$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a31333a3a2f34382d3438203d3e203535373031.roa File: 323430353a623930303a31333a3a2f34382d3438203d3e203535373031.roa (raw, json) Hash identifier: WZ9FixOVG84uP7tUEIaHWdmWfse2nwGXnt9l+s5PkfQ= Subject key identifier: 9E:EF:B5:EE:FF:87:17:25:D6:E8:CF:0D:17:29:7F:06:6C:BD:7F:A3 Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 4848DFC38E2953DE54FC342573E06E43E4EDC9E3 Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a31333a3a2f34382d3438203d3e203535373031.roa Signing time: Thu 09 May 2024 04:01:04 +0000 ROA not before: Thu 09 May 2024 03:56:04 +0000 ROA not after: Thu 08 May 2025 04:01:04 +0000 asID: 55701 IP address blocks: 2405:b900:13::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:48:df:c3:8e:29:53:de:54:fc:34:25:73:e0:6e:43:e4:ed:c9:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: May 9 03:56:04 2024 GMT Not After : May 8 04:01:04 2025 GMT Subject: CN=9EEFB5EEFF871725D6E8CF0D17297F066CBD7FA3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:5d:36:bd:ea:31:3c:62:1b:fd:11:6d:94:bd: 9c:bb:fd:78:ec:45:4e:6e:39:80:d6:35:0c:46:52: 58:b9:b0:cd:1b:c4:85:f4:9d:09:28:48:87:05:9b: a8:82:2f:8c:00:7c:1c:d4:de:66:a7:7f:f0:96:4a: 2b:85:86:86:76:78:b8:c4:8e:a1:73:b0:af:b2:fc: 53:f9:cb:dc:4e:76:13:2d:0e:08:47:ff:9a:26:51: 39:32:18:fe:ce:fb:48:12:6a:13:c9:d2:b0:fc:b0: 99:da:51:36:85:0d:80:fe:05:59:1b:82:5c:05:d6: e7:9e:8f:53:1d:17:a2:19:70:0d:09:ab:e1:f3:06: 7c:ea:ba:18:51:3b:8c:08:74:56:97:6f:90:0b:fa: 57:e0:d8:78:54:b8:91:04:6f:93:d2:2a:e8:d9:84: 9d:24:fa:2e:69:53:ee:1d:f1:96:87:15:8d:87:fb: b1:7f:9f:c7:1d:52:fa:d6:af:07:4c:86:15:b0:20: df:bf:6f:15:10:8d:14:45:2f:1f:bf:d2:22:cc:5a: b1:a4:67:81:1a:71:fa:fb:30:d7:43:7a:7b:83:38: 3e:d6:fe:f1:04:0e:ca:9b:c4:da:fa:1d:85:fe:f6: a4:47:b5:22:69:f4:60:0f:77:3c:9f:1c:85:2a:25: 6b:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:EF:B5:EE:FF:87:17:25:D6:E8:CF:0D:17:29:7F:06:6C:BD:7F:A3 X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a31333a3a2f34382d3438203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:b900:13::/48 Signature Algorithm: sha256WithRSAEncryption 14:27:1c:13:d0:eb:96:7d:d1:66:7b:5b:d7:23:89:9d:a3:47: 3f:1f:77:2d:89:33:87:1c:7f:97:15:b1:62:b3:a4:2a:6a:cc: 69:56:48:a7:27:63:77:ae:ec:85:38:d7:df:b2:01:1c:fc:dc: c3:1e:df:be:cf:a2:67:eb:dc:a6:45:4b:d9:fe:33:4c:56:f0: 7b:ef:21:d7:9c:0a:ea:66:b7:31:cc:b1:e6:9c:4a:0f:9c:ef: 81:46:34:96:58:5f:a9:97:d4:63:57:cf:36:d0:d5:b4:a3:d3: c5:49:e0:ff:2d:7f:28:4e:b3:73:69:8f:75:f5:22:43:05:16: d5:aa:ef:d2:ff:0f:b7:70:eb:9b:26:f2:9d:63:83:9a:78:cf: 83:4e:7d:54:7a:d0:fd:f8:81:ba:df:43:31:1a:b8:d5:a5:bd: bb:41:8e:ca:ff:91:11:5a:9c:ae:c4:49:73:6c:55:16:ba:f1: 11:1a:97:a1:ff:42:17:28:43:4a:7d:a5:ff:47:c9:83:01:76: f6:c5:12:0b:f0:53:3c:7d:c8:d8:cc:f2:aa:d3:66:04:b4:45: 0d:6f:e1:03:d6:77:a8:bb:70:e3:dc:70:44:83:f8:cb:cb:14: 78:9a:55:3a:c0:c0:f9:a7:64:2e:ae:81:57:bf:c9:56:ce:a8: 9e:92:2c:51 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUSEjfw44pU95U/DQlc+BuQ+TtyeMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yNDA1MDkwMzU2MDRaFw0yNTA1MDgwNDAxMDRaMDMxMTAvBgNV BAMTKDlFRUZCNUVFRkY4NzE3MjVENkU4Q0YwRDE3Mjk3RjA2NkNCRDdGQTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLXTa96jE8Yhv9EW2UvZy7/Xjs RU5uOYDWNQxGUli5sM0bxIX0nQkoSIcFm6iCL4wAfBzU3manf/CWSiuFhoZ2eLjE jqFzsK+y/FP5y9xOdhMtDghH/5omUTkyGP7O+0gSahPJ0rD8sJnaUTaFDYD+BVkb glwF1ueej1MdF6IZcA0Jq+HzBnzquhhRO4wIdFaXb5AL+lfg2HhUuJEEb5PSKujZ hJ0k+i5pU+4d8ZaHFY2H+7F/n8cdUvrWrwdMhhWwIN+/bxUQjRRFLx+/0iLMWrGk Z4Eacfr7MNdDenuDOD7W/vEEDsqbxNr6HYX+9qRHtSJp9GAPdzyfHIUqJWsRAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUnu+17v+HFyXW6M8NFyl/Bmy9f6MwHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzQzMDM1M2E2MjM5MzAzMDNhMzEzMzNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzUzNzMwMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBbkAABMw DQYJKoZIhvcNAQELBQADggEBABQnHBPQ65Z90WZ7W9cjiZ2jRz8fdy2JM4ccf5cV sWKzpCpqzGlWSKcnY3eu7IU419+yARz83MMe377Pomfr3KZFS9n+M0xW8HvvIdec CupmtzHMseacSg+c74FGNJZYX6mX1GNXzzbQ1bSj08VJ4P8tfyhOs3Npj3X1IkMF FtWq79L/D7dw65sm8p1jg5p4z4NOfVR60P34gbrfQzEauNWlvbtBjsr/kRFanK7E SXNsVRa68REal6H/QhcoQ0p9pf9HyYMBdvbFEgvwUzx9yNjM8qrTZgS0RQ1v4QPW d6i7cOPccESD+MvLFHiaVTrAwPmnZC6ugVe/yVbOqJ6SLFE= -----END CERTIFICATE-----Generated at Fri Nov 22 06:56:25 2024 by rpki-client on console-fra.rpki-client.org