$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a32303a3a2f34382d3438203d3e203535373031.roa File: 323430353a623930303a32303a3a2f34382d3438203d3e203535373031.roa (raw, json) Hash identifier: mD+B3X91HU4FVO+l/pZ6Of8hc4y8TWLnK+LZJYgYyu0= Subject key identifier: 1F:C5:E7:C4:2A:0F:69:12:E1:5D:39:0D:99:B8:96:3A:99:76:93:DE Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 3BAFDA3C1B71B1FFF46E39F9384AC6748209BCA3 Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a32303a3a2f34382d3438203d3e203535373031.roa Signing time: Thu 09 May 2024 04:01:03 +0000 ROA not before: Thu 09 May 2024 03:56:03 +0000 ROA not after: Thu 08 May 2025 04:01:03 +0000 asID: 55701 IP address blocks: 2405:b900:20::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:af:da:3c:1b:71:b1:ff:f4:6e:39:f9:38:4a:c6:74:82:09:bc:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: May 9 03:56:03 2024 GMT Not After : May 8 04:01:03 2025 GMT Subject: CN=1FC5E7C42A0F6912E15D390D99B8963A997693DE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:96:8f:f1:b9:0d:22:75:a8:39:08:74:d2:28: 79:a2:0b:b8:63:42:d7:5c:6b:96:af:6a:03:85:38: b9:a8:b6:dd:5f:60:00:07:85:ef:50:09:18:f8:c6: 8e:02:b1:4a:c9:b4:d5:1c:7e:12:44:c1:8d:1c:51: 0e:75:7f:34:20:77:b1:ca:76:d3:5a:0c:7b:c5:05: 6b:69:54:53:fd:b7:2f:87:1e:bc:a5:53:5e:15:da: bd:33:9e:fd:f3:ff:39:e4:30:64:77:09:25:2b:21: 38:34:e2:3b:5d:bc:46:f9:b4:21:9a:68:79:39:6d: f3:b5:88:48:fa:0c:6f:3c:08:dc:9d:03:35:45:ee: ae:1d:9d:97:36:b9:47:c2:5a:6e:9b:4d:58:5d:3e: cd:d2:d2:69:89:09:11:7e:7c:e8:bc:16:5f:a8:3e: 16:1f:7b:e7:74:ed:d0:37:77:ef:18:2a:95:65:d4: e0:c9:dd:fc:64:f7:97:61:f4:26:8c:7b:47:ad:38: 85:8c:88:7e:12:90:dc:95:a6:b5:69:4c:0c:44:ce: 79:ec:8c:e5:18:19:a2:d1:37:01:47:f9:37:50:63: eb:b9:36:03:dc:ef:b9:3c:d7:2b:46:26:f2:cd:08: 69:b9:3b:3e:ac:a1:a0:9d:a2:34:e4:88:ed:75:3f: 17:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:C5:E7:C4:2A:0F:69:12:E1:5D:39:0D:99:B8:96:3A:99:76:93:DE X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a32303a3a2f34382d3438203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:b900:20::/48 Signature Algorithm: sha256WithRSAEncryption c3:9e:6a:ed:75:fd:72:46:0c:dc:43:72:20:e7:34:b2:13:e9: a0:0d:3c:98:91:62:dc:28:6f:74:6b:fb:66:f3:b3:70:50:06: f8:97:ef:b8:5f:4b:2b:17:46:cb:e8:9d:14:62:24:ef:68:f1: bc:98:25:8f:77:41:83:44:2d:97:e8:4e:73:7a:6d:07:e5:d7: 17:62:1b:e5:3b:03:6f:e9:e5:3d:fc:78:f8:9b:6a:66:28:65: 97:65:62:aa:ab:32:e0:7b:52:b4:3d:06:64:e3:78:af:02:70: 9a:86:73:21:aa:4d:10:3a:0a:6a:ec:bf:d3:48:3f:2e:8b:2c: 4c:46:3a:a8:18:71:93:d0:bd:e1:bd:92:3f:41:44:ee:b3:16: aa:79:da:3e:02:24:af:8a:fb:9b:0f:86:a8:9d:c8:07:f0:47: 7a:52:54:48:4c:72:9e:82:cc:5f:1d:dd:7b:93:79:72:cd:e9: ca:a9:46:0b:a7:22:db:3e:b6:fb:71:26:31:8a:66:e1:69:9b: 5d:0e:25:8a:a0:db:ba:0e:7c:08:c8:cf:91:ac:9d:09:f0:0d: b1:70:8e:2c:9b:47:76:7d:07:b3:92:8a:a1:11:4a:4a:79:ba: 42:f4:c7:be:c7:dc:c1:96:ed:9d:3f:eb:f6:43:f5:97:51:11: af:e0:31:19 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUO6/aPBtxsf/0bjn5OErGdIIJvKMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yNDA1MDkwMzU2MDNaFw0yNTA1MDgwNDAxMDNaMDMxMTAvBgNV BAMTKDFGQzVFN0M0MkEwRjY5MTJFMTVEMzkwRDk5Qjg5NjNBOTk3NjkzREUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvlo/xuQ0idag5CHTSKHmiC7hj Qtdca5avagOFOLmott1fYAAHhe9QCRj4xo4CsUrJtNUcfhJEwY0cUQ51fzQgd7HK dtNaDHvFBWtpVFP9ty+HHrylU14V2r0znv3z/znkMGR3CSUrITg04jtdvEb5tCGa aHk5bfO1iEj6DG88CNydAzVF7q4dnZc2uUfCWm6bTVhdPs3S0mmJCRF+fOi8Fl+o PhYfe+d07dA3d+8YKpVl1ODJ3fxk95dh9CaMe0etOIWMiH4SkNyVprVpTAxEznns jOUYGaLRNwFH+TdQY+u5NgPc77k81ytGJvLNCGm5Oz6soaCdojTkiO11PxfPAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUH8XnxCoPaRLhXTkNmbiWOpl2k94wHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzQzMDM1M2E2MjM5MzAzMDNhMzIzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzUzNzMwMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBbkAACAw DQYJKoZIhvcNAQELBQADggEBAMOeau11/XJGDNxDciDnNLIT6aANPJiRYtwob3Rr +2bzs3BQBviX77hfSysXRsvonRRiJO9o8byYJY93QYNELZfoTnN6bQfl1xdiG+U7 A2/p5T38ePibamYoZZdlYqqrMuB7UrQ9BmTjeK8CcJqGcyGqTRA6Cmrsv9NIPy6L LExGOqgYcZPQveG9kj9BRO6zFqp52j4CJK+K+5sPhqidyAfwR3pSVEhMcp6CzF8d 3XuTeXLN6cqpRgunIts+tvtxJjGKZuFpm10OJYqg27oOfAjIz5GsnQnwDbFwjiyb R3Z9B7OSiqERSkp5ukL0x77H3MGW7Z0/6/ZD9ZdREa/gMRk= -----END CERTIFICATE-----Generated at Fri Nov 22 06:33:23 2024 by rpki-client on console-ams.rpki-client.org