$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a33353a3a2f34382d3438203d3e203535373031.roa File: 323430353a623930303a33353a3a2f34382d3438203d3e203535373031.roa (raw, json) Hash identifier: /ZPA8HTGR3PCAl0Uv+zO+dLfLE3zpCR1bC0NUQauFQA= Subject key identifier: 09:99:68:7A:58:48:5B:63:55:CE:65:5A:87:02:16:AB:9B:9F:52:09 Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 24371C71C7BAC37EDA053CD780F93B545E03069B Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a33353a3a2f34382d3438203d3e203535373031.roa Signing time: Thu 08 Jun 2023 03:02:11 +0000 ROA not before: Thu 08 Jun 2023 02:57:11 +0000 ROA not after: Thu 06 Jun 2024 03:02:11 +0000 asID: 55701 IP address blocks: 2405:b900:35::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 20:55:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:37:1c:71:c7:ba:c3:7e:da:05:3c:d7:80:f9:3b:54:5e:03:06:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: Jun 8 02:57:11 2023 GMT Not After : Jun 6 03:02:11 2024 GMT Subject: CN=0999687A58485B6355CE655A870216AB9B9F5209 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:e1:e9:bc:af:9b:52:78:a7:e2:95:52:88:c6: 3e:a8:af:3e:0b:1a:7d:f0:78:94:17:1e:4f:b7:ac: 57:17:be:41:b0:98:fa:a6:14:58:4c:45:88:43:f1: 1d:82:21:e0:10:f2:99:d1:d1:33:61:c9:ce:25:b7: 20:4b:a9:1e:43:1f:24:8c:47:5d:21:f5:6a:1c:3f: 57:71:c1:37:d9:e7:63:fe:74:92:1c:70:da:04:84: 2b:c7:1f:1f:f6:01:6b:07:e9:51:df:43:69:df:a5: 17:50:1c:c0:dd:d7:94:9a:d6:d2:e3:1f:72:dd:64: b7:71:e3:9e:fa:d9:ef:9f:3b:01:85:18:db:0d:00: e7:96:84:48:f2:d7:f0:ed:dc:13:be:51:87:32:93: 59:27:df:15:e7:39:2d:2b:9f:7a:42:7b:92:f9:34: 33:33:58:6e:51:0d:5f:78:b0:6a:19:e4:f5:56:f3: ce:d9:c9:c9:26:64:4f:b7:67:66:26:bb:5d:7e:13: c6:d7:a4:43:10:ce:44:1f:a4:a5:2e:7b:3f:31:92: e5:92:68:2f:d7:c6:e0:aa:b1:ba:e3:3f:3a:fb:e9: 8b:03:63:dd:dc:d7:2b:04:bd:4a:a3:b9:34:0d:09: 09:f6:1a:ab:7d:8f:ca:24:3b:ed:f0:ba:22:11:76: 26:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:99:68:7A:58:48:5B:63:55:CE:65:5A:87:02:16:AB:9B:9F:52:09 X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a33353a3a2f34382d3438203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:b900:35::/48 Signature Algorithm: sha256WithRSAEncryption 0c:d4:59:8e:ad:a1:22:7c:24:e5:ba:34:b1:d9:d9:73:b3:46: 7b:f0:4f:26:04:33:4d:c2:88:01:93:09:05:1e:c7:0e:29:3b: 5b:d0:60:36:57:40:bf:58:2d:91:09:de:79:81:14:a3:19:d6: 39:55:f8:52:4b:39:b2:48:9c:15:66:6b:c6:f7:75:70:06:9b: 85:e4:95:9d:f3:98:88:84:f3:1f:cf:0b:51:64:c6:b8:b4:6f: d2:85:c5:0a:33:20:84:68:6b:fa:8f:bb:2e:5a:51:04:e4:cd: f0:b6:a7:58:84:0e:ca:e7:34:16:8f:43:b2:51:85:31:f4:5e: 34:88:94:72:7b:ad:fa:b4:8a:2e:65:e2:58:cb:17:ce:a5:28: c2:96:29:05:58:cf:4d:ed:87:26:f5:bd:1c:c4:2f:48:f5:c9: 87:1d:9e:fc:f2:08:34:ae:59:94:cf:7d:a6:9b:30:a0:be:6f: 3e:4c:e5:3a:f2:9a:61:7e:5d:23:96:2a:7f:38:31:cd:ce:ed: e2:21:17:81:46:2e:f3:ea:85:4e:29:e8:43:af:e5:8e:d5:e3: c8:95:a4:29:1d:03:5a:c3:46:a6:a8:c7:4b:97:4c:33:88:57: c3:6e:8a:d0:e0:4a:8c:85:90:21:bd:5b:16:75:4e:d2:b1:ba: eb:2f:4f:06 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUJDcccce6w37aBTzXgPk7VF4DBpswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yMzA2MDgwMjU3MTFaFw0yNDA2MDYwMzAyMTFaMDMxMTAvBgNV BAMTKDA5OTk2ODdBNTg0ODVCNjM1NUNFNjU1QTg3MDIxNkFCOUI5RjUyMDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDC4em8r5tSeKfilVKIxj6orz4L Gn3weJQXHk+3rFcXvkGwmPqmFFhMRYhD8R2CIeAQ8pnR0TNhyc4ltyBLqR5DHySM R10h9WocP1dxwTfZ52P+dJIccNoEhCvHHx/2AWsH6VHfQ2nfpRdQHMDd15Sa1tLj H3LdZLdx45762e+fOwGFGNsNAOeWhEjy1/Dt3BO+UYcyk1kn3xXnOS0rn3pCe5L5 NDMzWG5RDV94sGoZ5PVW887ZyckmZE+3Z2Ymu11+E8bXpEMQzkQfpKUuez8xkuWS aC/XxuCqsbrjPzr76YsDY93c1ysEvUqjuTQNCQn2Gqt9j8okO+3wuiIRdibtAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUCZloelhIW2NVzmVahwIWq5ufUgkwHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzQzMDM1M2E2MjM5MzAzMDNhMzMzNTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzUzNzMwMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBbkAADUw DQYJKoZIhvcNAQELBQADggEBAAzUWY6toSJ8JOW6NLHZ2XOzRnvwTyYEM03CiAGT CQUexw4pO1vQYDZXQL9YLZEJ3nmBFKMZ1jlV+FJLObJInBVma8b3dXAGm4XklZ3z mIiE8x/PC1Fkxri0b9KFxQozIIRoa/qPuy5aUQTkzfC2p1iEDsrnNBaPQ7JRhTH0 XjSIlHJ7rfq0ii5l4ljLF86lKMKWKQVYz03thyb1vRzEL0j1yYcdnvzyCDSuWZTP faabMKC+bz5M5TrymmF+XSOWKn84Mc3O7eIhF4FGLvPqhU4p6EOv5Y7V48iVpCkd A1rDRqaox0uXTDOIV8NuitDgSoyFkCG9WxZ1TtKxuusvTwY= -----END CERTIFICATE-----Generated at Thu Apr 25 21:25:09 2024 by rpki-client on console-ams.rpki-client.org