$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a313030303a3a2f34382d3438203d3e203535373031.roa File: 323430353a623930303a313030303a3a2f34382d3438203d3e203535373031.roa (raw, json) Hash identifier: GWLC9IGVBAMIYarV0FacZP7w4R6d5D/k3/v2LxIfrsU= Subject key identifier: F2:52:9B:68:6C:ED:BC:90:F3:CC:97:74:21:6D:F7:37:DE:E9:60:82 Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 28A5D5E1D2454F5FD0B42D482D9C84B3025FC5DD Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a313030303a3a2f34382d3438203d3e203535373031.roa Signing time: Thu 09 May 2024 04:00:57 +0000 ROA not before: Thu 09 May 2024 03:55:57 +0000 ROA not after: Thu 08 May 2025 04:00:57 +0000 asID: 55701 IP address blocks: 2405:b900:1000::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:a5:d5:e1:d2:45:4f:5f:d0:b4:2d:48:2d:9c:84:b3:02:5f:c5:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: May 9 03:55:57 2024 GMT Not After : May 8 04:00:57 2025 GMT Subject: CN=F2529B686CEDBC90F3CC9774216DF737DEE96082 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:38:92:13:c2:9b:a6:99:89:f2:9e:df:0a:a7: 75:3e:69:d5:eb:6a:d2:52:5b:85:84:61:2a:24:fe: b8:e2:ec:9f:58:91:e7:a4:6f:0e:44:06:59:fb:cc: d2:e9:f4:48:2e:97:55:79:75:7d:e4:74:02:16:ab: 93:ab:fa:fa:f6:11:6d:66:c1:c3:0b:ab:ce:9f:16: 81:1e:c2:64:a7:b1:eb:97:5f:46:7e:02:4c:a0:27: 69:28:9d:d0:b1:d9:ec:1c:e7:a2:fa:1b:3e:b5:e7: a3:3b:db:b3:30:36:7c:f4:e8:45:b0:46:48:bd:33: 0d:a1:cd:db:b0:e2:30:33:3a:65:fa:41:8c:c1:de: 4d:68:16:0f:c4:3a:11:bf:b5:8b:4b:95:31:44:71: 3a:62:29:11:8f:b9:06:be:49:b6:a4:a1:1b:c5:96: de:4b:fd:79:a4:80:dd:e8:06:f6:98:da:45:00:57: 88:ad:cb:7e:45:c9:9b:97:31:1c:8f:b8:b6:03:25: 2d:8f:4b:2c:42:38:eb:22:2d:04:53:07:87:ca:4a: 68:61:61:b2:1b:82:62:38:91:3a:5a:32:60:dc:04: f0:25:b8:8c:e4:71:0e:e7:4e:5d:37:ed:bb:f1:15: f1:05:44:26:f6:6d:ed:1a:e9:71:7d:a1:11:2e:0b: d4:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:52:9B:68:6C:ED:BC:90:F3:CC:97:74:21:6D:F7:37:DE:E9:60:82 X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a313030303a3a2f34382d3438203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:b900:1000::/48 Signature Algorithm: sha256WithRSAEncryption 81:e0:0a:15:a4:d1:c5:c7:62:d5:36:6b:11:09:ee:87:d2:b2: 31:de:bd:08:f7:7e:2d:d0:da:de:1b:6e:0d:8a:f0:f9:01:90: 3a:e7:89:39:14:bd:6a:45:2b:07:88:85:4b:10:d0:0d:33:09: 13:15:cf:07:eb:b9:70:04:ca:b4:49:d5:d4:77:26:aa:71:0f: a9:2b:ad:b9:ac:c2:df:bc:80:f9:ad:a6:72:83:09:07:0f:70: 3e:00:96:5e:b1:0a:3b:b7:30:af:3a:8e:64:14:64:f1:0f:15: f1:25:bb:00:a6:83:82:ab:cf:8c:96:4d:4d:f9:37:16:73:8e: 6f:81:c4:d3:c0:01:a5:fd:c0:fa:2f:8c:45:04:db:b5:0c:2e: 6b:68:c6:3c:92:37:6e:38:3b:d7:65:ad:db:f5:52:32:35:3c: 6f:da:3e:78:40:32:67:b6:4f:79:df:bb:4d:ff:f4:dd:e2:df: 39:5c:59:be:39:f5:d5:fd:61:60:89:cd:2b:cf:99:c3:f3:5d: 98:5e:3c:87:6f:c4:76:60:21:ea:94:c7:e4:b2:16:18:b9:00: ab:a2:51:19:a1:0c:4c:4a:f1:65:75:1f:f1:87:64:c1:a4:64: 83:92:cf:ee:a0:df:08:de:7b:70:cc:fe:90:b6:fd:40:e9:82: bf:c0:18:db -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUKKXV4dJFT1/QtC1ILZyEswJfxd0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yNDA1MDkwMzU1NTdaFw0yNTA1MDgwNDAwNTdaMDMxMTAvBgNV BAMTKEYyNTI5QjY4NkNFREJDOTBGM0NDOTc3NDIxNkRGNzM3REVFOTYwODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqOJITwpummYnynt8Kp3U+adXr atJSW4WEYSok/rji7J9Ykeekbw5EBln7zNLp9Egul1V5dX3kdAIWq5Or+vr2EW1m wcMLq86fFoEewmSnseuXX0Z+AkygJ2kondCx2ewc56L6Gz6156M727MwNnz06EWw Rki9Mw2hzduw4jAzOmX6QYzB3k1oFg/EOhG/tYtLlTFEcTpiKRGPuQa+SbakoRvF lt5L/XmkgN3oBvaY2kUAV4ity35FyZuXMRyPuLYDJS2PSyxCOOsiLQRTB4fKSmhh YbIbgmI4kTpaMmDcBPAluIzkcQ7nTl037bvxFfEFRCb2be0a6XF9oREuC9SBAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU8lKbaGztvJDzzJd0IW33N97pYIIwHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzQzMDM1M2E2MjM5MzAzMDNhMzEzMDMwMzAz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzNTM1MzczMDMxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAW5 ABAAMA0GCSqGSIb3DQEBCwUAA4IBAQCB4AoVpNHFx2LVNmsRCe6H0rIx3r0I934t 0NreG24NivD5AZA654k5FL1qRSsHiIVLENANMwkTFc8H67lwBMq0SdXUdyaqcQ+p K625rMLfvID5raZygwkHD3A+AJZesQo7tzCvOo5kFGTxDxXxJbsApoOCq8+Mlk1N +TcWc45vgcTTwAGl/cD6L4xFBNu1DC5raMY8kjduODvXZa3b9VIyNTxv2j54QDJn tk9537tN//Td4t85XFm+OfXV/WFgic0rz5nD812YXjyHb8R2YCHqlMfkshYYuQCr olEZoQxMSvFldR/xh2TBpGSDks/uoN8I3ntwzP6Qtv1A6YK/wBjb -----END CERTIFICATE-----Generated at Fri Nov 22 06:33:23 2024 by rpki-client on console-ams.rpki-client.org