$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a36393a3a2f34382d3438203d3e20313431383932.roa File: 323430353a623930303a36393a3a2f34382d3438203d3e20313431383932.roa (raw, json) Hash identifier: MtS88rb3/Vo+hhzCG4LbbAHCMpA/LCHovJftx91k8RE= Subject key identifier: E7:2F:B2:EE:63:7C:04:B1:65:61:E2:84:0F:D8:B4:5B:6A:55:E4:56 Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 46E7AD4458B49A1152C63AF484D0B2B192B4D681 Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a36393a3a2f34382d3438203d3e20313431383932.roa Signing time: Thu 08 Jun 2023 03:02:09 +0000 ROA not before: Thu 08 Jun 2023 02:57:09 +0000 ROA not after: Thu 06 Jun 2024 03:02:09 +0000 asID: 141892 IP address blocks: 2405:b900:69::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 21:55:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:e7:ad:44:58:b4:9a:11:52:c6:3a:f4:84:d0:b2:b1:92:b4:d6:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: Jun 8 02:57:09 2023 GMT Not After : Jun 6 03:02:09 2024 GMT Subject: CN=E72FB2EE637C04B16561E2840FD8B45B6A55E456 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:b5:c7:0c:6c:54:08:0d:a6:8c:a0:0e:c7:2a: 86:a5:0d:41:02:bb:47:1b:23:a9:1a:3b:66:89:75: 48:56:d3:3f:78:90:db:fd:7f:c4:9c:11:92:e5:1c: 4d:fa:42:e8:bc:46:9a:97:55:c7:eb:8e:3a:d0:d3: ac:a0:08:da:ef:e4:bc:30:34:76:de:c7:ea:cd:b6: 0f:76:4f:0b:f6:da:6c:b7:9c:3c:38:b7:42:68:09: 75:d9:86:d2:ed:a5:0d:d3:5f:5c:57:8a:e4:52:91: 8f:a1:7c:b3:15:c5:51:d1:d3:f1:3f:83:2d:e1:31: f6:c7:3d:d8:94:9d:f0:23:e7:31:e9:98:0d:d4:b2: c2:5c:6b:c2:f6:4c:88:7d:01:fd:c3:52:8d:d4:64: 74:2f:06:2a:17:05:97:72:21:6d:b1:81:de:28:58: e3:5e:d2:b3:ec:6b:6a:2f:b8:ef:31:16:4e:8f:04: 54:70:5f:8a:d5:61:b8:c3:d2:da:ca:ba:c6:c2:16: 95:bb:79:e1:42:a3:28:f3:b4:de:89:a9:3e:b0:6f: 2a:86:20:c4:90:9c:ca:8b:f1:7c:96:1a:9d:58:bc: 84:36:aa:4f:9d:ed:24:d8:4b:7a:25:c1:37:1f:87: 34:ed:57:c5:a1:c1:54:b7:57:bf:c5:94:32:d6:70: a6:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:2F:B2:EE:63:7C:04:B1:65:61:E2:84:0F:D8:B4:5B:6A:55:E4:56 X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a36393a3a2f34382d3438203d3e20313431383932.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:b900:69::/48 Signature Algorithm: sha256WithRSAEncryption cc:37:a1:8a:19:c7:d9:26:e1:9a:77:5b:ec:91:a1:62:ae:a0: 5c:4f:c0:27:49:c1:46:f3:3d:d3:d3:1b:39:85:c6:bc:eb:b1: 27:33:33:29:49:a6:6b:52:a0:c3:d2:7d:22:7d:c3:41:3f:f2: fa:06:92:a2:00:7b:ff:aa:27:25:d0:2a:0f:f3:f0:d4:b5:02: be:db:95:f5:96:dc:1d:03:f6:18:06:72:6e:5a:00:00:a8:3f: 3b:e3:4e:08:21:ad:fa:55:cb:03:34:68:a8:02:e2:54:c9:b7: 28:ae:3f:f7:e5:b8:e9:5d:d5:8c:79:a5:e9:7b:5f:d4:92:aa: b2:53:64:8a:9a:6c:71:18:32:f1:20:d4:a7:bc:73:4d:9e:c0: d8:6a:6e:2a:64:aa:5b:20:d7:82:24:c2:b9:39:97:7b:37:58: db:f8:74:18:20:a1:6a:fc:6c:dc:29:cf:b9:f4:ae:db:82:05: 79:50:83:f2:32:40:ae:41:35:ae:0f:93:a7:a1:88:00:a7:20: ce:4d:69:d0:ce:9f:3d:24:6f:6c:7d:a5:44:4f:e0:86:20:53: b3:01:0a:4a:9e:94:13:c6:5b:3b:d9:88:9d:c8:0d:54:60:fb: 88:b0:9c:37:34:01:c8:5f:66:2f:0a:f6:47:f5:de:a3:9d:77: 0d:55:dd:7a -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIURuetRFi0mhFSxjr0hNCysZK01oEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yMzA2MDgwMjU3MDlaFw0yNDA2MDYwMzAyMDlaMDMxMTAvBgNV BAMTKEU3MkZCMkVFNjM3QzA0QjE2NTYxRTI4NDBGRDhCNDVCNkE1NUU0NTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD6tccMbFQIDaaMoA7HKoalDUEC u0cbI6kaO2aJdUhW0z94kNv9f8ScEZLlHE36Qui8RpqXVcfrjjrQ06ygCNrv5Lww NHbex+rNtg92Twv22my3nDw4t0JoCXXZhtLtpQ3TX1xXiuRSkY+hfLMVxVHR0/E/ gy3hMfbHPdiUnfAj5zHpmA3UssJca8L2TIh9Af3DUo3UZHQvBioXBZdyIW2xgd4o WONe0rPsa2ovuO8xFk6PBFRwX4rVYbjD0trKusbCFpW7eeFCoyjztN6JqT6wbyqG IMSQnMqL8XyWGp1YvIQ2qk+d7STYS3olwTcfhzTtV8WhwVS3V7/FlDLWcKYBAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQU5y+y7mN8BLFlYeKED9i0W2pV5FYwHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzQzMDM1M2E2MjM5MzAzMDNhMzYzOTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzQzMTM4MzkzMi5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQFuQAA aTANBgkqhkiG9w0BAQsFAAOCAQEAzDehihnH2Sbhmndb7JGhYq6gXE/AJ0nBRvM9 09MbOYXGvOuxJzMzKUmma1Kgw9J9In3DQT/y+gaSogB7/6onJdAqD/Pw1LUCvtuV 9ZbcHQP2GAZybloAAKg/O+NOCCGt+lXLAzRoqALiVMm3KK4/9+W46V3VjHml6Xtf 1JKqslNkippscRgy8SDUp7xzTZ7A2GpuKmSqWyDXgiTCuTmXezdY2/h0GCChavxs 3CnPufSu24IFeVCD8jJArkE1rg+Tp6GIAKcgzk1p0M6fPSRvbH2lRE/ghiBTswEK Sp6UE8ZbO9mIncgNVGD7iLCcNzQByF9mLwr2R/Xeo513DVXdeg== -----END CERTIFICATE-----Generated at Sun Apr 28 15:43:45 2024 by rpki-client on console-fra.rpki-client.org