$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a36313a3a2f34382d3438203d3e20313431383932.roa File: 323430353a623930303a36313a3a2f34382d3438203d3e20313431383932.roa (raw, json) Hash identifier: o11xY4d6rdk9TEQcywb2U2U/5wJkWd2A2WyvuZJHKHA= Subject key identifier: 47:4A:9D:EE:DE:13:02:29:D2:9D:67:2D:E5:15:24:60:8C:E5:86:DD Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 261311D99CCD464199ACEBE5D36D3FF895B902E6 Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a36313a3a2f34382d3438203d3e20313431383932.roa Signing time: Thu 09 May 2024 04:01:04 +0000 ROA not before: Thu 09 May 2024 03:56:04 +0000 ROA not after: Thu 08 May 2025 04:01:04 +0000 asID: 141892 IP address blocks: 2405:b900:61::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:13:11:d9:9c:cd:46:41:99:ac:eb:e5:d3:6d:3f:f8:95:b9:02:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: May 9 03:56:04 2024 GMT Not After : May 8 04:01:04 2025 GMT Subject: CN=474A9DEEDE130229D29D672DE51524608CE586DD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:3a:b8:70:ca:2a:8c:bc:e2:ec:9b:73:6b:71: 39:0c:03:b6:a6:8e:aa:d7:40:02:6f:fe:d5:88:49: 1d:3d:ab:5d:0c:71:07:35:08:56:b2:19:3f:5b:2b: aa:c9:5d:3f:e4:27:29:49:ae:41:53:68:80:81:75: 9f:ca:46:1d:98:ac:d4:08:78:04:00:53:dd:9c:3c: 74:9f:2f:10:3a:a5:c2:15:12:be:f4:eb:2e:7a:f5: de:78:d3:d6:25:64:2e:51:c3:1b:7c:c7:e5:4e:ee: 46:79:ca:02:2b:f2:23:bd:7d:d9:15:ce:59:ae:b3: ee:40:03:dc:0e:4d:be:5f:70:ea:66:4d:af:45:51: 58:b7:9f:fe:42:b7:80:ec:71:f1:8f:fd:d2:11:c0: 54:40:15:ec:7a:a4:88:6d:9d:45:a8:33:8a:1b:b6: 44:76:58:2b:ef:7d:25:44:87:40:3b:cf:e8:9b:60: 4f:40:ce:43:ef:af:89:1f:75:c9:ab:c8:e9:52:d3: 45:8f:33:b5:b1:b8:c2:4c:5c:4f:8b:b7:d2:68:91: dd:f9:0f:cc:68:bb:65:5d:43:33:2a:d6:19:20:03: 60:67:b7:b9:6a:14:a5:26:b7:e5:1d:da:bd:83:1a: 7e:7c:96:5d:4f:16:06:5b:d2:2b:99:ea:40:30:3f: f0:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:4A:9D:EE:DE:13:02:29:D2:9D:67:2D:E5:15:24:60:8C:E5:86:DD X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a36313a3a2f34382d3438203d3e20313431383932.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:b900:61::/48 Signature Algorithm: sha256WithRSAEncryption 7d:44:2a:58:12:e0:e5:7d:96:c3:b9:01:a0:2b:52:10:59:f4: 79:fe:2a:05:fa:aa:92:09:1e:65:57:87:73:90:11:6b:d3:9e: c3:89:f4:6d:44:2d:47:ed:c0:49:28:6d:8f:b6:5c:0a:ff:c4: 99:3c:4d:58:9d:80:e1:02:49:52:c3:00:d8:62:04:59:2d:d1: 6d:bc:94:a3:f1:64:f0:d2:2f:21:9e:0c:ad:7c:3c:07:69:6e: 53:31:03:08:67:36:ab:44:30:60:ef:8e:d1:07:4b:a1:20:c1: 31:99:04:94:d0:9a:55:e0:2a:cb:3d:f8:bf:da:31:69:3c:d4: 3e:9f:9a:7a:53:f9:b8:43:e1:56:c2:20:b3:b2:27:99:31:d6: 73:da:47:16:3c:32:96:61:11:d0:a3:56:87:ab:2a:01:af:35: 3f:91:91:07:b9:83:7c:2f:23:ac:9d:0a:e4:ba:94:98:4f:11: 3d:44:2a:bf:aa:0d:46:03:1b:75:8f:7c:79:a5:34:46:90:1c: 29:0e:69:58:b9:af:53:8b:6e:91:d2:aa:2b:d4:ea:ed:96:24: e3:75:82:1e:10:65:7e:60:1a:f3:e5:b7:8a:50:b0:de:88:eb: 94:9a:61:2f:32:84:fa:01:0a:34:7d:a0:20:96:63:c4:db:aa: f7:a5:d3:d7 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUJhMR2ZzNRkGZrOvl020/+JW5AuYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yNDA1MDkwMzU2MDRaFw0yNTA1MDgwNDAxMDRaMDMxMTAvBgNV BAMTKDQ3NEE5REVFREUxMzAyMjlEMjlENjcyREU1MTUyNDYwOENFNTg2REQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEOrhwyiqMvOLsm3NrcTkMA7am jqrXQAJv/tWISR09q10McQc1CFayGT9bK6rJXT/kJylJrkFTaICBdZ/KRh2YrNQI eAQAU92cPHSfLxA6pcIVEr706y569d5409YlZC5Rwxt8x+VO7kZ5ygIr8iO9fdkV zlmus+5AA9wOTb5fcOpmTa9FUVi3n/5Ct4DscfGP/dIRwFRAFex6pIhtnUWoM4ob tkR2WCvvfSVEh0A7z+ibYE9AzkPvr4kfdcmryOlS00WPM7WxuMJMXE+Lt9Jokd35 D8xou2VdQzMq1hkgA2Bnt7lqFKUmt+Ud2r2DGn58ll1PFgZb0iuZ6kAwP/AjAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUR0qd7t4TAinSnWct5RUkYIzlht0wHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzQzMDM1M2E2MjM5MzAzMDNhMzYzMTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzQzMTM4MzkzMi5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQFuQAA YTANBgkqhkiG9w0BAQsFAAOCAQEAfUQqWBLg5X2Ww7kBoCtSEFn0ef4qBfqqkgke ZVeHc5ARa9Oew4n0bUQtR+3ASShtj7ZcCv/EmTxNWJ2A4QJJUsMA2GIEWS3RbbyU o/Fk8NIvIZ4MrXw8B2luUzEDCGc2q0QwYO+O0QdLoSDBMZkElNCaVeAqyz34v9ox aTzUPp+aelP5uEPhVsIgs7InmTHWc9pHFjwylmER0KNWh6sqAa81P5GRB7mDfC8j rJ0K5LqUmE8RPUQqv6oNRgMbdY98eaU0RpAcKQ5pWLmvU4tukdKqK9Tq7ZYk43WC HhBlfmAa8+W3ilCw3ojrlJphLzKE+gEKNH2gIJZjxNuq96XT1w== -----END CERTIFICATE-----Generated at Fri Nov 22 06:33:23 2024 by rpki-client on console-ams.rpki-client.org