$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a37353a3a2f34382d3438203d3e203535373031.roa File: 323430353a623930303a37353a3a2f34382d3438203d3e203535373031.roa (raw, json) Hash identifier: bQlQ69sYFhTIutaIWzLixRmNVF8NgUIo+Iv9ooa4rOM= Subject key identifier: 39:1A:60:EF:14:CA:9F:31:96:CD:0B:AD:41:C6:9E:C7:CB:E3:F0:D6 Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 05511191F63394D9FB441EDD5BF7A3916F2959DB Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a37353a3a2f34382d3438203d3e203535373031.roa Signing time: Thu 17 Aug 2023 02:00:02 +0000 ROA not before: Thu 17 Aug 2023 01:55:02 +0000 ROA not after: Thu 15 Aug 2024 02:00:02 +0000 asID: 55701 IP address blocks: 2405:b900:75::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 21:55:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:51:11:91:f6:33:94:d9:fb:44:1e:dd:5b:f7:a3:91:6f:29:59:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: Aug 17 01:55:02 2023 GMT Not After : Aug 15 02:00:02 2024 GMT Subject: CN=391A60EF14CA9F3196CD0BAD41C69EC7CBE3F0D6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:c2:7e:c6:b8:16:f8:5e:dd:d7:f8:4d:af:3d: 53:e7:a7:5a:15:45:e5:8e:3d:88:73:8d:08:c1:d8: 5a:2c:d6:50:b5:d1:47:3d:ed:8b:53:66:f2:ad:7f: fe:59:8c:96:bc:1e:b7:59:aa:9d:a2:12:7a:77:3b: 68:c8:2b:77:3f:26:94:ec:7c:c1:ae:ad:3f:51:cf: 32:5f:79:2b:6e:42:1d:c1:bc:12:57:43:dd:9a:36: af:30:8f:e7:66:7c:5c:d3:99:9c:8a:c9:b3:a4:aa: eb:4e:e8:28:a6:f5:dc:92:ba:73:71:37:91:ae:92: 26:7b:9e:ef:f9:3a:c0:f8:fb:8b:60:de:f6:01:5a: 4d:e9:8f:fe:5e:0f:81:c5:29:ed:17:6a:c6:82:d5: de:28:95:37:d4:fc:e0:94:28:f4:7b:b9:b1:bd:24: 62:8d:e1:c6:c2:f2:68:fc:9f:74:83:5c:b7:06:0a: 8f:28:f7:79:11:a2:59:f5:b7:57:fb:2a:3c:16:dd: e9:c7:fc:c4:c2:10:a4:06:14:3b:9c:bd:05:13:d8: ba:d4:7a:26:06:18:ef:3c:7b:6e:d6:db:c4:82:62: a1:23:93:09:16:27:a3:8b:08:2a:6a:e5:67:fe:82: 7c:ed:3d:85:31:b6:a0:46:f3:d1:50:4d:ec:e1:e4: 8f:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:1A:60:EF:14:CA:9F:31:96:CD:0B:AD:41:C6:9E:C7:CB:E3:F0:D6 X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a37353a3a2f34382d3438203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:b900:75::/48 Signature Algorithm: sha256WithRSAEncryption 78:34:63:6e:1c:97:73:3a:43:90:19:2e:39:93:15:8b:d8:3b: 60:8e:01:a6:0d:bf:f0:2f:3e:fa:d3:36:ae:5c:5f:db:22:e1: c7:86:48:e5:f1:2b:95:00:a0:98:9f:6b:a6:73:92:2c:e7:23: 93:66:2a:78:9f:57:f8:da:96:df:4d:28:c9:35:e6:2a:1f:77: d1:a4:da:a6:cc:eb:bb:d9:9c:25:db:f3:b7:9a:56:14:19:43: d6:25:aa:53:e3:83:d2:f1:b3:97:a4:1b:f8:d7:a8:24:66:76: 0b:54:bd:c1:11:76:2f:db:f1:de:9b:ee:4d:cc:36:fa:93:c9: 41:6d:78:34:19:36:2b:73:a8:78:8d:44:c9:3c:c5:97:32:3e: 99:24:45:89:f1:11:49:23:48:53:db:74:f2:ad:05:c4:ad:85: 6f:28:20:7f:5e:b8:18:7f:71:8b:ef:98:c6:98:a8:11:2e:0b: 5d:9f:c7:8c:17:20:d3:24:20:d5:bb:17:cc:d8:9f:b2:f7:a0: 90:5c:02:ef:ba:61:69:94:26:1a:98:11:33:cd:a4:33:8d:9c: 09:ba:3d:8c:b7:82:e9:f0:b0:7c:96:a1:09:32:52:b2:fa:72: cc:05:b9:4a:15:d3:85:76:1e:a2:3a:fe:45:a7:2b:24:38:58: f8:19:82:e2 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUBVERkfYzlNn7RB7dW/ejkW8pWdswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yMzA4MTcwMTU1MDJaFw0yNDA4MTUwMjAwMDJaMDMxMTAvBgNV BAMTKDM5MUE2MEVGMTRDQTlGMzE5NkNEMEJBRDQxQzY5RUM3Q0JFM0YwRDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+wn7GuBb4Xt3X+E2vPVPnp1oV ReWOPYhzjQjB2Fos1lC10Uc97YtTZvKtf/5ZjJa8HrdZqp2iEnp3O2jIK3c/JpTs fMGurT9RzzJfeStuQh3BvBJXQ92aNq8wj+dmfFzTmZyKybOkqutO6Cim9dySunNx N5GukiZ7nu/5OsD4+4tg3vYBWk3pj/5eD4HFKe0XasaC1d4olTfU/OCUKPR7ubG9 JGKN4cbC8mj8n3SDXLcGCo8o93kRoln1t1f7KjwW3enH/MTCEKQGFDucvQUT2LrU eiYGGO88e27W28SCYqEjkwkWJ6OLCCpq5Wf+gnztPYUxtqBG89FQTezh5I+fAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUORpg7xTKnzGWzQutQcaex8vj8NYwHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzQzMDM1M2E2MjM5MzAzMDNhMzczNTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzUzNzMwMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBbkAAHUw DQYJKoZIhvcNAQELBQADggEBAHg0Y24cl3M6Q5AZLjmTFYvYO2COAaYNv/AvPvrT Nq5cX9si4ceGSOXxK5UAoJifa6ZzkiznI5NmKnifV/jalt9NKMk15iofd9Gk2qbM 67vZnCXb87eaVhQZQ9YlqlPjg9Lxs5ekG/jXqCRmdgtUvcERdi/b8d6b7k3MNvqT yUFteDQZNitzqHiNRMk8xZcyPpkkRYnxEUkjSFPbdPKtBcSthW8oIH9euBh/cYvv mMaYqBEuC12fx4wXINMkINW7F8zYn7L3oJBcAu+6YWmUJhqYETPNpDONnAm6PYy3 gunwsHyWoQkyUrL6cswFuUoV04V2HqI6/kWnKyQ4WPgZguI= -----END CERTIFICATE-----Generated at Sun Apr 28 05:31:58 2024 by rpki-client on console-ams.rpki-client.org