$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a34323a3a2f34382d3438203d3e203535373031.roa File: 323430353a623930303a34323a3a2f34382d3438203d3e203535373031.roa (raw, json) Hash identifier: uM3t9NJlCshsK4Nf5FZsy+0MSDFBjm5CaPMENK6sBGw= Subject key identifier: 6F:D0:A8:39:66:B5:18:55:09:C5:A3:A7:FF:88:3C:5B:C7:FE:54:A8 Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 7AFE42F2C3B0EDDA2BDCEC904FC3270261BC0271 Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a34323a3a2f34382d3438203d3e203535373031.roa Signing time: Thu 08 Jun 2023 03:02:03 +0000 ROA not before: Thu 08 Jun 2023 02:57:03 +0000 ROA not after: Thu 06 Jun 2024 03:02:03 +0000 asID: 55701 IP address blocks: 2405:b900:42::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 21:55:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:fe:42:f2:c3:b0:ed:da:2b:dc:ec:90:4f:c3:27:02:61:bc:02:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: Jun 8 02:57:03 2023 GMT Not After : Jun 6 03:02:03 2024 GMT Subject: CN=6FD0A83966B5185509C5A3A7FF883C5BC7FE54A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:46:cb:05:29:a4:b8:36:2f:e7:e9:3b:14:0c: ca:99:30:d7:e0:c8:33:63:fc:10:76:d6:f8:91:96: 79:ed:18:f1:61:e1:33:5b:63:1e:de:4c:82:29:79: 53:b0:44:ac:f5:6e:b7:5e:f0:53:af:a7:63:fd:09: 49:1a:11:db:ea:24:8c:d5:f7:13:11:c5:59:b6:6a: 2b:7e:fd:73:b0:4b:72:f9:90:5d:ef:6a:9a:4b:b9: 06:40:3f:6f:62:cc:2c:40:3b:ab:3d:73:d8:b0:50: 21:9c:9c:d8:74:9d:bc:bb:84:ef:86:79:b5:d8:c9: d6:a7:0c:cb:67:df:43:2f:ac:f9:35:79:66:52:06: b6:02:e7:88:86:f1:d1:3c:0d:7d:ca:33:88:fe:f9: 66:cf:ea:46:ea:7b:96:f2:d0:af:0f:c9:22:fd:66: f3:6a:bc:a7:f5:ac:b6:4b:f4:48:9d:4f:a4:49:25: ec:06:68:25:a6:37:6c:d6:da:e6:41:58:cd:ab:6b: 32:d3:fa:8c:b3:48:40:2e:8b:da:0d:b5:61:7d:fd: a6:85:06:12:07:74:67:7e:a6:8e:de:57:eb:ca:13: 96:cb:8d:de:ad:8d:d6:4e:23:36:ef:da:0f:22:42: 1f:26:ef:80:d0:c0:46:09:55:80:40:70:c8:c1:51: 31:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:D0:A8:39:66:B5:18:55:09:C5:A3:A7:FF:88:3C:5B:C7:FE:54:A8 X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a34323a3a2f34382d3438203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:b900:42::/48 Signature Algorithm: sha256WithRSAEncryption ac:8d:24:b5:b3:65:65:fe:5b:8e:a9:ce:17:db:d3:c3:79:13: f0:1c:a6:68:5b:98:0a:4c:38:b7:86:41:72:dc:38:26:89:64: 46:e7:51:8a:e7:80:8b:a7:a4:e1:dd:c5:b6:52:ef:1e:66:66: 8f:20:ce:04:b7:90:cb:ef:ac:73:12:7f:81:65:c6:95:f4:39: 93:a8:e2:ec:26:67:97:bc:64:27:e2:c6:c0:e4:a2:e5:9c:47: 1a:af:8f:86:08:ee:96:85:06:a5:ef:94:2f:56:d8:30:ab:aa: 10:20:4b:b6:c9:97:70:1d:fb:ee:92:20:34:c7:5e:fd:8d:c7: 81:b4:44:62:4b:15:ee:2e:e4:b6:60:b6:43:45:a1:6f:5d:8a: ed:e4:03:41:70:a5:dd:aa:da:c4:ee:d6:2b:41:d8:16:f9:e5: 84:0e:84:82:fb:80:20:3f:5b:80:33:bb:c3:46:15:e7:a9:d2: c5:06:95:4a:ce:32:57:68:8b:c0:4f:b1:0e:c2:12:1e:e4:ed: c2:f3:40:3d:99:10:d3:e6:79:5f:97:02:24:d8:5f:1a:5b:fb: fc:47:47:43:26:74:b0:11:6d:06:69:54:3a:b5:13:e8:0b:a2: 73:33:8c:f3:41:d8:ea:cb:fd:82:22:60:03:b1:90:dd:25:2b: 37:16:ee:13 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUev5C8sOw7dor3OyQT8MnAmG8AnEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yMzA2MDgwMjU3MDNaFw0yNDA2MDYwMzAyMDNaMDMxMTAvBgNV BAMTKDZGRDBBODM5NjZCNTE4NTUwOUM1QTNBN0ZGODgzQzVCQzdGRTU0QTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDURssFKaS4Ni/n6TsUDMqZMNfg yDNj/BB21viRlnntGPFh4TNbYx7eTIIpeVOwRKz1brde8FOvp2P9CUkaEdvqJIzV 9xMRxVm2ait+/XOwS3L5kF3vappLuQZAP29izCxAO6s9c9iwUCGcnNh0nby7hO+G ebXYydanDMtn30MvrPk1eWZSBrYC54iG8dE8DX3KM4j++WbP6kbqe5by0K8PySL9 ZvNqvKf1rLZL9EidT6RJJewGaCWmN2zW2uZBWM2razLT+oyzSEAui9oNtWF9/aaF BhIHdGd+po7eV+vKE5bLjd6tjdZOIzbv2g8iQh8m74DQwEYJVYBAcMjBUTErAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUb9CoOWa1GFUJxaOn/4g8W8f+VKgwHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzQzMDM1M2E2MjM5MzAzMDNhMzQzMjNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzUzNzMwMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBbkAAEIw DQYJKoZIhvcNAQELBQADggEBAKyNJLWzZWX+W46pzhfb08N5E/AcpmhbmApMOLeG QXLcOCaJZEbnUYrngIunpOHdxbZS7x5mZo8gzgS3kMvvrHMSf4FlxpX0OZOo4uwm Z5e8ZCfixsDkouWcRxqvj4YI7paFBqXvlC9W2DCrqhAgS7bJl3Ad++6SIDTHXv2N x4G0RGJLFe4u5LZgtkNFoW9diu3kA0Fwpd2q2sTu1itB2Bb55YQOhIL7gCA/W4Az u8NGFeep0sUGlUrOMldoi8BPsQ7CEh7k7cLzQD2ZENPmeV+XAiTYXxpb+/xHR0Mm dLARbQZpVDq1E+gLonMzjPNB2OrL/YIiYAOxkN0lKzcW7hM= -----END CERTIFICATE-----Generated at Sun Apr 28 05:31:58 2024 by rpki-client on console-ams.rpki-client.org