$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a333a3a2f34382d3438203d3e203535373031.roa File: 323430353a623930303a333a3a2f34382d3438203d3e203535373031.roa (raw, json) Hash identifier: i1c3U8P4sMqJZlWHKyA7+FKuk9kB3OxNFscqQfYn5e4= Subject key identifier: E3:4E:DA:E9:5F:2C:EF:19:09:96:E7:76:6D:5C:56:41:7C:14:11:56 Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 401E747112E8B5A9198C35E5AB52A30057E616DA Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a333a3a2f34382d3438203d3e203535373031.roa Signing time: Thu 08 Jun 2023 03:02:06 +0000 ROA not before: Thu 08 Jun 2023 02:57:06 +0000 ROA not after: Thu 06 Jun 2024 03:02:06 +0000 asID: 55701 IP address blocks: 2405:b900:3::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 20:55:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:1e:74:71:12:e8:b5:a9:19:8c:35:e5:ab:52:a3:00:57:e6:16:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: Jun 8 02:57:06 2023 GMT Not After : Jun 6 03:02:06 2024 GMT Subject: CN=E34EDAE95F2CEF190996E7766D5C56417C141156 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:49:2a:5d:b3:36:5c:7b:7a:95:1b:ad:40:52: ea:7f:b3:56:7c:eb:6e:56:68:c8:cb:d9:0f:45:7b: 31:90:e7:14:07:39:45:f1:f9:84:ca:bb:cb:68:4a: d5:c3:58:9c:57:ab:e4:63:f6:70:ef:0e:3f:9b:f8: 7c:b9:b3:cb:8b:9f:f2:51:9e:3b:7d:96:98:2a:8f: a1:67:e8:de:63:ec:06:66:a2:9a:13:cf:3f:45:01: fe:f6:8b:d3:9a:ce:23:d3:17:d2:7b:b4:6e:8b:79: 1c:27:b0:3c:ce:0a:74:32:58:81:7e:59:c8:75:0d: c7:74:83:cc:48:b0:1b:28:2f:84:af:3a:ae:77:ea: 33:b5:79:d5:af:ca:4a:17:be:9b:93:54:4d:14:4d: 1c:17:1d:9b:b5:5e:fe:0c:d9:1c:0a:52:16:cc:8d: 68:14:f7:64:cb:28:33:1b:55:9c:70:38:e4:7e:4b: c1:ee:01:7b:88:9c:ba:11:6e:f8:ae:5f:ef:cb:9b: fc:2d:8f:a7:82:3a:d7:ee:a5:61:03:ae:c1:3f:e5: 7c:d1:b6:01:6b:57:dc:c5:34:94:f2:34:32:ea:35: 7c:35:30:80:e0:34:33:f5:fd:68:dd:6b:b1:e5:11: 05:26:96:f2:e0:83:99:22:e3:b9:a0:b7:b7:40:05: f4:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:4E:DA:E9:5F:2C:EF:19:09:96:E7:76:6D:5C:56:41:7C:14:11:56 X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a333a3a2f34382d3438203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:b900:3::/48 Signature Algorithm: sha256WithRSAEncryption 5d:96:f7:41:6d:32:d3:71:0e:38:1a:6a:f4:13:0f:b9:62:1e: 48:03:31:f5:a3:85:ed:93:67:f8:3c:2f:f0:9c:0c:11:83:f5: fa:d3:2a:6c:f8:65:e4:b7:b5:d5:28:1d:da:7e:3c:c4:c3:78: 45:95:b1:0b:a6:61:2b:b0:1f:30:20:b3:2d:94:ff:b6:71:9d: c2:1c:28:c7:e2:3e:dd:0a:bb:ba:98:d2:f9:53:dd:a4:e5:5c: 53:eb:c4:75:39:0b:97:50:ad:df:53:7e:30:17:4f:74:1e:fa: fb:1f:27:18:08:aa:83:2e:1f:ab:4c:49:5f:2e:19:50:b3:10: 30:f9:a0:00:36:90:39:80:47:13:2d:9b:dd:b2:7f:e5:77:8b: 5a:ca:b1:6d:aa:e5:be:1b:d2:28:b4:90:37:78:6c:78:cb:07: 9b:e5:1e:ac:ab:70:76:bf:68:02:1f:e5:20:9b:12:6a:47:fe: 5a:c1:be:54:1d:d1:a0:ac:45:79:ce:f8:6c:32:c6:28:ab:95: 4d:1e:fd:be:39:42:b8:4d:95:90:06:1e:6b:61:ba:69:4f:28: 6c:aa:f4:78:1f:de:d1:88:fb:e1:28:b7:38:d9:e3:4c:2d:5d: b1:28:5c:17:0d:fa:5f:72:ef:61:d7:76:3a:1e:81:65:8f:de: 76:74:65:9e -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUQB50cRLotakZjDXlq1KjAFfmFtowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yMzA2MDgwMjU3MDZaFw0yNDA2MDYwMzAyMDZaMDMxMTAvBgNV BAMTKEUzNEVEQUU5NUYyQ0VGMTkwOTk2RTc3NjZENUM1NjQxN0MxNDExNTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrSSpdszZce3qVG61AUup/s1Z8 625WaMjL2Q9FezGQ5xQHOUXx+YTKu8toStXDWJxXq+Rj9nDvDj+b+Hy5s8uLn/JR njt9lpgqj6Fn6N5j7AZmopoTzz9FAf72i9OaziPTF9J7tG6LeRwnsDzOCnQyWIF+ Wch1Dcd0g8xIsBsoL4SvOq536jO1edWvykoXvpuTVE0UTRwXHZu1Xv4M2RwKUhbM jWgU92TLKDMbVZxwOOR+S8HuAXuInLoRbviuX+/Lm/wtj6eCOtfupWEDrsE/5XzR tgFrV9zFNJTyNDLqNXw1MIDgNDP1/Wjda7HlEQUmlvLgg5ki47mgt7dABfQ5AgMB AAGjggI3MIICMzAdBgNVHQ4EFgQU407a6V8s7xkJlud2bVxWQXwUEVYwHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzQzMDM1M2E2MjM5MzAzMDNhMzMzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzNTM1MzczMDMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAW5AAADMA0G CSqGSIb3DQEBCwUAA4IBAQBdlvdBbTLTcQ44Gmr0Ew+5Yh5IAzH1o4Xtk2f4PC/w nAwRg/X60yps+GXkt7XVKB3afjzEw3hFlbELpmErsB8wILMtlP+2cZ3CHCjH4j7d Cru6mNL5U92k5VxT68R1OQuXUK3fU34wF090Hvr7HycYCKqDLh+rTElfLhlQsxAw +aAANpA5gEcTLZvdsn/ld4tayrFtquW+G9IotJA3eGx4yweb5R6sq3B2v2gCH+Ug mxJqR/5awb5UHdGgrEV5zvhsMsYoq5VNHv2+OUK4TZWQBh5rYbppTyhsqvR4H97R iPvhKLc42eNMLV2xKFwXDfpfcu9h13Y6HoFlj952dGWe -----END CERTIFICATE-----Generated at Thu Apr 25 21:25:09 2024 by rpki-client on console-ams.rpki-client.org