$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a313a3a2f34382d3438203d3e203535373031.roa File: 323430353a623930303a313a3a2f34382d3438203d3e203535373031.roa (raw, json) Hash identifier: fG5gS20NXtcBF423ntOwT2dN7xegv48o2U6/1vr7fVs= Subject key identifier: ED:DC:4E:07:7C:27:A2:77:CF:54:A9:7A:24:C9:19:25:D8:C1:22:34 Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 783140BEDF1C2BB850389A3C3EE3BADC096C3732 Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a313a3a2f34382d3438203d3e203535373031.roa Signing time: Thu 08 Jun 2023 03:02:05 +0000 ROA not before: Thu 08 Jun 2023 02:57:05 +0000 ROA not after: Thu 06 Jun 2024 03:02:05 +0000 asID: 55701 IP address blocks: 2405:b900:1::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 21:55:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:31:40:be:df:1c:2b:b8:50:38:9a:3c:3e:e3:ba:dc:09:6c:37:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: Jun 8 02:57:05 2023 GMT Not After : Jun 6 03:02:05 2024 GMT Subject: CN=EDDC4E077C27A277CF54A97A24C91925D8C12234 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:f3:b4:0c:2d:34:da:6f:32:d0:0d:1f:b8:28: 6b:9a:44:12:ae:36:a7:fb:b1:1c:7a:e4:e0:d3:dd: d6:a7:ed:c0:4d:18:b4:21:de:59:f1:51:b9:f0:a8: 9d:25:12:8c:da:85:37:35:6c:51:55:95:47:b6:dd: 32:92:92:e1:5a:af:95:ca:34:2e:9f:7c:f9:f5:e3: ff:6f:7f:f1:2d:39:90:10:2a:dc:c5:71:43:4b:9c: 61:f6:46:14:9b:b7:01:56:ab:35:0b:ef:23:54:e6: e9:d4:ae:8d:5d:09:0f:65:9f:56:6b:cd:f5:db:1a: a0:ab:52:b5:3a:9f:33:7d:20:5d:99:38:76:3f:db: 82:67:de:ef:54:32:f0:ba:ac:93:68:66:69:9c:ae: 75:cc:dc:fd:ce:06:32:78:54:62:db:23:3b:70:5c: d9:aa:10:63:3c:74:4a:08:05:75:22:cb:ad:64:3e: 7c:72:2a:78:6d:54:1a:35:48:fa:58:17:82:bd:b1: 1c:74:16:06:7a:8c:bd:32:45:47:9f:04:c5:71:5b: a1:51:b2:47:53:78:e8:22:19:37:d4:49:af:27:5a: 01:06:10:c3:29:b6:0a:3d:61:e4:b5:56:ee:2c:a9: 75:d8:d5:04:1a:42:c7:80:a6:0b:63:52:7d:ed:02: 4d:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:DC:4E:07:7C:27:A2:77:CF:54:A9:7A:24:C9:19:25:D8:C1:22:34 X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a313a3a2f34382d3438203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:b900:1::/48 Signature Algorithm: sha256WithRSAEncryption 77:27:32:ff:f6:25:a8:ac:2a:cb:1a:95:f1:ae:13:ac:57:90: c5:0d:67:54:84:06:e2:bd:dd:55:f3:07:70:53:1c:8e:b4:af: d3:83:24:3a:35:07:3a:84:b3:79:f6:53:86:cf:ec:dd:72:44: 52:e0:10:94:d6:f1:0f:6b:e9:7b:49:5b:45:31:af:c8:5f:1a: 76:ef:6b:e5:2a:79:d1:8e:16:fd:15:77:f5:43:34:8c:cf:00: 4e:03:90:54:1b:22:18:4a:af:e9:02:17:a2:35:6f:c8:5c:dd: 5c:41:45:85:ab:ed:5f:3b:a1:92:29:83:0f:f7:4d:11:fc:b6: d7:20:fe:ee:7d:94:4a:8d:05:ff:5b:e2:73:7d:fa:61:c2:af: 5a:4e:f1:5e:5d:37:8d:69:63:c9:d9:e3:ac:e7:13:16:ac:4a: c3:8e:f3:ca:e2:7b:e4:18:7c:87:1d:99:48:ac:e3:44:cd:56: a3:f8:fc:1e:7d:b1:36:dc:8e:19:72:c4:a9:c6:34:01:de:8c: 24:59:05:8c:52:de:cc:83:25:0b:3c:fd:49:3d:f9:b1:9e:2d: 7f:d5:c2:23:7b:b4:6b:83:1e:eb:72:36:f7:18:f1:95:20:f3: c4:57:18:bc:0b:28:6b:25:b7:67:0c:8c:85:91:0c:37:58:a6: 90:cc:5b:25 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUeDFAvt8cK7hQOJo8PuO63AlsNzIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yMzA2MDgwMjU3MDVaFw0yNDA2MDYwMzAyMDVaMDMxMTAvBgNV BAMTKEVEREM0RTA3N0MyN0EyNzdDRjU0QTk3QTI0QzkxOTI1RDhDMTIyMzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCw87QMLTTabzLQDR+4KGuaRBKu Nqf7sRx65ODT3dan7cBNGLQh3lnxUbnwqJ0lEozahTc1bFFVlUe23TKSkuFar5XK NC6ffPn14/9vf/EtOZAQKtzFcUNLnGH2RhSbtwFWqzUL7yNU5unUro1dCQ9ln1Zr zfXbGqCrUrU6nzN9IF2ZOHY/24Jn3u9UMvC6rJNoZmmcrnXM3P3OBjJ4VGLbIztw XNmqEGM8dEoIBXUiy61kPnxyKnhtVBo1SPpYF4K9sRx0FgZ6jL0yRUefBMVxW6FR skdTeOgiGTfUSa8nWgEGEMMptgo9YeS1Vu4sqXXY1QQaQseApgtjUn3tAk0rAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQU7dxOB3wnonfPVKl6JMkZJdjBIjQwHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzQzMDM1M2E2MjM5MzAzMDNhMzEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzNTM1MzczMDMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAW5AAABMA0G CSqGSIb3DQEBCwUAA4IBAQB3JzL/9iWorCrLGpXxrhOsV5DFDWdUhAbivd1V8wdw UxyOtK/TgyQ6NQc6hLN59lOGz+zdckRS4BCU1vEPa+l7SVtFMa/IXxp272vlKnnR jhb9FXf1QzSMzwBOA5BUGyIYSq/pAheiNW/IXN1cQUWFq+1fO6GSKYMP900R/LbX IP7ufZRKjQX/W+Jzffphwq9aTvFeXTeNaWPJ2eOs5xMWrErDjvPK4nvkGHyHHZlI rONEzVaj+PwefbE23I4ZcsSpxjQB3owkWQWMUt7MgyULPP1JPfmxni1/1cIje7Rr gx7rcjb3GPGVIPPEVxi8CyhrJbdnDIyFkQw3WKaQzFsl -----END CERTIFICATE-----Generated at Sun Apr 28 05:31:58 2024 by rpki-client on console-ams.rpki-client.org