$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a33363a3a2f34382d3438203d3e203535373031.roa File: 323430353a623930303a33363a3a2f34382d3438203d3e203535373031.roa (raw, json) Hash identifier: eN+Fc0ym9Rp/B1xdVE7/ZnXXQG2q6JAOAIIKx8NxHGA= Subject key identifier: 49:D2:9C:48:9A:87:91:F7:4A:8A:62:81:FE:0E:75:0E:5E:21:5C:62 Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 147DC2CA18AE481B4F71E375689FC1820EFD04D4 Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a33363a3a2f34382d3438203d3e203535373031.roa Signing time: Thu 09 May 2024 04:01:08 +0000 ROA not before: Thu 09 May 2024 03:56:08 +0000 ROA not after: Thu 08 May 2025 04:01:08 +0000 asID: 55701 IP address blocks: 2405:b900:36::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:7d:c2:ca:18:ae:48:1b:4f:71:e3:75:68:9f:c1:82:0e:fd:04:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: May 9 03:56:08 2024 GMT Not After : May 8 04:01:08 2025 GMT Subject: CN=49D29C489A8791F74A8A6281FE0E750E5E215C62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:7c:96:21:05:a0:2b:89:3f:e8:3a:b3:fe:d6: 2d:93:0a:df:c8:b8:0e:7a:d1:4b:23:fa:3a:c4:b6: 91:23:d0:55:61:be:c7:d9:ac:aa:ae:3d:d7:a3:e4: 33:17:b3:71:f0:00:0f:57:bc:f4:b3:a2:0e:85:be: 12:c0:30:d2:31:da:c7:72:91:d2:91:cc:52:a5:2b: 16:76:1c:30:0b:17:44:55:6f:29:81:22:92:55:9b: f6:a1:91:c8:0c:89:12:ff:88:8e:0c:90:06:b4:f5: 8d:db:e2:bc:07:6f:f2:ad:b0:08:6e:2a:ef:5b:60: 61:a9:a9:bc:f8:56:35:ca:2b:9a:c4:75:cf:e3:00: be:69:75:68:38:97:b6:f2:11:e1:89:87:91:11:6b: 69:90:24:3b:38:a8:67:a1:ab:8f:60:47:ce:5a:a0: b4:ef:83:05:b2:aa:f5:52:6a:62:b1:c5:96:79:6a: 00:55:fa:56:7a:fc:f2:ac:dd:f4:13:da:65:b6:1b: e3:45:50:91:50:16:5b:70:43:4c:0b:fb:42:c9:3b: b0:2d:96:fe:df:56:b4:2f:5c:e2:ab:4b:e7:a1:9d: 2a:bc:52:fb:8f:2b:63:71:ce:fe:80:89:79:94:f7: b0:41:68:72:c8:12:0c:be:b3:fa:df:2f:56:b8:e8: 0f:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:D2:9C:48:9A:87:91:F7:4A:8A:62:81:FE:0E:75:0E:5E:21:5C:62 X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a33363a3a2f34382d3438203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:b900:36::/48 Signature Algorithm: sha256WithRSAEncryption 31:db:73:68:b5:95:36:a6:c3:31:a1:ed:af:5a:a4:13:11:6d: 76:01:8d:02:fb:6b:d0:d0:66:df:2a:fc:61:52:5d:2c:be:ed: 28:37:be:c5:66:24:4e:c8:e9:d4:e2:9d:58:6f:0b:c7:9d:64: f1:39:04:69:62:99:6f:01:bd:f0:38:4c:3f:2f:fd:4d:46:d2: a6:14:45:32:31:6a:da:a8:b3:ff:22:e4:31:f9:c6:77:e0:55: bd:94:37:1f:41:9f:09:ac:8f:17:5f:fa:0f:14:f4:95:21:78: 64:91:5e:2d:2f:93:45:b7:df:5c:5e:87:82:a8:01:4a:f6:5a: c3:f1:81:f5:c3:14:16:2b:85:a0:ff:bd:ae:a6:7f:8b:fd:7f: 62:30:23:bd:dc:56:2d:fe:1b:1f:c7:b0:fd:3c:4d:48:bb:43: bc:4f:79:31:04:6c:8e:1c:cc:25:cf:31:69:ca:dd:27:38:e9: 5d:99:e6:93:68:45:9b:f5:c8:3d:62:7b:f8:8c:2f:aa:31:b3: b7:ca:5a:32:94:af:6a:0c:b1:76:a7:95:f5:36:c7:3e:d3:54: e3:05:b6:ac:56:64:6e:7f:8e:84:39:ce:4e:f0:7f:3b:73:cf: eb:1e:5a:db:92:1e:01:2e:0a:1e:28:6a:84:21:3e:5f:36:a3: 6d:5c:6d:b8 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUFH3CyhiuSBtPceN1aJ/Bgg79BNQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yNDA1MDkwMzU2MDhaFw0yNTA1MDgwNDAxMDhaMDMxMTAvBgNV BAMTKDQ5RDI5QzQ4OUE4NzkxRjc0QThBNjI4MUZFMEU3NTBFNUUyMTVDNjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQfJYhBaAriT/oOrP+1i2TCt/I uA560Usj+jrEtpEj0FVhvsfZrKquPdej5DMXs3HwAA9XvPSzog6FvhLAMNIx2sdy kdKRzFKlKxZ2HDALF0RVbymBIpJVm/ahkcgMiRL/iI4MkAa09Y3b4rwHb/KtsAhu Ku9bYGGpqbz4VjXKK5rEdc/jAL5pdWg4l7byEeGJh5ERa2mQJDs4qGehq49gR85a oLTvgwWyqvVSamKxxZZ5agBV+lZ6/PKs3fQT2mW2G+NFUJFQFltwQ0wL+0LJO7At lv7fVrQvXOKrS+ehnSq8UvuPK2Nxzv6AiXmU97BBaHLIEgy+s/rfL1a46A+7AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUSdKcSJqHkfdKimKB/g51Dl4hXGIwHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzQzMDM1M2E2MjM5MzAzMDNhMzMzNjNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzUzNzMwMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBbkAADYw DQYJKoZIhvcNAQELBQADggEBADHbc2i1lTamwzGh7a9apBMRbXYBjQL7a9DQZt8q /GFSXSy+7Sg3vsVmJE7I6dTinVhvC8edZPE5BGlimW8BvfA4TD8v/U1G0qYURTIx atqos/8i5DH5xnfgVb2UNx9Bnwmsjxdf+g8U9JUheGSRXi0vk0W331xeh4KoAUr2 WsPxgfXDFBYrhaD/va6mf4v9f2IwI73cVi3+Gx/HsP08TUi7Q7xPeTEEbI4czCXP MWnK3Sc46V2Z5pNoRZv1yD1ie/iML6oxs7fKWjKUr2oMsXanlfU2xz7TVOMFtqxW ZG5/joQ5zk7wfztzz+seWtuSHgEuCh4oaoQhPl82o21cbbg= -----END CERTIFICATE-----Generated at Fri Nov 22 06:56:25 2024 by rpki-client on console-fra.rpki-client.org