$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a33343a3a2f34382d3438203d3e203535373031.roa File: 323430353a623930303a33343a3a2f34382d3438203d3e203535373031.roa (raw, json) Hash identifier: FRsiJANuMzw0bXQL3Yb3CKGBtCFg03aIvJwRGcY7xjs= Subject key identifier: 84:C2:1A:F8:3C:29:F7:02:E5:75:88:A5:E4:64:51:8D:06:82:A8:F9 Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 6CA0DEBE237ECD6B0D968A9B83315A188CC7B150 Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a33343a3a2f34382d3438203d3e203535373031.roa Signing time: Thu 09 May 2024 04:01:08 +0000 ROA not before: Thu 09 May 2024 03:56:08 +0000 ROA not after: Thu 08 May 2025 04:01:08 +0000 asID: 55701 IP address blocks: 2405:b900:34::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:a0:de:be:23:7e:cd:6b:0d:96:8a:9b:83:31:5a:18:8c:c7:b1:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: May 9 03:56:08 2024 GMT Not After : May 8 04:01:08 2025 GMT Subject: CN=84C21AF83C29F702E57588A5E464518D0682A8F9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:8b:5c:f8:8f:01:d9:e3:f5:6d:02:51:6f:52: 3f:2a:72:b8:aa:34:71:e1:37:d4:32:fb:ca:c3:d3: de:94:05:4e:5e:57:5b:db:af:27:b2:7c:95:c5:f1: 9f:31:c0:45:22:a6:55:2e:12:ca:55:2c:80:ad:a0: 87:e5:85:c3:ef:fd:3a:0f:e6:44:29:b0:dd:8f:f5: 83:f3:b0:46:0b:e4:03:45:ce:d7:8d:29:0f:69:e0: 4e:32:3e:3f:11:81:e0:af:20:56:c0:61:41:27:92: 97:04:10:c6:b9:5d:4b:a9:40:95:db:cf:aa:7f:e8: 45:ce:dd:0e:75:32:f9:e2:cd:fc:61:97:c9:d7:57: cc:7a:a7:32:87:da:97:ad:e0:ed:22:17:08:20:52: fd:79:96:71:92:8e:07:3d:8e:dd:d0:be:24:d1:38: cb:23:cb:8a:15:82:8e:6b:e1:0a:ec:21:ea:93:c9: 1a:3a:d3:79:18:33:1b:33:7c:a8:78:ac:ed:15:b6: 8b:27:a2:da:32:15:e3:dc:7e:a3:ab:c8:17:e3:24: b4:1a:68:a7:65:9c:e3:f4:77:fb:9e:7e:f7:16:60: 9b:32:12:bc:0b:88:ed:e3:1d:a7:51:6a:fa:b4:57: 3f:36:49:24:b6:21:a5:89:9c:84:92:c2:89:a8:da: da:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:C2:1A:F8:3C:29:F7:02:E5:75:88:A5:E4:64:51:8D:06:82:A8:F9 X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a33343a3a2f34382d3438203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:b900:34::/48 Signature Algorithm: sha256WithRSAEncryption 1b:e5:95:81:37:02:78:16:42:4f:41:dd:85:c5:92:5d:4d:06: b9:f8:5c:b2:ed:fd:ae:2f:f2:bd:34:3f:db:49:0b:07:eb:23: 18:69:ea:5b:e8:3f:b1:ae:68:dd:79:d9:57:14:07:be:77:cc: 9b:2f:c8:b4:8e:17:d0:a0:d0:9f:c3:f7:28:2a:fd:7b:07:05: ee:a8:cc:eb:3a:df:8f:5a:f1:5c:05:a4:23:b9:81:5f:96:a0: d5:2d:39:9a:78:2a:7f:2c:ec:68:20:e0:96:8c:71:d2:58:8a: f3:53:01:ac:15:8c:fe:44:7d:4c:7c:db:b7:7a:77:41:a4:dc: d8:cf:9f:ab:30:5d:0a:13:fa:65:9b:29:2e:23:73:d7:6f:99: cc:81:61:43:fe:48:dc:57:d0:90:c1:a6:2d:a3:de:25:df:6b: 01:23:d5:50:c6:a1:7c:c7:af:15:db:07:c4:a9:56:01:ab:aa: 3e:bd:4f:de:ec:47:95:14:bd:ab:c0:a1:74:f0:85:17:00:64: 38:35:59:3c:56:e1:6b:25:a5:53:a7:27:77:f6:e0:b1:ab:ac: e9:c2:ed:c7:1c:f1:26:fe:10:ec:5b:a0:4f:e7:4f:de:f9:1d: 6c:97:9c:b0:7c:aa:e6:03:25:54:65:d5:d3:da:e0:1e:65:47: c3:57:6a:da -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUbKDeviN+zWsNloqbgzFaGIzHsVAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yNDA1MDkwMzU2MDhaFw0yNTA1MDgwNDAxMDhaMDMxMTAvBgNV BAMTKDg0QzIxQUY4M0MyOUY3MDJFNTc1ODhBNUU0NjQ1MThEMDY4MkE4RjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGi1z4jwHZ4/VtAlFvUj8qcriq NHHhN9Qy+8rD096UBU5eV1vbryeyfJXF8Z8xwEUiplUuEspVLICtoIflhcPv/ToP 5kQpsN2P9YPzsEYL5ANFzteNKQ9p4E4yPj8RgeCvIFbAYUEnkpcEEMa5XUupQJXb z6p/6EXO3Q51Mvnizfxhl8nXV8x6pzKH2pet4O0iFwggUv15lnGSjgc9jt3QviTR OMsjy4oVgo5r4QrsIeqTyRo603kYMxszfKh4rO0VtosnotoyFePcfqOryBfjJLQa aKdlnOP0d/uefvcWYJsyErwLiO3jHadRavq0Vz82SSS2IaWJnISSwomo2toLAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUhMIa+Dwp9wLldYil5GRRjQaCqPkwHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzQzMDM1M2E2MjM5MzAzMDNhMzMzNDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzUzNzMwMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBbkAADQw DQYJKoZIhvcNAQELBQADggEBABvllYE3AngWQk9B3YXFkl1NBrn4XLLt/a4v8r00 P9tJCwfrIxhp6lvoP7GuaN152VcUB753zJsvyLSOF9Cg0J/D9ygq/XsHBe6ozOs6 349a8VwFpCO5gV+WoNUtOZp4Kn8s7Ggg4JaMcdJYivNTAawVjP5EfUx827d6d0Gk 3NjPn6swXQoT+mWbKS4jc9dvmcyBYUP+SNxX0JDBpi2j3iXfawEj1VDGoXzHrxXb B8SpVgGrqj69T97sR5UUvavAoXTwhRcAZDg1WTxW4WslpVOnJ3f24LGrrOnC7ccc 8Sb+EOxboE/nT975HWyXnLB8quYDJVRl1dPa4B5lR8NXato= -----END CERTIFICATE-----Generated at Fri Nov 22 06:33:23 2024 by rpki-client on console-ams.rpki-client.org