$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a31333a3a2f34382d3438203d3e203535373031.roa File: 323430353a623930303a31333a3a2f34382d3438203d3e203535373031.roa (raw, json) Hash identifier: dgqPlBSacWi8KB8BBWVK+plCRtzc5aBmBxv5blAT/Ow= Subject key identifier: 23:6C:42:7B:EC:04:80:71:7D:6F:F4:60:98:A6:74:78:1B:29:D6:AA Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 6905023CE4AA5F900ACB50ABE4AB5CF59FE5AA25 Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a31333a3a2f34382d3438203d3e203535373031.roa Signing time: Thu 08 Jun 2023 03:02:03 +0000 ROA not before: Thu 08 Jun 2023 02:57:03 +0000 ROA not after: Thu 06 Jun 2024 03:02:03 +0000 asID: 55701 IP address blocks: 2405:b900:13::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 21:55:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:05:02:3c:e4:aa:5f:90:0a:cb:50:ab:e4:ab:5c:f5:9f:e5:aa:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: Jun 8 02:57:03 2023 GMT Not After : Jun 6 03:02:03 2024 GMT Subject: CN=236C427BEC0480717D6FF46098A674781B29D6AA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:6f:6e:ab:bc:57:9a:aa:9f:af:81:b6:28:cc: b4:7c:00:a5:e7:a5:bf:5e:b9:a7:43:01:49:cf:bd: c6:4d:fe:fa:29:c0:8a:8b:ac:17:1a:72:23:fc:c1: e1:72:16:21:13:8c:db:26:a2:ed:23:9e:cd:1c:57: eb:8b:ed:51:c9:19:d8:4d:22:21:63:78:e1:5b:fe: d4:e2:5d:e6:39:7e:ad:f6:a7:09:a1:08:d0:2e:15: 1f:4b:33:20:3f:e6:c2:0c:d6:f3:d9:59:d2:40:f0: 31:7a:79:81:46:e0:9a:71:7b:f1:e5:60:a2:cf:d0: d8:91:9e:57:a3:ec:38:77:60:7e:79:a8:7c:e7:0c: d0:c7:1e:af:57:9a:7f:26:67:96:d6:bd:12:ed:9e: 7a:3e:1b:15:39:58:67:bb:80:af:09:53:1e:7c:c8: f7:44:ea:56:17:88:7a:a6:0b:f7:b3:e9:70:3c:56: e6:f9:7f:37:0a:6a:0e:0d:70:75:e0:0a:e2:07:76: c9:97:b8:84:97:bb:81:80:27:0c:b9:31:45:bb:ee: 1c:64:b7:01:27:9b:45:5b:f1:6e:a7:e8:7c:58:c8: bd:5e:28:71:2e:42:c5:08:15:69:44:d2:e5:e4:1f: 45:1f:76:79:58:f2:10:ba:2f:67:0b:89:3f:bd:8e: d6:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:6C:42:7B:EC:04:80:71:7D:6F:F4:60:98:A6:74:78:1B:29:D6:AA X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a31333a3a2f34382d3438203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:b900:13::/48 Signature Algorithm: sha256WithRSAEncryption 6f:0e:78:9c:ef:c9:43:ce:3b:ac:b3:cb:74:de:7c:1a:ae:e7: 1c:3e:e0:46:d1:07:b4:00:ee:a6:15:8c:70:4a:a1:a9:a1:f5: 04:3e:6b:ca:7c:25:34:21:9e:73:ef:93:21:80:8e:7b:48:4c: dc:fc:29:53:e7:fc:de:53:b6:b5:57:e2:6a:81:76:7b:bf:95: bf:7a:92:c8:6d:4b:25:58:03:f0:44:62:7d:45:27:51:67:bd: 2f:44:ca:75:a4:af:47:7c:44:9f:54:bd:0a:f2:21:94:0a:1c: 9f:92:9d:ad:97:48:74:67:6f:c5:a9:ca:58:a0:86:24:de:d8: 7b:08:58:f6:0e:f6:97:dd:f6:86:2d:35:e1:1a:b2:cd:4c:95: ad:b3:2f:fd:83:b5:0f:43:6b:47:64:30:22:2d:a6:0d:14:44: 40:7a:06:8c:62:d3:78:12:8c:4a:5f:3f:a0:67:c1:4b:0e:63: 22:d9:cb:9c:ae:1c:7d:72:2f:8d:61:13:ff:60:bb:4c:3a:d0: 6f:86:c2:05:82:49:f3:fc:a7:84:d2:3b:2e:81:10:b7:c8:3b: ed:4f:f6:66:b2:84:62:b6:08:ae:dd:1c:29:14:5f:e7:bf:9a: fa:7f:09:43:6a:c4:cb:b0:b9:fb:5b:a9:ec:0c:82:81:10:0a: ba:60:f9:29 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUaQUCPOSqX5AKy1Cr5Ktc9Z/lqiUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yMzA2MDgwMjU3MDNaFw0yNDA2MDYwMzAyMDNaMDMxMTAvBgNV BAMTKDIzNkM0MjdCRUMwNDgwNzE3RDZGRjQ2MDk4QTY3NDc4MUIyOUQ2QUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxb26rvFeaqp+vgbYozLR8AKXn pb9euadDAUnPvcZN/vopwIqLrBcaciP8weFyFiETjNsmou0jns0cV+uL7VHJGdhN IiFjeOFb/tTiXeY5fq32pwmhCNAuFR9LMyA/5sIM1vPZWdJA8DF6eYFG4Jpxe/Hl YKLP0NiRnlej7Dh3YH55qHznDNDHHq9Xmn8mZ5bWvRLtnno+GxU5WGe7gK8JUx58 yPdE6lYXiHqmC/ez6XA8Vub5fzcKag4NcHXgCuIHdsmXuISXu4GAJwy5MUW77hxk twEnm0Vb8W6n6HxYyL1eKHEuQsUIFWlE0uXkH0UfdnlY8hC6L2cLiT+9jtanAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUI2xCe+wEgHF9b/RgmKZ0eBsp1qowHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzQzMDM1M2E2MjM5MzAzMDNhMzEzMzNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzUzNzMwMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBbkAABMw DQYJKoZIhvcNAQELBQADggEBAG8OeJzvyUPOO6yzy3TefBqu5xw+4EbRB7QA7qYV jHBKoamh9QQ+a8p8JTQhnnPvkyGAjntITNz8KVPn/N5TtrVX4mqBdnu/lb96ksht SyVYA/BEYn1FJ1FnvS9EynWkr0d8RJ9UvQryIZQKHJ+Sna2XSHRnb8WpylighiTe 2HsIWPYO9pfd9oYtNeEass1Mla2zL/2DtQ9Da0dkMCItpg0UREB6Boxi03gSjEpf P6BnwUsOYyLZy5yuHH1yL41hE/9gu0w60G+GwgWCSfP8p4TSOy6BELfIO+1P9may hGK2CK7dHCkUX+e/mvp/CUNqxMuwuftbqewMgoEQCrpg+Sk= -----END CERTIFICATE-----Generated at Sun Apr 28 15:43:44 2024 by rpki-client on console-fra.rpki-client.org