$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a333a3a2f34382d3438203d3e203535373031.roa File: 323430353a623930303a333a3a2f34382d3438203d3e203535373031.roa (raw, json) Hash identifier: YTSHErjghxt8DShlsv4kcSYbdJpdgwst1VuNmf7PBWM= Subject key identifier: 3B:EB:8A:33:CE:0C:CD:B1:D9:A4:A0:19:DA:E4:4C:6A:C7:5F:3C:CD Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 3A0C0105D1266F4024396C64CB711CAA49A9C903 Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a333a3a2f34382d3438203d3e203535373031.roa Signing time: Thu 09 May 2024 04:01:05 +0000 ROA not before: Thu 09 May 2024 03:56:05 +0000 ROA not after: Thu 08 May 2025 04:01:05 +0000 asID: 55701 IP address blocks: 2405:b900:3::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:0c:01:05:d1:26:6f:40:24:39:6c:64:cb:71:1c:aa:49:a9:c9:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: May 9 03:56:05 2024 GMT Not After : May 8 04:01:05 2025 GMT Subject: CN=3BEB8A33CE0CCDB1D9A4A019DAE44C6AC75F3CCD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:d3:47:6f:27:0e:80:ff:3a:d4:ae:d9:e0:df: ce:f1:ad:1d:ca:c4:a9:fb:2a:ee:09:3d:92:e3:44: ca:c2:b8:21:6e:fc:e5:8e:63:76:60:f2:20:ab:3d: 83:de:a1:27:dd:0d:a7:2c:85:7f:02:49:c3:62:14: 3e:c6:05:cc:fa:4f:a1:ad:2d:a3:15:ab:ab:e5:7d: 76:e3:3c:1e:51:cb:fd:20:3a:2b:bc:ca:e1:80:f0: 6a:14:22:95:e4:02:23:ec:3b:49:69:6b:66:bb:bd: 05:a3:bd:3c:0e:07:4c:90:13:90:db:c9:84:cd:71: 84:4a:da:fd:df:55:0c:96:ef:57:f1:9f:66:a2:53: bb:ff:31:e2:38:82:cb:59:5f:dd:35:2e:b7:8d:3a: e8:03:ff:fc:c7:2c:a0:f0:5b:cd:26:f3:3c:69:f1: b0:75:f6:c2:2e:9d:de:56:7c:6f:5f:73:d6:38:2d: d6:1a:b4:03:41:36:22:b1:f5:ca:98:9f:14:40:8d: b1:e1:f1:bc:9a:86:12:4c:82:af:7d:8a:4a:ba:25: 65:60:0d:56:29:c9:4e:a8:f5:db:cb:c7:91:a4:fc: 87:d5:14:4a:a4:2b:d3:5f:62:7a:ff:03:7c:f9:32: fa:4c:0d:d2:4d:f2:ce:e8:eb:1b:f5:2f:dd:d3:c2: 38:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:EB:8A:33:CE:0C:CD:B1:D9:A4:A0:19:DA:E4:4C:6A:C7:5F:3C:CD X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a333a3a2f34382d3438203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:b900:3::/48 Signature Algorithm: sha256WithRSAEncryption 40:95:d9:3f:63:89:3c:bf:50:39:56:15:91:00:ee:6b:2f:9c: 40:d3:2f:0f:f2:00:20:08:ca:a8:22:b8:08:0b:f1:25:66:36: 31:6e:dc:c2:60:99:df:e0:bc:aa:83:ec:70:37:e7:b1:b5:ff: ea:6f:5f:04:fd:d3:c7:85:76:95:65:ce:5b:0d:8f:92:db:74: 23:e6:5a:d0:e3:47:c2:04:e4:2b:c0:ec:1f:0d:d7:d6:7f:4b: b9:a0:30:8b:9e:f8:ff:fa:13:b2:69:d5:3b:86:61:85:08:eb: 07:d3:28:f9:33:f9:b6:d0:ac:b3:a4:73:29:50:93:b5:4d:97: a9:a9:fa:6d:e5:61:8b:b2:5e:cf:15:9f:69:2e:90:ff:8e:23: e9:56:7b:08:9e:04:23:d5:8c:40:62:d3:59:05:3a:75:46:13: db:f6:62:4f:a8:2d:84:30:91:5a:94:63:63:c7:f4:b1:fc:e8: 10:59:da:93:c0:8f:0e:01:ac:90:7b:f1:c8:5c:f5:b1:45:a9: e6:bd:93:36:44:85:ae:16:d0:b3:ba:a0:a6:93:3b:c4:77:e8: 00:17:b2:50:eb:0a:8e:24:56:36:81:f2:fa:77:a0:20:0e:d0: 91:c4:b8:67:c4:da:81:a8:67:bf:32:1b:0c:27:58:4b:6a:0a: b9:d7:15:ce -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUOgwBBdEmb0AkOWxky3EcqkmpyQMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yNDA1MDkwMzU2MDVaFw0yNTA1MDgwNDAxMDVaMDMxMTAvBgNV BAMTKDNCRUI4QTMzQ0UwQ0NEQjFEOUE0QTAxOURBRTQ0QzZBQzc1RjNDQ0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD200dvJw6A/zrUrtng387xrR3K xKn7Ku4JPZLjRMrCuCFu/OWOY3Zg8iCrPYPeoSfdDacshX8CScNiFD7GBcz6T6Gt LaMVq6vlfXbjPB5Ry/0gOiu8yuGA8GoUIpXkAiPsO0lpa2a7vQWjvTwOB0yQE5Db yYTNcYRK2v3fVQyW71fxn2aiU7v/MeI4gstZX901LreNOugD//zHLKDwW80m8zxp 8bB19sIund5WfG9fc9Y4LdYatANBNiKx9cqYnxRAjbHh8byahhJMgq99ikq6JWVg DVYpyU6o9dvLx5Gk/IfVFEqkK9NfYnr/A3z5MvpMDdJN8s7o6xv1L93TwjjvAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUO+uKM84MzbHZpKAZ2uRMasdfPM0wHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzQzMDM1M2E2MjM5MzAzMDNhMzMzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzNTM1MzczMDMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAW5AAADMA0G CSqGSIb3DQEBCwUAA4IBAQBAldk/Y4k8v1A5VhWRAO5rL5xA0y8P8gAgCMqoIrgI C/ElZjYxbtzCYJnf4Lyqg+xwN+extf/qb18E/dPHhXaVZc5bDY+S23Qj5lrQ40fC BOQrwOwfDdfWf0u5oDCLnvj/+hOyadU7hmGFCOsH0yj5M/m20KyzpHMpUJO1TZep qfpt5WGLsl7PFZ9pLpD/jiPpVnsIngQj1YxAYtNZBTp1RhPb9mJPqC2EMJFalGNj x/Sx/OgQWdqTwI8OAayQe/HIXPWxRanmvZM2RIWuFtCzuqCmkzvEd+gAF7JQ6wqO JFY2gfL6d6AgDtCRxLhnxNqBqGe/MhsMJ1hLagq51xXO -----END CERTIFICATE-----Generated at Fri Nov 22 06:33:23 2024 by rpki-client on console-ams.rpki-client.org