$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a32343a3a2f34382d3438203d3e203535373031.roa File: 323430353a623930303a32343a3a2f34382d3438203d3e203535373031.roa (raw, json) Hash identifier: nvjcMPjzdfCAtXFH2+oHgncyPsQooh2KZu7qS9SsU6E= Subject key identifier: 93:EF:49:7B:35:90:4F:23:25:8D:CC:B3:92:2D:79:24:2A:92:B4:8E Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 658481DE5107821E41A74EAECEBB2290E225E0B3 Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a32343a3a2f34382d3438203d3e203535373031.roa Signing time: Thu 08 Jun 2023 03:02:10 +0000 ROA not before: Thu 08 Jun 2023 02:57:10 +0000 ROA not after: Thu 06 Jun 2024 03:02:10 +0000 asID: 55701 IP address blocks: 2405:b900:24::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 20:55:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:84:81:de:51:07:82:1e:41:a7:4e:ae:ce:bb:22:90:e2:25:e0:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: Jun 8 02:57:10 2023 GMT Not After : Jun 6 03:02:10 2024 GMT Subject: CN=93EF497B35904F23258DCCB3922D79242A92B48E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:da:11:2c:36:23:87:26:05:74:c2:59:f7:a0: 69:97:4f:23:d5:92:ae:48:4a:5b:10:49:47:8e:99: 0d:e4:c3:6a:ff:5c:93:c8:f7:26:c9:7f:07:15:05: 77:54:ec:92:ca:cb:a6:85:b4:51:8c:84:e2:af:ef: 98:d3:6f:c7:16:07:21:35:6d:e3:7d:9b:f8:da:cf: 9b:6d:5f:33:49:fc:21:2f:0b:1a:81:99:d9:58:24: ed:0b:2d:d0:3e:e7:02:7f:19:e1:09:b2:c8:ef:20: aa:57:ff:bf:6f:da:7a:8d:57:df:96:a4:7e:3f:35: 26:b3:74:28:f5:a0:e0:6b:51:e2:f7:cb:cd:74:18: 3f:b6:b4:2e:9e:5d:4f:08:03:db:12:95:67:20:cc: 03:45:cf:c8:fa:22:01:1f:44:73:3e:59:c8:43:84: 16:25:71:2b:ae:0b:4c:5e:f0:ee:8e:27:ee:16:17: 24:b5:5d:44:f5:43:93:2e:4b:7e:aa:7d:74:89:32: b6:51:58:0c:54:23:1e:9a:8c:db:fc:b3:ec:0f:e3: a1:7a:d8:fe:27:d2:8c:d0:77:15:8f:a1:ac:01:d1: c4:47:78:e2:ba:d5:7e:d7:12:94:d5:55:1e:0b:91: 61:12:d3:07:bc:77:0c:8d:a0:16:11:a6:8e:d7:7f: 4e:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:EF:49:7B:35:90:4F:23:25:8D:CC:B3:92:2D:79:24:2A:92:B4:8E X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a32343a3a2f34382d3438203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:b900:24::/48 Signature Algorithm: sha256WithRSAEncryption 46:ed:d5:63:e2:20:aa:33:3c:99:38:6a:ea:d4:90:44:12:0d: 80:1c:de:34:07:46:16:32:64:91:6d:7f:c1:b0:02:20:d0:8f: 23:88:74:ab:7b:b8:f5:b0:03:13:ed:13:26:77:10:35:09:92: 64:92:83:de:e0:9a:76:96:f1:82:e6:88:d6:9a:64:32:a6:60: 10:75:16:ee:44:e7:dd:64:ce:be:4a:c0:45:e3:f6:3a:b0:88: 32:72:22:7a:29:7e:1e:b5:e4:b4:81:12:a6:2e:b4:95:94:6c: 12:f8:cc:12:44:70:bb:c8:31:d9:ec:b9:61:ed:85:aa:e1:8f: 90:ab:c4:b8:8c:7e:49:d6:c6:1e:30:48:68:c3:d9:e5:cf:80: 36:82:d6:1f:21:98:a5:dd:dc:95:70:05:c1:52:b8:23:c7:81: 27:db:72:64:03:78:4d:48:db:88:05:b2:43:26:f7:59:b1:f1: ea:bd:1a:e7:3c:e3:27:e0:d3:e2:a3:49:b2:5e:7b:df:72:a3: 7a:88:01:1a:48:d0:9d:92:cd:41:2c:74:fb:e9:be:0d:97:31: 73:af:e0:45:ad:4e:fa:e3:7f:94:e7:8c:c1:30:7c:1e:dd:89: e2:bb:87:27:10:d9:14:a7:1a:25:5e:3f:75:47:be:cb:f2:02: ee:c2:b0:5c -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUZYSB3lEHgh5Bp06uzrsikOIl4LMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yMzA2MDgwMjU3MTBaFw0yNDA2MDYwMzAyMTBaMDMxMTAvBgNV BAMTKDkzRUY0OTdCMzU5MDRGMjMyNThEQ0NCMzkyMkQ3OTI0MkE5MkI0OEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDu2hEsNiOHJgV0wln3oGmXTyPV kq5ISlsQSUeOmQ3kw2r/XJPI9ybJfwcVBXdU7JLKy6aFtFGMhOKv75jTb8cWByE1 beN9m/jaz5ttXzNJ/CEvCxqBmdlYJO0LLdA+5wJ/GeEJssjvIKpX/79v2nqNV9+W pH4/NSazdCj1oOBrUeL3y810GD+2tC6eXU8IA9sSlWcgzANFz8j6IgEfRHM+WchD hBYlcSuuC0xe8O6OJ+4WFyS1XUT1Q5MuS36qfXSJMrZRWAxUIx6ajNv8s+wP46F6 2P4n0ozQdxWPoawB0cRHeOK61X7XEpTVVR4LkWES0we8dwyNoBYRpo7Xf04pAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUk+9JezWQTyMljcyzki15JCqStI4wHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzQzMDM1M2E2MjM5MzAzMDNhMzIzNDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzUzNzMwMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBbkAACQw DQYJKoZIhvcNAQELBQADggEBAEbt1WPiIKozPJk4aurUkEQSDYAc3jQHRhYyZJFt f8GwAiDQjyOIdKt7uPWwAxPtEyZ3EDUJkmSSg97gmnaW8YLmiNaaZDKmYBB1Fu5E 591kzr5KwEXj9jqwiDJyInopfh615LSBEqYutJWUbBL4zBJEcLvIMdnsuWHtharh j5CrxLiMfknWxh4wSGjD2eXPgDaC1h8hmKXd3JVwBcFSuCPHgSfbcmQDeE1I24gF skMm91mx8eq9Guc84yfg0+KjSbJee99yo3qIARpI0J2SzUEsdPvpvg2XMXOv4EWt Tvrjf5TnjMEwfB7dieK7hycQ2RSnGiVeP3VHvsvyAu7CsFw= -----END CERTIFICATE-----Generated at Thu Apr 25 21:25:09 2024 by rpki-client on console-ams.rpki-client.org