$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a333030303a3a2f34382d3438203d3e203535373031.roa File: 323430353a623930303a333030303a3a2f34382d3438203d3e203535373031.roa (raw, json) Hash identifier: pXK9obN9UW5EUR8hVI1OgnpkGwfJzOACSgxxHlw+EUs= Subject key identifier: E4:D3:55:57:C5:23:8F:C3:25:F6:5E:22:EA:C2:FE:9F:F2:F5:8A:47 Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 611CE7B45DADA57183F0D759CEC80E042E016233 Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a333030303a3a2f34382d3438203d3e203535373031.roa Signing time: Thu 09 May 2024 04:00:58 +0000 ROA not before: Thu 09 May 2024 03:55:58 +0000 ROA not after: Thu 08 May 2025 04:00:58 +0000 asID: 55701 IP address blocks: 2405:b900:3000::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:1c:e7:b4:5d:ad:a5:71:83:f0:d7:59:ce:c8:0e:04:2e:01:62:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: May 9 03:55:58 2024 GMT Not After : May 8 04:00:58 2025 GMT Subject: CN=E4D35557C5238FC325F65E22EAC2FE9FF2F58A47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:da:1e:36:48:04:2e:24:ec:da:97:ab:3d:d7: 82:04:0e:88:ac:6c:dd:3a:8b:90:c8:19:a1:19:9e: 59:e8:f5:86:4e:e7:27:d5:c0:e8:ad:5c:93:58:ef: 9b:b4:e0:94:fc:c3:66:c6:89:af:12:cb:c5:00:e2: 9e:f8:e2:07:29:b5:0f:89:2e:85:5b:a7:71:ef:de: 26:ae:04:e5:06:7a:dc:06:3e:82:c7:16:1e:99:c3: cc:3e:8c:8b:85:72:fa:02:b1:86:ce:11:ed:bb:c5: f2:cd:09:62:4d:00:90:5e:df:7d:3b:ed:1d:84:4b: 88:13:4e:97:c6:d1:de:9f:94:d3:02:44:4c:3e:5c: c2:31:00:04:9a:7d:88:8b:23:df:47:e0:55:70:74: cf:82:e9:74:e4:6f:e5:58:a5:4f:14:ee:7d:74:38: 39:9f:17:cf:82:29:00:fe:93:f0:48:d0:cd:68:44: da:cb:19:42:10:79:f4:29:e6:68:18:9e:40:8e:54: 2b:52:cb:75:51:16:e8:f5:3a:f9:9d:6c:f7:49:be: ba:cb:ec:17:f8:90:18:64:9e:7b:db:81:90:46:d7: bb:ca:ff:f1:ec:5d:91:ed:67:29:3a:00:a6:cc:f4: 7d:58:50:68:e1:b7:ba:b5:a7:ea:48:5d:93:0d:ec: 38:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:D3:55:57:C5:23:8F:C3:25:F6:5E:22:EA:C2:FE:9F:F2:F5:8A:47 X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a333030303a3a2f34382d3438203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:b900:3000::/48 Signature Algorithm: sha256WithRSAEncryption d3:f2:4f:1e:db:24:f5:53:37:65:84:f4:2b:f6:24:3b:8b:24: 0f:52:05:2e:7b:fc:0c:a7:6f:7a:d7:95:a3:84:1d:51:12:fe: 4f:b6:c5:61:67:2a:53:bd:5d:16:52:9f:96:04:a4:d4:1d:e9: bd:c1:15:20:2c:98:5a:34:c3:64:2e:ab:c7:b4:75:c1:7a:e4: 61:73:a5:f4:41:5b:61:6f:d0:b9:b7:25:4a:33:3c:7b:1c:66: c9:21:13:00:4d:22:3e:bf:ce:c5:9b:36:0d:2f:8b:8c:2a:4c: a9:af:83:cf:9f:86:de:37:5b:22:a2:e5:d2:18:d8:c6:79:ee: a2:28:6f:ba:2d:80:61:5b:b1:78:7e:b0:2c:f1:96:15:1c:71: 5f:b8:fa:ea:ca:20:05:79:7c:6e:37:b7:ba:a5:72:64:c4:79: db:0c:d8:7d:fd:7c:ec:b6:e0:8f:a1:51:7f:5d:1c:9d:d9:41: 5e:dd:07:5f:30:e0:0a:9d:ce:e3:d0:75:84:e2:c2:44:44:d9: cd:fe:cd:af:6f:89:54:9b:44:a8:9c:17:49:1a:8c:d8:02:67: 7c:f7:a3:72:5c:cb:21:b6:49:b0:7b:80:78:c2:c8:f4:be:c0: 8e:11:a4:8b:37:26:73:4c:ac:08:d1:97:db:77:d6:6e:fd:52: d1:7d:d2:0a -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUYRzntF2tpXGD8NdZzsgOBC4BYjMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yNDA1MDkwMzU1NThaFw0yNTA1MDgwNDAwNThaMDMxMTAvBgNV BAMTKEU0RDM1NTU3QzUyMzhGQzMyNUY2NUUyMkVBQzJGRTlGRjJGNThBNDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC62h42SAQuJOzal6s914IEDois bN06i5DIGaEZnlno9YZO5yfVwOitXJNY75u04JT8w2bGia8Sy8UA4p744gcptQ+J LoVbp3Hv3iauBOUGetwGPoLHFh6Zw8w+jIuFcvoCsYbOEe27xfLNCWJNAJBe3307 7R2ES4gTTpfG0d6flNMCREw+XMIxAASafYiLI99H4FVwdM+C6XTkb+VYpU8U7n10 ODmfF8+CKQD+k/BI0M1oRNrLGUIQefQp5mgYnkCOVCtSy3VRFuj1OvmdbPdJvrrL 7Bf4kBhknnvbgZBG17vK//HsXZHtZyk6AKbM9H1YUGjht7q1p+pIXZMN7Di7AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU5NNVV8Ujj8Ml9l4i6sL+n/L1ikcwHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzQzMDM1M2E2MjM5MzAzMDNhMzMzMDMwMzAz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzNTM1MzczMDMxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAW5 ADAAMA0GCSqGSIb3DQEBCwUAA4IBAQDT8k8e2yT1UzdlhPQr9iQ7iyQPUgUue/wM p29615WjhB1REv5PtsVhZypTvV0WUp+WBKTUHem9wRUgLJhaNMNkLqvHtHXBeuRh c6X0QVthb9C5tyVKMzx7HGbJIRMATSI+v87FmzYNL4uMKkypr4PPn4beN1siouXS GNjGee6iKG+6LYBhW7F4frAs8ZYVHHFfuPrqyiAFeXxuN7e6pXJkxHnbDNh9/Xzs tuCPoVF/XRyd2UFe3QdfMOAKnc7j0HWE4sJERNnN/s2vb4lUm0SonBdJGozYAmd8 96NyXMshtkmwe4B4wsj0vsCOEaSLNyZzTKwI0Zfbd9Zu/VLRfdIK -----END CERTIFICATE-----Generated at Fri Nov 22 06:56:25 2024 by rpki-client on console-fra.rpki-client.org