$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a31313a3a2f34382d3438203d3e203535373031.roa File: 323430353a623930303a31313a3a2f34382d3438203d3e203535373031.roa (raw, json) Hash identifier: a3wLSZrff6LO4Zy0A8lnx5LlsQHXBbmipXq6dnYuxRM= Subject key identifier: 8E:A7:2F:CE:00:BB:00:8C:96:3B:7B:FC:D6:84:0C:29:BC:FA:82:A4 Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 375D3C85E2BF98F3167E34C0DEA70EA5288A53E4 Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a31313a3a2f34382d3438203d3e203535373031.roa Signing time: Thu 08 Jun 2023 03:02:08 +0000 ROA not before: Thu 08 Jun 2023 02:57:08 +0000 ROA not after: Thu 06 Jun 2024 03:02:08 +0000 asID: 55701 IP address blocks: 2405:b900:11::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 21:55:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:5d:3c:85:e2:bf:98:f3:16:7e:34:c0:de:a7:0e:a5:28:8a:53:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: Jun 8 02:57:08 2023 GMT Not After : Jun 6 03:02:08 2024 GMT Subject: CN=8EA72FCE00BB008C963B7BFCD6840C29BCFA82A4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:3e:c8:6c:d9:97:70:3b:e7:9f:84:9e:60:cc: 4d:99:8c:14:9f:5a:9b:cb:67:63:d2:87:c9:8a:54: be:dd:5a:61:9a:93:de:87:5c:95:e3:9b:59:27:b6: 44:5c:0c:45:6a:3a:57:b7:65:26:d5:50:b9:2d:5e: 17:60:d3:4f:88:74:69:f5:3b:7d:ce:be:be:89:93: 47:ca:41:73:5d:09:f9:7e:69:1d:85:c6:0b:b6:69: 98:41:72:21:f2:ad:64:33:c5:f4:eb:ce:9a:da:6f: 36:b0:7d:7a:fc:17:2d:ba:38:7a:b0:b5:58:fd:33: dc:32:59:4b:4c:56:fc:34:43:c7:ba:11:3f:7a:de: eb:b0:64:7c:3f:57:a5:c8:ba:54:0d:a3:f9:bb:39: 79:7f:51:4f:df:27:c5:d3:10:d1:7c:ea:e2:fb:bf: 8f:20:b1:0a:6b:bd:a2:a1:05:8a:54:98:02:ab:27: c4:7a:93:bf:a4:de:34:2b:b0:2d:15:f6:7c:be:54: 0b:1c:27:75:f9:6d:df:5d:b8:2c:e8:92:9d:dc:7f: 64:23:a8:f5:33:ef:c4:aa:ee:9c:c6:2a:1f:a3:64: 63:27:cb:f5:55:63:55:74:7c:32:dd:6c:55:3c:5c: 31:43:11:d7:91:b9:43:41:9b:c4:cf:4b:44:f2:45: 2e:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:A7:2F:CE:00:BB:00:8C:96:3B:7B:FC:D6:84:0C:29:BC:FA:82:A4 X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a31313a3a2f34382d3438203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:b900:11::/48 Signature Algorithm: sha256WithRSAEncryption 11:65:13:c0:57:0d:02:20:4c:15:b8:01:14:54:7a:5b:81:b3: 78:09:b4:e7:aa:c4:b1:78:ac:c1:a4:de:3f:91:8e:05:da:4b: 0f:67:0c:57:c4:8f:ff:fb:81:05:64:46:5b:a2:b5:fa:f2:b2: 80:93:cf:f6:81:01:f9:1b:aa:e6:63:3a:f7:46:36:2f:df:35: dd:d9:ee:42:ff:34:28:07:39:f7:7d:9d:e8:15:85:0e:65:ff: d3:2b:34:d3:da:31:37:a6:3e:a7:20:00:7b:a5:9b:ad:a9:26: 75:7c:14:e7:93:f6:37:c3:fb:51:71:a7:60:7e:c4:68:de:a2: c7:54:53:89:7c:09:e3:7b:f4:43:7a:68:c5:52:c2:c0:fe:a7: f4:0d:af:e1:c4:e1:fd:54:72:5e:3f:97:e8:62:29:ca:3a:5a: c1:0d:d9:22:cc:ba:37:a8:6e:a4:b0:a2:2f:ca:aa:a7:72:0b: c4:b2:e4:d5:7f:d3:b6:18:c4:3e:f9:8f:00:08:6c:e2:8e:f5: 3e:a9:97:78:3a:f0:e3:04:d3:9a:e4:05:ea:3b:d7:b4:c4:e2: b9:cd:fa:2a:53:2d:66:f7:41:78:a2:cf:5b:c7:8b:91:17:74: 4f:64:c9:6d:c3:28:d6:04:f2:dd:5c:d0:d2:27:34:a5:49:c0: f7:32:d2:63 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUN108heK/mPMWfjTA3qcOpSiKU+QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yMzA2MDgwMjU3MDhaFw0yNDA2MDYwMzAyMDhaMDMxMTAvBgNV BAMTKDhFQTcyRkNFMDBCQjAwOEM5NjNCN0JGQ0Q2ODQwQzI5QkNGQTgyQTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkPshs2ZdwO+efhJ5gzE2ZjBSf WpvLZ2PSh8mKVL7dWmGak96HXJXjm1kntkRcDEVqOle3ZSbVULktXhdg00+IdGn1 O33Ovr6Jk0fKQXNdCfl+aR2Fxgu2aZhBciHyrWQzxfTrzprabzawfXr8Fy26OHqw tVj9M9wyWUtMVvw0Q8e6ET963uuwZHw/V6XIulQNo/m7OXl/UU/fJ8XTENF86uL7 v48gsQprvaKhBYpUmAKrJ8R6k7+k3jQrsC0V9ny+VAscJ3X5bd9duCzokp3cf2Qj qPUz78Sq7pzGKh+jZGMny/VVY1V0fDLdbFU8XDFDEdeRuUNBm8TPS0TyRS7XAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUjqcvzgC7AIyWO3v81oQMKbz6gqQwHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzQzMDM1M2E2MjM5MzAzMDNhMzEzMTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzUzNzMwMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBbkAABEw DQYJKoZIhvcNAQELBQADggEBABFlE8BXDQIgTBW4ARRUeluBs3gJtOeqxLF4rMGk 3j+RjgXaSw9nDFfEj//7gQVkRluitfrysoCTz/aBAfkbquZjOvdGNi/fNd3Z7kL/ NCgHOfd9negVhQ5l/9MrNNPaMTemPqcgAHulm62pJnV8FOeT9jfD+1Fxp2B+xGje osdUU4l8CeN79EN6aMVSwsD+p/QNr+HE4f1Ucl4/l+hiKco6WsEN2SLMujeobqSw oi/KqqdyC8Sy5NV/07YYxD75jwAIbOKO9T6pl3g68OME05rkBeo717TE4rnN+ipT LWb3QXiiz1vHi5EXdE9kyW3DKNYE8t1c0NInNKVJwPcy0mM= -----END CERTIFICATE-----Generated at Sun Apr 28 05:31:58 2024 by rpki-client on console-ams.rpki-client.org