B5:F2:0F:A8:4E:F1:A9:97:F7:D0:F6:3C:65:53 Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 43C232E6ADCAF1972CAEDDF89943CA53F30F3035 Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a31303a3a2f34382d3438203d3e203535373031.roa Signing time: Thu 08 Jun 2023 03:02:03 +0000 ROA not before: Thu 08 Jun 2023 02:57:03 +0000 ROA not after: Thu 06 Jun 2024 03:02:03 +0000 asID: 55701 IP address blocks: 2405:b900:10::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 21:55:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:c2:32:e6:ad:ca:f1:97:2c:ae:dd:f8:99:43:ca:53:f3:0f:30:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: Jun 8 02:57:03 2023 GMT Not After : Jun 6 03:02:03 2024 GMT Subject: CN=1B9D9FB3C7B1B5F20FA84EF1A997F7D0F63C6553 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:c0:c6:b6:99:1f:a2:e9:8e:e2:d1:aa:52:91: 39:f5:37:65:31:05:b5:14:b2:2d:77:90:13:4c:6b: ff:60:b7:17:05:bf:c9:9f:5a:b9:98:9d:dc:52:74: 2e:fb:a9:12:e0:07:5c:1e:2c:31:2a:30:e2:bf:07: a1:64:94:2f:02:0c:43:b9:d7:d9:18:35:4d:bf:60: 7a:60:3d:41:2b:d6:c5:ed:ab:5a:39:0a:6a:f7:6e: 1a:3e:6a:16:e5:77:eb:83:91:d2:aa:82:d3:75:08: 7e:3e:39:12:a7:80:4a:bd:f2:f1:b3:8a:28:37:b0: 3e:fe:0a:bf:47:62:cf:b6:ff:25:2e:3a:86:82:5b: 86:3a:a9:0c:25:19:96:df:5a:68:c6:6e:a2:fd:03: 12:83:b2:54:63:51:a9:ae:fc:40:aa:4b:13:11:2a: 62:a4:2d:84:ff:9f:f9:95:f9:59:4e:18:f0:fa:b1: 3e:d8:ba:95:09:0e:0b:10:58:8e:11:c6:00:51:28: a8:23:8c:34:0d:d7:22:69:2d:49:7a:13:c3:2c:cb: 05:89:12:f7:e4:dd:dc:cd:02:5d:f7:65:fe:5a:0b: 45:09:bf:c8:c2:c2:77:85:12:df:f7:fe:9f:f0:c2: c1:23:b7:0f:b8:9b:71:92:93:8d:b0:2b:96:8a:54: 4a:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:9D:9F:B3:C7:B1:B5:F2:0F:A8:4E:F1:A9:97:F7:D0:F6:3C:65:53 X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a31303a3a2f34382d3438203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:b900:10::/48 Signature Algorithm: sha256WithRSAEncryption 4d:f9:9e:b1:99:96:7e:1b:30:75:dc:6b:55:89:c4:21:0b:55: 23:82:44:96:31:bd:8f:09:f9:75:a8:fa:61:b4:b3:f8:c7:12: 9b:15:cf:d4:36:4d:0a:60:1d:1f:67:ec:21:fd:65:1a:41:32: 0d:8a:51:cc:5b:b6:8c:e5:10:07:cd:18:5c:cc:04:25:3d:67: 63:ab:6a:c7:8b:32:4d:7a:a3:c8:72:3d:27:15:4d:ba:ed:64: 7f:93:2e:19:b6:66:86:f4:25:72:d0:9e:62:d2:af:45:1c:e5: 16:48:d2:85:f4:76:22:69:e8:89:bc:a7:31:d6:dd:1a:62:44: b8:1b:13:75:84:03:f0:cf:fc:cd:0a:18:e9:35:c4:69:d5:54: 29:13:df:b2:8a:9a:96:fa:96:ed:de:c1:19:2c:47:91:e1:2a: 8c:06:4f:52:65:09:26:57:7f:84:5b:4f:f1:e9:71:f3:a0:fa: 04:86:be:5d:e3:b1:9b:8f:21:fc:08:17:4e:4d:57:d6:55:36: 6d:a8:7b:18:4d:f2:73:e8:06:76:d1:55:7e:ef:12:6d:b4:e0: ac:8a:3c:30:1f:86:c2:96:83:fe:c4:43:22:7a:d3:44:c8:b0: 6b:f8:eb:a0:e0:45:f8:5a:34:02:ee:b3:24:18:a7:3d:b2:0b: 1d:99:ac:c3 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUQ8Iy5q3K8Zcsrt34mUPKU/MPMDUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yMzA2MDgwMjU3MDNaFw0yNDA2MDYwMzAyMDNaMDMxMTAvBgNV BAMTKDFCOUQ5RkIzQzdCMUI1RjIwRkE4NEVGMUE5OTdGN0QwRjYzQzY1NTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfwMa2mR+i6Y7i0apSkTn1N2Ux BbUUsi13kBNMa/9gtxcFv8mfWrmYndxSdC77qRLgB1weLDEqMOK/B6FklC8CDEO5 19kYNU2/YHpgPUEr1sXtq1o5Cmr3bho+ahbld+uDkdKqgtN1CH4+ORKngEq98vGz iig3sD7+Cr9HYs+2/yUuOoaCW4Y6qQwlGZbfWmjGbqL9AxKDslRjUamu/ECqSxMR KmKkLYT/n/mV+VlOGPD6sT7YupUJDgsQWI4RxgBRKKgjjDQN1yJpLUl6E8MsywWJ Evfk3dzNAl33Zf5aC0UJv8jCwneFEt/3/p/wwsEjtw+4m3GSk42wK5aKVEpPAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUG52fs8extfIPqE7xqZf30PY8ZVMwHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzQzMDM1M2E2MjM5MzAzMDNhMzEzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzUzNzMwMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBbkAABAw DQYJKoZIhvcNAQELBQADggEBAE35nrGZln4bMHXca1WJxCELVSOCRJYxvY8J+XWo +mG0s/jHEpsVz9Q2TQpgHR9n7CH9ZRpBMg2KUcxbtozlEAfNGFzMBCU9Z2OraseL Mk16o8hyPScVTbrtZH+TLhm2Zob0JXLQnmLSr0Uc5RZI0oX0diJp6Im8pzHW3Rpi RLgbE3WEA/DP/M0KGOk1xGnVVCkT37KKmpb6lu3ewRksR5HhKowGT1JlCSZXf4Rb T/HpcfOg+gSGvl3jsZuPIfwIF05NV9ZVNm2oexhN8nPoBnbRVX7vEm204KyKPDAf hsKWg/7EQyJ600TIsGv466DgRfhaNALusyQYpz2yCx2ZrMM= -----END CERTIFICATE-----Generated at Sun Apr 28 05:31:58 2024 by rpki-client on console-ams.rpki-client.org