$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a33323a3a2f34382d3438203d3e203535373031.roa File: 323430353a623930303a33323a3a2f34382d3438203d3e203535373031.roa (raw, json) Hash identifier: 7wtar0Xx0qkSnvUyOerMLwAe1pZqJ2uGkaOgZgO2E9A= Subject key identifier: BE:B1:0F:C8:AF:F7:B0:C4:86:30:E6:65:4A:42:A3:AF:5E:F5:F3:22 Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 754C22C5BCCE2C6B515DC1BF6B7027854CBD65E5 Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a33323a3a2f34382d3438203d3e203535373031.roa Signing time: Thu 08 Jun 2023 03:02:06 +0000 ROA not before: Thu 08 Jun 2023 02:57:06 +0000 ROA not after: Thu 06 Jun 2024 03:02:06 +0000 asID: 55701 IP address blocks: 2405:b900:32::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 20:55:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:4c:22:c5:bc:ce:2c:6b:51:5d:c1:bf:6b:70:27:85:4c:bd:65:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: Jun 8 02:57:06 2023 GMT Not After : Jun 6 03:02:06 2024 GMT Subject: CN=BEB10FC8AFF7B0C48630E6654A42A3AF5EF5F322 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:4d:34:07:27:d0:c7:c8:1f:22:ab:2b:bf:f4: c2:10:e6:89:ee:9c:38:82:c7:08:05:a5:ea:36:6b: 5a:41:0b:de:66:7b:c8:6a:44:e1:40:39:c3:f6:db: 43:30:39:76:23:d3:d5:d1:ff:3d:a6:89:12:0b:f3: 6b:6e:8f:64:78:bd:45:7c:8f:10:cb:20:17:93:b2: 1b:b1:f6:ff:0d:9a:77:46:f6:ef:7b:e5:5b:23:ef: 94:c1:b7:c1:d6:5d:ac:fe:1b:24:e6:8d:20:f8:76: d6:3d:44:a3:b0:b0:6e:4b:1f:77:0c:cf:fe:05:2b: e5:b4:1c:8c:9f:0a:1e:74:e8:5e:53:be:82:ce:b6: 17:8e:77:7c:3f:2c:e2:89:04:f3:e6:8b:a8:1c:26: e3:13:f6:bc:83:f7:c6:cb:24:72:16:4f:61:ab:bb: 77:e5:65:4e:e0:bd:96:c5:74:60:01:8f:c9:ae:f9: af:d0:70:ee:2c:02:fe:bf:de:84:37:23:0f:10:85: d0:6f:7f:88:c5:81:25:61:13:a2:3d:70:c3:98:85: 62:81:3a:e0:67:3f:62:53:96:a5:ab:52:7b:d9:b7: a3:88:00:fd:3d:05:0e:e7:01:b3:91:2f:39:67:11: 85:e5:13:fb:5f:fc:f7:2c:08:cb:5a:a6:56:d0:71: 4d:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:B1:0F:C8:AF:F7:B0:C4:86:30:E6:65:4A:42:A3:AF:5E:F5:F3:22 X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a33323a3a2f34382d3438203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:b900:32::/48 Signature Algorithm: sha256WithRSAEncryption a9:7b:8e:2a:79:14:10:da:bf:f9:32:c0:63:f2:38:7b:9d:d8: aa:b8:fe:36:37:ba:b3:dd:0a:4e:58:52:84:31:31:c4:3b:a8: 72:d4:a3:85:e8:f8:dd:46:fc:4f:1c:e1:d2:b4:b8:18:6b:a0: 23:d9:d7:ac:32:1c:11:4e:6d:22:30:62:a6:eb:61:f5:66:5d: 09:b8:aa:b3:bf:37:a7:af:b7:7d:3a:e8:53:31:83:cb:c3:ec: e2:2c:59:26:fe:af:2e:6e:2c:74:e9:ba:5d:c4:2b:cf:ca:bc: c0:cf:40:a6:61:b6:00:9d:54:2e:dd:7a:7b:45:1e:33:c2:f3: c9:24:b1:88:fe:ba:5c:45:40:70:f6:91:5f:29:f4:07:dd:49: 1d:53:fa:b9:4a:20:e7:0d:69:2b:e1:8a:1e:be:3d:8b:d7:29: bb:af:9c:b9:e6:35:86:f2:eb:d6:8f:92:cb:c4:10:92:e0:80: 36:17:2a:02:05:4e:fe:a1:0a:ee:41:f4:9d:b0:09:18:94:8f: 95:f6:d9:b1:cb:17:5b:9e:55:85:76:c5:6e:b2:a5:98:49:f0: 2a:b5:64:5d:a9:c0:ba:33:dc:15:bc:33:0e:3a:ee:34:61:8a: 3d:04:63:fd:b1:1e:02:49:16:71:65:33:17:43:07:46:4b:c7: 22:e0:ae:09 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUdUwixbzOLGtRXcG/a3AnhUy9ZeUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yMzA2MDgwMjU3MDZaFw0yNDA2MDYwMzAyMDZaMDMxMTAvBgNV BAMTKEJFQjEwRkM4QUZGN0IwQzQ4NjMwRTY2NTRBNDJBM0FGNUVGNUYzMjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWTTQHJ9DHyB8iqyu/9MIQ5onu nDiCxwgFpeo2a1pBC95me8hqROFAOcP220MwOXYj09XR/z2miRIL82tuj2R4vUV8 jxDLIBeTshux9v8NmndG9u975Vsj75TBt8HWXaz+GyTmjSD4dtY9RKOwsG5LH3cM z/4FK+W0HIyfCh506F5TvoLOtheOd3w/LOKJBPPmi6gcJuMT9ryD98bLJHIWT2Gr u3flZU7gvZbFdGABj8mu+a/QcO4sAv6/3oQ3Iw8QhdBvf4jFgSVhE6I9cMOYhWKB OuBnP2JTlqWrUnvZt6OIAP09BQ7nAbORLzlnEYXlE/tf/PcsCMtaplbQcU0lAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUvrEPyK/3sMSGMOZlSkKjr1718yIwHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzQzMDM1M2E2MjM5MzAzMDNhMzMzMjNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzUzNzMwMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBbkAADIw DQYJKoZIhvcNAQELBQADggEBAKl7jip5FBDav/kywGPyOHud2Kq4/jY3urPdCk5Y UoQxMcQ7qHLUo4Xo+N1G/E8c4dK0uBhroCPZ16wyHBFObSIwYqbrYfVmXQm4qrO/ N6evt3066FMxg8vD7OIsWSb+ry5uLHTpul3EK8/KvMDPQKZhtgCdVC7dentFHjPC 88kksYj+ulxFQHD2kV8p9AfdSR1T+rlKIOcNaSvhih6+PYvXKbuvnLnmNYby69aP ksvEEJLggDYXKgIFTv6hCu5B9J2wCRiUj5X22bHLF1ueVYV2xW6ypZhJ8Cq1ZF2p wLoz3BW8Mw467jRhij0EY/2xHgJJFnFlMxdDB0ZLxyLgrgk= -----END CERTIFICATE-----Generated at Thu Apr 25 21:25:09 2024 by rpki-client on console-ams.rpki-client.org