$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a32373a3a2f34382d3438203d3e203535373031.roa File: 323430353a623930303a32373a3a2f34382d3438203d3e203535373031.roa (raw, json) Hash identifier: gZhjXQE4R+TGQqtH482x1DhkQw97mMToug3HjqH0UOw= Subject key identifier: 48:8A:57:B4:B3:81:27:88:49:9E:BE:86:81:30:DD:32:CA:DA:11:BB Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 74E41E2C5C3364149821376A328303BEB4B4FCC1 Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a32373a3a2f34382d3438203d3e203535373031.roa Signing time: Thu 08 Jun 2023 03:02:10 +0000 ROA not before: Thu 08 Jun 2023 02:57:10 +0000 ROA not after: Thu 06 Jun 2024 03:02:10 +0000 asID: 55701 IP address blocks: 2405:b900:27::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 21:55:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:e4:1e:2c:5c:33:64:14:98:21:37:6a:32:83:03:be:b4:b4:fc:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: Jun 8 02:57:10 2023 GMT Not After : Jun 6 03:02:10 2024 GMT Subject: CN=488A57B4B3812788499EBE868130DD32CADA11BB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:7e:a5:93:40:61:f5:f4:3f:84:d8:4f:b4:fe: e5:6a:fb:18:9f:60:5e:5b:d1:41:11:ef:69:84:a3: 07:d3:cd:88:df:9e:a5:60:c7:3b:30:52:b7:bc:85: 59:8f:5b:04:db:c5:1b:7f:40:c6:67:cc:8a:b4:66: fe:3a:b4:6a:b0:80:81:ef:e5:b7:75:a0:56:76:33: 26:44:3a:ed:12:53:11:d8:fc:75:7b:d8:53:c5:1b: 47:fd:82:3b:33:d2:51:1b:78:5c:05:7a:16:78:d7: 3e:2a:92:b6:83:c0:f6:27:bd:43:58:b9:bd:6c:de: 71:37:b2:30:ab:91:2d:be:e4:e0:58:90:96:7c:35: e1:9d:94:77:fe:31:59:86:4d:c0:aa:8f:5a:64:b8: 5b:38:60:ec:6c:aa:a4:ef:45:ad:13:9a:3a:8d:59: 7b:e1:38:7e:b2:c0:1a:98:93:0b:77:fc:81:d7:be: 14:c7:42:dd:b5:aa:95:a7:82:99:1f:11:7e:0c:61: e3:2a:ab:91:ac:25:d0:0b:88:83:28:ca:96:51:c7: 3d:08:86:6c:79:6d:db:8e:eb:e4:6b:b0:20:cb:a5: 6d:4f:79:0c:94:36:d9:90:14:a1:ee:3d:d5:b0:b2: e3:db:d1:d5:69:01:93:01:ad:86:00:8a:7d:80:fa: 23:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:8A:57:B4:B3:81:27:88:49:9E:BE:86:81:30:DD:32:CA:DA:11:BB X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a32373a3a2f34382d3438203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:b900:27::/48 Signature Algorithm: sha256WithRSAEncryption 7e:5c:3e:88:e7:a8:7b:41:0f:2a:82:a5:62:b4:d1:9d:ff:42: f6:a2:b8:8e:63:41:45:04:b0:94:3c:4f:6b:65:3b:17:af:13: 26:79:01:7d:2d:6c:6d:2d:93:42:c0:d6:db:c2:81:1b:a5:14: 2a:26:c2:c8:7a:be:cd:4c:4b:eb:93:97:1c:c3:02:33:57:3f: 1a:4d:6e:02:65:1e:6e:36:0f:1e:29:07:33:5b:87:8f:af:54: a9:7a:76:00:7c:be:fa:ea:a3:7f:02:d4:09:c9:24:19:bb:15: b9:71:84:52:ec:b8:40:cf:2d:ee:c0:2b:e6:dd:5f:53:aa:bf: 39:bd:93:f2:78:4e:ee:ef:78:fc:4f:bd:bb:67:40:a0:4b:9c: 04:2c:ff:fc:88:9b:61:39:58:52:53:83:5e:bf:70:3f:51:38: 49:f6:78:ee:90:65:83:0d:c7:23:93:9e:fb:b6:af:3c:b2:6a: b3:c0:db:49:cc:2e:7c:af:18:ab:34:d2:cf:e6:d2:e1:d9:bf: 2b:ea:af:43:d0:e5:89:5b:0a:f3:ff:60:e5:61:07:ad:20:2b: e9:48:65:a2:f3:db:41:d9:ea:d4:b6:23:35:5a:de:69:c3:f8: 97:43:e7:80:a5:1e:d7:d2:72:5a:d4:73:bc:37:c8:1d:b7:24: 65:17:9e:2f -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUdOQeLFwzZBSYITdqMoMDvrS0/MEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yMzA2MDgwMjU3MTBaFw0yNDA2MDYwMzAyMTBaMDMxMTAvBgNV BAMTKDQ4OEE1N0I0QjM4MTI3ODg0OTlFQkU4NjgxMzBERDMyQ0FEQTExQkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUfqWTQGH19D+E2E+0/uVq+xif YF5b0UER72mEowfTzYjfnqVgxzswUre8hVmPWwTbxRt/QMZnzIq0Zv46tGqwgIHv 5bd1oFZ2MyZEOu0SUxHY/HV72FPFG0f9gjsz0lEbeFwFehZ41z4qkraDwPYnvUNY ub1s3nE3sjCrkS2+5OBYkJZ8NeGdlHf+MVmGTcCqj1pkuFs4YOxsqqTvRa0TmjqN WXvhOH6ywBqYkwt3/IHXvhTHQt21qpWngpkfEX4MYeMqq5GsJdALiIMoypZRxz0I hmx5bduO6+RrsCDLpW1PeQyUNtmQFKHuPdWwsuPb0dVpAZMBrYYAin2A+iPPAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUSIpXtLOBJ4hJnr6GgTDdMsraEbswHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzQzMDM1M2E2MjM5MzAzMDNhMzIzNzNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzUzNzMwMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBbkAACcw DQYJKoZIhvcNAQELBQADggEBAH5cPojnqHtBDyqCpWK00Z3/QvaiuI5jQUUEsJQ8 T2tlOxevEyZ5AX0tbG0tk0LA1tvCgRulFComwsh6vs1MS+uTlxzDAjNXPxpNbgJl Hm42Dx4pBzNbh4+vVKl6dgB8vvrqo38C1AnJJBm7FblxhFLsuEDPLe7AK+bdX1Oq vzm9k/J4Tu7vePxPvbtnQKBLnAQs//yIm2E5WFJTg16/cD9ROEn2eO6QZYMNxyOT nvu2rzyyarPA20nMLnyvGKs00s/m0uHZvyvqr0PQ5YlbCvP/YOVhB60gK+lIZaLz 20HZ6tS2IzVa3mnD+JdD54ClHtfSclrUc7w3yB23JGUXni8= -----END CERTIFICATE-----Generated at Sun Apr 28 05:31:58 2024 by rpki-client on console-ams.rpki-client.org