$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a31383a3a2f34382d3438203d3e203535373031.roa File: 323430353a623930303a31383a3a2f34382d3438203d3e203535373031.roa (raw, json) Hash identifier: IuuSIxIa9AHsyEsU6umscqBr6U5nBIqcn1WGZOcmT34= Subject key identifier: 63:EE:FC:05:7D:7F:CB:81:71:FF:61:5B:96:AB:3A:B6:AD:5A:42:04 Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 55DA3F8E35E30898F06637EAB00DAFF27C8B8E14 Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a31383a3a2f34382d3438203d3e203535373031.roa Signing time: Thu 09 May 2024 04:01:02 +0000 ROA not before: Thu 09 May 2024 03:56:02 +0000 ROA not after: Thu 08 May 2025 04:01:02 +0000 asID: 55701 IP address blocks: 2405:b900:18::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:da:3f:8e:35:e3:08:98:f0:66:37:ea:b0:0d:af:f2:7c:8b:8e:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: May 9 03:56:02 2024 GMT Not After : May 8 04:01:02 2025 GMT Subject: CN=63EEFC057D7FCB8171FF615B96AB3AB6AD5A4204 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:a9:1f:c0:b3:d9:d4:f0:58:de:83:33:e7:78: 8c:2d:24:52:ce:ba:27:6d:6f:0c:87:3a:d0:51:8f: c0:19:66:2e:5e:f4:9c:c2:21:14:f6:23:42:f8:1c: 20:ee:46:f9:f4:2e:d9:86:fc:a5:3e:61:95:3e:ea: 86:9f:ce:44:7b:8d:3a:de:94:2d:41:00:ce:39:67: 82:ec:f6:97:42:d3:05:cd:33:76:77:0d:be:21:3a: f3:09:83:fd:da:33:93:f9:9f:97:56:45:d9:75:e5: b2:54:21:c8:e2:5e:70:e8:91:b5:d4:d5:f0:e2:0c: 3c:9c:c4:48:0d:33:e6:77:b7:7a:1e:f6:e7:ab:b4: 2e:26:a5:13:15:45:de:c2:e5:ca:99:f3:ad:2d:cd: 5a:2c:01:4a:ee:84:b0:10:a9:ab:19:2e:a7:c7:82: a6:60:0e:df:fd:04:79:89:01:df:10:6b:a5:87:1d: 66:3b:66:d7:f8:92:0b:4f:a4:e1:0c:10:50:f1:c0: c3:2a:3b:d0:2d:6c:28:72:f5:52:f8:0d:f9:5c:a6: 6a:00:21:a8:f2:52:4a:42:e6:f7:39:90:c0:2c:c2: 15:79:79:37:59:2b:56:0f:85:bf:bc:2a:ad:f3:99: 0b:e2:4a:62:c7:d9:ca:f7:ea:46:bf:60:b5:8f:6d: ea:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:EE:FC:05:7D:7F:CB:81:71:FF:61:5B:96:AB:3A:B6:AD:5A:42:04 X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a31383a3a2f34382d3438203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:b900:18::/48 Signature Algorithm: sha256WithRSAEncryption 65:3b:75:c5:b7:6e:3e:11:a2:3d:40:98:dd:aa:8b:b8:e0:b7: f3:17:b4:89:fa:0c:f7:5d:8b:11:de:9d:cf:23:27:18:4a:f5: 0d:f3:da:9f:2e:8c:3c:2e:f1:95:c8:c5:b7:11:f8:de:18:75: 36:98:53:44:d8:7f:70:13:e1:0a:b6:bd:04:91:80:2a:03:28: 6c:5e:38:a4:ca:41:eb:c3:70:fa:d5:0e:f2:d7:14:1d:98:92: 30:95:7f:81:71:8f:c5:cd:ee:d2:50:d5:07:17:b5:37:5d:41: 87:5f:18:9d:9a:c3:ff:3c:6d:1d:37:7d:4f:de:a8:83:54:30: 6c:d1:a2:41:22:7a:3a:cd:49:c0:1b:e5:e7:0b:b8:de:fe:a6: 66:ef:58:62:fc:12:bd:b8:de:b5:06:89:f1:76:46:c8:69:e0: 51:a6:44:2e:d6:dd:f3:de:92:fb:12:d6:e4:ef:58:e8:0d:48: 4e:e1:24:c1:f4:d1:76:ed:ab:3f:cd:ce:5d:f2:db:45:b4:c5: 24:ce:fc:c1:f4:fe:91:f0:53:54:fb:95:c5:d8:e4:32:1f:87: 3f:3a:b5:6b:dd:0a:84:79:b6:bc:38:dd:26:fb:17:9c:46:e2: a7:b7:36:97:08:9f:7a:8b:76:c5:d7:13:8a:e8:1c:a6:a5:78: 66:42:fc:2c -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUVdo/jjXjCJjwZjfqsA2v8nyLjhQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yNDA1MDkwMzU2MDJaFw0yNTA1MDgwNDAxMDJaMDMxMTAvBgNV BAMTKDYzRUVGQzA1N0Q3RkNCODE3MUZGNjE1Qjk2QUIzQUI2QUQ1QTQyMDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvqR/As9nU8FjegzPneIwtJFLO uidtbwyHOtBRj8AZZi5e9JzCIRT2I0L4HCDuRvn0LtmG/KU+YZU+6oafzkR7jTre lC1BAM45Z4Ls9pdC0wXNM3Z3Db4hOvMJg/3aM5P5n5dWRdl15bJUIcjiXnDokbXU 1fDiDDycxEgNM+Z3t3oe9uertC4mpRMVRd7C5cqZ860tzVosAUruhLAQqasZLqfH gqZgDt/9BHmJAd8Qa6WHHWY7Ztf4kgtPpOEMEFDxwMMqO9AtbChy9VL4DflcpmoA IajyUkpC5vc5kMAswhV5eTdZK1YPhb+8Kq3zmQviSmLH2cr36ka/YLWPbeo/AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUY+78BX1/y4Fx/2Fblqs6tq1aQgQwHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzQzMDM1M2E2MjM5MzAzMDNhMzEzODNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzUzNzMwMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBbkAABgw DQYJKoZIhvcNAQELBQADggEBAGU7dcW3bj4Roj1AmN2qi7jgt/MXtIn6DPddixHe nc8jJxhK9Q3z2p8ujDwu8ZXIxbcR+N4YdTaYU0TYf3AT4Qq2vQSRgCoDKGxeOKTK QevDcPrVDvLXFB2YkjCVf4Fxj8XN7tJQ1QcXtTddQYdfGJ2aw/88bR03fU/eqINU MGzRokEiejrNScAb5ecLuN7+pmbvWGL8Er243rUGifF2Rshp4FGmRC7W3fPekvsS 1uTvWOgNSE7hJMH00Xbtqz/Nzl3y20W0xSTO/MH0/pHwU1T7lcXY5DIfhz86tWvd CoR5trw43Sb7F5xG4qe3NpcIn3qLdsXXE4roHKaleGZC/Cw= -----END CERTIFICATE-----Generated at Fri Nov 22 06:33:23 2024 by rpki-client on console-ams.rpki-client.org