$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a343a3a2f34382d3438203d3e203535373031.roa File: 323430353a623930303a343a3a2f34382d3438203d3e203535373031.roa (raw, json) Hash identifier: dF4WHRcjcn1AO9NyGmQUhRcSA6qRgt1Pw5Q3a9RyJsA= Subject key identifier: 26:24:5F:E8:8F:CE:83:7B:91:F9:2E:56:FE:D3:51:0D:DD:30:5A:28 Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 09D183D52A88091CC6F30F7A2545A354D0B855D8 Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a343a3a2f34382d3438203d3e203535373031.roa Signing time: Thu 08 Jun 2023 03:02:08 +0000 ROA not before: Thu 08 Jun 2023 02:57:08 +0000 ROA not after: Thu 06 Jun 2024 03:02:08 +0000 asID: 55701 IP address blocks: 2405:b900:4::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 20:55:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:d1:83:d5:2a:88:09:1c:c6:f3:0f:7a:25:45:a3:54:d0:b8:55:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: Jun 8 02:57:08 2023 GMT Not After : Jun 6 03:02:08 2024 GMT Subject: CN=26245FE88FCE837B91F92E56FED3510DDD305A28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:af:3c:87:c1:90:ed:ab:bb:8b:0a:ae:81:2f: 10:3d:62:88:c6:e8:e9:e2:a3:dd:c5:c6:51:94:30: f9:ba:ef:2b:b7:d5:16:e3:34:a7:b5:d9:a6:dc:2e: 46:ad:80:11:8b:97:44:a8:2d:d0:99:d0:54:54:f1: 09:13:6e:38:64:ff:43:88:f2:0d:f4:53:b3:05:19: 3f:80:4b:b9:6b:3e:1b:d8:06:bd:5f:fa:89:ab:50: b8:c3:31:60:59:74:d3:e3:e7:43:11:c7:92:78:4c: da:16:5f:f0:4d:8f:9c:90:6c:6b:ac:3f:3e:f0:09: 23:29:75:a0:c8:5b:f2:6d:08:83:99:d4:fc:fa:b0: ba:0f:30:55:31:7d:b5:ae:f9:b6:2d:c4:66:52:88: b3:ad:33:c4:e8:ea:42:27:b1:b8:fe:7f:34:83:29: 2f:0a:55:44:3b:43:ee:c0:12:31:3f:2d:3c:a9:e8: cc:d8:51:5a:67:8d:aa:0b:40:88:95:56:a3:fe:e2: f5:44:4f:30:2a:1e:70:ff:44:09:d5:e2:cd:da:40: 99:61:ed:36:3c:9a:1b:b3:f9:44:72:e8:94:d9:95: 9d:1e:6f:90:77:fc:b7:6b:00:f3:6f:1a:e5:d1:c7: 47:94:54:14:15:f8:ec:2d:9a:18:48:24:b3:48:02: 53:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:24:5F:E8:8F:CE:83:7B:91:F9:2E:56:FE:D3:51:0D:DD:30:5A:28 X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a343a3a2f34382d3438203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:b900:4::/48 Signature Algorithm: sha256WithRSAEncryption bf:65:c0:58:8a:c7:ac:cb:a0:0f:13:67:79:2c:57:f7:86:f4: 6f:14:c8:85:19:0a:72:ed:a1:93:8c:ad:84:f9:01:d1:be:d2: 44:32:ea:3e:21:af:24:9a:06:47:ce:8c:dc:a4:a9:83:0e:73: de:30:e1:e2:d8:cc:c6:cd:94:ba:aa:16:69:ac:38:59:0a:40: 43:1e:a6:ac:ed:cc:f2:7d:b2:50:99:b3:49:73:ef:67:8a:e0: 1f:6d:56:6f:98:ea:f2:40:1a:1e:62:80:85:e7:3a:b3:d0:32: fe:fb:cf:35:c3:58:85:7a:a7:22:4d:3d:ca:9c:b2:28:2d:57: f7:23:d6:55:d5:8c:81:c8:44:61:b2:f3:05:b4:2d:f2:e1:4d: e1:6f:37:15:54:e6:3d:be:ad:97:57:5e:37:28:41:bf:18:db: 94:c1:ca:1a:72:b3:ff:e2:40:73:81:c7:e9:07:f5:ce:21:70: ee:e1:82:fc:30:39:11:1d:8b:be:7e:78:7e:d0:99:19:06:05: 61:8d:b4:e6:c9:ba:e9:de:71:1f:36:7d:d7:35:97:5a:42:33: e8:2e:4a:ae:8b:8b:56:60:79:53:f0:de:03:e5:98:47:69:0a: 38:3e:c5:b8:e1:9e:74:9a:06:20:3a:d4:a3:75:c8:92:d7:e5: 78:00:1d:59 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUCdGD1SqICRzG8w96JUWjVNC4VdgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yMzA2MDgwMjU3MDhaFw0yNDA2MDYwMzAyMDhaMDMxMTAvBgNV BAMTKDI2MjQ1RkU4OEZDRTgzN0I5MUY5MkU1NkZFRDM1MTBEREQzMDVBMjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSrzyHwZDtq7uLCq6BLxA9YojG 6Onio93FxlGUMPm67yu31RbjNKe12abcLkatgBGLl0SoLdCZ0FRU8QkTbjhk/0OI 8g30U7MFGT+AS7lrPhvYBr1f+omrULjDMWBZdNPj50MRx5J4TNoWX/BNj5yQbGus Pz7wCSMpdaDIW/JtCIOZ1Pz6sLoPMFUxfbWu+bYtxGZSiLOtM8To6kInsbj+fzSD KS8KVUQ7Q+7AEjE/LTyp6MzYUVpnjaoLQIiVVqP+4vVETzAqHnD/RAnV4s3aQJlh 7TY8mhuz+URy6JTZlZ0eb5B3/LdrAPNvGuXRx0eUVBQV+OwtmhhIJLNIAlOlAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUJiRf6I/Og3uR+S5W/tNRDd0wWigwHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzQzMDM1M2E2MjM5MzAzMDNhMzQzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzNTM1MzczMDMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAW5AAAEMA0G CSqGSIb3DQEBCwUAA4IBAQC/ZcBYisesy6APE2d5LFf3hvRvFMiFGQpy7aGTjK2E +QHRvtJEMuo+Ia8kmgZHzozcpKmDDnPeMOHi2MzGzZS6qhZprDhZCkBDHqas7czy fbJQmbNJc+9niuAfbVZvmOryQBoeYoCF5zqz0DL++881w1iFeqciTT3KnLIoLVf3 I9ZV1YyByERhsvMFtC3y4U3hbzcVVOY9vq2XV143KEG/GNuUwcoacrP/4kBzgcfp B/XOIXDu4YL8MDkRHYu+fnh+0JkZBgVhjbTmybrp3nEfNn3XNZdaQjPoLkqui4tW YHlT8N4D5ZhHaQo4PsW44Z50mgYgOtSjdciS1+V4AB1Z -----END CERTIFICATE-----Generated at Thu Apr 25 21:25:09 2024 by rpki-client on console-ams.rpki-client.org