$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a35313a3a2f34382d3438203d3e203535373031.roa File: 323430353a623930303a35313a3a2f34382d3438203d3e203535373031.roa (raw, json) Hash identifier: y8cIcL5xTZmmGMw2kJmtYeCkdP0IhaeSleDO9jWZEq0= Subject key identifier: 05:5D:93:96:5B:99:DE:94:E0:C8:A8:C5:F3:6C:89:63:55:69:55:F9 Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 06B1F7F92950ED54B8355782A99A8E3148E7B517 Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a35313a3a2f34382d3438203d3e203535373031.roa Signing time: Thu 09 May 2024 04:01:00 +0000 ROA not before: Thu 09 May 2024 03:56:00 +0000 ROA not after: Thu 08 May 2025 04:01:00 +0000 asID: 55701 IP address blocks: 2405:b900:51::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:b1:f7:f9:29:50:ed:54:b8:35:57:82:a9:9a:8e:31:48:e7:b5:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: May 9 03:56:00 2024 GMT Not After : May 8 04:01:00 2025 GMT Subject: CN=055D93965B99DE94E0C8A8C5F36C8963556955F9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:c9:dc:c3:db:e5:c1:46:04:6d:f4:d1:f8:5b: 70:8b:40:1c:9c:4f:27:a7:21:91:c9:33:33:1c:9f: 34:da:70:f5:a5:cf:64:f1:35:f8:05:cc:ab:a1:e4: 8d:bb:c9:26:e5:ae:bd:f0:34:9c:54:dd:c9:ad:29: bd:3c:ec:12:13:ff:77:10:40:3f:07:41:75:bc:a1: 5d:55:b2:cd:c3:a7:e0:10:f3:77:13:08:5c:6e:f1: c6:29:ac:3e:75:70:96:0c:a8:0b:af:5c:ad:d0:f9: 30:78:ca:5a:99:e5:e2:33:fb:45:df:cb:d4:7d:ad: 37:d2:74:2e:80:66:9c:0f:1c:45:86:87:5a:f4:e0: 1c:79:b3:f0:79:9d:7f:d2:fc:02:b6:e2:29:8e:36: cb:74:92:6e:ef:1c:63:b5:2b:42:5e:31:01:fb:b1: 3f:c5:24:5f:b5:58:5c:26:37:ba:ec:62:03:e7:c2: fe:45:e0:ec:a8:1d:3e:cd:45:1c:b6:17:62:fb:5d: 51:18:3b:37:e3:7e:ec:48:51:16:96:4d:fb:67:11: ab:e1:1f:4c:a3:71:5b:4f:66:83:9a:34:d4:f8:71: 49:d3:ca:a1:fb:9b:95:85:67:f8:b4:ed:95:91:7d: dc:11:40:d9:99:40:75:82:ca:68:9b:78:5c:59:a7: 08:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:5D:93:96:5B:99:DE:94:E0:C8:A8:C5:F3:6C:89:63:55:69:55:F9 X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a35313a3a2f34382d3438203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:b900:51::/48 Signature Algorithm: sha256WithRSAEncryption bc:48:2c:18:8c:01:e7:88:2d:9f:75:18:3b:d2:b9:b9:2c:80: 0c:8f:c2:55:61:1a:b1:ca:8d:18:0c:5d:96:32:cf:b8:f8:d6: d2:bf:a9:73:ba:2c:d2:38:e6:87:c8:d4:8e:09:50:2a:c7:80: d4:9e:a4:42:ce:07:38:0b:39:e9:ed:c5:ae:cc:6d:8b:fb:0b: 87:95:74:17:68:d5:e8:8a:6e:8e:2f:ec:d8:9d:d4:d2:94:b9: ab:8c:9a:da:ee:6f:77:cb:65:43:59:95:36:08:d9:e0:1a:6e: d6:35:22:8b:a2:78:68:a5:6f:a2:eb:a1:94:8d:2f:23:9f:0d: d8:33:45:b1:26:99:1c:55:b0:33:ff:e8:cd:a0:6f:28:e8:09: d5:06:44:51:64:8a:b2:2a:a6:d1:9d:e6:83:a5:ea:6f:7a:1d: bb:c0:92:b8:c2:40:ef:53:b8:b5:09:80:0f:d5:b4:e0:2f:83: 75:46:22:4d:78:8d:9b:8d:29:2e:1e:e2:75:bb:e9:93:ee:1a: fa:95:a0:e7:79:4c:0a:db:2d:26:89:08:26:73:39:b8:13:bc: 32:07:27:b8:cb:b1:d8:d1:58:48:67:4c:90:7b:63:1a:26:c8: 91:a8:3c:0f:65:af:08:45:9d:83:46:77:e6:be:2d:55:5d:4f: 1a:81:ab:49 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUBrH3+SlQ7VS4NVeCqZqOMUjntRcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yNDA1MDkwMzU2MDBaFw0yNTA1MDgwNDAxMDBaMDMxMTAvBgNV BAMTKDA1NUQ5Mzk2NUI5OURFOTRFMEM4QThDNUYzNkM4OTYzNTU2OTU1RjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCydzD2+XBRgRt9NH4W3CLQByc TyenIZHJMzMcnzTacPWlz2TxNfgFzKuh5I27ySblrr3wNJxU3cmtKb087BIT/3cQ QD8HQXW8oV1Vss3Dp+AQ83cTCFxu8cYprD51cJYMqAuvXK3Q+TB4ylqZ5eIz+0Xf y9R9rTfSdC6AZpwPHEWGh1r04Bx5s/B5nX/S/AK24imONst0km7vHGO1K0JeMQH7 sT/FJF+1WFwmN7rsYgPnwv5F4OyoHT7NRRy2F2L7XVEYOzfjfuxIURaWTftnEavh H0yjcVtPZoOaNNT4cUnTyqH7m5WFZ/i07ZWRfdwRQNmZQHWCymibeFxZpwjBAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUBV2TlluZ3pTgyKjF82yJY1VpVfkwHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzQzMDM1M2E2MjM5MzAzMDNhMzUzMTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzUzNzMwMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBbkAAFEw DQYJKoZIhvcNAQELBQADggEBALxILBiMAeeILZ91GDvSubksgAyPwlVhGrHKjRgM XZYyz7j41tK/qXO6LNI45ofI1I4JUCrHgNSepELOBzgLOentxa7MbYv7C4eVdBdo 1eiKbo4v7Nid1NKUuauMmtrub3fLZUNZlTYI2eAabtY1IouieGilb6LroZSNLyOf DdgzRbEmmRxVsDP/6M2gbyjoCdUGRFFkirIqptGd5oOl6m96HbvAkrjCQO9TuLUJ gA/VtOAvg3VGIk14jZuNKS4e4nW76ZPuGvqVoOd5TArbLSaJCCZzObgTvDIHJ7jL sdjRWEhnTJB7YxomyJGoPA9lrwhFnYNGd+a+LVVdTxqBq0k= -----END CERTIFICATE-----Generated at Fri Nov 22 06:56:25 2024 by rpki-client on console-fra.rpki-client.org