$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a31353a3a2f34382d3438203d3e203535373031.roa File: 323430353a623930303a31353a3a2f34382d3438203d3e203535373031.roa (raw, json) Hash identifier: qW46DmK3w4QELB6Iz2UsLBVoHdw79UIOdB3euQqf2h8= Subject key identifier: F1:83:BD:39:A3:88:B3:6A:BF:1B:6E:94:47:7F:DD:CD:75:7D:22:FF Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 72FA06ECADB0DC8180A18841FD543B3C23D37462 Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a31353a3a2f34382d3438203d3e203535373031.roa Signing time: Thu 08 Jun 2023 03:02:02 +0000 ROA not before: Thu 08 Jun 2023 02:57:02 +0000 ROA not after: Thu 06 Jun 2024 03:02:02 +0000 asID: 55701 IP address blocks: 2405:b900:15::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 20:55:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:fa:06:ec:ad:b0:dc:81:80:a1:88:41:fd:54:3b:3c:23:d3:74:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: Jun 8 02:57:02 2023 GMT Not After : Jun 6 03:02:02 2024 GMT Subject: CN=F183BD39A388B36ABF1B6E94477FDDCD757D22FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:b4:20:72:57:dc:3e:bb:ed:33:54:2a:16:ff: 40:07:59:cf:36:21:ca:aa:c6:1c:f7:55:44:b7:a2: 14:9e:bb:a1:3b:42:6d:bc:99:f1:1c:19:9d:18:d6: b1:2b:19:25:35:3f:61:61:51:2e:d7:a1:8f:5a:69: 53:ce:1f:13:0c:18:ec:64:3f:41:84:bf:87:c7:ee: 2c:ef:30:d8:7e:78:2b:37:81:5e:85:23:44:2b:03: 6b:65:1a:5c:9f:67:37:c0:98:ec:75:89:b6:17:1e: 51:6a:8b:a2:78:09:2e:16:06:35:ba:46:b5:60:c4: c2:3c:07:f0:73:51:51:a1:88:13:7e:82:de:a8:df: d6:36:87:8f:d0:1d:99:1c:c4:65:59:65:6c:0f:95: 3f:2f:56:fb:b6:55:a8:0a:78:1a:a8:34:ef:7a:f2: 90:22:61:92:63:48:c8:f2:88:4c:24:cb:15:cb:ae: 73:81:96:3f:8d:b4:19:24:aa:3a:6f:ea:16:d9:4e: eb:96:13:68:c6:af:c6:3d:ef:22:5f:9d:84:6a:ca: af:7f:8c:98:3a:b4:d3:53:cb:23:b5:ae:c5:6c:18: fa:51:05:a1:76:0a:0d:b5:82:20:80:84:e2:9e:87: 92:3e:0c:4a:5a:23:65:eb:da:af:37:11:71:3c:a6: b0:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:83:BD:39:A3:88:B3:6A:BF:1B:6E:94:47:7F:DD:CD:75:7D:22:FF X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a31353a3a2f34382d3438203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:b900:15::/48 Signature Algorithm: sha256WithRSAEncryption 72:49:b2:18:ef:56:02:5a:c9:f4:5e:69:9e:ab:c5:9f:71:fa: 39:d6:e5:c0:29:46:5a:70:01:cc:8e:e1:58:1a:55:c0:ca:3f: 3f:60:7a:d2:6a:bb:00:b3:9f:e5:73:45:ff:e3:d5:30:b9:1a: ce:d8:c4:3a:ff:bb:d4:3d:a7:9f:71:76:59:8f:fc:50:de:25: 4a:93:74:4a:e7:dd:b9:b1:07:e3:82:48:59:11:21:c5:0f:bc: 61:75:26:82:df:f7:0c:2e:b3:68:a2:cf:a5:ef:68:a1:5d:8e: 5e:a2:15:cc:1f:4f:39:c0:b2:87:a7:a8:16:fc:b0:fa:73:c9: 0f:23:9c:1d:f2:d6:20:37:87:9f:1d:84:b3:48:31:7d:67:51: 5a:3f:c7:f4:89:e2:e7:de:92:dd:dd:9e:d8:74:4e:40:b0:fd: 4e:ee:66:11:39:56:f6:79:a3:9f:20:61:ec:e4:d9:92:8a:f6: c7:a8:d0:d2:04:14:07:f2:1c:ef:a9:94:1c:b2:51:16:36:27: fd:23:9b:59:5b:a7:75:d2:da:5c:d8:0b:0e:9f:32:63:b3:ea: f5:ed:7d:d6:02:1f:e0:1a:01:28:91:ba:67:0f:95:2d:8f:74: 9b:44:bb:0f:83:41:cf:30:9d:8e:e1:27:82:42:0b:ec:e9:19: a4:a2:8d:d8 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUcvoG7K2w3IGAoYhB/VQ7PCPTdGIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yMzA2MDgwMjU3MDJaFw0yNDA2MDYwMzAyMDJaMDMxMTAvBgNV BAMTKEYxODNCRDM5QTM4OEIzNkFCRjFCNkU5NDQ3N0ZERENENzU3RDIyRkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMtCByV9w+u+0zVCoW/0AHWc82 Icqqxhz3VUS3ohSeu6E7Qm28mfEcGZ0Y1rErGSU1P2FhUS7XoY9aaVPOHxMMGOxk P0GEv4fH7izvMNh+eCs3gV6FI0QrA2tlGlyfZzfAmOx1ibYXHlFqi6J4CS4WBjW6 RrVgxMI8B/BzUVGhiBN+gt6o39Y2h4/QHZkcxGVZZWwPlT8vVvu2VagKeBqoNO96 8pAiYZJjSMjyiEwkyxXLrnOBlj+NtBkkqjpv6hbZTuuWE2jGr8Y97yJfnYRqyq9/ jJg6tNNTyyO1rsVsGPpRBaF2Cg21giCAhOKeh5I+DEpaI2Xr2q83EXE8prD3AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQU8YO9OaOIs2q/G26UR3/dzXV9Iv8wHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzQzMDM1M2E2MjM5MzAzMDNhMzEzNTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzUzNzMwMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBbkAABUw DQYJKoZIhvcNAQELBQADggEBAHJJshjvVgJayfReaZ6rxZ9x+jnW5cApRlpwAcyO 4VgaVcDKPz9getJquwCzn+VzRf/j1TC5Gs7YxDr/u9Q9p59xdlmP/FDeJUqTdErn 3bmxB+OCSFkRIcUPvGF1JoLf9wwus2iiz6XvaKFdjl6iFcwfTznAsoenqBb8sPpz yQ8jnB3y1iA3h58dhLNIMX1nUVo/x/SJ4ufekt3dnth0TkCw/U7uZhE5VvZ5o58g Yezk2ZKK9seo0NIEFAfyHO+plByyURY2J/0jm1lbp3XS2lzYCw6fMmOz6vXtfdYC H+AaASiRumcPlS2PdJtEuw+DQc8wnY7hJ4JCC+zpGaSijdg= -----END CERTIFICATE-----Generated at Thu Apr 25 21:25:09 2024 by rpki-client on console-ams.rpki-client.org