$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a31363a3a2f34382d3438203d3e203535373031.roa File: 323430353a623930303a31363a3a2f34382d3438203d3e203535373031.roa (raw, json) Hash identifier: zteEa08IJkaCL4bVHRlFvoWloWTsS1msyYryu4/nlDg= Subject key identifier: 63:ED:5D:90:DC:2E:B2:D4:B0:C5:96:A5:17:E0:EF:21:E9:D4:A6:8F Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 3CDBD63462B765202D033D019521A600A588F08B Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a31363a3a2f34382d3438203d3e203535373031.roa Signing time: Thu 09 May 2024 04:01:03 +0000 ROA not before: Thu 09 May 2024 03:56:03 +0000 ROA not after: Thu 08 May 2025 04:01:03 +0000 asID: 55701 IP address blocks: 2405:b900:16::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:db:d6:34:62:b7:65:20:2d:03:3d:01:95:21:a6:00:a5:88:f0:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: May 9 03:56:03 2024 GMT Not After : May 8 04:01:03 2025 GMT Subject: CN=63ED5D90DC2EB2D4B0C596A517E0EF21E9D4A68F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:a7:cc:3f:56:a0:81:6c:46:3d:f0:db:8a:88: 38:d7:5c:f7:fc:50:3f:81:51:93:b1:a5:55:0b:68: ff:1b:56:19:af:3d:f9:05:f1:03:15:7f:57:b0:0c: 1f:7b:30:95:75:93:24:be:f6:ee:6f:b8:da:26:cc: 4c:2a:0f:2c:90:ec:dc:2b:c6:b4:f8:4e:c7:eb:27: 01:45:3f:53:39:bf:f3:58:e9:81:4b:88:55:df:07: 31:4b:64:8c:cf:b2:e1:3f:7c:9f:83:70:b0:c1:93: 9c:ba:ca:d9:e2:a9:de:2f:b8:78:52:f1:ed:91:94: 27:6f:69:78:ef:f5:ba:ec:17:f3:76:50:37:74:af: 5c:b1:b3:c8:3e:e4:d3:fb:04:e6:0d:5a:69:6e:62: f8:40:c4:77:db:34:49:8d:c4:67:d2:c6:5e:03:c0: ac:05:03:4a:e3:3b:df:3a:5a:88:02:7b:82:c2:4c: bb:f1:a9:dc:1e:d1:4d:a8:f6:2a:f0:81:6f:d6:bd: 0d:84:cc:ce:d3:a4:3c:59:55:19:0a:f1:d3:9b:ba: 4a:b3:98:09:e6:7b:41:90:26:2f:e0:bf:a7:e6:e5: cc:e0:41:e6:61:da:41:b9:63:c2:fb:18:de:71:ef: a4:f4:16:07:bd:26:0b:92:21:71:b6:57:86:2f:a4: 31:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:ED:5D:90:DC:2E:B2:D4:B0:C5:96:A5:17:E0:EF:21:E9:D4:A6:8F X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a31363a3a2f34382d3438203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:b900:16::/48 Signature Algorithm: sha256WithRSAEncryption cc:1d:f7:5c:28:ba:f8:e8:00:e9:18:dd:c5:b0:13:2d:1b:a2: 35:e9:e9:33:fb:4a:cb:83:9f:9e:cc:e6:69:05:7d:70:6a:43: 0d:f0:d9:60:25:ef:78:60:38:89:1e:a6:49:af:6b:a4:02:e7: b9:9d:f5:b7:0a:46:a6:fa:e9:d3:32:85:4e:3b:e3:2f:96:bf: 96:16:84:a1:e3:5d:ad:e8:29:07:81:95:59:4d:4c:97:b7:03: bc:cb:1e:ce:37:49:c4:fa:52:02:6e:4a:e3:89:59:6f:45:20: d1:a3:ad:4a:56:01:02:27:5a:ba:27:61:e4:10:ad:fc:b1:a5: 1c:01:00:87:62:7d:2a:05:0b:49:f8:1e:05:df:8d:66:03:9c: 40:77:e3:13:23:ac:b8:de:08:36:95:34:eb:0b:dc:36:53:d8: 66:5b:1c:40:4d:bb:1a:60:22:83:79:44:85:68:c2:3c:56:9a: 2f:09:c1:a7:7b:f7:0b:a2:42:6c:08:d4:56:ac:fd:e0:91:06: f6:c7:04:04:25:ae:f4:13:ec:2d:b4:59:3e:05:b6:4f:d7:99: 9a:bd:e8:b4:d9:ad:22:0c:27:ce:f8:5f:c5:af:d9:67:56:02: d7:7c:dd:2b:f2:ec:70:e6:cd:5c:24:07:f3:ea:b3:72:f0:a1: be:ea:aa:d5 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUPNvWNGK3ZSAtAz0BlSGmAKWI8IswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yNDA1MDkwMzU2MDNaFw0yNTA1MDgwNDAxMDNaMDMxMTAvBgNV BAMTKDYzRUQ1RDkwREMyRUIyRDRCMEM1OTZBNTE3RTBFRjIxRTlENEE2OEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtp8w/VqCBbEY98NuKiDjXXPf8 UD+BUZOxpVULaP8bVhmvPfkF8QMVf1ewDB97MJV1kyS+9u5vuNomzEwqDyyQ7Nwr xrT4TsfrJwFFP1M5v/NY6YFLiFXfBzFLZIzPsuE/fJ+DcLDBk5y6ytniqd4vuHhS 8e2RlCdvaXjv9brsF/N2UDd0r1yxs8g+5NP7BOYNWmluYvhAxHfbNEmNxGfSxl4D wKwFA0rjO986WogCe4LCTLvxqdwe0U2o9irwgW/WvQ2EzM7TpDxZVRkK8dObukqz mAnme0GQJi/gv6fm5czgQeZh2kG5Y8L7GN5x76T0Fge9JguSIXG2V4YvpDGlAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUY+1dkNwustSwxZalF+DvIenUpo8wHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzQzMDM1M2E2MjM5MzAzMDNhMzEzNjNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzUzNzMwMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBbkAABYw DQYJKoZIhvcNAQELBQADggEBAMwd91wouvjoAOkY3cWwEy0bojXp6TP7SsuDn57M 5mkFfXBqQw3w2WAl73hgOIkepkmva6QC57md9bcKRqb66dMyhU474y+Wv5YWhKHj Xa3oKQeBlVlNTJe3A7zLHs43ScT6UgJuSuOJWW9FINGjrUpWAQInWronYeQQrfyx pRwBAIdifSoFC0n4HgXfjWYDnEB34xMjrLjeCDaVNOsL3DZT2GZbHEBNuxpgIoN5 RIVowjxWmi8Jwad79wuiQmwI1Fas/eCRBvbHBAQlrvQT7C20WT4Ftk/XmZq96LTZ rSIMJ874X8Wv2WdWAtd83Svy7HDmzVwkB/Pqs3Lwob7qqtU= -----END CERTIFICATE-----Generated at Fri Nov 22 06:56:25 2024 by rpki-client on console-fra.rpki-client.org