$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a32393a3a2f34382d3438203d3e203535373031.roa File: 323430353a623930303a32393a3a2f34382d3438203d3e203535373031.roa (raw, json) Hash identifier: ru514rbz4t05BlXuZkrZNhtfjnWudrq1LEJiRoPooik= Subject key identifier: 0B:59:28:B0:C2:60:67:E4:34:08:77:CB:47:46:D5:55:23:8E:16:D3 Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 7D0D3D4620ADA702507B0A8B806A55EBB532EBB4 Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a32393a3a2f34382d3438203d3e203535373031.roa Signing time: Thu 09 May 2024 04:01:02 +0000 ROA not before: Thu 09 May 2024 03:56:02 +0000 ROA not after: Thu 08 May 2025 04:01:02 +0000 asID: 55701 IP address blocks: 2405:b900:29::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:0d:3d:46:20:ad:a7:02:50:7b:0a:8b:80:6a:55:eb:b5:32:eb:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: May 9 03:56:02 2024 GMT Not After : May 8 04:01:02 2025 GMT Subject: CN=0B5928B0C26067E4340877CB4746D555238E16D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:ec:81:e1:bd:67:08:7e:56:7d:b5:9c:c4:e8: 76:84:a0:da:1e:ed:fe:ad:4c:97:23:d2:be:3d:6b: 02:28:49:6b:00:f1:dd:87:ea:d8:d8:63:60:89:80: 51:39:90:17:f6:5d:90:42:8c:05:86:98:27:04:a9: 36:a9:34:6a:ce:00:2d:65:7a:97:2f:be:ba:9f:5f: 90:6b:52:22:d9:ed:1f:d1:1e:90:c6:1e:ef:f1:61: 83:79:21:92:ee:58:42:0b:6a:0c:e8:20:ee:be:e7: 9b:34:e9:e9:ac:0c:39:e0:99:62:25:33:9a:2d:ea: f0:99:f7:65:82:8b:af:8d:ac:ff:9c:59:48:56:97: 87:94:63:3c:16:1e:fa:cf:08:02:d9:c6:5a:d9:09: e5:8d:ed:b4:3a:84:5b:0d:77:00:f7:3c:6c:0f:db: a1:6f:13:7d:c1:bd:07:8b:e6:f5:80:bc:bb:be:fc: e0:d8:19:e3:44:f1:fa:44:f5:a5:eb:f7:58:60:9b: c3:ac:5a:fc:32:ca:2f:98:69:4f:6c:25:4f:c2:86: 78:5e:46:b3:fd:2e:14:45:53:bb:3d:cc:1d:8a:2e: a6:b1:a7:80:63:20:dd:54:c0:2c:65:0f:25:0f:b6: 3d:15:51:0f:62:da:6d:55:10:2b:e9:69:0b:7e:54: 22:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:59:28:B0:C2:60:67:E4:34:08:77:CB:47:46:D5:55:23:8E:16:D3 X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a32393a3a2f34382d3438203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:b900:29::/48 Signature Algorithm: sha256WithRSAEncryption 11:9b:0f:85:67:6b:14:6e:fc:0b:6d:4b:95:42:a0:fb:72:ae: 33:44:07:1a:54:02:3f:ce:73:30:de:37:32:ac:a8:93:33:19: e1:c1:a2:63:ae:ec:09:46:4d:a6:14:be:2f:16:83:dc:99:d5: c9:d0:11:99:02:86:79:19:9f:a7:76:58:05:99:eb:e2:68:14: bf:e6:51:4d:ec:b9:6c:0f:ce:91:b3:e8:16:d0:53:cf:ff:6e: 57:67:c3:bd:bd:c1:8f:86:af:e9:d5:68:7d:11:47:c7:3d:c0: db:d1:74:46:bc:3b:33:bf:01:f3:e7:06:b3:c4:ae:9a:99:ea: 88:b6:a0:b2:70:19:6b:82:65:c5:26:0e:4a:ae:d7:c3:cc:ad: 35:e6:5d:9a:7a:ce:33:40:00:4e:c3:9e:4f:f0:45:12:d6:46: a3:4c:97:bf:f6:ed:6e:6f:a6:7d:86:42:37:68:c1:5b:2d:33: ce:83:90:af:46:20:77:f3:23:d8:2a:6a:cb:e0:3b:42:82:67: f7:18:36:0c:06:2b:52:24:2a:99:12:b0:91:a3:ff:1e:c1:17: ff:1a:f7:5a:fd:4a:ca:06:23:b2:1d:04:18:e6:7f:66:7a:38: 3e:ee:eb:86:02:3c:9b:d7:84:01:1a:d6:73:4a:17:62:ef:56: 3a:02:15:e4 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUfQ09RiCtpwJQewqLgGpV67Uy67QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yNDA1MDkwMzU2MDJaFw0yNTA1MDgwNDAxMDJaMDMxMTAvBgNV BAMTKDBCNTkyOEIwQzI2MDY3RTQzNDA4NzdDQjQ3NDZENTU1MjM4RTE2RDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDz7IHhvWcIflZ9tZzE6HaEoNoe 7f6tTJcj0r49awIoSWsA8d2H6tjYY2CJgFE5kBf2XZBCjAWGmCcEqTapNGrOAC1l epcvvrqfX5BrUiLZ7R/RHpDGHu/xYYN5IZLuWEILagzoIO6+55s06emsDDngmWIl M5ot6vCZ92WCi6+NrP+cWUhWl4eUYzwWHvrPCALZxlrZCeWN7bQ6hFsNdwD3PGwP 26FvE33BvQeL5vWAvLu+/ODYGeNE8fpE9aXr91hgm8OsWvwyyi+YaU9sJU/Chnhe RrP9LhRFU7s9zB2KLqaxp4BjIN1UwCxlDyUPtj0VUQ9i2m1VECvpaQt+VCKzAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUC1kosMJgZ+Q0CHfLR0bVVSOOFtMwHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzQzMDM1M2E2MjM5MzAzMDNhMzIzOTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzUzNzMwMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBbkAACkw DQYJKoZIhvcNAQELBQADggEBABGbD4VnaxRu/AttS5VCoPtyrjNEBxpUAj/OczDe NzKsqJMzGeHBomOu7AlGTaYUvi8Wg9yZ1cnQEZkChnkZn6d2WAWZ6+JoFL/mUU3s uWwPzpGz6BbQU8//bldnw729wY+Gr+nVaH0RR8c9wNvRdEa8OzO/AfPnBrPErpqZ 6oi2oLJwGWuCZcUmDkqu18PMrTXmXZp6zjNAAE7Dnk/wRRLWRqNMl7/27W5vpn2G QjdowVstM86DkK9GIHfzI9gqasvgO0KCZ/cYNgwGK1IkKpkSsJGj/x7BF/8a91r9 SsoGI7IdBBjmf2Z6OD7u64YCPJvXhAEa1nNKF2LvVjoCFeQ= -----END CERTIFICATE-----Generated at Fri Nov 22 06:56:25 2024 by rpki-client on console-fra.rpki-client.org