$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a31363a3a2f34382d3438203d3e203535373031.roa File: 323430353a623930303a31363a3a2f34382d3438203d3e203535373031.roa (raw, json) Hash identifier: ZfAmDPp/dXR2sCrufdJJS9Gpp+82cFY3JtS3WtUCppo= Subject key identifier: 5D:0E:CA:DC:EE:89:C9:E1:9E:30:27:69:4E:EE:F5:FD:3F:D7:DE:22 Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 3F6E900A740149E37D68903F73EAAC51B02E67A9 Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a31363a3a2f34382d3438203d3e203535373031.roa Signing time: Thu 08 Jun 2023 03:02:07 +0000 ROA not before: Thu 08 Jun 2023 02:57:07 +0000 ROA not after: Thu 06 Jun 2024 03:02:07 +0000 asID: 55701 IP address blocks: 2405:b900:16::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 21:55:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:6e:90:0a:74:01:49:e3:7d:68:90:3f:73:ea:ac:51:b0:2e:67:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: Jun 8 02:57:07 2023 GMT Not After : Jun 6 03:02:07 2024 GMT Subject: CN=5D0ECADCEE89C9E19E3027694EEEF5FD3FD7DE22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:23:a6:9c:3d:8e:9a:f0:fb:3f:79:1a:75:ee: de:2e:da:0a:e1:a1:0d:da:cd:b8:6b:a1:d1:e2:de: 08:5e:fa:1f:76:83:d5:e5:c9:60:8a:d9:df:ee:8c: b8:21:80:8c:da:91:d9:4e:42:5b:a4:b2:09:3f:82: 71:93:13:c5:97:81:a8:01:b1:19:46:db:c9:ea:5e: 2a:b4:a0:2c:84:15:3a:6f:7c:88:2b:6e:e0:07:43: 6e:a0:77:c7:7e:1c:18:8a:48:27:e0:c9:e1:df:74: 3f:d6:6c:42:f9:2c:58:cd:bd:1c:05:3d:05:60:2c: ba:a5:bb:ca:ac:a0:c8:90:da:cd:bc:b5:10:c3:9d: 37:7f:26:fd:45:33:62:45:78:a9:64:59:52:11:3d: 1c:b6:66:f0:c6:f7:ba:14:e6:bd:3b:57:61:19:a4: 01:96:c3:41:cd:f4:29:5b:84:18:9c:5f:04:3e:a9: be:9e:58:7b:08:ca:9c:13:dc:6a:44:25:94:0d:ad: 01:24:c8:59:ac:c1:26:44:d4:da:bc:df:e9:06:ed: 1c:f0:35:fc:91:5e:af:40:9b:0c:2f:89:c6:05:25: 4f:51:ce:d7:2a:3a:04:5b:e3:62:4a:11:89:d3:13: 7a:c7:ee:37:18:21:00:18:45:33:e2:0b:5e:7e:2b: f2:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:0E:CA:DC:EE:89:C9:E1:9E:30:27:69:4E:EE:F5:FD:3F:D7:DE:22 X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a31363a3a2f34382d3438203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:b900:16::/48 Signature Algorithm: sha256WithRSAEncryption bc:71:81:e5:51:d2:35:9b:3c:a4:ba:bc:a8:f1:1d:27:14:69: 73:f1:af:44:24:22:82:65:ef:68:fd:a3:48:e0:0e:58:bd:c4: c1:fd:32:3a:d2:b1:90:e5:d4:8d:1e:42:8a:e3:b9:e9:e9:56: 44:85:a5:f9:d8:16:a3:97:1d:b6:01:bd:9f:c4:d7:8c:35:bb: cb:e3:a4:14:67:05:f4:38:54:e5:83:78:eb:31:fb:b7:37:f0: f7:4c:96:5b:e6:f2:48:22:fd:b7:24:fc:3d:a4:04:dc:03:4c: 69:43:51:d8:49:17:95:a1:19:43:b2:07:0d:6e:f9:56:e0:68: 60:47:a8:a9:90:5d:e5:13:4c:84:c4:d0:09:02:8e:ed:79:12: 19:b0:cf:74:a3:20:c4:02:4c:80:93:6b:2e:8c:0e:52:24:81: 84:da:0b:7a:4b:34:bc:a1:80:f2:77:14:fa:dc:58:bd:3d:3a: e7:8d:7c:b5:39:d2:14:8f:81:a4:cd:cb:68:86:c2:cd:9f:17: 41:80:2c:98:13:49:d4:f9:a1:3c:53:f7:05:5c:e5:4c:ee:87: 56:57:56:3f:53:7b:b5:d4:b5:1f:4c:8e:42:11:7a:2b:5a:21: a3:6b:36:7d:b9:3b:47:66:47:8c:71:93:50:82:fb:80:55:7f: 1b:ba:e7:3e -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUP26QCnQBSeN9aJA/c+qsUbAuZ6kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yMzA2MDgwMjU3MDdaFw0yNDA2MDYwMzAyMDdaMDMxMTAvBgNV BAMTKDVEMEVDQURDRUU4OUM5RTE5RTMwMjc2OTRFRUVGNUZEM0ZEN0RFMjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKI6acPY6a8Ps/eRp17t4u2grh oQ3azbhrodHi3ghe+h92g9XlyWCK2d/ujLghgIzakdlOQluksgk/gnGTE8WXgagB sRlG28nqXiq0oCyEFTpvfIgrbuAHQ26gd8d+HBiKSCfgyeHfdD/WbEL5LFjNvRwF PQVgLLqlu8qsoMiQ2s28tRDDnTd/Jv1FM2JFeKlkWVIRPRy2ZvDG97oU5r07V2EZ pAGWw0HN9ClbhBicXwQ+qb6eWHsIypwT3GpEJZQNrQEkyFmswSZE1Nq83+kG7Rzw NfyRXq9AmwwvicYFJU9RztcqOgRb42JKEYnTE3rH7jcYIQAYRTPiC15+K/KXAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUXQ7K3O6JyeGeMCdpTu71/T/X3iIwHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzQzMDM1M2E2MjM5MzAzMDNhMzEzNjNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzUzNzMwMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBbkAABYw DQYJKoZIhvcNAQELBQADggEBALxxgeVR0jWbPKS6vKjxHScUaXPxr0QkIoJl72j9 o0jgDli9xMH9MjrSsZDl1I0eQorjuenpVkSFpfnYFqOXHbYBvZ/E14w1u8vjpBRn BfQ4VOWDeOsx+7c38PdMllvm8kgi/bck/D2kBNwDTGlDUdhJF5WhGUOyBw1u+Vbg aGBHqKmQXeUTTITE0AkCju15Ehmwz3SjIMQCTICTay6MDlIkgYTaC3pLNLyhgPJ3 FPrcWL09OueNfLU50hSPgaTNy2iGws2fF0GALJgTSdT5oTxT9wVc5Uzuh1ZXVj9T e7XUtR9MjkIReitaIaNrNn25O0dmR4xxk1CC+4BVfxu65z4= -----END CERTIFICATE-----Generated at Sun Apr 28 05:31:58 2024 by rpki-client on console-ams.rpki-client.org