$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a323a3a2f34382d3438203d3e203535373031.roa File: 323430353a623930303a323a3a2f34382d3438203d3e203535373031.roa (raw, json) Hash identifier: Ppm+VJ6FW1OGwZ4HV1oqcLBmMA8Z5gAVFtUe36wgx7s= Subject key identifier: 6A:8A:C6:4C:E1:D9:A0:29:B3:E3:EF:6F:A0:19:A9:38:AC:91:BE:D7 Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 3333116AC4FAEF1FBB2ADBE101E94BD9E219A12A Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a323a3a2f34382d3438203d3e203535373031.roa Signing time: Thu 09 May 2024 04:00:59 +0000 ROA not before: Thu 09 May 2024 03:55:59 +0000 ROA not after: Thu 08 May 2025 04:00:59 +0000 asID: 55701 IP address blocks: 2405:b900:2::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:33:11:6a:c4:fa:ef:1f:bb:2a:db:e1:01:e9:4b:d9:e2:19:a1:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: May 9 03:55:59 2024 GMT Not After : May 8 04:00:59 2025 GMT Subject: CN=6A8AC64CE1D9A029B3E3EF6FA019A938AC91BED7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:55:27:7d:4d:a3:9c:ac:7b:14:93:be:f9:e4: 55:e6:50:a1:9e:15:ec:30:19:eb:d2:6b:25:e0:62: d9:12:aa:7d:0f:69:dd:51:53:c4:da:ad:76:b3:09: 8a:16:3d:9e:9e:6d:ac:ce:f3:45:71:9c:7c:35:57: fd:e6:99:4e:fe:79:49:67:ee:4d:5f:f3:43:2b:bc: c3:43:71:8a:d2:d6:60:9d:e9:23:47:b3:f8:aa:c3: 0e:b8:ce:24:79:90:c7:e5:05:71:d9:5c:6d:84:73: 8c:e5:f8:02:64:f9:6b:14:b9:15:c9:05:79:6b:1a: e5:ee:8f:71:3b:24:6b:d0:3d:67:74:fd:29:9c:6d: 5a:61:31:27:c7:f8:d0:42:77:f7:ab:be:32:0e:1e: 0a:f2:f8:a6:9e:66:ed:78:b3:bd:f2:c2:1e:b6:6a: f2:d6:39:7a:fd:80:a5:ca:e2:a7:c7:9b:82:c0:cf: ff:76:2d:1c:03:ab:48:e6:d3:1e:fa:86:32:41:4a: 94:ff:5b:35:a7:86:47:ee:8e:8e:b1:c4:6e:69:b4: 51:8a:98:fa:93:2b:19:ea:9b:48:bf:31:cf:94:11: 9a:f5:95:fc:ee:e9:b7:dd:34:7a:6e:4a:c0:a5:52: 7d:43:ba:fb:5a:4f:9e:09:bc:52:85:de:93:33:40: c2:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:8A:C6:4C:E1:D9:A0:29:B3:E3:EF:6F:A0:19:A9:38:AC:91:BE:D7 X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a323a3a2f34382d3438203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:b900:2::/48 Signature Algorithm: sha256WithRSAEncryption 70:d6:4a:e8:60:48:40:22:61:4f:e5:f1:76:03:6f:50:09:a8: 86:74:9e:34:ef:45:e3:a8:e2:8a:a3:58:3b:66:44:53:3a:97: 35:15:12:90:7f:32:b1:53:1e:76:aa:70:5b:29:7a:9c:3c:14: fd:cc:6e:59:38:8f:7d:17:cf:3b:9a:21:15:e3:11:ff:a2:8c: df:68:75:32:4b:3d:bb:ff:93:ba:44:9e:d1:c5:3e:fc:dc:fe: 4c:8a:f8:5f:69:41:df:93:0a:34:46:bb:66:4e:fa:c9:98:10: fd:73:11:1a:89:bf:83:09:69:1f:24:46:73:21:35:7b:b0:ba: 79:18:05:f9:cd:cd:3a:b0:e6:a2:1f:18:d6:13:61:a8:2d:2f: a5:7e:13:65:05:65:99:bd:81:2d:73:60:a0:fa:97:88:7c:49: fb:71:e0:3e:6e:8b:d3:1c:d1:aa:4f:13:3c:c7:ac:66:4e:42: ac:23:36:be:10:8c:94:92:46:2d:f6:ee:6b:d6:e7:24:3c:e8: 23:9b:08:da:ab:dd:b3:3a:13:00:ee:04:f4:34:12:56:52:67: f4:63:63:1e:38:f6:22:f7:e5:4d:f1:9f:08:59:10:c7:22:97: 89:02:b6:12:2d:e8:d9:2b:a8:59:23:4b:a8:ed:da:01:33:fc: c8:55:d2:d8 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUMzMRasT67x+7KtvhAelL2eIZoSowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yNDA1MDkwMzU1NTlaFw0yNTA1MDgwNDAwNTlaMDMxMTAvBgNV BAMTKDZBOEFDNjRDRTFEOUEwMjlCM0UzRUY2RkEwMTlBOTM4QUM5MUJFRDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9VSd9TaOcrHsUk7755FXmUKGe FewwGevSayXgYtkSqn0Pad1RU8TarXazCYoWPZ6ebazO80VxnHw1V/3mmU7+eUln 7k1f80MrvMNDcYrS1mCd6SNHs/iqww64ziR5kMflBXHZXG2Ec4zl+AJk+WsUuRXJ BXlrGuXuj3E7JGvQPWd0/SmcbVphMSfH+NBCd/ervjIOHgry+KaeZu14s73ywh62 avLWOXr9gKXK4qfHm4LAz/92LRwDq0jm0x76hjJBSpT/WzWnhkfujo6xxG5ptFGK mPqTKxnqm0i/Mc+UEZr1lfzu6bfdNHpuSsClUn1DuvtaT54JvFKF3pMzQMLrAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUaorGTOHZoCmz4+9voBmpOKyRvtcwHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzQzMDM1M2E2MjM5MzAzMDNhMzIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzNTM1MzczMDMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAW5AAACMA0G CSqGSIb3DQEBCwUAA4IBAQBw1kroYEhAImFP5fF2A29QCaiGdJ4070XjqOKKo1g7 ZkRTOpc1FRKQfzKxUx52qnBbKXqcPBT9zG5ZOI99F887miEV4xH/oozfaHUySz27 /5O6RJ7RxT783P5MivhfaUHfkwo0RrtmTvrJmBD9cxEaib+DCWkfJEZzITV7sLp5 GAX5zc06sOaiHxjWE2GoLS+lfhNlBWWZvYEtc2Cg+peIfEn7ceA+bovTHNGqTxM8 x6xmTkKsIza+EIyUkkYt9u5r1uckPOgjmwjaq92zOhMA7gT0NBJWUmf0Y2MeOPYi 9+VN8Z8IWRDHIpeJArYSLejZK6hZI0uo7doBM/zIVdLY -----END CERTIFICATE-----Generated at Fri Nov 22 06:33:23 2024 by rpki-client on console-ams.rpki-client.org