$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a32303a3a2f34382d3438203d3e203535373031.roa File: 323430353a623930303a32303a3a2f34382d3438203d3e203535373031.roa (raw, json) Hash identifier: /TPn7nKzltiU8/THLRNPQG+YRV/Z+lCBJuGVUl2TAhs= Subject key identifier: FC:B4:69:80:9F:9F:FA:C9:EE:4B:AA:11:A5:0F:FD:4C:8F:D5:F0:5F Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 05D1D9E0FC9E2DDB081C162603BD0F1693E93FBD Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a32303a3a2f34382d3438203d3e203535373031.roa Signing time: Thu 08 Jun 2023 03:02:07 +0000 ROA not before: Thu 08 Jun 2023 02:57:07 +0000 ROA not after: Thu 06 Jun 2024 03:02:07 +0000 asID: 55701 IP address blocks: 2405:b900:20::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 21:55:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:d1:d9:e0:fc:9e:2d:db:08:1c:16:26:03:bd:0f:16:93:e9:3f:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: Jun 8 02:57:07 2023 GMT Not After : Jun 6 03:02:07 2024 GMT Subject: CN=FCB469809F9FFAC9EE4BAA11A50FFD4C8FD5F05F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:e5:50:23:bb:59:3e:45:c8:68:36:d7:a2:5e: 99:b3:49:97:88:aa:a6:8e:c3:74:2a:d3:d3:0b:2c: 73:88:91:4b:0b:3d:c2:7f:94:0f:4a:98:5c:9e:d4: e8:b6:d0:9b:2d:67:a2:62:36:5b:cb:c5:df:9f:dc: 51:1a:3f:7a:6e:df:1a:c3:8c:c8:2d:40:5c:d2:e1: 3b:e9:1e:b4:93:aa:c9:a9:24:64:63:68:20:37:52: 13:e9:a6:2c:4f:d2:a4:bb:19:d8:34:37:99:c0:f2: 5c:f1:9a:bf:3a:a8:5e:6f:07:f4:40:f2:7d:3b:d1: 5e:83:da:49:0e:3a:b6:a0:ef:e9:c4:a5:18:e2:f2: ce:29:b6:89:a1:94:32:b8:f0:b7:6b:4e:4a:c5:0c: c1:6b:df:e5:dd:a8:3a:df:9c:82:3e:6e:51:e4:47: 8a:ac:2d:26:69:56:2c:2e:88:56:ef:75:4d:c1:28: 4f:71:f1:ba:4a:37:dd:ed:55:78:ef:45:1a:37:43: 3c:6e:fc:d9:68:f9:5e:ab:87:0f:db:6b:82:70:61: 81:90:4c:8a:64:2d:2a:10:26:a3:4c:04:70:9e:da: b2:d4:ea:a2:77:c6:5c:69:52:01:19:34:98:22:3a: 10:5a:8d:38:d4:49:e9:05:04:4b:fe:05:e3:a5:ee: b1:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:B4:69:80:9F:9F:FA:C9:EE:4B:AA:11:A5:0F:FD:4C:8F:D5:F0:5F X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a32303a3a2f34382d3438203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:b900:20::/48 Signature Algorithm: sha256WithRSAEncryption bd:37:72:c4:b0:a6:33:92:de:37:d0:5c:d7:90:d1:99:85:5f: 41:67:1d:62:00:60:7b:26:c0:fd:8a:a1:ce:c7:5a:ee:78:c6: b2:a0:38:c1:fc:1d:3a:cb:3e:e8:c9:14:fc:2c:3c:96:5c:32: 6f:da:21:e4:f5:18:49:12:eb:82:36:1a:d8:58:37:36:25:17: 4f:56:05:7a:02:24:0f:dd:51:38:c8:64:cc:e8:db:41:3c:d0: a8:f1:d9:bd:a4:b8:2a:f5:b3:a5:4c:d5:12:f0:b8:d8:31:b7: 47:a5:be:da:2d:08:de:d0:08:f3:70:3e:60:7a:ec:61:f9:a8: 7e:36:33:a0:4b:af:43:03:60:11:5e:29:1f:33:92:cb:d9:cd: df:31:56:7b:7d:20:6d:59:f8:a4:29:81:6f:b4:ce:ed:0a:07: 67:18:55:14:e1:18:d5:1a:c0:f6:2d:54:84:cd:5e:fc:4f:80: 87:14:69:c1:9a:df:ad:d9:7e:60:b1:c7:b9:b7:11:fa:b1:5f: 8b:81:83:52:da:c3:1a:11:3a:bd:4b:35:e0:a4:13:ec:82:e6: 3a:18:71:2b:51:02:fb:c5:ce:6c:9d:3c:11:42:f1:a6:dd:8e: ce:92:13:22:24:80:9a:30:77:18:4d:a0:b6:39:37:0d:02:2b: dd:63:ea:b4 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUBdHZ4PyeLdsIHBYmA70PFpPpP70wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yMzA2MDgwMjU3MDdaFw0yNDA2MDYwMzAyMDdaMDMxMTAvBgNV BAMTKEZDQjQ2OTgwOUY5RkZBQzlFRTRCQUExMUE1MEZGRDRDOEZENUYwNUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDF5VAju1k+RchoNteiXpmzSZeI qqaOw3Qq09MLLHOIkUsLPcJ/lA9KmFye1Oi20JstZ6JiNlvLxd+f3FEaP3pu3xrD jMgtQFzS4TvpHrSTqsmpJGRjaCA3UhPppixP0qS7Gdg0N5nA8lzxmr86qF5vB/RA 8n070V6D2kkOOrag7+nEpRji8s4ptomhlDK48LdrTkrFDMFr3+XdqDrfnII+blHk R4qsLSZpViwuiFbvdU3BKE9x8bpKN93tVXjvRRo3Qzxu/Nlo+V6rhw/ba4JwYYGQ TIpkLSoQJqNMBHCe2rLU6qJ3xlxpUgEZNJgiOhBajTjUSekFBEv+BeOl7rGRAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQU/LRpgJ+f+snuS6oRpQ/9TI/V8F8wHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzQzMDM1M2E2MjM5MzAzMDNhMzIzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzUzNzMwMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBbkAACAw DQYJKoZIhvcNAQELBQADggEBAL03csSwpjOS3jfQXNeQ0ZmFX0FnHWIAYHsmwP2K oc7HWu54xrKgOMH8HTrLPujJFPwsPJZcMm/aIeT1GEkS64I2GthYNzYlF09WBXoC JA/dUTjIZMzo20E80Kjx2b2kuCr1s6VM1RLwuNgxt0elvtotCN7QCPNwPmB67GH5 qH42M6BLr0MDYBFeKR8zksvZzd8xVnt9IG1Z+KQpgW+0zu0KB2cYVRThGNUawPYt VITNXvxPgIcUacGa363ZfmCxx7m3EfqxX4uBg1LawxoROr1LNeCkE+yC5joYcStR AvvFzmydPBFC8abdjs6SEyIkgJowdxhNoLY5Nw0CK91j6rQ= -----END CERTIFICATE-----Generated at Sun Apr 28 05:31:58 2024 by rpki-client on console-ams.rpki-client.org