$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a35303a3a2f34382d3438203d3e203535373031.roa File: 323430353a623930303a35303a3a2f34382d3438203d3e203535373031.roa (raw, json) Hash identifier: 5qPEdISkRGK4JaskNCxyqEAr1M2sxC67vJEmcRsrFjU= Subject key identifier: 9B:6E:AF:E3:18:7F:AE:22:7B:BA:0B:3C:9F:5C:81:5B:EB:7C:F5:E7 Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 0C75039E90EECD89EAEA8B6FF8F726B6AFCAA76B Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a35303a3a2f34382d3438203d3e203535373031.roa Signing time: Thu 08 Jun 2023 03:02:04 +0000 ROA not before: Thu 08 Jun 2023 02:57:04 +0000 ROA not after: Thu 06 Jun 2024 03:02:04 +0000 asID: 55701 IP address blocks: 2405:b900:50::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 21:55:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:75:03:9e:90:ee:cd:89:ea:ea:8b:6f:f8:f7:26:b6:af:ca:a7:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: Jun 8 02:57:04 2023 GMT Not After : Jun 6 03:02:04 2024 GMT Subject: CN=9B6EAFE3187FAE227BBA0B3C9F5C815BEB7CF5E7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:c9:7c:34:ad:9f:f0:85:91:a0:3e:f5:58:11: 42:c3:bf:fa:28:ac:c4:85:6a:e6:d1:43:8a:fc:31: 21:93:9b:e9:71:5e:be:45:c9:90:2c:c3:3f:ba:2d: c2:08:8c:0a:4c:8a:8c:b9:a5:33:e6:7a:a2:50:36: 36:75:90:e0:aa:7a:0e:34:9f:81:a0:1c:73:6a:cc: 07:5a:ed:01:df:3e:67:59:5b:ff:d2:e9:00:74:bb: 02:ec:af:b3:9f:77:17:12:71:2a:b3:0b:1c:b9:8a: 79:d6:58:a8:0c:66:82:c9:bc:8b:fe:a0:fd:46:7b: d6:dc:71:1f:03:1c:8f:5f:42:81:31:de:f7:33:cc: 50:20:d6:12:12:86:45:d2:02:b3:04:5e:be:f7:c5: 40:8c:0c:59:0f:b8:4a:a8:9d:46:49:5f:fd:75:47: 49:5b:e1:7a:5c:43:b8:9b:65:ee:9b:30:49:04:66: be:96:16:2f:0c:16:0c:f7:3c:d5:6a:ec:12:44:c4: f9:5d:6e:43:28:b5:fd:86:a2:e6:e8:ab:dd:4b:fb: bf:08:53:96:a8:3d:88:44:22:5c:fd:26:f5:5d:29: b8:22:cf:e3:32:0e:af:79:9b:c9:ad:22:f3:c2:4f: eb:58:e3:76:21:dc:82:1c:dd:0a:a4:dc:ad:d5:65: cb:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:6E:AF:E3:18:7F:AE:22:7B:BA:0B:3C:9F:5C:81:5B:EB:7C:F5:E7 X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a35303a3a2f34382d3438203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:b900:50::/48 Signature Algorithm: sha256WithRSAEncryption cd:c4:c7:f9:e7:f5:f6:bb:38:8d:95:b4:e6:95:bd:57:11:23: 4a:76:c2:10:11:ae:1d:13:d4:7c:ee:6d:02:4a:65:b1:3a:48: 13:06:ab:34:5e:be:6c:59:ea:32:05:d8:13:85:c6:b8:2c:9b: fd:6d:fe:b7:81:f4:2d:09:76:d9:a2:38:9b:e6:03:9d:18:6b: 9f:5e:de:36:0d:76:6e:9c:ee:f8:59:87:48:d2:dc:c5:1c:27: 4c:3b:82:7d:aa:7d:b8:36:d1:e6:25:dc:43:84:1c:73:92:3e: 28:06:4b:9c:1d:46:ef:34:5c:c9:6f:46:61:7b:87:85:fb:31: 1d:5e:26:6d:ab:3e:7a:57:4a:f4:f4:73:b8:92:4b:cf:c0:4a: 14:f9:9a:16:6e:ec:12:77:dc:3c:74:a9:48:e4:d3:20:99:3d: 7e:91:a3:7b:6d:41:38:b8:00:65:d5:8b:15:fd:0a:67:05:41: 75:ca:f4:d4:7d:3a:1f:9e:e3:0c:ec:b4:1a:5e:22:6c:75:c9: 00:94:84:0a:28:45:25:dd:79:05:a6:19:c2:c4:5f:54:1b:83: 2f:5b:ba:0e:d0:ea:fa:3f:7f:d6:ae:be:14:68:4d:47:bd:21: 27:ee:ed:2e:c0:b6:43:16:04:4a:fe:ae:cc:5c:3a:43:32:74: b7:f5:b1:dd -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUDHUDnpDuzYnq6otv+Pcmtq/Kp2swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yMzA2MDgwMjU3MDRaFw0yNDA2MDYwMzAyMDRaMDMxMTAvBgNV BAMTKDlCNkVBRkUzMTg3RkFFMjI3QkJBMEIzQzlGNUM4MTVCRUI3Q0Y1RTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD5yXw0rZ/whZGgPvVYEULDv/oo rMSFaubRQ4r8MSGTm+lxXr5FyZAswz+6LcIIjApMioy5pTPmeqJQNjZ1kOCqeg40 n4GgHHNqzAda7QHfPmdZW//S6QB0uwLsr7OfdxcScSqzCxy5innWWKgMZoLJvIv+ oP1Ge9bccR8DHI9fQoEx3vczzFAg1hIShkXSArMEXr73xUCMDFkPuEqonUZJX/11 R0lb4XpcQ7ibZe6bMEkEZr6WFi8MFgz3PNVq7BJExPldbkMotf2Gouboq91L+78I U5aoPYhEIlz9JvVdKbgiz+MyDq95m8mtIvPCT+tY43Yh3IIc3Qqk3K3VZctFAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUm26v4xh/riJ7ugs8n1yBW+t89ecwHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzQzMDM1M2E2MjM5MzAzMDNhMzUzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzUzNzMwMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBbkAAFAw DQYJKoZIhvcNAQELBQADggEBAM3Ex/nn9fa7OI2VtOaVvVcRI0p2whARrh0T1Hzu bQJKZbE6SBMGqzRevmxZ6jIF2BOFxrgsm/1t/reB9C0JdtmiOJvmA50Ya59e3jYN dm6c7vhZh0jS3MUcJ0w7gn2qfbg20eYl3EOEHHOSPigGS5wdRu80XMlvRmF7h4X7 MR1eJm2rPnpXSvT0c7iSS8/AShT5mhZu7BJ33Dx0qUjk0yCZPX6Ro3ttQTi4AGXV ixX9CmcFQXXK9NR9Oh+e4wzstBpeImx1yQCUhAooRSXdeQWmGcLEX1Qbgy9bug7Q 6vo/f9auvhRoTUe9ISfu7S7AtkMWBEr+rsxcOkMydLf1sd0= -----END CERTIFICATE-----Generated at Sun Apr 28 05:31:58 2024 by rpki-client on console-ams.rpki-client.org