$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a333030303a3a2f34382d3438203d3e203535373031.roa File: 323430353a623930303a333030303a3a2f34382d3438203d3e203535373031.roa (raw, json) Hash identifier: rnn/uOkWWle1HGmq7bq9mVEdn+jGG7Ny3qiC1GaK/xU= Subject key identifier: 12:64:9D:E9:94:3F:4B:5E:64:CB:42:E8:7C:89:B3:A8:63:EF:9B:82 Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 3D577C5EACED71391FC1C6B8BA5C0D4C8910014A Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a333030303a3a2f34382d3438203d3e203535373031.roa Signing time: Thu 08 Jun 2023 03:02:08 +0000 ROA not before: Thu 08 Jun 2023 02:57:08 +0000 ROA not after: Thu 06 Jun 2024 03:02:08 +0000 asID: 55701 IP address blocks: 2405:b900:3000::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 21:55:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:57:7c:5e:ac:ed:71:39:1f:c1:c6:b8:ba:5c:0d:4c:89:10:01:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: Jun 8 02:57:08 2023 GMT Not After : Jun 6 03:02:08 2024 GMT Subject: CN=12649DE9943F4B5E64CB42E87C89B3A863EF9B82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:ca:97:84:a3:af:81:5c:3f:4e:a9:22:12:ec: f6:ff:3a:e1:71:f6:ff:3f:9b:ff:96:46:24:b9:12: 06:79:7b:d7:ad:bf:57:c0:d3:07:62:14:6b:1b:7a: 73:fb:87:14:08:92:10:95:83:09:90:40:dc:a0:a8: 90:dc:6e:80:49:5c:78:eb:59:39:8e:e7:fb:3d:bf: 8f:ce:67:a2:10:7b:88:8b:51:03:e5:6a:d5:f5:1a: 59:3e:9c:9d:54:95:25:11:65:fb:98:84:2c:e8:a3: e6:e8:d6:9f:53:67:d6:ab:c3:b3:91:b3:de:ec:23: 55:71:6d:c0:23:10:a2:8c:c4:87:cd:f1:7a:ae:79: 16:68:54:67:f1:85:a5:85:2e:f7:a4:40:c5:16:71: 2b:7d:bd:a9:cd:50:59:a9:81:92:5b:38:80:99:3b: b4:9d:2a:20:73:5f:74:24:ce:7d:ba:34:98:82:3f: 84:90:49:15:f1:57:d7:6d:e4:84:50:e3:e7:8b:6f: 2a:82:63:20:27:ca:ac:c0:05:2f:9f:73:ad:17:a6: 68:20:a9:e4:b5:26:a7:47:97:67:47:df:72:6b:6d: 38:8b:75:2e:46:50:da:eb:02:34:d9:17:76:3b:10: 77:5e:36:32:28:34:ee:ac:fb:07:9b:21:1a:9c:85: 23:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:64:9D:E9:94:3F:4B:5E:64:CB:42:E8:7C:89:B3:A8:63:EF:9B:82 X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a333030303a3a2f34382d3438203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:b900:3000::/48 Signature Algorithm: sha256WithRSAEncryption cd:69:6b:c8:46:c0:79:cb:95:4b:20:21:bf:03:0e:f4:3f:1b: 8a:0e:43:ee:ff:5a:a3:de:db:da:65:e0:a2:0d:ac:47:6f:63: 44:57:ff:f1:f5:be:e1:dd:10:2e:0e:6f:29:bc:a0:5b:30:39: 4e:78:8c:9b:8d:dd:86:1e:f9:03:a7:66:b8:b4:0b:24:2c:7a: 46:de:20:1b:b4:41:13:59:99:60:9f:2a:e7:78:c8:eb:f2:e8: 45:99:94:7f:2f:4d:20:30:db:0f:e2:74:60:5b:73:d8:b6:db: 41:73:cd:28:f5:2a:75:77:ef:da:d9:59:44:55:3d:5b:1f:c4: 18:d3:8e:ff:f3:57:10:a3:7f:2f:14:04:48:a6:d8:08:44:d7: 51:d3:69:ba:24:fb:76:af:14:44:18:f0:c1:3a:df:22:20:c0: 79:43:e5:ff:79:c8:36:28:ce:71:bc:b6:81:2d:cd:98:bc:d0: 2c:ec:4b:24:85:16:2b:45:cb:30:45:06:f2:d2:48:b4:8d:2b: c8:b7:31:3a:b1:ea:58:d4:df:bf:7b:45:f7:e1:21:41:8b:91: aa:8d:3e:3f:18:3d:7d:29:9a:84:dc:ec:18:42:fe:c8:92:ed: d1:39:97:cf:7c:ca:24:8b:f5:12:92:25:8c:a6:1b:24:1c:ab: 57:47:4f:73 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUPVd8XqztcTkfwca4ulwNTIkQAUowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yMzA2MDgwMjU3MDhaFw0yNDA2MDYwMzAyMDhaMDMxMTAvBgNV BAMTKDEyNjQ5REU5OTQzRjRCNUU2NENCNDJFODdDODlCM0E4NjNFRjlCODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCypeEo6+BXD9OqSIS7Pb/OuFx 9v8/m/+WRiS5EgZ5e9etv1fA0wdiFGsbenP7hxQIkhCVgwmQQNygqJDcboBJXHjr WTmO5/s9v4/OZ6IQe4iLUQPlatX1Glk+nJ1UlSURZfuYhCzoo+bo1p9TZ9arw7OR s97sI1VxbcAjEKKMxIfN8XqueRZoVGfxhaWFLvekQMUWcSt9vanNUFmpgZJbOICZ O7SdKiBzX3Qkzn26NJiCP4SQSRXxV9dt5IRQ4+eLbyqCYyAnyqzABS+fc60Xpmgg qeS1JqdHl2dH33JrbTiLdS5GUNrrAjTZF3Y7EHdeNjIoNO6s+webIRqchSOjAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUEmSd6ZQ/S15ky0LofImzqGPvm4IwHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzQzMDM1M2E2MjM5MzAzMDNhMzMzMDMwMzAz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzNTM1MzczMDMxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAW5 ADAAMA0GCSqGSIb3DQEBCwUAA4IBAQDNaWvIRsB5y5VLICG/Aw70PxuKDkPu/1qj 3tvaZeCiDaxHb2NEV//x9b7h3RAuDm8pvKBbMDlOeIybjd2GHvkDp2a4tAskLHpG 3iAbtEETWZlgnyrneMjr8uhFmZR/L00gMNsP4nRgW3PYtttBc80o9Sp1d+/a2VlE VT1bH8QY047/81cQo38vFARIptgIRNdR02m6JPt2rxREGPDBOt8iIMB5Q+X/ecg2 KM5xvLaBLc2YvNAs7EskhRYrRcswRQby0ki0jSvItzE6sepY1N+/e0X34SFBi5Gq jT4/GD19KZqE3OwYQv7Iku3ROZfPfMoki/USkiWMphskHKtXR09z -----END CERTIFICATE-----Generated at Sun Apr 28 05:31:58 2024 by rpki-client on console-ams.rpki-client.org