$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a353a3a2f34382d3438203d3e203535373031.roa File: 323430353a623930303a353a3a2f34382d3438203d3e203535373031.roa (raw, json) Hash identifier: us28ZgMJPEYvacHKpr4gGllXenZfRZbISrCxrSK/9vY= Subject key identifier: 91:6F:85:FD:13:65:56:8B:AB:6C:3B:42:37:78:2D:37:30:E1:72:20 Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 7D861DAA9740C08570BF6D8B9B269F70691CB460 Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a353a3a2f34382d3438203d3e203535373031.roa Signing time: Thu 08 Jun 2023 03:02:08 +0000 ROA not before: Thu 08 Jun 2023 02:57:08 +0000 ROA not after: Thu 06 Jun 2024 03:02:08 +0000 asID: 55701 IP address blocks: 2405:b900:5::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 20:55:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:86:1d:aa:97:40:c0:85:70:bf:6d:8b:9b:26:9f:70:69:1c:b4:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: Jun 8 02:57:08 2023 GMT Not After : Jun 6 03:02:08 2024 GMT Subject: CN=916F85FD1365568BAB6C3B4237782D3730E17220 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:70:87:05:be:aa:d6:a3:d3:56:35:01:57:49: e2:1a:d6:61:63:a9:4c:a5:4c:b7:bd:dc:9a:9b:86: 66:87:dd:4d:42:27:94:78:1f:cd:c6:16:8a:a9:e3: cc:cc:f6:ac:c9:e4:e7:12:2d:40:e2:c7:2e:f2:cc: 12:bf:cb:e0:3e:a8:e2:85:bf:bf:82:da:2c:97:85: e7:d8:1d:f3:09:59:e2:00:bf:2c:a9:95:ce:c8:cd: 26:9a:81:5c:78:89:d1:e7:d0:66:ff:55:9d:f8:5a: 45:23:f1:08:09:0e:f2:18:79:0e:6b:bf:40:0c:8d: 07:58:80:06:6a:4f:80:d0:c7:db:10:21:22:64:26: 57:42:50:38:c1:88:67:f4:df:c1:0d:44:59:a7:e4: 88:a0:9d:8a:46:23:bc:2a:c4:a0:bf:63:4c:94:1a: 6e:e1:e6:71:d7:42:64:06:5a:df:8b:e3:58:be:ee: 3a:59:07:1c:b2:d7:6c:93:5c:c5:04:50:9f:de:e6: da:89:19:70:38:72:ce:85:ed:31:7a:b8:0b:e7:c6: 78:17:ce:02:0d:27:67:45:92:82:83:fa:5f:ba:c9: 0e:5b:17:a3:97:f4:3e:1e:51:e2:e6:0b:0e:8e:29: 81:10:75:c1:92:b2:5e:26:27:1d:1b:08:9e:77:a5: 92:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:6F:85:FD:13:65:56:8B:AB:6C:3B:42:37:78:2D:37:30:E1:72:20 X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a353a3a2f34382d3438203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:b900:5::/48 Signature Algorithm: sha256WithRSAEncryption 13:90:b7:98:9d:68:da:f1:a7:11:17:49:32:b8:2e:f5:6d:46: 0f:80:af:6f:5f:4d:66:07:46:ec:cf:bd:5c:35:93:3b:df:b2: a4:c4:e8:a6:1b:32:66:21:95:13:1b:5e:3d:38:55:5e:a3:e5: ce:5c:bb:72:6b:33:fe:3f:46:7c:24:80:3b:80:05:e6:50:77: f9:6f:4f:40:84:ee:bb:13:1e:1d:45:ab:0f:77:29:56:f3:b4: 33:95:7d:5d:a1:27:59:dc:5a:7e:61:c5:ad:bf:db:d9:de:5a: b5:6c:2a:99:3a:de:35:1a:76:b8:ab:8b:aa:18:ba:a4:b7:84: e3:19:9f:d7:2b:07:1b:1a:93:a7:c6:63:9b:ca:30:ca:7e:20: 1a:de:e4:56:69:86:a0:f2:e8:51:11:60:5e:65:8d:36:8b:a4: 73:cc:fd:17:db:6d:32:ad:8b:46:6c:13:e9:90:9d:db:7c:42: 62:f7:b2:18:c2:96:13:46:7b:fd:b3:93:b2:5e:1e:64:df:0b: 6d:0f:be:65:5d:a1:ef:7f:b5:e1:12:64:40:ee:65:1f:0d:b1: a8:c6:69:8b:74:24:b3:69:3d:d1:96:31:87:e3:e0:9f:d7:24: e7:45:2d:af:40:fd:5c:a7:73:51:7c:99:05:9e:e3:20:e8:1d: 17:51:1e:69 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUfYYdqpdAwIVwv22LmyafcGkctGAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yMzA2MDgwMjU3MDhaFw0yNDA2MDYwMzAyMDhaMDMxMTAvBgNV BAMTKDkxNkY4NUZEMTM2NTU2OEJBQjZDM0I0MjM3NzgyRDM3MzBFMTcyMjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAcIcFvqrWo9NWNQFXSeIa1mFj qUylTLe93JqbhmaH3U1CJ5R4H83GFoqp48zM9qzJ5OcSLUDixy7yzBK/y+A+qOKF v7+C2iyXhefYHfMJWeIAvyyplc7IzSaagVx4idHn0Gb/VZ34WkUj8QgJDvIYeQ5r v0AMjQdYgAZqT4DQx9sQISJkJldCUDjBiGf038ENRFmn5IignYpGI7wqxKC/Y0yU Gm7h5nHXQmQGWt+L41i+7jpZBxyy12yTXMUEUJ/e5tqJGXA4cs6F7TF6uAvnxngX zgINJ2dFkoKD+l+6yQ5bF6OX9D4eUeLmCw6OKYEQdcGSsl4mJx0bCJ53pZJ7AgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUkW+F/RNlVourbDtCN3gtNzDhciAwHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzQzMDM1M2E2MjM5MzAzMDNhMzUzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzNTM1MzczMDMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAW5AAAFMA0G CSqGSIb3DQEBCwUAA4IBAQATkLeYnWja8acRF0kyuC71bUYPgK9vX01mB0bsz71c NZM737KkxOimGzJmIZUTG149OFVeo+XOXLtyazP+P0Z8JIA7gAXmUHf5b09AhO67 Ex4dRasPdylW87QzlX1doSdZ3Fp+YcWtv9vZ3lq1bCqZOt41Gna4q4uqGLqkt4Tj GZ/XKwcbGpOnxmObyjDKfiAa3uRWaYag8uhREWBeZY02i6RzzP0X220yrYtGbBPp kJ3bfEJi97IYwpYTRnv9s5OyXh5k3wttD75lXaHvf7XhEmRA7mUfDbGoxmmLdCSz aT3RljGH4+Cf1yTnRS2vQP1cp3NRfJkFnuMg6B0XUR5p -----END CERTIFICATE-----Generated at Thu Apr 25 21:25:09 2024 by rpki-client on console-ams.rpki-client.org