$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a353537303a3a2f34382d3438203d3e203535373031.roa File: 323430353a623930303a353537303a3a2f34382d3438203d3e203535373031.roa (raw, json) Hash identifier: snDHvFtVawk7hwwZv+MFLJ4ICZPjvlHt5D/AeBMiCG0= Subject key identifier: 42:03:E8:A4:17:92:6F:07:60:DD:D4:03:02:FA:4F:B0:65:10:92:DC Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 75D6C46770F3651FB995042DAFF7806BD4F4F57A Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a353537303a3a2f34382d3438203d3e203535373031.roa Signing time: Thu 08 Jun 2023 03:02:08 +0000 ROA not before: Thu 08 Jun 2023 02:57:08 +0000 ROA not after: Thu 06 Jun 2024 03:02:08 +0000 asID: 55701 IP address blocks: 2405:b900:5570::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 20:55:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:d6:c4:67:70:f3:65:1f:b9:95:04:2d:af:f7:80:6b:d4:f4:f5:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: Jun 8 02:57:08 2023 GMT Not After : Jun 6 03:02:08 2024 GMT Subject: CN=4203E8A417926F0760DDD40302FA4FB0651092DC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:8f:b8:52:21:79:39:f7:c0:2c:11:8d:1e:65: 14:ab:75:49:6f:57:15:21:7f:b2:67:cb:c9:81:2b: 1e:9d:20:ae:18:c6:43:c8:75:98:38:1c:1b:c0:6d: 8e:72:e6:a1:cd:a4:0c:7e:03:68:12:8d:4f:88:5d: 63:03:83:e7:70:14:ee:9d:0b:82:8f:08:d8:77:b1: 40:8f:d3:ca:3b:32:16:92:a3:88:ab:af:bd:aa:36: 70:35:41:47:a7:b7:71:e4:15:25:14:f5:a9:2f:da: 31:6a:88:61:14:55:a5:4d:e0:18:df:2b:44:c4:03: 84:c7:7e:f0:23:9f:75:21:5e:86:75:ab:b6:3a:6d: 92:3e:6a:1e:6c:41:1d:f2:6e:94:55:84:41:bb:d7: 4d:f7:59:9c:94:76:b7:b7:b9:0c:c5:5a:b0:e9:29: b1:b1:50:c9:3f:ec:d3:b5:1f:9c:56:8a:d6:8d:9a: 90:95:6b:65:2b:41:7b:35:58:50:f4:ed:99:2f:6c: 1d:7a:77:7f:6e:6b:23:a9:1c:ca:d1:64:ef:f1:68: d7:37:ed:77:ae:8f:c9:9a:f6:29:3b:8f:30:18:c7: f2:3a:13:1d:d2:4f:09:56:32:3b:26:d9:b6:c0:8f: 14:cc:89:f2:09:7a:48:c3:52:bd:83:ee:40:c7:40: a1:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:03:E8:A4:17:92:6F:07:60:DD:D4:03:02:FA:4F:B0:65:10:92:DC X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a353537303a3a2f34382d3438203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:b900:5570::/48 Signature Algorithm: sha256WithRSAEncryption 18:3b:bb:a9:db:3d:42:83:0f:be:44:11:eb:7c:72:71:9b:8f: 8d:5b:d2:d7:14:98:b7:d5:7e:fb:fb:37:c3:87:59:3d:71:47: c2:35:a2:e9:56:f1:72:10:c1:16:00:3b:16:94:0a:b6:9f:48: c0:be:0d:30:e1:a8:08:54:af:39:bf:dd:db:e5:c0:4b:42:b9: ca:5d:c9:29:10:28:fe:06:94:8f:67:65:e7:a0:7b:18:72:c2: 05:86:c3:72:8d:ec:e5:b8:d8:73:6e:9a:fa:f5:1b:15:6d:37: c0:c1:94:3d:68:d7:b2:78:43:a7:f2:e7:98:fd:43:80:b0:53: 9f:7a:b9:44:db:cc:4e:34:d3:7a:73:03:4b:e7:4c:a3:ff:00: 88:2f:9b:15:d2:28:78:41:5a:4e:fe:74:26:3e:53:f9:25:49: ef:85:3a:6e:ee:17:38:af:f6:9e:ed:ac:99:4a:78:55:9f:ae: 40:c0:08:c7:aa:fe:fc:c3:88:b1:44:5c:c8:55:a2:ee:a7:5a: e3:f3:f3:9f:81:85:46:84:58:0c:6f:a4:91:96:48:e3:7a:3a: d6:95:de:c5:84:c3:d1:1d:e7:9e:bb:54:6f:95:e0:2e:1f:a9: 9b:74:f7:c5:7c:c4:20:08:3a:da:17:8a:22:9f:c9:06:4f:d0: c3:97:03:ec -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUddbEZ3DzZR+5lQQtr/eAa9T09XowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yMzA2MDgwMjU3MDhaFw0yNDA2MDYwMzAyMDhaMDMxMTAvBgNV BAMTKDQyMDNFOEE0MTc5MjZGMDc2MERERDQwMzAyRkE0RkIwNjUxMDkyREMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChj7hSIXk598AsEY0eZRSrdUlv VxUhf7Jny8mBKx6dIK4YxkPIdZg4HBvAbY5y5qHNpAx+A2gSjU+IXWMDg+dwFO6d C4KPCNh3sUCP08o7MhaSo4irr72qNnA1QUent3HkFSUU9akv2jFqiGEUVaVN4Bjf K0TEA4THfvAjn3UhXoZ1q7Y6bZI+ah5sQR3ybpRVhEG71033WZyUdre3uQzFWrDp KbGxUMk/7NO1H5xWitaNmpCVa2UrQXs1WFD07ZkvbB16d39uayOpHMrRZO/xaNc3 7Xeuj8ma9ik7jzAYx/I6Ex3STwlWMjsm2bbAjxTMifIJekjDUr2D7kDHQKEtAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUQgPopBeSbwdg3dQDAvpPsGUQktwwHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzQzMDM1M2E2MjM5MzAzMDNhMzUzNTM3MzAz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzNTM1MzczMDMxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAW5 AFVwMA0GCSqGSIb3DQEBCwUAA4IBAQAYO7up2z1Cgw++RBHrfHJxm4+NW9LXFJi3 1X77+zfDh1k9cUfCNaLpVvFyEMEWADsWlAq2n0jAvg0w4agIVK85v93b5cBLQrnK XckpECj+BpSPZ2XnoHsYcsIFhsNyjezluNhzbpr69RsVbTfAwZQ9aNeyeEOn8ueY /UOAsFOferlE28xONNN6cwNL50yj/wCIL5sV0ih4QVpO/nQmPlP5JUnvhTpu7hc4 r/ae7ayZSnhVn65AwAjHqv78w4ixRFzIVaLup1rj8/OfgYVGhFgMb6SRlkjjejrW ld7FhMPRHeeeu1RvleAuH6mbdPfFfMQgCDraF4oin8kGT9DDlwPs -----END CERTIFICATE-----Generated at Thu Apr 25 21:25:09 2024 by rpki-client on console-ams.rpki-client.org