$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a33373a3a2f34382d3438203d3e203535373031.roa File: 323430353a623930303a33373a3a2f34382d3438203d3e203535373031.roa (raw, json) Hash identifier: im0Jchf0p3XY62FV0fXMnbYllL3qUdTij0QBbxncqY4= Subject key identifier: F5:28:DC:78:B3:99:CA:72:78:75:A9:F7:A7:28:1C:57:5C:D3:D1:B5 Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 6C5BD102706F1B6E15BDB8299731FD86E4BA7A37 Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a33373a3a2f34382d3438203d3e203535373031.roa Signing time: Thu 09 May 2024 04:01:09 +0000 ROA not before: Thu 09 May 2024 03:56:09 +0000 ROA not after: Thu 08 May 2025 04:01:09 +0000 asID: 55701 IP address blocks: 2405:b900:37::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:5b:d1:02:70:6f:1b:6e:15:bd:b8:29:97:31:fd:86:e4:ba:7a:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: May 9 03:56:09 2024 GMT Not After : May 8 04:01:09 2025 GMT Subject: CN=F528DC78B399CA727875A9F7A7281C575CD3D1B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:0d:04:e9:e8:90:ea:8f:e6:7d:c7:81:a4:8e: ca:d2:93:b2:df:94:84:f4:7c:e1:02:61:bf:68:c8: 7f:d9:5d:38:c3:5e:66:57:79:f9:59:94:6d:2a:a8: a4:ae:ec:4f:72:f9:97:42:d1:76:61:8a:57:83:2b: c1:ad:df:da:bc:79:e0:d7:a1:ba:c8:73:be:f8:59: a3:25:23:8e:7b:99:e0:7a:ae:17:17:80:5e:78:cf: 98:eb:07:4e:7b:31:3f:9a:91:dc:63:a2:c7:03:fb: bc:59:d0:30:6b:c2:0d:b1:bb:c9:c0:53:5b:b2:5b: 03:e1:67:ea:de:a8:dd:db:39:36:f0:86:0e:4e:b0: b2:d2:6d:7d:a7:c3:c5:c2:70:19:32:e6:d1:b9:7d: 0f:75:ea:1f:21:ad:52:02:51:2c:73:7c:22:29:82: 2d:57:78:db:59:be:31:88:45:16:f3:99:a7:e2:35: fb:bc:e2:67:ba:b8:6f:0f:6e:a1:f9:22:f1:e1:6b: c3:53:9c:70:8e:cd:12:94:83:8a:2a:95:62:40:c1: 20:3f:af:39:71:2b:46:f9:82:ed:44:41:9f:9f:9d: c4:52:f9:0d:0c:0f:36:26:58:78:20:fc:13:8f:40: 28:8c:0f:d3:a5:8b:5c:95:e2:37:95:01:8a:ee:ac: 3e:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:28:DC:78:B3:99:CA:72:78:75:A9:F7:A7:28:1C:57:5C:D3:D1:B5 X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a33373a3a2f34382d3438203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:b900:37::/48 Signature Algorithm: sha256WithRSAEncryption 3f:3d:0d:72:1c:6c:df:45:61:70:f8:5a:16:96:d3:46:56:98: 83:7e:e5:e0:62:3d:ce:f2:fd:48:be:d3:b6:59:e0:66:cb:e8: b9:95:03:dc:1e:8b:3d:a2:98:61:2f:6b:4c:c2:1d:35:f0:44: fd:67:d3:9f:8b:1f:0b:fa:57:d7:88:ba:f6:d7:ae:7f:46:c1: c5:b0:b4:e4:d0:d5:d1:2d:a2:b9:3f:21:27:0f:aa:3e:56:33: 6d:5b:5b:29:7f:6b:a5:43:e3:64:91:ba:f2:fc:c8:6f:6e:2a: 34:44:bd:ad:10:0e:c3:85:0d:a9:75:d8:94:51:1e:7a:b4:1c: 04:43:be:be:30:6f:6c:69:d9:89:b0:54:fa:b5:a0:f4:13:a1: 07:4a:a7:a1:5b:d6:08:4f:8e:36:57:ef:60:92:bc:ca:a2:39: 41:84:76:44:36:02:0a:a2:b2:fd:f9:24:84:53:16:51:e6:22: 8a:2f:1f:e1:5d:25:20:be:f5:22:ca:bc:05:67:c9:40:90:a9: e1:60:01:81:09:99:5c:cc:f8:b6:b3:6b:c6:34:33:6b:dd:34: 65:7f:16:47:02:af:f1:6c:bd:fc:0c:7f:16:1d:54:07:d9:74: 11:2b:5e:b4:07:62:58:2a:bf:56:7c:57:f2:51:5a:f4:ab:ff: 37:b6:2e:86 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUbFvRAnBvG24VvbgplzH9huS6ejcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yNDA1MDkwMzU2MDlaFw0yNTA1MDgwNDAxMDlaMDMxMTAvBgNV BAMTKEY1MjhEQzc4QjM5OUNBNzI3ODc1QTlGN0E3MjgxQzU3NUNEM0QxQjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJDQTp6JDqj+Z9x4GkjsrSk7Lf lIT0fOECYb9oyH/ZXTjDXmZXeflZlG0qqKSu7E9y+ZdC0XZhileDK8Gt39q8eeDX obrIc774WaMlI457meB6rhcXgF54z5jrB057MT+akdxjoscD+7xZ0DBrwg2xu8nA U1uyWwPhZ+reqN3bOTbwhg5OsLLSbX2nw8XCcBky5tG5fQ916h8hrVICUSxzfCIp gi1XeNtZvjGIRRbzmafiNfu84me6uG8PbqH5IvHha8NTnHCOzRKUg4oqlWJAwSA/ rzlxK0b5gu1EQZ+fncRS+Q0MDzYmWHgg/BOPQCiMD9Oli1yV4jeVAYrurD5dAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQU9SjceLOZynJ4dan3pygcV1zT0bUwHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzQzMDM1M2E2MjM5MzAzMDNhMzMzNzNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzUzNzMwMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBbkAADcw DQYJKoZIhvcNAQELBQADggEBAD89DXIcbN9FYXD4WhaW00ZWmIN+5eBiPc7y/Ui+ 07ZZ4GbL6LmVA9weiz2imGEva0zCHTXwRP1n05+LHwv6V9eIuvbXrn9GwcWwtOTQ 1dEtork/IScPqj5WM21bWyl/a6VD42SRuvL8yG9uKjREva0QDsOFDal12JRRHnq0 HARDvr4wb2xp2YmwVPq1oPQToQdKp6Fb1ghPjjZX72CSvMqiOUGEdkQ2Agqisv35 JIRTFlHmIoovH+FdJSC+9SLKvAVnyUCQqeFgAYEJmVzM+Laza8Y0M2vdNGV/FkcC r/FsvfwMfxYdVAfZdBErXrQHYlgqv1Z8V/JRWvSr/ze2LoY= -----END CERTIFICATE-----Generated at Fri Nov 22 06:33:23 2024 by rpki-client on console-ams.rpki-client.org