$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a34373a3a2f34382d3438203d3e203535373031.roa File: 323430353a623930303a34373a3a2f34382d3438203d3e203535373031.roa (raw, json) Hash identifier: MyB4bSfbqzs1zjb5AE219VubNnUzJKMe2idl0EYUUHk= Subject key identifier: 4C:89:14:BC:1A:59:D9:39:74:D1:B3:C3:45:01:35:03:2B:D7:8A:28 Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 3BCD0C89F647DC30F375007A56D24E68DB98374E Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a34373a3a2f34382d3438203d3e203535373031.roa Signing time: Thu 08 Jun 2023 03:02:06 +0000 ROA not before: Thu 08 Jun 2023 02:57:06 +0000 ROA not after: Thu 06 Jun 2024 03:02:06 +0000 asID: 55701 IP address blocks: 2405:b900:47::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 21:55:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:cd:0c:89:f6:47:dc:30:f3:75:00:7a:56:d2:4e:68:db:98:37:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: Jun 8 02:57:06 2023 GMT Not After : Jun 6 03:02:06 2024 GMT Subject: CN=4C8914BC1A59D93974D1B3C3450135032BD78A28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:f6:32:38:13:45:74:ba:aa:78:ab:65:e5:01: 27:7d:25:8f:2c:e7:8d:ef:e1:5b:c3:ae:45:f5:26: 64:e4:b2:11:6d:9d:e2:59:0f:45:42:d8:86:c9:43: f7:9c:18:b1:3f:ed:85:a2:c7:7a:0a:a8:20:cc:4f: 0b:81:1b:14:bb:4e:25:68:d6:4f:ce:3d:67:00:69: bc:13:3a:8c:ca:9d:02:b7:c2:9f:e0:4e:d7:d5:4d: 5a:59:b2:85:6c:5f:df:01:45:99:85:dd:0f:47:d6: c1:9a:b2:15:63:33:6c:8f:87:cf:10:d9:8a:a6:c1: 2e:5e:16:76:8c:91:75:f6:7b:f1:d3:67:ca:dd:8d: d8:61:09:70:87:c8:7a:a8:63:cd:1d:e5:47:6e:27: ea:32:66:38:f3:a2:63:ef:01:91:5b:81:32:01:95: 51:0d:2f:ff:e0:74:56:f9:2a:d8:cb:b4:4a:ec:b2: 16:56:2d:1c:2b:db:bd:ef:66:3d:bb:96:f9:f3:5f: 83:55:36:e1:b3:1d:1d:57:06:e9:f6:d0:db:1e:f1: d5:ac:24:4a:d7:6b:e5:e2:f8:78:4e:3b:64:71:55: ac:93:12:81:a1:aa:32:fd:c0:00:fa:c4:ef:28:49: 3c:5b:20:f3:6b:67:90:ec:ca:7b:d5:e4:95:6e:5d: cd:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:89:14:BC:1A:59:D9:39:74:D1:B3:C3:45:01:35:03:2B:D7:8A:28 X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a34373a3a2f34382d3438203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:b900:47::/48 Signature Algorithm: sha256WithRSAEncryption 30:98:13:44:8f:89:b8:87:ad:53:fe:a8:2f:c8:c2:a0:30:20: c8:0e:90:83:6e:c6:44:cd:38:2a:9c:4b:76:32:1c:9b:e6:79: 46:4b:0b:79:42:16:5b:61:e2:ae:07:f1:59:e3:1f:dc:e1:ee: 8b:a0:bb:0d:c5:f8:0b:44:18:c0:8d:e0:24:e1:b8:03:fa:84: 1d:8a:0f:c9:76:4e:98:73:f7:99:05:7b:16:8d:d3:bd:5b:8a: d7:9c:6e:db:fd:d6:39:04:f8:a2:8c:c7:27:ac:15:cf:b5:62: 88:62:ea:d0:7f:f4:49:31:50:6c:c2:a9:e5:36:60:ca:5c:c0: c6:3c:09:b5:ab:1d:b6:76:cc:5f:10:69:44:dc:b7:ec:4b:a9: 39:46:1a:f6:99:57:95:34:a6:2b:88:6f:93:1b:30:a0:18:46: cf:76:de:6e:a0:e8:b9:8a:19:72:eb:a8:fe:6c:be:fb:5d:dc: dd:65:ba:ef:32:8f:30:75:dd:a2:00:38:73:11:ba:ba:20:35: f8:bf:33:07:a5:2f:9d:a8:1c:a8:37:73:66:da:47:49:ca:19: 1d:6e:fa:a2:49:57:9b:8a:67:06:b7:09:b2:45:d3:38:91:28: 64:2c:e9:b0:f9:a0:58:63:79:1c:2e:c1:d7:19:45:4e:a1:3f: 56:7f:ba:11 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUO80MifZH3DDzdQB6VtJOaNuYN04wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yMzA2MDgwMjU3MDZaFw0yNDA2MDYwMzAyMDZaMDMxMTAvBgNV BAMTKDRDODkxNEJDMUE1OUQ5Mzk3NEQxQjNDMzQ1MDEzNTAzMkJENzhBMjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDm9jI4E0V0uqp4q2XlASd9JY8s 543v4VvDrkX1JmTkshFtneJZD0VC2IbJQ/ecGLE/7YWix3oKqCDMTwuBGxS7TiVo 1k/OPWcAabwTOozKnQK3wp/gTtfVTVpZsoVsX98BRZmF3Q9H1sGashVjM2yPh88Q 2YqmwS5eFnaMkXX2e/HTZ8rdjdhhCXCHyHqoY80d5UduJ+oyZjjzomPvAZFbgTIB lVENL//gdFb5KtjLtErsshZWLRwr273vZj27lvnzX4NVNuGzHR1XBun20Nse8dWs JErXa+Xi+HhOO2RxVayTEoGhqjL9wAD6xO8oSTxbIPNrZ5DsynvV5JVuXc0rAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUTIkUvBpZ2Tl00bPDRQE1AyvXiigwHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzQzMDM1M2E2MjM5MzAzMDNhMzQzNzNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzUzNzMwMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBbkAAEcw DQYJKoZIhvcNAQELBQADggEBADCYE0SPibiHrVP+qC/IwqAwIMgOkINuxkTNOCqc S3YyHJvmeUZLC3lCFlth4q4H8VnjH9zh7ouguw3F+AtEGMCN4CThuAP6hB2KD8l2 Tphz95kFexaN071bitecbtv91jkE+KKMxyesFc+1Yohi6tB/9EkxUGzCqeU2YMpc wMY8CbWrHbZ2zF8QaUTct+xLqTlGGvaZV5U0piuIb5MbMKAYRs923m6g6LmKGXLr qP5svvtd3N1luu8yjzB13aIAOHMRurogNfi/MwelL52oHKg3c2baR0nKGR1u+qJJ V5uKZwa3CbJF0ziRKGQs6bD5oFhjeRwuwdcZRU6hP1Z/uhE= -----END CERTIFICATE-----Generated at Sun Apr 28 05:31:58 2024 by rpki-client on console-ams.rpki-client.org