$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a34333a3a2f34382d3438203d3e203535373031.roa File: 323430353a623930303a34333a3a2f34382d3438203d3e203535373031.roa (raw, json) Hash identifier: CNt5Mf3Ds3jrYGQCTT1ccBAAmYG0GxpYGHl/TPhDPwc= Subject key identifier: CD:75:58:CB:54:B4:6B:6A:1C:79:E2:21:39:9E:8A:39:54:80:63:FD Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 62E2886E0D90C1C0DA59C88D89D0F54B4338242E Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a34333a3a2f34382d3438203d3e203535373031.roa Signing time: Thu 09 May 2024 04:01:06 +0000 ROA not before: Thu 09 May 2024 03:56:06 +0000 ROA not after: Thu 08 May 2025 04:01:06 +0000 asID: 55701 IP address blocks: 2405:b900:43::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:e2:88:6e:0d:90:c1:c0:da:59:c8:8d:89:d0:f5:4b:43:38:24:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: May 9 03:56:06 2024 GMT Not After : May 8 04:01:06 2025 GMT Subject: CN=CD7558CB54B46B6A1C79E221399E8A39548063FD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:4d:65:69:ef:90:16:c2:a5:cc:72:81:ff:66: e4:16:37:d3:31:11:9b:98:7e:b6:62:37:b0:6e:73: 76:51:5a:14:0f:2a:fc:86:13:f7:b1:3b:5c:1a:1d: d8:af:46:81:e5:6e:df:72:6f:da:10:d1:4f:27:ef: 75:c3:fa:27:11:53:c4:62:3a:ef:a7:fe:63:28:3e: b0:0b:23:83:0e:88:7e:89:9f:02:b3:66:4a:6a:c4: b3:04:a8:00:5f:53:5a:eb:05:d2:18:b1:ae:67:ed: 67:c1:59:07:6f:47:2f:e2:e1:4e:51:7e:88:2a:fa: f2:f1:20:5f:56:ad:e0:52:63:45:db:e1:a4:08:b4: 1f:1f:3b:68:4b:2d:bb:de:05:fa:e5:ee:d6:ee:ef: 67:40:83:dd:9c:6a:5e:c4:b6:32:93:69:e5:77:63: f9:ca:74:0a:4c:ed:be:58:93:7d:4d:72:9f:b2:de: 1d:66:54:fd:60:03:c9:5c:92:24:e5:95:fb:66:3f: 27:a6:74:11:db:65:81:a5:5b:15:f1:aa:25:03:89: 80:d9:65:75:9c:73:51:81:25:0d:2a:f5:8c:bd:51: 89:49:ba:84:34:34:3a:28:ce:01:d7:b8:d0:e1:e5: 3b:62:55:36:62:14:14:3b:52:d3:39:36:e2:51:a1: 15:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:75:58:CB:54:B4:6B:6A:1C:79:E2:21:39:9E:8A:39:54:80:63:FD X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a34333a3a2f34382d3438203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:b900:43::/48 Signature Algorithm: sha256WithRSAEncryption 10:53:97:dc:25:a7:e9:55:7f:47:bb:a2:69:94:aa:a8:4e:09: 7b:29:58:cf:43:5e:7b:91:4c:7e:bc:d5:0d:19:83:ab:39:d5: f7:c3:0b:22:a9:3c:2e:72:c1:26:20:d6:9a:99:94:5f:a7:e1: 9e:55:81:e0:ee:4a:dd:62:c0:8c:b1:3e:4b:50:48:09:8a:b3: e2:40:05:10:4b:4b:dc:fc:fd:68:3e:f8:da:2b:14:04:07:7c: 4c:88:bf:eb:7d:b2:f3:cc:10:da:a2:28:3b:fb:59:c2:47:e1: 4a:9e:b9:b1:b8:6e:b0:51:87:0c:a4:b4:23:c4:fb:f2:f0:49: d8:4f:99:dc:30:59:38:c7:29:6d:e3:3d:d4:02:41:98:1f:48: 98:6d:20:38:27:14:07:14:f4:ef:30:2b:83:85:3c:a7:36:d9: b8:cf:7c:28:fb:53:9a:e7:5f:3c:b6:d9:3f:98:73:88:d6:c0: cc:33:28:3a:e1:b2:fb:98:af:25:de:83:ca:7a:29:42:07:62: c7:02:81:30:b0:5d:ec:4d:24:19:12:24:38:68:9a:8f:b2:7c: 17:98:17:1c:c4:00:05:b8:95:48:b7:a2:b8:d8:80:fd:f0:52: 72:61:af:a2:3d:39:f6:ff:d2:48:13:f1:c6:07:9e:d0:64:95: 1f:d6:ed:45 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUYuKIbg2QwcDaWciNidD1S0M4JC4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yNDA1MDkwMzU2MDZaFw0yNTA1MDgwNDAxMDZaMDMxMTAvBgNV BAMTKENENzU1OENCNTRCNDZCNkExQzc5RTIyMTM5OUU4QTM5NTQ4MDYzRkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2TWVp75AWwqXMcoH/ZuQWN9Mx EZuYfrZiN7Buc3ZRWhQPKvyGE/exO1waHdivRoHlbt9yb9oQ0U8n73XD+icRU8Ri Ou+n/mMoPrALI4MOiH6JnwKzZkpqxLMEqABfU1rrBdIYsa5n7WfBWQdvRy/i4U5R fogq+vLxIF9WreBSY0Xb4aQItB8fO2hLLbveBfrl7tbu72dAg92cal7EtjKTaeV3 Y/nKdApM7b5Yk31Ncp+y3h1mVP1gA8lckiTllftmPyemdBHbZYGlWxXxqiUDiYDZ ZXWcc1GBJQ0q9Yy9UYlJuoQ0NDoozgHXuNDh5TtiVTZiFBQ7UtM5NuJRoRXfAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUzXVYy1S0a2oceeIhOZ6KOVSAY/0wHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzQzMDM1M2E2MjM5MzAzMDNhMzQzMzNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzUzNzMwMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBbkAAEMw DQYJKoZIhvcNAQELBQADggEBABBTl9wlp+lVf0e7ommUqqhOCXspWM9DXnuRTH68 1Q0Zg6s51ffDCyKpPC5ywSYg1pqZlF+n4Z5VgeDuSt1iwIyxPktQSAmKs+JABRBL S9z8/Wg++NorFAQHfEyIv+t9svPMENqiKDv7WcJH4UqeubG4brBRhwyktCPE+/Lw SdhPmdwwWTjHKW3jPdQCQZgfSJhtIDgnFAcU9O8wK4OFPKc22bjPfCj7U5rnXzy2 2T+Yc4jWwMwzKDrhsvuYryXeg8p6KUIHYscCgTCwXexNJBkSJDhomo+yfBeYFxzE AAW4lUi3orjYgP3wUnJhr6I9Ofb/0kgT8cYHntBklR/W7UU= -----END CERTIFICATE-----Generated at Fri Nov 22 06:33:23 2024 by rpki-client on console-ams.rpki-client.org