$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a34303a3a2f34382d3438203d3e203535373031.roa File: 323430353a623930303a34303a3a2f34382d3438203d3e203535373031.roa (raw, json) Hash identifier: BMedDLMR1XdUGNXMTOWLh+HVyW0oIAe7Aq72DTqIABg= Subject key identifier: 2C:67:69:0C:A1:ED:4F:47:4A:CF:04:C9:B6:51:60:20:58:B9:8E:14 Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 454576EF9D3C0DA8BEC4F398A9A24194E8EE2B2C Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a34303a3a2f34382d3438203d3e203535373031.roa Signing time: Thu 08 Jun 2023 03:02:11 +0000 ROA not before: Thu 08 Jun 2023 02:57:11 +0000 ROA not after: Thu 06 Jun 2024 03:02:11 +0000 asID: 55701 IP address blocks: 2405:b900:40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 21:55:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:45:76:ef:9d:3c:0d:a8:be:c4:f3:98:a9:a2:41:94:e8:ee:2b:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: Jun 8 02:57:11 2023 GMT Not After : Jun 6 03:02:11 2024 GMT Subject: CN=2C67690CA1ED4F474ACF04C9B651602058B98E14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:4d:5e:fa:b8:63:eb:04:d6:78:0f:0d:4f:3b: c1:e1:89:ab:c2:c3:c1:03:e5:98:91:78:c1:ee:88: 51:a5:dd:64:02:a7:86:d0:ce:c8:b5:7a:d9:c3:89: f7:99:1e:1b:04:87:46:ea:b7:bc:d6:e8:3d:86:e1: 5d:3b:64:3e:cb:03:0b:45:66:57:46:05:02:0b:0f: ae:7b:52:47:17:c3:74:ce:e9:6e:83:48:eb:d1:54: fe:e7:91:04:20:71:80:8e:e3:53:84:26:70:7e:61: 48:9d:57:20:b5:fd:10:46:61:10:16:52:76:6b:1f: 05:13:e7:7b:33:fb:df:56:d0:19:10:9c:36:e8:c2: 08:9f:f8:97:78:a8:10:f1:a3:9f:7e:72:13:b8:7c: 4c:81:5f:31:fc:dc:6b:f6:7a:43:53:26:b2:c9:d0: 6c:6d:9b:75:83:75:01:b4:52:dd:f7:e7:3e:c9:ad: 5f:60:3a:3e:61:c6:86:a7:61:42:8e:a1:18:7e:38: 7f:c9:94:3f:14:67:68:ab:e9:af:36:b3:ee:95:4e: d3:ac:5d:8c:2c:57:d9:80:8c:81:f1:0e:be:d9:51: 8e:d9:ed:1b:50:7d:7c:27:79:39:7f:a6:d8:10:3f: d6:56:b1:63:ff:4d:d8:08:48:1e:3d:92:6b:10:03: 88:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:67:69:0C:A1:ED:4F:47:4A:CF:04:C9:B6:51:60:20:58:B9:8E:14 X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a34303a3a2f34382d3438203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:b900:40::/48 Signature Algorithm: sha256WithRSAEncryption 4a:71:ab:d1:fd:1b:72:5d:e7:ce:96:31:b8:1f:c8:25:f5:41: 44:9f:ed:eb:39:4f:37:52:13:6d:e3:75:3c:16:27:4f:c3:89: 90:25:67:46:13:32:5c:99:7f:3e:06:e0:d4:83:6c:f3:90:00: ee:af:2a:01:fb:87:08:51:5c:00:d4:a4:3c:bd:37:3c:cf:a6: ad:ff:30:95:4b:d2:9b:9a:47:cb:fd:6e:4c:49:5b:87:21:be: 7f:06:1c:7b:a0:51:9c:9a:58:0f:da:48:08:14:2b:51:bf:29: 0b:54:92:11:98:6a:82:82:cf:12:af:be:70:06:cc:ca:f6:a0: a1:d0:cd:80:56:b2:e9:b3:19:00:60:a4:b1:5d:50:b9:32:89: 2f:81:40:a5:16:9c:65:aa:76:4d:40:c3:86:42:1a:e3:75:44: 6e:cc:8d:d2:fb:93:ca:5d:62:75:e3:0e:ea:12:c5:61:4a:6e: 60:56:1a:f4:0a:a7:28:cf:62:b8:dc:86:93:e6:35:83:28:71: b0:da:13:8e:73:39:85:db:47:0e:10:96:d1:85:2e:5a:dd:5f: 41:eb:4a:1a:ca:f0:e6:65:95:17:18:f3:37:28:80:09:37:76: de:6d:df:74:18:b0:8e:30:12:fe:a4:52:c8:f6:37:66:ad:1d: a7:ea:ee:33 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIURUV27508Dai+xPOYqaJBlOjuKywwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yMzA2MDgwMjU3MTFaFw0yNDA2MDYwMzAyMTFaMDMxMTAvBgNV BAMTKDJDNjc2OTBDQTFFRDRGNDc0QUNGMDRDOUI2NTE2MDIwNThCOThFMTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTTV76uGPrBNZ4Dw1PO8HhiavC w8ED5ZiReMHuiFGl3WQCp4bQzsi1etnDifeZHhsEh0bqt7zW6D2G4V07ZD7LAwtF ZldGBQILD657UkcXw3TO6W6DSOvRVP7nkQQgcYCO41OEJnB+YUidVyC1/RBGYRAW UnZrHwUT53sz+99W0BkQnDbowgif+Jd4qBDxo59+chO4fEyBXzH83Gv2ekNTJrLJ 0Gxtm3WDdQG0Ut335z7JrV9gOj5hxoanYUKOoRh+OH/JlD8UZ2ir6a82s+6VTtOs XYwsV9mAjIHxDr7ZUY7Z7RtQfXwneTl/ptgQP9ZWsWP/TdgISB49kmsQA4h3AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQULGdpDKHtT0dKzwTJtlFgIFi5jhQwHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzQzMDM1M2E2MjM5MzAzMDNhMzQzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzUzNzMwMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBbkAAEAw DQYJKoZIhvcNAQELBQADggEBAEpxq9H9G3Jd586WMbgfyCX1QUSf7es5TzdSE23j dTwWJ0/DiZAlZ0YTMlyZfz4G4NSDbPOQAO6vKgH7hwhRXADUpDy9NzzPpq3/MJVL 0puaR8v9bkxJW4chvn8GHHugUZyaWA/aSAgUK1G/KQtUkhGYaoKCzxKvvnAGzMr2 oKHQzYBWsumzGQBgpLFdULkyiS+BQKUWnGWqdk1Aw4ZCGuN1RG7MjdL7k8pdYnXj DuoSxWFKbmBWGvQKpyjPYrjchpPmNYMocbDaE45zOYXbRw4QltGFLlrdX0HrShrK 8OZllRcY8zcogAk3dt5t33QYsI4wEv6kUsj2N2atHafq7jM= -----END CERTIFICATE-----Generated at Sun Apr 28 05:31:58 2024 by rpki-client on console-ams.rpki-client.org