$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a32313a3a2f34382d3438203d3e203535373031.roa File: 323430353a623930303a32313a3a2f34382d3438203d3e203535373031.roa (raw, json) Hash identifier: S764E3Y2+MyJqKGR9Xy/8Pok9+53fz3PjwssAa6+vK0= Subject key identifier: 21:BE:26:F6:8A:3F:37:A0:B8:20:19:01:28:EC:71:F4:40:8D:15:5E Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 0A4F58548C306E4B2CBF2CB435F858E627E8708E Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a32313a3a2f34382d3438203d3e203535373031.roa Signing time: Thu 09 May 2024 04:01:01 +0000 ROA not before: Thu 09 May 2024 03:56:01 +0000 ROA not after: Thu 08 May 2025 04:01:01 +0000 asID: 55701 IP address blocks: 2405:b900:21::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:4f:58:54:8c:30:6e:4b:2c:bf:2c:b4:35:f8:58:e6:27:e8:70:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: May 9 03:56:01 2024 GMT Not After : May 8 04:01:01 2025 GMT Subject: CN=21BE26F68A3F37A0B820190128EC71F4408D155E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:9c:cc:27:a0:6e:d3:3f:6e:53:d3:f1:7d:e4: 19:a8:11:18:e8:64:2a:e6:2a:94:62:37:7d:23:da: 59:a9:66:24:24:66:30:79:24:e3:78:a0:a8:cc:51: 87:49:71:a2:e7:5b:20:fe:34:1a:31:4d:c1:64:9c: d4:f2:18:f4:35:cc:56:a5:b2:1b:6e:48:62:4e:62: 5a:16:21:61:cc:29:6b:90:36:d0:ae:c3:7d:d8:49: 7c:2a:70:c0:87:8f:b2:e4:58:ce:91:a2:92:c0:17: a4:61:14:d7:78:16:2b:1b:bc:27:a7:3f:91:f9:f5: 2d:62:d9:81:1a:14:e2:d7:78:05:ad:49:2d:5c:c3: 4f:91:7b:d6:ee:77:12:aa:8e:cc:46:fb:05:50:a0: 7e:39:d9:46:12:27:38:5a:7c:52:76:71:72:38:0a: 5e:0a:de:69:7a:69:55:0e:e6:a2:5f:22:5d:59:2f: f2:c8:f7:58:4f:92:9b:ef:57:60:6d:cf:ed:f9:6e: 53:67:e4:de:4a:20:03:56:59:b7:cc:1d:46:a4:7e: 55:ae:12:ca:b3:79:a5:9a:f8:b4:61:56:a1:69:6c: e0:b4:10:61:8b:25:9e:b9:4c:6f:ef:82:20:38:3e: 23:cc:40:01:6a:f0:df:bd:3a:67:ce:de:9c:a6:d7: 6f:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:BE:26:F6:8A:3F:37:A0:B8:20:19:01:28:EC:71:F4:40:8D:15:5E X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a32313a3a2f34382d3438203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:b900:21::/48 Signature Algorithm: sha256WithRSAEncryption 79:f3:a2:9f:d4:1e:7c:48:70:20:83:a2:74:9f:9d:bd:9d:47: 9a:cc:6c:3f:b3:d7:d9:7b:80:5e:28:0a:b7:5b:3e:6d:1a:d9: dc:8f:c0:64:12:d3:6f:57:8e:84:9c:b6:2a:47:b6:1f:cf:2b: e6:61:b3:d5:0c:c4:e6:6e:78:8f:06:1c:28:e6:f1:62:6c:8b: d2:2c:36:71:da:0a:dc:43:64:5d:34:ff:28:db:48:79:9a:83: 06:57:43:c6:fa:68:93:f3:df:5f:5f:f1:fe:83:9c:63:81:bd: 60:c3:10:9a:bb:67:08:94:4c:c8:90:46:f5:52:6b:14:6d:8d: b9:02:e9:4e:1b:a6:59:2f:8c:76:bc:7a:b2:81:8c:da:8d:5a: b1:82:83:30:d0:ee:92:e8:b2:d4:c6:95:bb:8e:4b:fd:f3:f4: 11:34:c0:12:b1:e4:b7:f7:a2:ad:7c:a8:f1:9d:01:c3:d4:7f: dc:a7:f7:e3:96:e3:de:9a:c1:ad:19:a8:96:6e:54:c5:c3:c6: 45:d1:7b:14:60:a5:8b:6a:2f:cb:24:64:37:44:54:3f:e6:c2: e8:15:74:ab:f9:01:3c:45:3f:e9:a2:25:ba:fd:56:4e:e2:5b: cc:7a:63:8a:c4:30:ce:33:73:4a:a8:42:d3:0c:97:31:34:61: 62:94:ef:55 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUCk9YVIwwbkssvyy0NfhY5ifocI4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yNDA1MDkwMzU2MDFaFw0yNTA1MDgwNDAxMDFaMDMxMTAvBgNV BAMTKDIxQkUyNkY2OEEzRjM3QTBCODIwMTkwMTI4RUM3MUY0NDA4RDE1NUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrnMwnoG7TP25T0/F95BmoERjo ZCrmKpRiN30j2lmpZiQkZjB5JON4oKjMUYdJcaLnWyD+NBoxTcFknNTyGPQ1zFal shtuSGJOYloWIWHMKWuQNtCuw33YSXwqcMCHj7LkWM6RopLAF6RhFNd4FisbvCen P5H59S1i2YEaFOLXeAWtSS1cw0+Re9budxKqjsxG+wVQoH452UYSJzhafFJ2cXI4 Cl4K3ml6aVUO5qJfIl1ZL/LI91hPkpvvV2Btz+35blNn5N5KIANWWbfMHUakflWu EsqzeaWa+LRhVqFpbOC0EGGLJZ65TG/vgiA4PiPMQAFq8N+9OmfO3pym128tAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUIb4m9oo/N6C4IBkBKOxx9ECNFV4wHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzQzMDM1M2E2MjM5MzAzMDNhMzIzMTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzUzNzMwMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBbkAACEw DQYJKoZIhvcNAQELBQADggEBAHnzop/UHnxIcCCDonSfnb2dR5rMbD+z19l7gF4o CrdbPm0a2dyPwGQS029XjoSctipHth/PK+Zhs9UMxOZueI8GHCjm8WJsi9IsNnHa CtxDZF00/yjbSHmagwZXQ8b6aJPz319f8f6DnGOBvWDDEJq7ZwiUTMiQRvVSaxRt jbkC6U4bplkvjHa8erKBjNqNWrGCgzDQ7pLostTGlbuOS/3z9BE0wBKx5Lf3oq18 qPGdAcPUf9yn9+OW496awa0ZqJZuVMXDxkXRexRgpYtqL8skZDdEVD/mwugVdKv5 ATxFP+miJbr9Vk7iW8x6Y4rEMM4zc0qoQtMMlzE0YWKU71U= -----END CERTIFICATE-----Generated at Fri Nov 22 06:56:25 2024 by rpki-client on console-fra.rpki-client.org