$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a32383a3a2f34382d3438203d3e203535373031.roa File: 323430353a623930303a32383a3a2f34382d3438203d3e203535373031.roa (raw, json) Hash identifier: K4R6KApAhOZUaHgwEBb2vBRZ9hHfRtohqiDZXW4L/yU= Subject key identifier: D7:B1:F0:80:9A:FD:93:BA:FB:3B:51:AA:F3:B3:8E:AB:FD:5D:BE:82 Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 0654EFDD0E2892BC28A87112D07E4AED209D2C1D Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a32383a3a2f34382d3438203d3e203535373031.roa Signing time: Thu 08 Jun 2023 03:02:08 +0000 ROA not before: Thu 08 Jun 2023 02:57:08 +0000 ROA not after: Thu 06 Jun 2024 03:02:08 +0000 asID: 55701 IP address blocks: 2405:b900:28::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 20:55:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:54:ef:dd:0e:28:92:bc:28:a8:71:12:d0:7e:4a:ed:20:9d:2c:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: Jun 8 02:57:08 2023 GMT Not After : Jun 6 03:02:08 2024 GMT Subject: CN=D7B1F0809AFD93BAFB3B51AAF3B38EABFD5DBE82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:59:50:7e:2a:a8:d3:dc:f8:0a:60:68:f4:92: 37:b2:14:bd:12:4b:1f:9a:7f:ec:9e:48:39:2c:72: 57:5a:ef:13:49:9a:f3:6c:d0:b4:17:bc:c8:32:4f: 72:1e:f9:c3:99:a1:59:2c:d3:21:5c:c7:91:8b:d0: 57:f3:2d:ae:42:dc:dd:bd:a2:7e:0b:e3:4b:c5:1c: 62:a3:63:42:5c:8d:21:8f:95:94:03:88:b3:32:f3: be:67:91:0c:7f:29:3e:67:e3:4c:46:f4:9f:07:80: d5:45:7c:e7:ec:ef:f6:98:2c:8d:c3:89:01:53:35: 70:ca:75:8c:e2:87:8e:2e:1b:9e:46:5f:62:ed:bf: 5a:d8:f9:f1:69:7c:7b:c4:c5:56:bf:96:9e:aa:03: 3b:8d:d9:cc:35:0b:3f:ce:60:45:0b:50:a2:fe:80: 46:21:12:f2:9b:5e:c9:b4:4a:77:c5:af:44:be:51: 07:5e:47:68:fb:59:0e:b4:ee:ba:f9:75:f4:10:83: 0d:b1:da:e1:17:dc:15:67:d6:a1:ab:33:17:1f:54: 91:17:d8:09:d6:00:47:31:cb:7d:18:a3:f4:16:1b: cc:f5:bf:4f:64:73:b3:b3:ee:e1:e5:56:ee:3d:62: da:f9:ce:ee:8a:5b:18:ae:08:ff:69:6b:11:56:2f: 10:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:B1:F0:80:9A:FD:93:BA:FB:3B:51:AA:F3:B3:8E:AB:FD:5D:BE:82 X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a32383a3a2f34382d3438203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:b900:28::/48 Signature Algorithm: sha256WithRSAEncryption 35:87:05:9c:10:8c:70:e1:7b:4e:4d:52:28:44:36:cc:ce:5f: 69:6e:34:5c:e0:71:20:3e:8c:ff:99:c6:04:77:1e:0d:c2:49: 23:95:c9:25:fa:bd:8e:89:1b:21:b8:e9:c7:6b:93:19:93:54: f6:28:11:52:03:e7:e0:47:60:9f:b9:55:34:5e:b4:a1:67:bd: 4e:bb:b7:6b:07:c2:95:78:fa:3b:e0:55:bf:75:4c:f2:6f:34: f5:d9:a4:20:8a:71:86:a4:23:ac:2c:e2:76:5e:c5:a6:d1:a4: f2:22:44:13:e1:ce:3f:83:28:d8:5f:1c:82:35:c6:cc:47:c4: c4:7b:ef:68:ac:32:37:04:c6:c7:cc:3d:3a:c0:61:c4:0e:01: db:7a:73:4c:2e:63:7e:a2:a7:75:61:0f:f9:fa:ff:68:ef:83: 7e:7e:d9:7b:82:fb:ec:1c:02:2c:99:f8:d2:a2:b3:5b:4c:6b: 55:cc:9e:93:b3:d0:ea:9f:ab:85:19:a6:c7:9c:80:5a:59:0a: 5d:01:d0:f3:1c:0e:40:8b:7f:8e:cd:c9:97:a7:9d:de:f3:a8: 83:74:e3:a8:cc:c8:72:5b:7e:31:39:c7:b3:8e:08:c8:f3:bb: 51:cb:ca:3b:bb:80:2e:6c:89:02:c8:47:42:12:3a:e6:20:da: 96:73:e4:0e -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUBlTv3Q4okrwoqHES0H5K7SCdLB0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yMzA2MDgwMjU3MDhaFw0yNDA2MDYwMzAyMDhaMDMxMTAvBgNV BAMTKEQ3QjFGMDgwOUFGRDkzQkFGQjNCNTFBQUYzQjM4RUFCRkQ1REJFODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7WVB+KqjT3PgKYGj0kjeyFL0S Sx+af+yeSDksclda7xNJmvNs0LQXvMgyT3Ie+cOZoVks0yFcx5GL0FfzLa5C3N29 on4L40vFHGKjY0JcjSGPlZQDiLMy875nkQx/KT5n40xG9J8HgNVFfOfs7/aYLI3D iQFTNXDKdYzih44uG55GX2Ltv1rY+fFpfHvExVa/lp6qAzuN2cw1Cz/OYEULUKL+ gEYhEvKbXsm0SnfFr0S+UQdeR2j7WQ607rr5dfQQgw2x2uEX3BVn1qGrMxcfVJEX 2AnWAEcxy30Yo/QWG8z1v09kc7Oz7uHlVu49Ytr5zu6KWxiuCP9paxFWLxDtAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQU17HwgJr9k7r7O1Gq87OOq/1dvoIwHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzQzMDM1M2E2MjM5MzAzMDNhMzIzODNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzUzNzMwMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBbkAACgw DQYJKoZIhvcNAQELBQADggEBADWHBZwQjHDhe05NUihENszOX2luNFzgcSA+jP+Z xgR3Hg3CSSOVySX6vY6JGyG46cdrkxmTVPYoEVID5+BHYJ+5VTRetKFnvU67t2sH wpV4+jvgVb91TPJvNPXZpCCKcYakI6ws4nZexabRpPIiRBPhzj+DKNhfHII1xsxH xMR772isMjcExsfMPTrAYcQOAdt6c0wuY36ip3VhD/n6/2jvg35+2XuC++wcAiyZ +NKis1tMa1XMnpOz0Oqfq4UZpsecgFpZCl0B0PMcDkCLf47NyZennd7zqIN046jM yHJbfjE5x7OOCMjzu1HLyju7gC5siQLIR0ISOuYg2pZz5A4= -----END CERTIFICATE-----Generated at Thu Apr 25 21:25:09 2024 by rpki-client on console-ams.rpki-client.org