$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a35303a3a2f34382d3438203d3e203535373031.roa File: 323430353a623930303a35303a3a2f34382d3438203d3e203535373031.roa (raw, json) Hash identifier: HazDDqMocjwOxBrePokitPVTOnsNP5oHBmZZmy4aZPM= Subject key identifier: F1:74:0D:06:6B:B8:76:42:98:AF:8D:30:0D:79:98:34:85:77:6A:F6 Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 1B1DA2BC1067DE30399F85F4EFE83A43D152F395 Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a35303a3a2f34382d3438203d3e203535373031.roa Signing time: Thu 09 May 2024 04:01:03 +0000 ROA not before: Thu 09 May 2024 03:56:03 +0000 ROA not after: Thu 08 May 2025 04:01:03 +0000 asID: 55701 IP address blocks: 2405:b900:50::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:1d:a2:bc:10:67:de:30:39:9f:85:f4:ef:e8:3a:43:d1:52:f3:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: May 9 03:56:03 2024 GMT Not After : May 8 04:01:03 2025 GMT Subject: CN=F1740D066BB8764298AF8D300D79983485776AF6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:d8:6e:f2:f9:f1:28:34:52:40:a6:60:6d:89: ab:7c:96:51:b3:de:48:22:82:da:0e:02:ff:e6:e5: d8:b4:99:d1:6d:a4:2b:1a:0c:a4:b9:35:28:d2:8c: 52:4c:40:36:18:77:16:40:ec:3f:1d:33:e7:10:2c: 8c:aa:be:23:41:d8:dc:50:9c:e7:67:4d:51:6a:af: de:6d:7a:cd:96:6f:6e:13:e3:4c:17:c5:b3:d5:c3: f8:96:80:59:6f:49:da:3a:1b:19:93:31:66:fb:1b: ca:ce:24:9a:49:76:f8:3b:b9:f1:cd:27:50:e4:d7: a8:81:c1:2e:7c:ed:b3:df:5e:9a:6a:46:12:36:a0: 68:04:a7:a9:0d:64:ad:9f:6c:cf:2c:e9:c2:a4:20: 0b:a7:3f:51:1d:8e:85:64:a0:0a:07:90:4b:b1:f4: cf:ac:65:e2:53:29:87:20:d3:5a:e2:f2:b5:16:de: ae:f7:34:d4:24:fc:27:bf:09:ec:2b:ab:bb:55:de: da:97:89:60:12:cc:e1:85:70:ef:08:2e:13:52:a4: 22:86:b1:ca:50:ea:2c:0a:16:3e:da:ae:eb:1b:83: 2c:63:72:0b:84:75:74:d9:41:ba:6a:cd:5a:b3:29: 0c:9a:eb:d4:a8:09:24:bf:e7:e8:b8:71:41:9d:bc: 37:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:74:0D:06:6B:B8:76:42:98:AF:8D:30:0D:79:98:34:85:77:6A:F6 X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a35303a3a2f34382d3438203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:b900:50::/48 Signature Algorithm: sha256WithRSAEncryption 62:3d:d0:e4:c0:11:12:1b:23:5e:a4:29:20:13:c5:10:3b:22: 5e:34:cc:f2:ac:c4:c8:e1:cc:52:00:b1:b1:c6:af:02:1d:3d: 60:de:3d:f6:bf:a1:48:b7:6e:3e:e1:e8:91:60:80:32:d3:b9: e6:51:e6:b3:36:7e:c0:61:6e:81:8f:88:d2:9f:3d:fe:f3:88: 41:ff:49:53:14:c7:a4:47:fe:85:e6:38:a9:cb:a6:56:4f:89: 37:b3:ca:08:b3:88:30:fc:1c:04:19:7a:e7:19:59:06:36:be: 6e:52:1e:49:54:b5:c4:04:cf:f3:94:2e:5c:5a:2f:d6:93:16: 93:eb:77:aa:ae:35:ef:fd:80:69:ea:97:c3:f2:42:d8:bc:c2: 80:bd:df:43:f9:2a:70:a1:c9:b4:4e:c7:dc:d0:e3:05:58:82: 2b:f7:ec:fd:92:46:1b:e4:04:9d:8a:50:4c:05:8a:46:0d:42: 27:76:35:ca:04:55:8b:b6:e4:2d:e4:94:c7:25:1f:ce:80:fa: f4:a3:34:2c:87:51:0c:ee:88:aa:0e:13:a4:e0:91:fa:4f:e9: e4:0a:b9:65:45:09:92:4d:81:82:23:76:61:7d:02:f2:8f:0e: 5f:90:67:9b:b7:12:75:c0:fd:1c:c0:18:1a:b7:a9:12:85:61: 4e:dd:78:69 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUGx2ivBBn3jA5n4X07+g6Q9FS85UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yNDA1MDkwMzU2MDNaFw0yNTA1MDgwNDAxMDNaMDMxMTAvBgNV BAMTKEYxNzQwRDA2NkJCODc2NDI5OEFGOEQzMDBENzk5ODM0ODU3NzZBRjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDO2G7y+fEoNFJApmBtiat8llGz 3kgigtoOAv/m5di0mdFtpCsaDKS5NSjSjFJMQDYYdxZA7D8dM+cQLIyqviNB2NxQ nOdnTVFqr95tes2Wb24T40wXxbPVw/iWgFlvSdo6GxmTMWb7G8rOJJpJdvg7ufHN J1Dk16iBwS587bPfXppqRhI2oGgEp6kNZK2fbM8s6cKkIAunP1EdjoVkoAoHkEux 9M+sZeJTKYcg01ri8rUW3q73NNQk/Ce/Cewrq7tV3tqXiWASzOGFcO8ILhNSpCKG scpQ6iwKFj7arusbgyxjcguEdXTZQbpqzVqzKQya69SoCSS/5+i4cUGdvDdfAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQU8XQNBmu4dkKYr40wDXmYNIV3avYwHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzQzMDM1M2E2MjM5MzAzMDNhMzUzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzUzNzMwMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBbkAAFAw DQYJKoZIhvcNAQELBQADggEBAGI90OTAERIbI16kKSATxRA7Il40zPKsxMjhzFIA sbHGrwIdPWDePfa/oUi3bj7h6JFggDLTueZR5rM2fsBhboGPiNKfPf7ziEH/SVMU x6RH/oXmOKnLplZPiTezygiziDD8HAQZeucZWQY2vm5SHklUtcQEz/OULlxaL9aT FpPrd6quNe/9gGnql8PyQti8woC930P5KnChybROx9zQ4wVYgiv37P2SRhvkBJ2K UEwFikYNQid2NcoEVYu25C3klMclH86A+vSjNCyHUQzuiKoOE6TgkfpP6eQKuWVF CZJNgYIjdmF9AvKPDl+QZ5u3EnXA/RzAGBq3qRKFYU7deGk= -----END CERTIFICATE-----Generated at Fri Nov 22 06:56:25 2024 by rpki-client on console-fra.rpki-client.org