$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a32323a3a2f34382d3438203d3e203535373031.roa File: 323430353a623930303a32323a3a2f34382d3438203d3e203535373031.roa (raw, json) Hash identifier: KK2byrkDa5EAxFJWLecDF8wE1w47JFPp5RP4k+PQ9HY= Subject key identifier: 37:C7:BB:7D:C0:C2:17:D2:4F:20:25:1A:5E:FE:15:47:90:11:74:F7 Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 3505F999F07782F445E9E8C7A0CB1BFB0D96EDB9 Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a32323a3a2f34382d3438203d3e203535373031.roa Signing time: Thu 08 Jun 2023 03:02:11 +0000 ROA not before: Thu 08 Jun 2023 02:57:11 +0000 ROA not after: Thu 06 Jun 2024 03:02:11 +0000 asID: 55701 IP address blocks: 2405:b900:22::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 21:55:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:05:f9:99:f0:77:82:f4:45:e9:e8:c7:a0:cb:1b:fb:0d:96:ed:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: Jun 8 02:57:11 2023 GMT Not After : Jun 6 03:02:11 2024 GMT Subject: CN=37C7BB7DC0C217D24F20251A5EFE1547901174F7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:be:22:14:a1:b6:94:94:d7:fc:62:e2:fd:07: 62:48:1c:99:e5:be:39:00:da:c7:d8:fc:60:c6:48: e0:18:36:1c:e5:06:8a:08:61:e2:1b:ac:61:4d:49: 62:34:b6:23:f6:a3:5b:bd:1b:88:cc:49:01:c0:07: 7b:ab:a0:2a:05:60:2d:eb:9a:f2:de:6b:3d:fe:ef: b3:fc:fa:88:ef:24:8d:2b:0b:75:26:4a:85:d9:a5: a8:f3:1a:f1:47:54:77:55:6a:06:fd:49:38:81:68: 50:dc:3f:69:cf:b3:f3:ff:4e:b0:c9:9e:de:0a:ec: df:64:d5:b6:38:72:ab:e7:42:fa:30:e8:89:68:73: 86:25:b4:58:77:f9:7c:c8:35:1a:70:de:03:25:6c: 88:88:08:15:3d:34:6a:a4:29:6a:ca:3c:30:35:88: 94:3a:c1:89:72:87:87:37:39:94:91:26:76:80:da: 19:f5:b5:90:7b:62:6e:66:df:82:94:3b:b0:e9:2f: 62:87:32:db:e3:64:39:5c:d9:75:7b:70:21:57:23: c9:8c:68:84:92:5d:ed:17:fa:9f:00:46:cc:00:08: a4:df:e3:0c:c3:43:17:85:f7:fe:02:1e:dc:91:76: 0f:1b:3a:62:89:56:ae:9d:b3:c1:ed:25:88:43:8f: 25:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:C7:BB:7D:C0:C2:17:D2:4F:20:25:1A:5E:FE:15:47:90:11:74:F7 X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a32323a3a2f34382d3438203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:b900:22::/48 Signature Algorithm: sha256WithRSAEncryption c3:0f:eb:80:26:65:ed:91:64:81:f4:e4:04:43:82:36:c7:83: 54:9f:1e:f1:48:bd:e6:bf:fe:2b:0f:62:24:fe:e2:1d:a6:a1: 10:aa:46:a6:3a:9c:21:06:8f:58:64:57:52:89:95:37:db:8a: 06:a9:d2:40:d3:9f:3c:1a:ca:b2:07:77:f2:cd:98:d8:8e:e0: 4b:37:33:8a:59:89:d2:d8:29:90:d8:20:00:bf:29:76:37:0e: 79:b2:08:2f:54:74:a3:c1:1d:2e:47:fd:2c:ca:5a:a3:ad:3f: 97:15:e0:5a:18:81:31:dd:72:82:bf:49:09:28:2b:5d:14:73: e8:9d:7b:d2:f9:bd:7a:47:c3:39:76:a9:4b:24:24:5c:2a:32: ca:53:91:a7:10:99:76:5a:b5:53:73:e4:70:a2:10:b7:09:6d: 36:17:21:63:08:60:d8:9c:19:36:7b:e1:1f:cc:a3:5a:04:c2: 68:1a:df:a4:75:b8:f7:e2:4a:6e:7d:7d:c5:86:6c:e7:04:79: 49:ff:a3:7e:89:d2:36:32:4c:32:29:53:2d:bc:bb:58:94:78: ef:3d:2a:f3:ba:0d:11:e9:d0:d3:62:75:e3:55:92:55:e6:25: 9e:ed:e6:d9:f5:af:4d:7b:3d:3f:97:dd:c9:09:95:4b:f4:fc: c9:3e:8b:58 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUNQX5mfB3gvRF6ejHoMsb+w2W7bkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yMzA2MDgwMjU3MTFaFw0yNDA2MDYwMzAyMTFaMDMxMTAvBgNV BAMTKDM3QzdCQjdEQzBDMjE3RDI0RjIwMjUxQTVFRkUxNTQ3OTAxMTc0RjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPviIUobaUlNf8YuL9B2JIHJnl vjkA2sfY/GDGSOAYNhzlBooIYeIbrGFNSWI0tiP2o1u9G4jMSQHAB3uroCoFYC3r mvLeaz3+77P8+ojvJI0rC3UmSoXZpajzGvFHVHdVagb9STiBaFDcP2nPs/P/TrDJ nt4K7N9k1bY4cqvnQvow6Iloc4YltFh3+XzINRpw3gMlbIiICBU9NGqkKWrKPDA1 iJQ6wYlyh4c3OZSRJnaA2hn1tZB7Ym5m34KUO7DpL2KHMtvjZDlc2XV7cCFXI8mM aISSXe0X+p8ARswACKTf4wzDQxeF9/4CHtyRdg8bOmKJVq6ds8HtJYhDjyU/AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUN8e7fcDCF9JPICUaXv4VR5ARdPcwHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzQzMDM1M2E2MjM5MzAzMDNhMzIzMjNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzUzNzMwMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBbkAACIw DQYJKoZIhvcNAQELBQADggEBAMMP64AmZe2RZIH05ARDgjbHg1SfHvFIvea//isP YiT+4h2moRCqRqY6nCEGj1hkV1KJlTfbigap0kDTnzwayrIHd/LNmNiO4Es3M4pZ idLYKZDYIAC/KXY3DnmyCC9UdKPBHS5H/SzKWqOtP5cV4FoYgTHdcoK/SQkoK10U c+ide9L5vXpHwzl2qUskJFwqMspTkacQmXZatVNz5HCiELcJbTYXIWMIYNicGTZ7 4R/Mo1oEwmga36R1uPfiSm59fcWGbOcEeUn/o36J0jYyTDIpUy28u1iUeO89KvO6 DRHp0NNideNVklXmJZ7t5tn1r017PT+X3ckJlUv0/Mk+i1g= -----END CERTIFICATE-----Generated at Sun Apr 28 05:31:58 2024 by rpki-client on console-ams.rpki-client.org