$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a36373a3a2f34382d3438203d3e20313431383932.roa File: 323430353a623930303a36373a3a2f34382d3438203d3e20313431383932.roa (raw, json) Hash identifier: A7cvbnN3rNMNWohpUrb6+OFjQ7YuVPwjaoTfeSI+qMw= Subject key identifier: 99:FA:D8:F3:38:E3:8D:89:02:01:59:04:B0:3F:BC:39:CA:7C:4B:C9 Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 0AAD2335180FFD3FBDBF5392F68353D1501B588A Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a36373a3a2f34382d3438203d3e20313431383932.roa Signing time: Thu 09 May 2024 04:01:06 +0000 ROA not before: Thu 09 May 2024 03:56:06 +0000 ROA not after: Thu 08 May 2025 04:01:06 +0000 asID: 141892 IP address blocks: 2405:b900:67::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:ad:23:35:18:0f:fd:3f:bd:bf:53:92:f6:83:53:d1:50:1b:58:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: May 9 03:56:06 2024 GMT Not After : May 8 04:01:06 2025 GMT Subject: CN=99FAD8F338E38D8902015904B03FBC39CA7C4BC9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:ba:6b:92:f6:b2:06:be:60:63:55:9e:4c:54: d1:2b:5e:39:61:35:d8:72:52:00:ad:f6:18:f2:0c: 9a:32:1e:6b:22:71:80:3a:75:bc:c2:4e:90:42:3b: cd:16:9b:8d:e1:c0:71:e4:59:79:08:85:fd:51:e9: 96:ed:36:5d:b9:8b:93:cb:3e:a0:22:e4:0f:e6:41: ec:af:e5:d3:45:da:5c:00:61:35:d7:b2:e3:c8:a1: f8:f5:bd:7a:77:e1:7b:3c:3f:0a:70:d7:79:9c:40: d8:d7:26:29:9d:6a:e5:41:79:2d:26:8c:31:f6:a0: bf:04:9e:22:43:9e:be:00:4a:ae:d3:5f:64:99:6b: d2:a9:5f:82:32:52:93:e7:71:7c:ae:cb:2d:c7:b3: c2:fa:47:4c:f7:b9:50:cc:61:5a:bd:79:61:cd:87: 62:f1:2d:63:72:76:41:0f:f6:10:a5:60:34:fc:fc: e9:7d:b9:95:b1:77:77:5c:d7:1d:ab:37:b5:3f:8e: 8f:95:6a:38:3c:e8:c0:0d:cd:1c:08:cb:21:4a:3d: 60:a6:40:c5:39:5a:4a:6e:96:34:7d:10:b6:c2:d2: d7:bd:99:9e:68:8c:0a:64:85:6f:ab:e8:55:60:b9: a6:c9:e2:64:f7:c1:92:da:bd:08:ff:c5:9a:f3:ac: 34:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:FA:D8:F3:38:E3:8D:89:02:01:59:04:B0:3F:BC:39:CA:7C:4B:C9 X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a36373a3a2f34382d3438203d3e20313431383932.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:b900:67::/48 Signature Algorithm: sha256WithRSAEncryption b0:ca:a3:9c:09:18:65:9a:4c:65:f6:3a:74:e1:3b:6a:bc:64: 79:01:cf:51:e6:36:6c:da:a9:a7:51:1a:40:e7:bb:ee:02:9a: e6:a8:6e:d2:37:cb:06:77:c1:9a:2f:38:ba:1d:5c:42:30:3f: a2:72:87:c8:ad:5d:cd:86:9a:d0:60:26:3b:6b:cd:ab:f1:03: ca:b1:16:11:00:27:20:53:47:09:c4:e3:42:e1:70:ff:68:c8: b1:8a:b9:aa:8c:6e:d8:c1:ed:aa:9b:07:47:63:c6:06:6a:d1: 82:0a:c4:5c:cc:0f:2d:16:6b:ce:3f:d2:71:b7:ff:94:eb:a9: 06:2c:35:68:5a:08:47:16:68:89:5b:9e:56:3b:f2:23:74:0c: 0c:b5:7d:7e:a1:ed:53:c1:5d:38:d9:d3:54:05:07:ad:cd:b4: 2b:b0:0f:35:a3:d7:02:82:f2:06:67:06:03:9a:1a:28:1b:cd: 58:a4:9a:2e:c9:4b:26:e7:cc:89:28:6b:3c:19:27:41:e4:55: a0:b7:83:44:75:95:88:da:1f:a8:3a:4f:fd:c5:dd:b1:8e:fb: d7:6c:78:1e:26:3b:59:31:a3:5a:22:ff:5d:08:e8:b4:c3:10: ab:75:2e:2d:a1:27:6b:b5:0a:54:e0:73:02:23:0c:43:09:99: 2b:b8:9f:fd -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUCq0jNRgP/T+9v1OS9oNT0VAbWIowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yNDA1MDkwMzU2MDZaFw0yNTA1MDgwNDAxMDZaMDMxMTAvBgNV BAMTKDk5RkFEOEYzMzhFMzhEODkwMjAxNTkwNEIwM0ZCQzM5Q0E3QzRCQzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClumuS9rIGvmBjVZ5MVNErXjlh NdhyUgCt9hjyDJoyHmsicYA6dbzCTpBCO80Wm43hwHHkWXkIhf1R6ZbtNl25i5PL PqAi5A/mQeyv5dNF2lwAYTXXsuPIofj1vXp34Xs8Pwpw13mcQNjXJimdauVBeS0m jDH2oL8EniJDnr4ASq7TX2SZa9KpX4IyUpPncXyuyy3Hs8L6R0z3uVDMYVq9eWHN h2LxLWNydkEP9hClYDT8/Ol9uZWxd3dc1x2rN7U/jo+Vajg86MANzRwIyyFKPWCm QMU5WkpuljR9ELbC0te9mZ5ojApkhW+r6FVguabJ4mT3wZLavQj/xZrzrDQbAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUmfrY8zjjjYkCAVkEsD+8Ocp8S8kwHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzQzMDM1M2E2MjM5MzAzMDNhMzYzNzNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzQzMTM4MzkzMi5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQFuQAA ZzANBgkqhkiG9w0BAQsFAAOCAQEAsMqjnAkYZZpMZfY6dOE7arxkeQHPUeY2bNqp p1EaQOe77gKa5qhu0jfLBnfBmi84uh1cQjA/onKHyK1dzYaa0GAmO2vNq/EDyrEW EQAnIFNHCcTjQuFw/2jIsYq5qoxu2MHtqpsHR2PGBmrRggrEXMwPLRZrzj/Scbf/ lOupBiw1aFoIRxZoiVueVjvyI3QMDLV9fqHtU8FdONnTVAUHrc20K7APNaPXAoLy BmcGA5oaKBvNWKSaLslLJufMiShrPBknQeRVoLeDRHWViNofqDpP/cXdsY7712x4 HiY7WTGjWiL/XQjotMMQq3UuLaEna7UKVOBzAiMMQwmZK7if/Q== -----END CERTIFICATE-----Generated at Fri Nov 22 06:33:23 2024 by rpki-client on console-ams.rpki-client.org