$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a37313a3a2f34382d3438203d3e203535373031.roa File: 323430353a623930303a37313a3a2f34382d3438203d3e203535373031.roa (raw, json) Hash identifier: IaIPCqXakgfTqaSThypouYCSyG1sMROapfW4c0ZQwEs= Subject key identifier: 11:66:A1:B6:E2:21:A4:4F:2A:38:24:C6:D4:F8:01:10:89:F1:F2:3E Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 600C826540CA29DEEBC8A79E93AB9DCA232E4706 Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a37313a3a2f34382d3438203d3e203535373031.roa Signing time: Thu 17 Aug 2023 02:00:01 +0000 ROA not before: Thu 17 Aug 2023 01:55:01 +0000 ROA not after: Thu 15 Aug 2024 02:00:01 +0000 asID: 55701 IP address blocks: 2405:b900:71::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 20:55:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:0c:82:65:40:ca:29:de:eb:c8:a7:9e:93:ab:9d:ca:23:2e:47:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: Aug 17 01:55:01 2023 GMT Not After : Aug 15 02:00:01 2024 GMT Subject: CN=1166A1B6E221A44F2A3824C6D4F8011089F1F23E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:e4:70:8b:bd:f6:7b:37:c7:ff:4d:37:3d:75: 05:84:8a:24:6c:9f:e8:bb:af:c5:ac:69:7d:9f:e6: a1:bc:d4:c3:45:6c:0b:33:09:67:cc:03:28:4e:e3: e5:01:4d:0d:a1:88:e2:f4:18:e8:2a:b4:86:ef:57: ea:ef:6f:34:13:d8:92:79:9c:91:97:c5:7c:38:c0: 45:14:ff:b3:ae:c3:3c:97:f8:b3:54:f5:ab:fe:23: 39:e7:86:30:b5:c3:66:1a:f6:42:74:11:08:8e:c0: 9b:52:56:71:66:fd:4f:65:e6:c4:8e:61:97:27:9b: ac:e7:93:23:e1:47:b9:9e:91:43:24:36:3a:b1:b0: 98:8b:fa:37:6e:26:ba:d1:e4:14:fa:63:d3:cd:17: d9:3a:15:57:d0:35:ac:7b:64:86:7a:4c:5a:32:35: a6:71:e7:fe:a0:05:28:be:c2:93:1e:50:ab:b5:06: 82:38:53:c4:64:c1:8f:a0:14:08:c7:e3:21:14:af: 00:08:14:10:29:88:16:e5:a0:ca:45:5e:fb:d9:6e: b0:c3:3b:ef:bb:c2:62:25:04:c7:b1:46:f1:02:33: a7:be:2a:09:15:ba:dc:b9:cc:24:cf:32:76:c7:6a: f6:7e:f3:6b:22:81:58:2c:75:7e:93:09:65:bf:e7: cc:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:66:A1:B6:E2:21:A4:4F:2A:38:24:C6:D4:F8:01:10:89:F1:F2:3E X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a37313a3a2f34382d3438203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:b900:71::/48 Signature Algorithm: sha256WithRSAEncryption c0:bf:1a:cf:16:67:43:20:9b:4d:e0:09:78:2b:ad:a9:ba:f4: 49:2c:20:69:25:b3:30:fa:f6:7e:16:8e:dc:5c:fd:45:d5:e0: 98:0c:4c:ab:bb:07:86:fb:4c:91:d6:6a:e7:76:4f:ff:13:13: 3e:7f:f9:73:f8:d7:84:da:31:b1:92:c2:1d:07:3a:e2:b7:0e: 01:80:fe:61:84:16:e3:56:53:2a:de:ee:8b:cd:3d:97:63:b1: 72:c9:05:17:5c:0d:08:86:ea:fc:a2:24:72:36:b3:67:8e:ee: 74:dc:a5:7f:75:dc:ea:4b:28:76:8a:88:c6:9e:77:68:cc:80: 5d:73:16:46:38:20:df:d2:f4:80:e8:39:65:aa:48:ca:bf:5b: b6:cd:fb:50:fe:31:a3:40:fc:c5:b5:6d:ef:66:30:b4:08:0a: 68:9d:34:ac:da:93:23:2f:35:44:92:dc:ec:0b:c7:b7:3a:69: 49:99:ea:aa:02:66:56:fb:19:99:be:e4:2a:79:d3:04:46:09: 78:4d:0d:57:63:4c:bd:e5:b2:6a:cb:ce:cb:6b:48:96:ef:c0: 93:a2:67:a2:95:bd:a0:82:bf:e9:68:49:a3:1c:fd:da:3f:d3: ce:bd:71:04:f0:ab:75:62:d6:95:87:35:2f:7a:ff:ea:a0:e2: 29:c0:72:a0 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUYAyCZUDKKd7ryKeek6udyiMuRwYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yMzA4MTcwMTU1MDFaFw0yNDA4MTUwMjAwMDFaMDMxMTAvBgNV BAMTKDExNjZBMUI2RTIyMUE0NEYyQTM4MjRDNkQ0RjgwMTEwODlGMUYyM0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCr5HCLvfZ7N8f/TTc9dQWEiiRs n+i7r8WsaX2f5qG81MNFbAszCWfMAyhO4+UBTQ2hiOL0GOgqtIbvV+rvbzQT2JJ5 nJGXxXw4wEUU/7OuwzyX+LNU9av+IznnhjC1w2Ya9kJ0EQiOwJtSVnFm/U9l5sSO YZcnm6znkyPhR7mekUMkNjqxsJiL+jduJrrR5BT6Y9PNF9k6FVfQNax7ZIZ6TFoy NaZx5/6gBSi+wpMeUKu1BoI4U8RkwY+gFAjH4yEUrwAIFBApiBbloMpFXvvZbrDD O++7wmIlBMexRvECM6e+KgkVuty5zCTPMnbHavZ+82sigVgsdX6TCWW/58z7AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUEWahtuIhpE8qOCTG1PgBEInx8j4wHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzQzMDM1M2E2MjM5MzAzMDNhMzczMTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzUzNzMwMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBbkAAHEw DQYJKoZIhvcNAQELBQADggEBAMC/Gs8WZ0Mgm03gCXgrram69EksIGklszD69n4W jtxc/UXV4JgMTKu7B4b7TJHWaud2T/8TEz5/+XP414TaMbGSwh0HOuK3DgGA/mGE FuNWUyre7ovNPZdjsXLJBRdcDQiG6vyiJHI2s2eO7nTcpX913OpLKHaKiMaed2jM gF1zFkY4IN/S9IDoOWWqSMq/W7bN+1D+MaNA/MW1be9mMLQICmidNKzakyMvNUSS 3OwLx7c6aUmZ6qoCZlb7GZm+5Cp50wRGCXhNDVdjTL3lsmrLzstrSJbvwJOiZ6KV vaCCv+loSaMc/do/0869cQTwq3Vi1pWHNS96/+qg4inAcqA= -----END CERTIFICATE-----Generated at Thu Apr 25 21:25:09 2024 by rpki-client on console-ams.rpki-client.org