$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a33383a3a2f34382d3438203d3e203535373031.roa File: 323430353a623930303a33383a3a2f34382d3438203d3e203535373031.roa (raw, json) Hash identifier: G5X5Rase9EFQF+IkDnjvBdIQyWyc6gjdQOeeda0Ll0w= Subject key identifier: A8:C2:A4:AA:26:A5:82:A0:BE:B4:69:93:90:C4:95:69:7B:CB:B9:ED Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 7BD84EAD1C5C2248C2DEB5EB09C5CC1BA61CA40F Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a33383a3a2f34382d3438203d3e203535373031.roa Signing time: Thu 08 Jun 2023 03:02:11 +0000 ROA not before: Thu 08 Jun 2023 02:57:11 +0000 ROA not after: Thu 06 Jun 2024 03:02:11 +0000 asID: 55701 IP address blocks: 2405:b900:38::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 20:55:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:d8:4e:ad:1c:5c:22:48:c2:de:b5:eb:09:c5:cc:1b:a6:1c:a4:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: Jun 8 02:57:11 2023 GMT Not After : Jun 6 03:02:11 2024 GMT Subject: CN=A8C2A4AA26A582A0BEB4699390C495697BCBB9ED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:58:94:4d:97:e0:e6:e7:67:46:39:22:de:22: 93:4e:d5:3c:48:c2:29:bb:bf:09:f0:ab:f1:49:46: 91:ec:44:c8:68:5c:d6:63:9f:c7:e6:e3:0c:79:6e: c7:d0:ba:06:01:2d:5c:9b:08:0c:c7:0d:5f:3b:01: ca:e7:0a:9f:72:7a:3d:c2:9d:cc:27:48:d9:09:2f: 6e:b3:30:51:1c:61:71:8e:80:68:1e:47:aa:9e:79: 1c:8e:e9:b7:5e:a6:2e:18:71:66:26:12:55:ad:b2: f5:50:10:b6:35:3b:42:aa:37:0b:9e:af:47:ab:b8: 2a:ff:c0:b7:84:5c:01:91:a8:79:21:8e:67:fa:94: 05:45:19:26:04:02:2e:3b:b4:28:7e:3c:7f:c9:e4: 78:5a:ee:6b:19:b9:36:11:95:ea:e3:1d:e8:69:1a: 0d:52:c2:3a:fb:37:fe:5b:18:7e:49:97:63:ab:40: d8:ff:09:e4:b1:c8:20:38:dc:f0:8e:fa:ee:7b:38: 00:1f:b6:c5:7b:10:90:8b:69:58:ca:6a:e2:6e:4e: ee:10:58:05:a8:55:92:e4:74:a5:da:da:fb:e8:f8: 56:7f:44:68:23:2b:66:35:3f:05:49:91:e9:03:25: 28:b9:9b:4d:81:81:b8:16:b0:72:0d:17:29:49:72: 3b:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:C2:A4:AA:26:A5:82:A0:BE:B4:69:93:90:C4:95:69:7B:CB:B9:ED X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a33383a3a2f34382d3438203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:b900:38::/48 Signature Algorithm: sha256WithRSAEncryption 06:ce:a6:52:66:e6:ec:2c:e9:c4:ed:8e:68:9f:d3:c3:8f:5e: 61:ed:01:1a:c1:41:a0:30:a2:d2:5a:c2:7b:f2:c0:cd:49:c8: cf:68:bd:73:b9:b8:88:37:d5:ad:94:9d:53:65:ce:99:29:6c: 5d:f8:9c:00:fe:0b:42:d5:e0:cb:13:0b:c9:61:4f:72:82:d3: 70:26:19:fb:d5:bf:e9:e1:26:8d:a1:3f:d6:b1:5c:d3:3e:bf: cd:34:54:3a:a6:6b:e8:5f:d9:0b:3c:c7:f9:87:75:ac:11:6c: 38:af:33:26:db:68:6b:8e:65:f3:86:07:8a:d5:eb:7c:45:ad: 6c:71:96:ea:0d:4d:97:9e:62:94:b4:cb:16:ca:37:a5:0d:cd: ae:ee:1c:87:37:92:60:2b:70:57:f9:7a:f3:b0:15:e8:68:e3: 12:0f:01:98:75:1d:b0:fa:1d:1d:19:ef:48:14:54:8a:cf:62: c7:3f:ed:a2:a9:96:fc:b3:b6:05:4c:a0:26:76:6d:ac:48:2e: c3:5c:a6:3b:9a:68:82:aa:95:4d:49:bb:61:eb:44:0c:9c:e9: 63:03:68:76:1b:9c:4b:b6:0c:42:e8:de:35:dc:dd:a0:bd:b3: a3:b9:81:a8:90:b6:25:8b:70:dc:b1:44:dd:1a:2a:e4:40:93: f3:6b:68:4e -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUe9hOrRxcIkjC3rXrCcXMG6YcpA8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yMzA2MDgwMjU3MTFaFw0yNDA2MDYwMzAyMTFaMDMxMTAvBgNV BAMTKEE4QzJBNEFBMjZBNTgyQTBCRUI0Njk5MzkwQzQ5NTY5N0JDQkI5RUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpWJRNl+Dm52dGOSLeIpNO1TxI wim7vwnwq/FJRpHsRMhoXNZjn8fm4wx5bsfQugYBLVybCAzHDV87AcrnCp9yej3C ncwnSNkJL26zMFEcYXGOgGgeR6qeeRyO6bdepi4YcWYmElWtsvVQELY1O0KqNwue r0eruCr/wLeEXAGRqHkhjmf6lAVFGSYEAi47tCh+PH/J5Hha7msZuTYRlerjHehp Gg1Swjr7N/5bGH5Jl2OrQNj/CeSxyCA43PCO+u57OAAftsV7EJCLaVjKauJuTu4Q WAWoVZLkdKXa2vvo+FZ/RGgjK2Y1PwVJkekDJSi5m02BgbgWsHINFylJcjt/AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUqMKkqialgqC+tGmTkMSVaXvLue0wHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzQzMDM1M2E2MjM5MzAzMDNhMzMzODNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzUzNzMwMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBbkAADgw DQYJKoZIhvcNAQELBQADggEBAAbOplJm5uws6cTtjmif08OPXmHtARrBQaAwotJa wnvywM1JyM9ovXO5uIg31a2UnVNlzpkpbF34nAD+C0LV4MsTC8lhT3KC03AmGfvV v+nhJo2hP9axXNM+v800VDqma+hf2Qs8x/mHdawRbDivMybbaGuOZfOGB4rV63xF rWxxluoNTZeeYpS0yxbKN6UNza7uHIc3kmArcFf5evOwFeho4xIPAZh1HbD6HR0Z 70gUVIrPYsc/7aKplvyztgVMoCZ2baxILsNcpjuaaIKqlU1Ju2HrRAyc6WMDaHYb nEu2DELo3jXc3aC9s6O5gaiQtiWLcNyxRN0aKuRAk/NraE4= -----END CERTIFICATE-----Generated at Thu Apr 25 21:25:09 2024 by rpki-client on console-ams.rpki-client.org