$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a32333a3a2f34382d3438203d3e203535373031.roa File: 323430353a623930303a32333a3a2f34382d3438203d3e203535373031.roa (raw, json) Hash identifier: McoO1asSwa7aw4LY82Y6sbvSGZmiQjlBun9KoNvc5R4= Subject key identifier: BD:EF:08:A1:46:E5:F1:58:A6:47:A6:F2:1B:9A:2F:8C:A5:8E:BF:26 Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 690473C3415122870532DC91517829938CCDF1C5 Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a32333a3a2f34382d3438203d3e203535373031.roa Signing time: Thu 08 Jun 2023 03:02:04 +0000 ROA not before: Thu 08 Jun 2023 02:57:04 +0000 ROA not after: Thu 06 Jun 2024 03:02:04 +0000 asID: 55701 IP address blocks: 2405:b900:23::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 20:55:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:04:73:c3:41:51:22:87:05:32:dc:91:51:78:29:93:8c:cd:f1:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: Jun 8 02:57:04 2023 GMT Not After : Jun 6 03:02:04 2024 GMT Subject: CN=BDEF08A146E5F158A647A6F21B9A2F8CA58EBF26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:e7:1d:66:95:34:d5:e2:8d:a5:db:d0:f3:e8: b8:26:3b:4f:99:71:96:5a:88:39:e3:36:2c:dc:b8: 6c:5a:42:d7:21:2f:ad:7a:e1:e2:ff:68:5d:e5:57: 78:fe:c8:5c:b4:e8:e6:1b:40:bb:99:6e:9b:0d:cd: 69:59:b1:28:62:fd:16:4b:a8:d2:91:4a:83:71:b7: 45:94:51:3c:1d:e7:76:c7:88:d7:4f:6a:e5:dd:61: 75:09:e5:06:03:aa:5d:3b:d0:be:d3:5a:50:5f:40: 4f:ef:76:01:6e:5a:54:26:de:98:88:c7:f4:f9:aa: e2:99:49:df:ea:11:66:55:77:4d:6a:d2:71:96:53: de:04:4c:60:d6:53:4b:e3:55:87:5a:4e:c9:99:73: 31:91:5c:ec:71:6d:f4:ae:cb:9d:81:89:6e:c7:07: 51:7b:13:73:0c:79:78:1f:34:31:c7:b0:4a:28:02: 3b:6d:14:2d:2d:84:28:0f:c4:44:ec:66:63:de:01: 9e:b4:74:82:0e:de:fb:8e:de:a4:af:7b:b0:10:32: 88:00:67:9d:43:a7:2e:24:df:de:23:58:a6:63:5a: 6d:41:e4:33:96:63:2d:ff:63:19:e7:53:16:bb:c5: c3:99:59:a5:18:88:61:1c:27:67:a3:39:a7:2b:4b: 64:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:EF:08:A1:46:E5:F1:58:A6:47:A6:F2:1B:9A:2F:8C:A5:8E:BF:26 X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a32333a3a2f34382d3438203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:b900:23::/48 Signature Algorithm: sha256WithRSAEncryption d1:b5:a9:e7:61:21:90:3c:69:33:c2:49:e3:5c:5e:0b:7a:3d: 6a:ed:e2:4a:f9:27:80:b4:8d:85:1c:5c:4c:90:f8:8b:2e:3a: 95:4f:47:84:fc:98:da:59:80:2a:6a:27:1b:3e:86:d1:6d:e4: 85:34:3a:9f:38:5a:3f:46:06:b5:ba:91:50:69:a1:de:c7:f5: 89:55:0c:54:1d:74:31:7c:ac:81:4e:55:cc:c2:bb:4a:2d:56: 5c:db:44:7b:3d:39:b0:1b:cc:59:73:11:c4:a9:97:fb:81:6a: 13:3f:f6:24:e8:d2:0d:7a:1a:58:73:cc:e5:63:3f:98:fe:be: 94:9c:b7:fe:9b:91:8c:6d:79:38:12:40:44:61:ce:b4:05:3a: e5:7d:52:99:a7:13:96:39:c4:6d:ec:d1:0f:95:5e:5b:ac:13: d3:d9:93:fb:c1:d1:f8:3e:09:9d:20:dc:64:b8:30:dc:9f:89: 96:d9:fb:d7:84:46:7e:12:c2:19:49:cc:67:dd:4a:46:f0:3a: 2b:18:59:f2:0e:7c:df:8e:dc:51:07:91:40:41:63:88:1a:9e: 60:83:bc:4b:a7:14:72:0c:d9:f1:bc:77:d0:3b:fe:6a:43:7a: a3:50:f9:70:0f:33:00:f4:08:68:ab:76:8b:39:9f:36:79:21: c6:63:e6:11 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUaQRzw0FRIocFMtyRUXgpk4zN8cUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yMzA2MDgwMjU3MDRaFw0yNDA2MDYwMzAyMDRaMDMxMTAvBgNV BAMTKEJERUYwOEExNDZFNUYxNThBNjQ3QTZGMjFCOUEyRjhDQTU4RUJGMjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDU5x1mlTTV4o2l29Dz6LgmO0+Z cZZaiDnjNizcuGxaQtchL6164eL/aF3lV3j+yFy06OYbQLuZbpsNzWlZsShi/RZL qNKRSoNxt0WUUTwd53bHiNdPauXdYXUJ5QYDql070L7TWlBfQE/vdgFuWlQm3piI x/T5quKZSd/qEWZVd01q0nGWU94ETGDWU0vjVYdaTsmZczGRXOxxbfSuy52BiW7H B1F7E3MMeXgfNDHHsEooAjttFC0thCgPxETsZmPeAZ60dIIO3vuO3qSve7AQMogA Z51Dpy4k394jWKZjWm1B5DOWYy3/YxnnUxa7xcOZWaUYiGEcJ2ejOacrS2TxAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUve8IoUbl8VimR6byG5ovjKWOvyYwHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzQzMDM1M2E2MjM5MzAzMDNhMzIzMzNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzUzNzMwMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBbkAACMw DQYJKoZIhvcNAQELBQADggEBANG1qedhIZA8aTPCSeNcXgt6PWrt4kr5J4C0jYUc XEyQ+IsuOpVPR4T8mNpZgCpqJxs+htFt5IU0Op84Wj9GBrW6kVBpod7H9YlVDFQd dDF8rIFOVczCu0otVlzbRHs9ObAbzFlzEcSpl/uBahM/9iTo0g16GlhzzOVjP5j+ vpSct/6bkYxteTgSQERhzrQFOuV9UpmnE5Y5xG3s0Q+VXlusE9PZk/vB0fg+CZ0g 3GS4MNyfiZbZ+9eERn4SwhlJzGfdSkbwOisYWfIOfN+O3FEHkUBBY4ganmCDvEun FHIM2fG8d9A7/mpDeqNQ+XAPMwD0CGirdos5nzZ5IcZj5hE= -----END CERTIFICATE-----Generated at Thu Apr 25 21:25:09 2024 by rpki-client on console-ams.rpki-client.org