$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a36313a3a2f34382d3438203d3e20313431383932.roa File: 323430353a623930303a36313a3a2f34382d3438203d3e20313431383932.roa (raw, json) Hash identifier: 3FLTkMFrF9A2pnlIlU9Gm38ksvekBUkYDPpVrLuSb5I= Subject key identifier: 84:B9:B1:19:2D:7E:98:44:DB:25:97:E5:91:E4:51:AA:F0:1B:37:2C Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 2C06205CF0B7AD4F9AD124584A186855E32346CD Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a36313a3a2f34382d3438203d3e20313431383932.roa Signing time: Thu 08 Jun 2023 03:02:05 +0000 ROA not before: Thu 08 Jun 2023 02:57:05 +0000 ROA not after: Thu 06 Jun 2024 03:02:05 +0000 asID: 141892 IP address blocks: 2405:b900:61::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 21:55:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:06:20:5c:f0:b7:ad:4f:9a:d1:24:58:4a:18:68:55:e3:23:46:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: Jun 8 02:57:05 2023 GMT Not After : Jun 6 03:02:05 2024 GMT Subject: CN=84B9B1192D7E9844DB2597E591E451AAF01B372C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:cf:7b:d7:b1:68:7a:13:d4:cf:cc:17:95:19: 6d:50:b0:12:5c:d3:cb:23:c2:6e:8f:f7:00:05:11: d9:83:5d:99:c5:81:f4:29:5a:72:9a:26:5e:bd:61: ad:c4:27:12:05:4a:1b:68:1f:b6:05:70:62:ab:fb: 0a:81:e3:d5:e8:ef:99:f5:bc:22:ca:da:76:df:a1: 9c:0d:8c:a2:95:7b:d8:6e:f8:ee:09:9c:e4:01:1d: bf:b3:85:82:41:2d:16:f7:93:92:fc:0a:e3:b5:df: 67:e4:dd:78:41:d2:4a:67:a8:d2:70:9b:22:55:17: 7f:47:40:f3:a2:f3:ad:30:ea:2f:5e:cc:49:f5:ed: 02:79:20:62:d3:fc:79:5d:74:df:4c:fe:83:4e:71: d3:6e:a1:96:2d:ef:22:22:0b:ce:c1:a2:41:73:df: a6:f8:92:f9:56:5c:44:2b:a3:30:19:ee:66:51:86: ca:dd:ef:a7:02:54:a9:5a:5a:8d:40:b3:2d:d0:c1: c8:3c:55:e7:ad:97:12:99:fa:52:f9:db:35:32:d0: 58:b7:68:02:b1:7d:06:18:45:2e:01:36:d2:16:33: 61:66:06:d3:d0:7b:f0:4e:38:c3:41:62:d8:00:02: a9:d8:76:68:d1:f2:f1:69:0c:c2:be:33:3b:a3:97: fe:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:B9:B1:19:2D:7E:98:44:DB:25:97:E5:91:E4:51:AA:F0:1B:37:2C X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a36313a3a2f34382d3438203d3e20313431383932.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:b900:61::/48 Signature Algorithm: sha256WithRSAEncryption 4a:d2:fd:a4:e5:03:c5:1f:0a:8c:ab:e2:ca:46:f0:47:3b:67: 2d:9b:34:3c:75:c5:4f:77:3c:3a:88:cd:e6:f8:84:2c:44:1b: e3:e4:e6:b9:a0:98:01:e6:60:1c:b9:dc:43:9b:f7:e8:ec:7e: 59:49:28:75:54:ed:93:36:f5:44:dc:79:71:d1:1f:7f:b1:58: 76:04:68:8b:6f:f2:0a:c3:26:5e:8a:3f:74:4e:62:78:10:96: a9:84:e4:c1:4f:52:5b:b9:0c:11:23:20:45:3e:28:0d:f6:8e: 04:74:10:db:95:2d:df:ec:99:d5:7d:06:6b:95:b3:79:db:c7: 1b:47:c5:bd:3a:03:15:c0:7b:71:ee:6d:29:ad:02:c4:dd:29: b3:19:74:cd:c7:fe:2b:81:e0:35:77:5d:2d:db:37:80:9b:cb: 3d:08:12:59:58:4d:c5:51:93:94:5f:ca:b5:01:49:48:45:f5: 6b:57:f5:3d:82:8d:bc:ec:2a:09:05:b7:00:63:9d:eb:11:bb: 14:8b:0c:cc:51:23:43:ca:f2:a5:8c:91:b4:57:66:bc:5c:84: 33:d8:90:b1:92:4c:81:0b:8e:88:52:d3:82:f1:f7:55:a2:1b: 1e:37:c2:d8:44:64:27:de:cd:89:87:f1:fa:7f:c0:37:3e:bd: 67:d5:20:06 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIULAYgXPC3rU+a0SRYShhoVeMjRs0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yMzA2MDgwMjU3MDVaFw0yNDA2MDYwMzAyMDVaMDMxMTAvBgNV BAMTKDg0QjlCMTE5MkQ3RTk4NDREQjI1OTdFNTkxRTQ1MUFBRjAxQjM3MkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDz3vXsWh6E9TPzBeVGW1QsBJc 08sjwm6P9wAFEdmDXZnFgfQpWnKaJl69Ya3EJxIFShtoH7YFcGKr+wqB49Xo75n1 vCLK2nbfoZwNjKKVe9hu+O4JnOQBHb+zhYJBLRb3k5L8CuO132fk3XhB0kpnqNJw myJVF39HQPOi860w6i9ezEn17QJ5IGLT/HlddN9M/oNOcdNuoZYt7yIiC87BokFz 36b4kvlWXEQrozAZ7mZRhsrd76cCVKlaWo1Asy3Qwcg8VeetlxKZ+lL52zUy0Fi3 aAKxfQYYRS4BNtIWM2FmBtPQe/BOOMNBYtgAAqnYdmjR8vFpDMK+Mzujl/4bAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUhLmxGS1+mETbJZflkeRRqvAbNywwHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzQzMDM1M2E2MjM5MzAzMDNhMzYzMTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzQzMTM4MzkzMi5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQFuQAA YTANBgkqhkiG9w0BAQsFAAOCAQEAStL9pOUDxR8KjKviykbwRztnLZs0PHXFT3c8 OojN5viELEQb4+TmuaCYAeZgHLncQ5v36Ox+WUkodVTtkzb1RNx5cdEff7FYdgRo i2/yCsMmXoo/dE5ieBCWqYTkwU9SW7kMESMgRT4oDfaOBHQQ25Ut3+yZ1X0Ga5Wz edvHG0fFvToDFcB7ce5tKa0CxN0psxl0zcf+K4HgNXddLds3gJvLPQgSWVhNxVGT lF/KtQFJSEX1a1f1PYKNvOwqCQW3AGOd6xG7FIsMzFEjQ8rypYyRtFdmvFyEM9iQ sZJMgQuOiFLTgvH3VaIbHjfC2ERkJ97NiYfx+n/ANz69Z9UgBg== -----END CERTIFICATE-----Generated at Sun Apr 28 15:43:45 2024 by rpki-client on console-fra.rpki-client.org