$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a34373a3a2f34382d3438203d3e203535373031.roa File: 323430353a623930303a34373a3a2f34382d3438203d3e203535373031.roa (raw, json) Hash identifier: AR3mEbjthNb/lgloV2cYHwvSL4RXbftEtlJ0+1Vj7Ro= Subject key identifier: 0A:D5:43:0C:54:0D:E4:EF:80:7D:4D:BA:B9:0A:C2:F6:5C:5E:EF:85 Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 6468097A69C3610AF5C1995F8FB29EC2407EBA7A Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a34373a3a2f34382d3438203d3e203535373031.roa Signing time: Thu 09 May 2024 04:01:08 +0000 ROA not before: Thu 09 May 2024 03:56:08 +0000 ROA not after: Thu 08 May 2025 04:01:08 +0000 asID: 55701 IP address blocks: 2405:b900:47::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:68:09:7a:69:c3:61:0a:f5:c1:99:5f:8f:b2:9e:c2:40:7e:ba:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: May 9 03:56:08 2024 GMT Not After : May 8 04:01:08 2025 GMT Subject: CN=0AD5430C540DE4EF807D4DBAB90AC2F65C5EEF85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:26:6e:0f:7c:20:e5:87:10:c9:03:08:04:8e: d3:33:d8:1d:ef:df:8d:de:8f:7d:0c:b5:2d:79:d4: c1:47:5b:e0:e7:21:0c:80:79:cd:e7:a0:97:f6:34: ff:f1:30:64:a7:a4:de:26:52:95:e4:c5:20:43:2e: 70:34:63:48:04:70:3a:cb:92:78:fd:73:da:3d:9e: bd:5a:be:0b:f0:2d:5b:be:8f:ec:4c:45:e7:b8:01: d4:6d:42:d2:82:11:19:c2:8e:d9:f8:2f:06:f3:2a: 13:b2:4d:1b:02:6f:69:31:73:e5:ed:86:6a:ee:a3: 01:76:17:ef:c3:4d:9a:c1:d9:f6:77:48:6d:0f:10: b0:0b:78:f5:1d:3a:4a:02:49:d2:6e:67:88:b6:ea: 59:c3:93:b8:fc:b0:e8:bb:58:36:f6:9a:34:67:94: 4a:e7:29:48:49:a1:31:b7:11:10:77:82:95:f0:cd: 5f:d7:6d:8a:bc:0c:cf:fe:f9:1b:e4:be:29:ae:10: 81:f7:69:c2:35:41:c2:42:02:c9:2f:0e:a5:9e:09: 55:6c:40:6c:84:22:38:62:ec:bd:ca:c6:c0:58:a8: 20:bd:b1:74:e2:08:e7:21:77:c2:7c:82:4c:34:61: 82:e9:55:dc:db:53:7e:9f:7a:5a:af:40:bf:09:a1: d2:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:D5:43:0C:54:0D:E4:EF:80:7D:4D:BA:B9:0A:C2:F6:5C:5E:EF:85 X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a34373a3a2f34382d3438203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:b900:47::/48 Signature Algorithm: sha256WithRSAEncryption b4:3d:a5:42:ac:e5:8e:a5:f0:77:2f:1f:fd:97:b0:88:2f:10: 19:83:f0:3d:c8:2f:70:de:70:bf:7e:1b:f6:5d:30:4b:16:de: e2:98:91:2b:a4:68:aa:12:c1:fc:f3:3b:f7:25:8b:9d:98:07: 25:9f:90:8f:1a:80:4f:90:40:57:31:62:de:4b:2b:42:c6:03: 51:4d:35:a1:8f:04:e7:72:e7:26:40:5f:8a:4e:43:fd:6a:ef: 09:3e:d1:71:30:79:05:08:d4:27:bf:84:dd:be:5e:a7:fa:67: a8:8b:21:36:e3:e1:1a:92:ac:86:d2:38:cc:7f:98:98:b8:05: a2:e6:fe:fa:fc:81:bc:6b:93:9f:78:94:7f:44:70:a9:49:a4: ed:31:01:ea:11:fd:6a:6f:d4:cf:a0:6b:6a:7f:53:ac:2a:eb: b7:9d:37:2d:c6:6a:11:92:2d:db:e8:4e:da:c7:f5:09:6b:47: 17:47:b8:60:e2:42:a6:32:b8:7f:27:5c:3b:78:1b:9a:3f:94: df:6c:70:8f:03:16:da:66:2f:48:10:bf:b5:59:ab:ea:45:03: 1c:9b:cf:1d:ed:ba:d7:55:c5:ee:12:4f:40:ea:62:dc:88:d9: 49:c6:f1:7a:d5:1e:45:49:5e:cb:6b:dd:d9:d5:37:c8:bf:58: a2:56:b8:10 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUZGgJemnDYQr1wZlfj7KewkB+unowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yNDA1MDkwMzU2MDhaFw0yNTA1MDgwNDAxMDhaMDMxMTAvBgNV BAMTKDBBRDU0MzBDNTQwREU0RUY4MDdENERCQUI5MEFDMkY2NUM1RUVGODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjJm4PfCDlhxDJAwgEjtMz2B3v 343ej30MtS151MFHW+DnIQyAec3noJf2NP/xMGSnpN4mUpXkxSBDLnA0Y0gEcDrL knj9c9o9nr1avgvwLVu+j+xMRee4AdRtQtKCERnCjtn4LwbzKhOyTRsCb2kxc+Xt hmruowF2F+/DTZrB2fZ3SG0PELALePUdOkoCSdJuZ4i26lnDk7j8sOi7WDb2mjRn lErnKUhJoTG3ERB3gpXwzV/XbYq8DM/++RvkvimuEIH3acI1QcJCAskvDqWeCVVs QGyEIjhi7L3KxsBYqCC9sXTiCOchd8J8gkw0YYLpVdzbU36felqvQL8JodJfAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUCtVDDFQN5O+AfU26uQrC9lxe74UwHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzQzMDM1M2E2MjM5MzAzMDNhMzQzNzNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzUzNzMwMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBbkAAEcw DQYJKoZIhvcNAQELBQADggEBALQ9pUKs5Y6l8HcvH/2XsIgvEBmD8D3IL3DecL9+ G/ZdMEsW3uKYkSukaKoSwfzzO/cli52YByWfkI8agE+QQFcxYt5LK0LGA1FNNaGP BOdy5yZAX4pOQ/1q7wk+0XEweQUI1Ce/hN2+Xqf6Z6iLITbj4RqSrIbSOMx/mJi4 BaLm/vr8gbxrk594lH9EcKlJpO0xAeoR/Wpv1M+ga2p/U6wq67edNy3GahGSLdvo TtrH9QlrRxdHuGDiQqYyuH8nXDt4G5o/lN9scI8DFtpmL0gQv7VZq+pFAxybzx3t utdVxe4ST0DqYtyI2UnG8XrVHkVJXstr3dnVN8i/WKJWuBA= -----END CERTIFICATE-----Generated at Fri Nov 22 06:56:25 2024 by rpki-client on console-fra.rpki-client.org