$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a34393a3a2f34382d3438203d3e203535373031.roa File: 323430353a623930303a34393a3a2f34382d3438203d3e203535373031.roa (raw, json) Hash identifier: epk03q8T3dFSdlLDOPTXPYd31gucJZDgVtVQsSiKOBE= Subject key identifier: 39:3F:A9:53:AE:65:DF:A5:A5:D1:7F:84:D3:FB:9B:1D:E7:1D:87:19 Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 43A2F47D72F5A8451C0DE967BAE07A78A0D73F7A Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a34393a3a2f34382d3438203d3e203535373031.roa Signing time: Thu 09 May 2024 04:01:01 +0000 ROA not before: Thu 09 May 2024 03:56:01 +0000 ROA not after: Thu 08 May 2025 04:01:01 +0000 asID: 55701 IP address blocks: 2405:b900:49::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:a2:f4:7d:72:f5:a8:45:1c:0d:e9:67:ba:e0:7a:78:a0:d7:3f:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: May 9 03:56:01 2024 GMT Not After : May 8 04:01:01 2025 GMT Subject: CN=393FA953AE65DFA5A5D17F84D3FB9B1DE71D8719 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:32:b4:cb:98:b4:93:95:1f:27:23:66:dd:3f: 5a:8c:a0:8d:f8:58:e8:6b:f8:c8:0a:a7:54:35:51: cb:ef:b0:3b:7a:9f:ff:70:25:9d:f2:39:79:92:95: 60:2d:d1:fb:6e:1c:7a:dc:48:4b:41:a3:a8:d5:60: 11:c4:92:ec:a5:79:36:74:1c:44:3d:3d:ae:60:c7: df:9b:2e:64:8d:af:c6:eb:c7:a3:a6:2f:1f:c6:05: 25:61:cb:9b:72:bf:12:29:f2:2d:77:8d:30:93:c6: c1:02:fd:10:ab:d0:69:2e:6c:e0:ee:f7:a4:eb:d1: ce:72:ea:bb:f8:27:ed:2a:35:3a:67:eb:d9:67:e9: 47:90:5b:d0:e3:f2:e9:22:88:be:bf:9d:4c:48:46: 1d:38:cd:9f:9b:db:42:33:18:68:34:f4:11:10:f5: 17:eb:be:91:a2:36:64:e0:31:ab:bc:f8:d5:1c:ad: b9:cc:af:ac:75:2f:64:41:f4:3a:c5:3c:df:56:cd: 86:55:1e:9d:be:f9:09:de:6d:8c:d7:5a:fc:ab:2d: 3a:77:e3:11:7e:ca:a9:8b:0d:df:0b:59:41:a8:e8: 1c:42:fa:3f:14:1e:c1:75:03:49:09:8d:19:81:a7: 1f:fc:8e:45:48:3f:5f:40:3b:f7:86:99:76:73:ef: 34:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:3F:A9:53:AE:65:DF:A5:A5:D1:7F:84:D3:FB:9B:1D:E7:1D:87:19 X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a34393a3a2f34382d3438203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:b900:49::/48 Signature Algorithm: sha256WithRSAEncryption d4:94:59:24:36:f4:a1:eb:cf:0d:5a:54:bc:96:49:cb:08:42: 5b:6b:e2:7f:f0:9e:90:4e:80:31:41:9a:f8:d6:e8:93:4a:c8: 53:50:4e:ac:bf:4b:38:cc:d3:a9:b0:4b:44:21:a0:e2:b5:da: 72:3c:75:9c:25:50:c8:37:f3:1c:5e:b7:d5:84:ed:0c:3f:17: 32:47:23:a5:1f:60:85:4d:74:6b:ae:f3:23:e5:b5:76:1e:e3: ff:c7:12:06:bc:5a:12:25:1b:a0:8f:84:00:ca:e2:44:72:58: 27:51:bb:9f:07:18:45:f0:f7:14:61:e0:40:19:84:c2:0b:c1: 4f:b2:67:cc:e5:ef:97:5c:ca:a4:f5:2a:dd:22:f4:b2:bb:36: 33:2a:36:b0:51:7c:5d:a8:9b:20:93:87:11:24:ad:f7:25:be: 1b:21:91:5b:2c:71:70:6b:22:e7:2d:b8:66:6e:5f:fc:f9:e0: f4:2a:4a:a2:50:37:37:b6:dc:1a:72:5a:53:6c:83:eb:95:b5: 97:76:3a:77:78:f6:26:77:57:81:be:11:ab:0b:44:d9:1f:cd: 0a:5f:2b:ab:42:41:47:25:8c:ba:08:a6:a4:6c:e7:0d:b7:33: 1e:d5:4f:f8:01:e0:36:58:95:d1:36:20:25:c7:15:17:82:9e: f3:95:2a:b1 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUQ6L0fXL1qEUcDelnuuB6eKDXP3owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yNDA1MDkwMzU2MDFaFw0yNTA1MDgwNDAxMDFaMDMxMTAvBgNV BAMTKDM5M0ZBOTUzQUU2NURGQTVBNUQxN0Y4NEQzRkI5QjFERTcxRDg3MTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2MrTLmLSTlR8nI2bdP1qMoI34 WOhr+MgKp1Q1UcvvsDt6n/9wJZ3yOXmSlWAt0ftuHHrcSEtBo6jVYBHEkuyleTZ0 HEQ9Pa5gx9+bLmSNr8brx6OmLx/GBSVhy5tyvxIp8i13jTCTxsEC/RCr0GkubODu 96Tr0c5y6rv4J+0qNTpn69ln6UeQW9Dj8ukiiL6/nUxIRh04zZ+b20IzGGg09BEQ 9RfrvpGiNmTgMau8+NUcrbnMr6x1L2RB9DrFPN9WzYZVHp2++QnebYzXWvyrLTp3 4xF+yqmLDd8LWUGo6BxC+j8UHsF1A0kJjRmBpx/8jkVIP19AO/eGmXZz7zRhAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUOT+pU65l36Wl0X+E0/ubHecdhxkwHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzQzMDM1M2E2MjM5MzAzMDNhMzQzOTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzUzNzMwMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBbkAAEkw DQYJKoZIhvcNAQELBQADggEBANSUWSQ29KHrzw1aVLyWScsIQltr4n/wnpBOgDFB mvjW6JNKyFNQTqy/SzjM06mwS0QhoOK12nI8dZwlUMg38xxet9WE7Qw/FzJHI6Uf YIVNdGuu8yPltXYe4//HEga8WhIlG6CPhADK4kRyWCdRu58HGEXw9xRh4EAZhMIL wU+yZ8zl75dcyqT1Kt0i9LK7NjMqNrBRfF2omyCThxEkrfclvhshkVsscXBrIuct uGZuX/z54PQqSqJQNze23BpyWlNsg+uVtZd2Ond49iZ3V4G+EasLRNkfzQpfK6tC QUcljLoIpqRs5w23Mx7VT/gB4DZYldE2ICXHFReCnvOVKrE= -----END CERTIFICATE-----Generated at Fri Nov 22 06:56:25 2024 by rpki-client on console-fra.rpki-client.org