$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a34393a3a2f34382d3438203d3e203535373031.roa File: 323430353a623930303a34393a3a2f34382d3438203d3e203535373031.roa (raw, json) Hash identifier: 5GEAAiXZc/ENPPaLiyBJYwegEcqHA0YnF+wI8F9D50g= Subject key identifier: 29:89:D3:B7:6A:76:BE:35:D1:F3:07:58:04:59:17:A9:BC:55:2F:06 Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 64595F82C04F5D341840F655CC5F7DB88B7943AE Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a34393a3a2f34382d3438203d3e203535373031.roa Signing time: Thu 08 Jun 2023 03:02:08 +0000 ROA not before: Thu 08 Jun 2023 02:57:08 +0000 ROA not after: Thu 06 Jun 2024 03:02:08 +0000 asID: 55701 IP address blocks: 2405:b900:49::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 21:55:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:59:5f:82:c0:4f:5d:34:18:40:f6:55:cc:5f:7d:b8:8b:79:43:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: Jun 8 02:57:08 2023 GMT Not After : Jun 6 03:02:08 2024 GMT Subject: CN=2989D3B76A76BE35D1F30758045917A9BC552F06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:a1:b1:9b:c4:d2:70:6e:d3:09:b2:5f:e0:00: 8f:bf:44:8f:93:50:df:75:90:45:15:57:49:7e:aa: 0b:ce:4e:aa:8f:44:cc:dc:23:c2:08:a1:e5:e8:df: 3e:86:d7:d3:dd:6e:0b:a3:61:79:aa:d4:4f:8c:5d: 62:0a:e9:fb:e5:ea:c8:45:f9:7c:00:d2:90:a9:85: 68:d5:8b:a2:1b:76:22:ec:af:c3:e2:3e:2b:52:ed: 2b:1a:7a:14:69:bf:60:4e:3f:e5:18:6e:ee:69:e5: 19:2a:99:54:35:77:d5:bd:c7:8d:74:25:e4:98:a7: e5:cb:e2:1b:93:16:c5:56:3a:88:26:7f:8a:dc:f7: 63:f7:98:f9:8d:6b:b2:cd:94:c1:f7:a5:86:b7:7b: 4e:82:7c:03:e2:3e:20:85:19:df:32:42:58:44:68: 30:09:b1:d5:3b:db:10:6c:fc:24:97:97:56:8a:16: 85:26:9e:00:87:e5:e8:0e:4c:97:db:07:f7:e9:9e: 6e:95:29:74:d8:cf:82:59:77:9c:b5:01:31:38:5a: 50:e0:c9:12:89:e5:7b:4a:3a:d0:58:92:2f:55:51: b0:67:26:64:b3:63:59:fb:f9:99:ca:da:d9:34:55: e9:be:71:ff:2b:f1:cf:12:3c:ea:bd:88:6f:76:0d: 11:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:89:D3:B7:6A:76:BE:35:D1:F3:07:58:04:59:17:A9:BC:55:2F:06 X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a34393a3a2f34382d3438203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:b900:49::/48 Signature Algorithm: sha256WithRSAEncryption 87:7d:81:45:ea:fe:1c:34:18:ad:39:62:d5:ac:b0:29:65:6a: 6d:ef:e1:e8:dc:da:5f:58:cf:b0:ba:f6:b5:13:bd:26:d8:2d: 66:3d:79:42:14:77:ba:80:7c:76:b9:56:88:a3:95:b9:3d:d1: e1:bb:b7:a8:5c:2e:7e:e0:20:79:92:02:8b:23:fe:77:83:87: d1:34:9f:66:1b:8c:35:f5:53:08:e4:72:de:aa:bb:3e:27:c8: ad:a6:75:8c:a4:7f:bc:07:16:41:b0:ae:f8:a7:31:93:00:3e: 20:dd:95:3c:d3:60:68:7d:b5:ef:54:cc:c6:67:6a:fd:8f:e5: a7:31:b7:b3:bd:6e:cb:84:6f:4f:82:64:ba:d4:e1:70:77:51: 6a:22:f8:9e:9c:3b:89:13:89:75:25:19:e3:88:ee:4e:8c:48: 0b:93:5a:0d:84:91:71:7a:53:ca:fb:b3:ab:fe:bc:0a:8e:4f: 86:fb:77:78:e9:da:86:61:60:a9:75:e6:a4:43:d6:4c:9f:16: a4:d0:66:4e:88:43:5b:46:d4:0d:c5:9f:5d:3d:a6:8e:6e:9e: 11:6e:6a:49:33:b9:23:f1:7f:5d:cb:58:38:58:bd:e1:8d:15: 30:58:c4:38:cf:21:4c:71:ef:08:a6:2f:5a:ab:da:ed:3d:2c: 9d:30:8e:33 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUZFlfgsBPXTQYQPZVzF99uIt5Q64wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yMzA2MDgwMjU3MDhaFw0yNDA2MDYwMzAyMDhaMDMxMTAvBgNV BAMTKDI5ODlEM0I3NkE3NkJFMzVEMUYzMDc1ODA0NTkxN0E5QkM1NTJGMDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZobGbxNJwbtMJsl/gAI+/RI+T UN91kEUVV0l+qgvOTqqPRMzcI8IIoeXo3z6G19PdbgujYXmq1E+MXWIK6fvl6shF +XwA0pCphWjVi6IbdiLsr8PiPitS7SsaehRpv2BOP+UYbu5p5RkqmVQ1d9W9x410 JeSYp+XL4huTFsVWOogmf4rc92P3mPmNa7LNlMH3pYa3e06CfAPiPiCFGd8yQlhE aDAJsdU72xBs/CSXl1aKFoUmngCH5egOTJfbB/fpnm6VKXTYz4JZd5y1ATE4WlDg yRKJ5XtKOtBYki9VUbBnJmSzY1n7+ZnK2tk0Vem+cf8r8c8SPOq9iG92DREnAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUKYnTt2p2vjXR8wdYBFkXqbxVLwYwHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzQzMDM1M2E2MjM5MzAzMDNhMzQzOTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzUzNzMwMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBbkAAEkw DQYJKoZIhvcNAQELBQADggEBAId9gUXq/hw0GK05YtWssCllam3v4ejc2l9Yz7C6 9rUTvSbYLWY9eUIUd7qAfHa5Voijlbk90eG7t6hcLn7gIHmSAosj/neDh9E0n2Yb jDX1Uwjkct6quz4nyK2mdYykf7wHFkGwrvinMZMAPiDdlTzTYGh9te9UzMZnav2P 5acxt7O9bsuEb0+CZLrU4XB3UWoi+J6cO4kTiXUlGeOI7k6MSAuTWg2EkXF6U8r7 s6v+vAqOT4b7d3jp2oZhYKl15qRD1kyfFqTQZk6IQ1tG1A3Fn109po5unhFuakkz uSPxf13LWDhYveGNFTBYxDjPIUxx7wimL1qr2u09LJ0wjjM= -----END CERTIFICATE-----Generated at Sun Apr 28 05:31:58 2024 by rpki-client on console-ams.rpki-client.org