$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a33363a3a2f34382d3438203d3e203535373031.roa File: 323430353a623930303a33363a3a2f34382d3438203d3e203535373031.roa (raw, json) Hash identifier: Kwl2c8HNq+PP5GcK2zAssmb7ltaM/x0UlmanO/emBdQ= Subject key identifier: 99:43:0D:B9:1F:08:62:D3:6F:E8:E5:CF:C4:A2:66:B7:DB:58:99:FD Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 767E5978FBD0352187F58243F067908B01605BB1 Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a33363a3a2f34382d3438203d3e203535373031.roa Signing time: Thu 08 Jun 2023 03:02:08 +0000 ROA not before: Thu 08 Jun 2023 02:57:08 +0000 ROA not after: Thu 06 Jun 2024 03:02:08 +0000 asID: 55701 IP address blocks: 2405:b900:36::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 21:55:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:7e:59:78:fb:d0:35:21:87:f5:82:43:f0:67:90:8b:01:60:5b:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: Jun 8 02:57:08 2023 GMT Not After : Jun 6 03:02:08 2024 GMT Subject: CN=99430DB91F0862D36FE8E5CFC4A266B7DB5899FD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:49:e8:b1:3f:dd:f3:e2:f7:25:df:b1:2a:25: 58:11:cc:8a:be:c7:3b:be:b2:db:00:c2:94:69:66: d5:59:92:e9:16:1f:55:5b:1c:cc:62:5b:5e:f7:37: c4:6b:49:72:16:79:14:1d:3a:62:a8:7a:e4:94:da: 11:f7:a5:96:70:7b:a0:12:a7:5e:45:16:41:43:1c: 23:5b:3c:22:a0:e8:a5:2b:fc:3d:c8:1e:66:3d:4d: 7e:2e:06:10:c8:4a:f9:1b:58:7f:4e:55:68:85:4c: aa:e3:1a:57:4d:b0:72:07:06:2d:6f:08:ed:ce:28: 11:ef:c4:e4:d9:4e:32:f8:7f:a8:ec:bd:fb:46:e9: c8:9d:3d:5d:35:5b:11:9e:7e:c6:c5:c9:1d:af:48: 0f:7e:ee:c9:64:6d:4d:e9:cc:01:ef:32:51:0b:5d: 3e:a8:af:bc:e3:c2:29:f0:ad:2e:ca:f8:a0:d1:1d: b9:76:e5:7b:cd:6a:65:ce:8d:bc:91:58:ce:d8:99: fa:79:d0:c2:86:e3:31:46:6b:06:59:e2:07:80:91: dd:35:84:28:56:dc:84:e7:9c:a2:a3:15:a6:ee:8e: 77:f6:0e:52:ef:53:f4:de:e2:8b:46:da:3d:d2:83: f1:d6:a3:59:ac:60:ea:66:1b:dc:cc:dc:5f:f4:71: 12:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:43:0D:B9:1F:08:62:D3:6F:E8:E5:CF:C4:A2:66:B7:DB:58:99:FD X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a33363a3a2f34382d3438203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:b900:36::/48 Signature Algorithm: sha256WithRSAEncryption 7b:52:4e:fb:e9:5a:f9:e2:b6:c3:a6:00:cf:99:0d:f6:3b:af: 02:83:9a:2d:71:e1:2b:fe:e9:e3:83:a6:a7:e2:bf:a3:8c:53: 9b:f1:42:6f:d0:e6:52:26:08:a0:6a:0e:d0:0f:8f:41:f8:3f: 97:1c:34:54:04:dd:77:e5:c7:1e:44:59:ef:40:7a:ef:76:a8: bc:56:45:38:76:5b:ae:74:56:3d:d8:6c:cb:b2:86:c1:97:68: 3b:3b:53:23:2f:fc:7b:16:3c:82:54:b4:44:f6:9a:a7:b1:05: 1c:a1:b8:af:ac:e6:71:e6:00:8e:50:00:1a:89:bc:56:a9:49: b7:ba:7b:eb:49:19:d0:1e:93:ea:17:34:fb:b3:83:f5:60:92: bc:2f:39:90:0f:f0:7e:44:ef:6d:a8:ab:a9:27:72:9e:98:05: ff:33:6a:68:23:53:75:99:6d:42:2a:f6:06:8f:ff:20:e2:c1: ca:c4:27:62:b2:cc:00:a8:db:50:97:45:c6:6c:5f:c4:68:8d: fe:1b:fa:a6:d8:4d:d8:b7:c8:3f:db:52:39:90:99:af:38:bc: 9f:78:9f:c7:67:d1:d9:7d:0b:88:40:3e:a7:07:56:6e:f7:1e: 7b:e8:fe:35:d9:e2:1e:db:d1:c4:27:11:4c:1b:db:f8:0e:1e: d6:6f:87:44 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUdn5ZePvQNSGH9YJD8GeQiwFgW7EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yMzA2MDgwMjU3MDhaFw0yNDA2MDYwMzAyMDhaMDMxMTAvBgNV BAMTKDk5NDMwREI5MUYwODYyRDM2RkU4RTVDRkM0QTI2NkI3REI1ODk5RkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJSeixP93z4vcl37EqJVgRzIq+ xzu+stsAwpRpZtVZkukWH1VbHMxiW173N8RrSXIWeRQdOmKoeuSU2hH3pZZwe6AS p15FFkFDHCNbPCKg6KUr/D3IHmY9TX4uBhDISvkbWH9OVWiFTKrjGldNsHIHBi1v CO3OKBHvxOTZTjL4f6jsvftG6cidPV01WxGefsbFyR2vSA9+7slkbU3pzAHvMlEL XT6or7zjwinwrS7K+KDRHbl25XvNamXOjbyRWM7Ymfp50MKG4zFGawZZ4geAkd01 hChW3ITnnKKjFabujnf2DlLvU/Te4otG2j3Sg/HWo1msYOpmG9zM3F/0cRJZAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUmUMNuR8IYtNv6OXPxKJmt9tYmf0wHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzQzMDM1M2E2MjM5MzAzMDNhMzMzNjNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzUzNzMwMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBbkAADYw DQYJKoZIhvcNAQELBQADggEBAHtSTvvpWvnitsOmAM+ZDfY7rwKDmi1x4Sv+6eOD pqfiv6OMU5vxQm/Q5lImCKBqDtAPj0H4P5ccNFQE3Xflxx5EWe9Aeu92qLxWRTh2 W650Vj3YbMuyhsGXaDs7UyMv/HsWPIJUtET2mqexBRyhuK+s5nHmAI5QABqJvFap Sbe6e+tJGdAek+oXNPuzg/VgkrwvOZAP8H5E722oq6kncp6YBf8zamgjU3WZbUIq 9gaP/yDiwcrEJ2KyzACo21CXRcZsX8Rojf4b+qbYTdi3yD/bUjmQma84vJ94n8dn 0dl9C4hAPqcHVm73Hnvo/jXZ4h7b0cQnEUwb2/gOHtZvh0Q= -----END CERTIFICATE-----Generated at Sun Apr 28 05:31:58 2024 by rpki-client on console-ams.rpki-client.org