$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a31313a3a2f34382d3438203d3e203535373031.roa File: 323430353a623930303a31313a3a2f34382d3438203d3e203535373031.roa (raw, json) Hash identifier: VRlbJpLLavjAsvta8Ce9Yo8TMZK3giO+uZAV8qRIrrE= Subject key identifier: 70:DB:09:66:14:9B:D7:16:E3:35:CD:5E:CF:71:75:C6:AB:F7:E1:F4 Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 46BD533144674370107345E695F48C7BC73EC0AE Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a31313a3a2f34382d3438203d3e203535373031.roa Signing time: Thu 09 May 2024 04:01:07 +0000 ROA not before: Thu 09 May 2024 03:56:07 +0000 ROA not after: Thu 08 May 2025 04:01:07 +0000 asID: 55701 IP address blocks: 2405:b900:11::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:bd:53:31:44:67:43:70:10:73:45:e6:95:f4:8c:7b:c7:3e:c0:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: May 9 03:56:07 2024 GMT Not After : May 8 04:01:07 2025 GMT Subject: CN=70DB0966149BD716E335CD5ECF7175C6ABF7E1F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:2f:43:1d:44:13:22:b5:ed:ca:04:77:b7:7c: 2d:a6:25:62:3b:0b:c6:74:22:8d:01:7a:84:dc:90: ea:f0:b5:45:a1:cd:78:46:b7:8f:7c:4e:d2:8f:f4: 77:4e:a2:45:26:b2:a0:21:a3:08:15:a8:4f:3b:87: 2a:37:9a:a0:61:a0:e1:2c:b3:f4:ba:47:44:99:7c: cd:7c:a1:23:90:9d:19:44:6b:81:6d:9a:3e:3a:ba: b0:65:83:cb:7c:35:45:05:f3:76:e3:74:08:23:86: 0e:e6:1d:40:48:36:14:ed:01:3e:48:56:41:41:77: 8e:7f:18:2f:81:cc:71:f8:20:86:6a:d5:d6:1c:e9: 3c:61:7a:be:b0:d6:89:1b:c9:c6:da:c4:d0:01:e7: 41:0c:3d:32:3f:e0:63:30:ff:2b:1e:69:f6:33:49: f8:38:83:7c:8d:0b:09:5d:d8:92:63:bb:b1:e8:ab: 36:3d:61:75:7b:4f:c4:a9:30:7f:a9:d1:36:c6:9d: f1:17:cf:eb:c1:d4:62:c5:cc:73:2a:4a:97:5d:67: fe:d0:ab:44:a9:07:b7:16:e1:8b:51:4c:8b:a3:68: f6:16:07:1c:43:5e:a8:18:22:db:b7:5b:1e:cd:a7: 82:20:d9:3e:18:99:50:5f:ae:8e:4d:7e:26:a8:6f: a2:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:DB:09:66:14:9B:D7:16:E3:35:CD:5E:CF:71:75:C6:AB:F7:E1:F4 X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a31313a3a2f34382d3438203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:b900:11::/48 Signature Algorithm: sha256WithRSAEncryption ca:94:07:fa:8f:83:12:6f:c6:1e:87:e3:6c:55:ac:ad:2f:bc: 45:ec:84:54:86:d0:e2:dc:7a:bb:5b:f4:be:55:70:6a:d0:2c: 41:16:e9:cc:03:a5:f9:d7:d9:b1:57:e3:1d:16:f8:d5:47:2d: 65:30:bf:30:b5:c3:2f:77:f9:fe:ba:5f:97:62:a3:61:e1:4b: aa:51:dc:c9:7f:91:aa:29:41:52:bb:ce:0f:27:e6:23:a2:92: 61:7e:10:d1:83:19:fc:0e:52:59:0f:89:50:0d:66:1b:95:52: 93:78:41:ed:e6:d6:e6:18:b7:44:42:b9:c8:3e:bd:1c:90:0c: d9:f6:25:c3:b1:ab:4b:93:14:3e:a2:40:41:61:96:77:16:60: fe:35:2a:6c:fd:7d:ce:57:c8:67:cd:92:06:22:4b:e5:8e:af: a8:c3:5d:86:a0:14:c3:cf:48:f9:9e:4f:f5:30:9e:52:9d:3f: 23:c8:85:f2:a5:0c:32:71:44:eb:cb:04:48:bd:4f:b9:4a:6d: 3e:ce:d7:bd:98:5b:6f:ef:78:a7:7f:80:82:5c:95:30:4b:12: dd:d7:71:fc:cd:59:d2:f6:c9:e3:f1:06:3b:17:33:0c:44:4d: c1:fd:e6:3e:eb:47:2c:fd:31:12:7f:8c:2e:19:41:10:a6:29: 10:02:d0:27 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIURr1TMURnQ3AQc0XmlfSMe8c+wK4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yNDA1MDkwMzU2MDdaFw0yNTA1MDgwNDAxMDdaMDMxMTAvBgNV BAMTKDcwREIwOTY2MTQ5QkQ3MTZFMzM1Q0Q1RUNGNzE3NUM2QUJGN0UxRjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCL0MdRBMite3KBHe3fC2mJWI7 C8Z0Io0BeoTckOrwtUWhzXhGt498TtKP9HdOokUmsqAhowgVqE87hyo3mqBhoOEs s/S6R0SZfM18oSOQnRlEa4Ftmj46urBlg8t8NUUF83bjdAgjhg7mHUBINhTtAT5I VkFBd45/GC+BzHH4IIZq1dYc6Txher6w1okbycbaxNAB50EMPTI/4GMw/yseafYz Sfg4g3yNCwld2JJju7HoqzY9YXV7T8SpMH+p0TbGnfEXz+vB1GLFzHMqSpddZ/7Q q0SpB7cW4YtRTIujaPYWBxxDXqgYItu3Wx7Np4Ig2T4YmVBfro5Nfiaob6I3AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUcNsJZhSb1xbjNc1ez3F1xqv34fQwHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzQzMDM1M2E2MjM5MzAzMDNhMzEzMTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzUzNzMwMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBbkAABEw DQYJKoZIhvcNAQELBQADggEBAMqUB/qPgxJvxh6H42xVrK0vvEXshFSG0OLcertb 9L5VcGrQLEEW6cwDpfnX2bFX4x0W+NVHLWUwvzC1wy93+f66X5dio2HhS6pR3Ml/ kaopQVK7zg8n5iOikmF+ENGDGfwOUlkPiVANZhuVUpN4Qe3m1uYYt0RCucg+vRyQ DNn2JcOxq0uTFD6iQEFhlncWYP41Kmz9fc5XyGfNkgYiS+WOr6jDXYagFMPPSPme T/UwnlKdPyPIhfKlDDJxROvLBEi9T7lKbT7O172YW2/veKd/gIJclTBLEt3XcfzN WdL2yePxBjsXMwxETcH95j7rRyz9MRJ/jC4ZQRCmKRAC0Cc= -----END CERTIFICATE-----Generated at Fri Nov 22 06:33:23 2024 by rpki-client on console-ams.rpki-client.org