$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a31323a3a2f34382d3438203d3e203535373031.roa File: 323430353a623930303a31323a3a2f34382d3438203d3e203535373031.roa (raw, json) Hash identifier: W2zSiPgwmSXSo2m9nDzmr4nk+xMVJ9JHNjiPZJptiXc= Subject key identifier: 81:5D:02:B2:03:73:7A:22:0E:4B:BA:67:C3:DC:99:34:53:05:67:10 Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 3FAEF47AE2B7D933D44AE8B86E0CC0F6B37046E4 Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a31323a3a2f34382d3438203d3e203535373031.roa Signing time: Thu 08 Jun 2023 03:02:08 +0000 ROA not before: Thu 08 Jun 2023 02:57:08 +0000 ROA not after: Thu 06 Jun 2024 03:02:08 +0000 asID: 55701 IP address blocks: 2405:b900:12::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 20:55:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:ae:f4:7a:e2:b7:d9:33:d4:4a:e8:b8:6e:0c:c0:f6:b3:70:46:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: Jun 8 02:57:08 2023 GMT Not After : Jun 6 03:02:08 2024 GMT Subject: CN=815D02B203737A220E4BBA67C3DC993453056710 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:9f:bd:b7:4e:0b:7a:6e:61:29:8b:97:2b:ab: d0:8a:86:0f:32:0e:ca:c6:c3:ee:8f:f6:0c:7c:f1: 24:95:44:21:55:1b:9a:e4:b2:9c:5d:65:7a:8a:3e: 9c:06:46:74:b7:03:ec:9d:7d:e5:23:6c:50:e7:bf: 6a:92:43:2a:f9:56:fb:d4:6d:7e:5a:b2:f0:8b:36: 98:cc:fa:97:a9:46:59:e1:45:01:df:d5:43:4c:28: 89:2a:e0:7c:0f:ce:98:99:6f:f9:68:13:ab:ee:9c: 5a:a6:bf:59:65:7f:61:62:26:57:a9:4f:25:1a:ab: 56:93:72:37:59:0f:67:11:00:f3:3b:95:b9:ed:f1: 93:cf:06:9a:95:ca:ad:c9:9b:e0:0c:5d:5e:00:b8: 65:ce:9e:66:14:b6:90:c3:2f:79:33:d3:9d:19:55: 10:d2:8a:04:7f:83:3a:b7:bd:b6:70:eb:77:7b:b6: b8:34:5d:3c:4f:0f:80:e5:59:0c:ef:8f:3f:a8:10: 1f:8d:dc:e1:c2:b1:13:b0:4c:49:29:2e:7a:fe:71: 41:21:98:5c:5d:2b:18:ef:23:9f:ec:e5:4f:eb:37: f3:e8:07:5f:55:be:72:d5:df:3f:5f:2c:e1:2d:af: c9:b8:23:86:b4:b5:02:96:0c:f5:7e:43:a9:59:3b: 13:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:5D:02:B2:03:73:7A:22:0E:4B:BA:67:C3:DC:99:34:53:05:67:10 X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a31323a3a2f34382d3438203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:b900:12::/48 Signature Algorithm: sha256WithRSAEncryption 7c:22:af:a9:18:15:e1:05:39:eb:a6:8a:09:95:ad:a1:a6:a0: 52:30:ce:2c:b4:65:04:74:8a:d6:fc:ce:d8:2e:df:81:30:24: ba:b2:30:21:6b:3d:5e:d0:f1:46:b9:6d:16:e9:30:1a:36:0d: 2c:b8:b7:85:c8:52:ab:6d:b4:dd:20:dd:d6:7b:bd:e1:f2:62: b1:c6:2a:07:82:a5:46:cb:5c:eb:ef:70:cf:3b:17:7c:24:48: 38:e9:19:a8:61:01:cc:41:fc:e4:c5:7d:56:ba:55:8f:90:14: 6a:14:d0:32:bc:82:d3:a7:18:0f:12:91:69:79:cb:5c:95:fc: 89:46:e4:28:6e:91:9b:c1:a6:6a:56:66:a3:85:58:1c:76:3e: a6:3c:59:dc:66:b8:61:72:ff:82:0c:ac:48:33:16:6f:07:ce: fa:0b:79:1f:21:da:2b:57:07:d8:3c:7c:89:be:d2:a9:12:d1: bb:c0:4e:fc:87:00:0e:3e:f7:f7:f1:5d:37:8d:1b:92:e2:90: 70:9c:87:75:47:e3:19:08:cd:df:3a:c3:b3:b1:63:2f:16:4c: 95:a3:41:ed:0b:3d:5f:f5:6c:45:e1:99:8d:1f:ed:a5:e7:ff: 23:0b:6a:46:a1:53:95:7b:7d:36:6e:75:1d:aa:5b:7e:5e:e7: 05:51:29:e9 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUP670euK32TPUSui4bgzA9rNwRuQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yMzA2MDgwMjU3MDhaFw0yNDA2MDYwMzAyMDhaMDMxMTAvBgNV BAMTKDgxNUQwMkIyMDM3MzdBMjIwRTRCQkE2N0MzREM5OTM0NTMwNTY3MTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbn723Tgt6bmEpi5crq9CKhg8y DsrGw+6P9gx88SSVRCFVG5rkspxdZXqKPpwGRnS3A+ydfeUjbFDnv2qSQyr5VvvU bX5asvCLNpjM+pepRlnhRQHf1UNMKIkq4HwPzpiZb/loE6vunFqmv1llf2FiJlep TyUaq1aTcjdZD2cRAPM7lbnt8ZPPBpqVyq3Jm+AMXV4AuGXOnmYUtpDDL3kz050Z VRDSigR/gzq3vbZw63d7trg0XTxPD4DlWQzvjz+oEB+N3OHCsROwTEkpLnr+cUEh mFxdKxjvI5/s5U/rN/PoB19VvnLV3z9fLOEtr8m4I4a0tQKWDPV+Q6lZOxMPAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUgV0CsgNzeiIOS7pnw9yZNFMFZxAwHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzQzMDM1M2E2MjM5MzAzMDNhMzEzMjNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzUzNzMwMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBbkAABIw DQYJKoZIhvcNAQELBQADggEBAHwir6kYFeEFOeumigmVraGmoFIwziy0ZQR0itb8 ztgu34EwJLqyMCFrPV7Q8Ua5bRbpMBo2DSy4t4XIUqtttN0g3dZ7veHyYrHGKgeC pUbLXOvvcM87F3wkSDjpGahhAcxB/OTFfVa6VY+QFGoU0DK8gtOnGA8SkWl5y1yV /IlG5ChukZvBpmpWZqOFWBx2PqY8WdxmuGFy/4IMrEgzFm8HzvoLeR8h2itXB9g8 fIm+0qkS0bvATvyHAA4+9/fxXTeNG5LikHCch3VH4xkIzd86w7OxYy8WTJWjQe0L PV/1bEXhmY0f7aXn/yMLakahU5V7fTZudR2qW35e5wVRKek= -----END CERTIFICATE-----Generated at Thu Apr 25 21:25:09 2024 by rpki-client on console-ams.rpki-client.org