$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a32363a3a2f34382d3438203d3e203535373031.roa File: 323430353a623930303a32363a3a2f34382d3438203d3e203535373031.roa (raw, json) Hash identifier: k5/XRhD8pfdP+H69oTvA9BbVYSZncF4BTPgu++PM2AE= Subject key identifier: D5:E9:95:93:58:AE:29:49:E7:83:46:A2:79:EC:80:66:AE:88:42:FF Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 0DD77B8E281251A230929D6D33597B24A0944729 Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a32363a3a2f34382d3438203d3e203535373031.roa Signing time: Thu 08 Jun 2023 03:02:09 +0000 ROA not before: Thu 08 Jun 2023 02:57:09 +0000 ROA not after: Thu 06 Jun 2024 03:02:09 +0000 asID: 55701 IP address blocks: 2405:b900:26::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 20:55:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:d7:7b:8e:28:12:51:a2:30:92:9d:6d:33:59:7b:24:a0:94:47:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: Jun 8 02:57:09 2023 GMT Not After : Jun 6 03:02:09 2024 GMT Subject: CN=D5E9959358AE2949E78346A279EC8066AE8842FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:f1:55:0f:13:70:d3:ad:c6:c0:18:08:a7:4a: b8:6c:02:5d:51:da:5a:ed:cc:4a:a0:7a:5e:49:12: 7e:26:bd:03:fc:29:69:cd:fd:e1:2d:86:57:6d:3f: 76:f7:19:f6:39:95:14:5a:f0:c9:c5:e3:fc:3d:dd: 4e:cb:37:be:0f:76:5a:56:d6:5b:bf:68:92:43:1a: f3:cd:fb:f7:bb:83:e3:34:c9:42:39:bf:c7:32:fd: 93:5b:47:1a:fe:43:d0:28:eb:3d:8e:8a:b6:82:ea: 03:73:32:e7:44:34:1c:4e:93:eb:9d:4d:87:4f:28: a5:69:38:bd:c9:36:ad:2f:47:ea:b3:ef:95:5c:a2: 15:10:ef:db:78:c3:94:22:14:f5:8f:d9:ff:78:29: f9:1e:95:78:30:1f:00:d0:3b:eb:23:d6:23:50:0d: 31:69:81:d7:9a:49:33:45:b0:9a:cf:d1:09:d3:ad: e6:e4:c5:d9:6b:78:41:8a:13:be:41:6d:6e:13:fc: b8:bf:13:96:45:e7:f2:ae:f3:3d:71:a1:4a:20:a7: 88:b8:fe:04:5a:2f:22:b4:ef:17:aa:62:5f:00:95: 07:a4:09:62:b6:d3:2b:bc:49:29:66:93:a6:81:78: c3:d4:94:a0:d0:ee:f7:31:e5:c8:ae:e2:a4:1b:75: f7:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:E9:95:93:58:AE:29:49:E7:83:46:A2:79:EC:80:66:AE:88:42:FF X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a32363a3a2f34382d3438203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:b900:26::/48 Signature Algorithm: sha256WithRSAEncryption 66:c8:a2:5e:9b:6a:9f:9b:60:da:19:45:07:20:68:46:2c:a3: 2e:ba:21:b9:5f:66:f8:88:af:95:20:80:0d:05:24:d5:bc:2a: 69:b6:3a:5f:bc:a1:56:c7:97:4e:78:1d:e8:15:2f:ee:15:3f: 0c:04:27:90:8c:23:1b:55:bb:ae:9f:d5:ef:f0:37:ee:25:90: c3:b9:24:99:4a:ef:cc:5d:de:6a:44:03:77:c0:8a:8d:72:00: e2:1b:9c:c3:af:0c:70:26:e4:64:b2:95:bd:f7:c2:25:b7:50: ce:60:aa:e6:cc:69:ef:aa:bc:e0:2e:49:a5:2c:9c:4c:a2:f3: a9:69:2d:d4:2b:b1:14:7a:66:36:55:c5:f0:6f:bd:a1:98:e1: 45:2c:94:dd:61:17:ff:82:ca:de:5a:a8:69:29:d7:e8:a2:7b: 9b:16:81:6f:3c:4d:0f:04:73:7f:74:4a:21:30:94:1c:5f:b4: 1a:6c:12:43:85:f5:f1:ad:8b:4b:cf:23:f3:2b:70:03:29:0e: f8:f1:d6:9d:77:0d:27:a6:e0:29:b4:c5:5e:2c:d4:2c:f6:6e: 94:e3:67:50:63:56:d3:ae:d2:74:57:33:7b:b1:07:2d:57:fb: 23:4f:a4:4c:a0:36:a0:0f:ac:49:30:8a:c9:83:ea:d2:f3:35: eb:cc:23:9a -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUDdd7jigSUaIwkp1tM1l7JKCURykwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yMzA2MDgwMjU3MDlaFw0yNDA2MDYwMzAyMDlaMDMxMTAvBgNV BAMTKEQ1RTk5NTkzNThBRTI5NDlFNzgzNDZBMjc5RUM4MDY2QUU4ODQyRkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/8VUPE3DTrcbAGAinSrhsAl1R 2lrtzEqgel5JEn4mvQP8KWnN/eEthldtP3b3GfY5lRRa8MnF4/w93U7LN74PdlpW 1lu/aJJDGvPN+/e7g+M0yUI5v8cy/ZNbRxr+Q9Ao6z2OiraC6gNzMudENBxOk+ud TYdPKKVpOL3JNq0vR+qz75VcohUQ79t4w5QiFPWP2f94KfkelXgwHwDQO+sj1iNQ DTFpgdeaSTNFsJrP0QnTrebkxdlreEGKE75BbW4T/Li/E5ZF5/Ku8z1xoUogp4i4 /gRaLyK07xeqYl8AlQekCWK20yu8SSlmk6aBeMPUlKDQ7vcx5ciu4qQbdffrAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQU1emVk1iuKUnng0aieeyAZq6IQv8wHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzQzMDM1M2E2MjM5MzAzMDNhMzIzNjNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzUzNzMwMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBbkAACYw DQYJKoZIhvcNAQELBQADggEBAGbIol6bap+bYNoZRQcgaEYsoy66IblfZviIr5Ug gA0FJNW8Kmm2Ol+8oVbHl054HegVL+4VPwwEJ5CMIxtVu66f1e/wN+4lkMO5JJlK 78xd3mpEA3fAio1yAOIbnMOvDHAm5GSylb33wiW3UM5gqubMae+qvOAuSaUsnEyi 86lpLdQrsRR6ZjZVxfBvvaGY4UUslN1hF/+Cyt5aqGkp1+iie5sWgW88TQ8Ec390 SiEwlBxftBpsEkOF9fGti0vPI/MrcAMpDvjx1p13DSem4Cm0xV4s1Cz2bpTjZ1Bj VtOu0nRXM3uxBy1X+yNPpEygNqAPrEkwismD6tLzNevMI5o= -----END CERTIFICATE-----Generated at Thu Apr 25 21:25:09 2024 by rpki-client on console-ams.rpki-client.org