$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a33393a3a2f34382d3438203d3e203535373031.roa File: 323430353a623930303a33393a3a2f34382d3438203d3e203535373031.roa (raw, json) Hash identifier: 1d4Q8D7JqFpgia5im178x8nf3MUrq2AmAlGpZNudK1w= Subject key identifier: 82:F4:E7:40:FF:32:F1:36:E0:51:1A:EB:BC:9E:C0:55:AE:74:34:FB Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 019A15E0648C9DA14A1514B1ECACEAD1D3070E7C Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a33393a3a2f34382d3438203d3e203535373031.roa Signing time: Thu 08 Jun 2023 03:02:10 +0000 ROA not before: Thu 08 Jun 2023 02:57:10 +0000 ROA not after: Thu 06 Jun 2024 03:02:10 +0000 asID: 55701 IP address blocks: 2405:b900:39::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 20:55:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:15:e0:64:8c:9d:a1:4a:15:14:b1:ec:ac:ea:d1:d3:07:0e:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: Jun 8 02:57:10 2023 GMT Not After : Jun 6 03:02:10 2024 GMT Subject: CN=82F4E740FF32F136E0511AEBBC9EC055AE7434FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:f9:71:3f:a4:ab:a5:5d:35:39:ef:80:ea:b4: 77:6a:18:f2:2c:b6:16:9e:41:6d:f4:79:63:a3:f6: 34:e3:1c:d6:9a:69:25:e6:65:da:81:23:fa:86:06: 7f:17:36:20:88:ee:91:f4:a5:41:89:bc:54:d9:5f: e8:45:1c:65:39:b2:a1:9a:e6:8d:5d:36:bd:88:5c: d3:72:e4:a3:59:b3:48:ae:94:82:c1:d0:13:b2:c1: 33:6d:e3:88:14:c3:75:18:a9:8a:b7:00:68:14:4c: cb:29:75:77:56:6a:ca:5f:25:c4:aa:10:c9:5e:fe: ea:16:89:bd:1c:e7:98:bc:70:38:f6:63:de:ee:53: fe:b0:52:79:fe:11:f3:bd:1a:90:a5:88:76:d2:b5: 47:c2:35:5e:39:30:4a:9b:2f:c7:18:09:d3:dc:e5: 74:d3:d6:a0:52:75:72:69:0c:c6:bb:ea:89:49:6c: de:09:62:de:7a:7c:21:90:d5:3d:d2:d1:e6:89:ff: 3b:82:3c:1e:7f:88:f6:de:9d:d9:cb:b1:f5:ff:d6: f5:9d:f4:7d:66:9a:f8:3e:1e:b7:73:de:1a:aa:0c: 1a:26:fa:24:d0:d3:ea:90:ff:b4:4a:6f:2c:15:f4: 1f:cc:d3:38:2d:8c:ba:c0:1e:65:29:e0:71:71:77: 5b:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:F4:E7:40:FF:32:F1:36:E0:51:1A:EB:BC:9E:C0:55:AE:74:34:FB X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a33393a3a2f34382d3438203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:b900:39::/48 Signature Algorithm: sha256WithRSAEncryption 6b:35:17:ca:cb:37:f4:66:44:62:20:e6:73:04:72:f2:d5:0c: 8f:1b:cd:75:20:55:91:d0:2d:24:a4:14:6e:b0:a9:f6:74:7d: 97:d9:f7:2b:bb:1a:17:82:c1:b2:e3:75:bd:6c:ab:d6:16:36: 70:99:d8:89:72:db:ee:ce:ab:31:cd:7d:14:87:2f:b4:4e:a3: 62:91:09:0c:13:3c:7c:c6:4e:67:1b:3d:7f:04:3c:a8:8a:f7: a5:1f:92:ae:29:2a:1e:42:e5:5e:47:85:7e:6b:58:32:8f:02: ad:85:9d:41:7c:c6:f7:d7:99:bb:fa:02:86:93:e0:de:1d:75: 9d:38:15:c6:a2:6c:89:28:28:6c:fa:ad:6f:a6:9c:33:b6:54: 53:a4:82:89:9b:e2:96:04:42:b9:2a:6e:f1:35:26:a3:c6:24: 8d:a0:bf:4c:49:7d:2b:75:aa:86:0d:f6:69:b6:a9:17:f1:fa: 63:db:f0:fe:d0:64:8c:b8:c2:7f:0a:71:e4:7b:9c:70:b8:d6: 66:96:9b:cf:47:00:7e:1f:56:c5:ed:dc:f7:55:1b:37:00:90: aa:42:ef:b3:34:c7:5c:06:07:3e:6f:16:1c:7b:fe:53:47:41: b2:08:40:ca:00:57:2f:b8:a9:c0:eb:9c:e6:25:d1:c7:d7:83: 36:da:9b:11 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUAZoV4GSMnaFKFRSx7Kzq0dMHDnwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yMzA2MDgwMjU3MTBaFw0yNDA2MDYwMzAyMTBaMDMxMTAvBgNV BAMTKDgyRjRFNzQwRkYzMkYxMzZFMDUxMUFFQkJDOUVDMDU1QUU3NDM0RkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDN+XE/pKulXTU574DqtHdqGPIs thaeQW30eWOj9jTjHNaaaSXmZdqBI/qGBn8XNiCI7pH0pUGJvFTZX+hFHGU5sqGa 5o1dNr2IXNNy5KNZs0iulILB0BOywTNt44gUw3UYqYq3AGgUTMspdXdWaspfJcSq EMle/uoWib0c55i8cDj2Y97uU/6wUnn+EfO9GpCliHbStUfCNV45MEqbL8cYCdPc 5XTT1qBSdXJpDMa76olJbN4JYt56fCGQ1T3S0eaJ/zuCPB5/iPbendnLsfX/1vWd 9H1mmvg+Hrdz3hqqDBom+iTQ0+qQ/7RKbywV9B/M0zgtjLrAHmUp4HFxd1tLAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUgvTnQP8y8TbgURrrvJ7AVa50NPswHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzQzMDM1M2E2MjM5MzAzMDNhMzMzOTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzUzNzMwMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBbkAADkw DQYJKoZIhvcNAQELBQADggEBAGs1F8rLN/RmRGIg5nMEcvLVDI8bzXUgVZHQLSSk FG6wqfZ0fZfZ9yu7GheCwbLjdb1sq9YWNnCZ2Ily2+7OqzHNfRSHL7ROo2KRCQwT PHzGTmcbPX8EPKiK96Ufkq4pKh5C5V5HhX5rWDKPAq2FnUF8xvfXmbv6AoaT4N4d dZ04FcaibIkoKGz6rW+mnDO2VFOkgomb4pYEQrkqbvE1JqPGJI2gv0xJfSt1qoYN 9mm2qRfx+mPb8P7QZIy4wn8KceR7nHC41maWm89HAH4fVsXt3PdVGzcAkKpC77M0 x1wGBz5vFhx7/lNHQbIIQMoAVy+4qcDrnOYl0cfXgzbamxE= -----END CERTIFICATE-----Generated at Thu Apr 25 21:25:09 2024 by rpki-client on console-ams.rpki-client.org