$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a36383a3a2f34382d3438203d3e20313431383932.roa File: 323430353a623930303a36383a3a2f34382d3438203d3e20313431383932.roa (raw, json) Hash identifier: PMPUBLRkayEYz+io5xRmBJM+ieH2wsRzPgQy1kkDCb4= Subject key identifier: BB:73:D8:B8:9F:D9:0C:13:0F:50:F3:8A:02:87:45:28:A4:A6:2E:13 Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 66EAA021BC52774D9F3F3DBABDAFDFF3F54ACA12 Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a36383a3a2f34382d3438203d3e20313431383932.roa Signing time: Thu 09 May 2024 04:01:02 +0000 ROA not before: Thu 09 May 2024 03:56:02 +0000 ROA not after: Thu 08 May 2025 04:01:02 +0000 asID: 141892 IP address blocks: 2405:b900:68::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:ea:a0:21:bc:52:77:4d:9f:3f:3d:ba:bd:af:df:f3:f5:4a:ca:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: May 9 03:56:02 2024 GMT Not After : May 8 04:01:02 2025 GMT Subject: CN=BB73D8B89FD90C130F50F38A02874528A4A62E13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:42:cb:c5:86:fd:85:94:6a:18:39:c6:c9:0d: 65:5a:a6:d6:b8:de:f2:8a:42:8f:51:1d:c9:e9:64: f3:87:c0:45:8f:71:ce:7c:84:03:94:00:94:80:20: 9b:71:b5:01:f8:d3:cc:64:44:cc:88:9b:a3:ca:06: 53:20:7c:9c:fd:a1:b1:0c:71:0e:a7:cf:d0:99:d9: 85:4b:95:df:73:37:4a:97:f6:1b:98:fa:af:f5:d5: da:b3:61:24:df:2e:b1:dd:49:9c:d6:10:48:ee:a0: 2d:e3:41:da:b3:07:e4:3a:c2:88:e8:5f:52:a3:16: 38:cc:87:62:ad:00:67:31:af:9c:08:ec:cb:96:f1: 5b:a4:15:aa:a4:6d:35:47:0a:06:15:87:0a:db:83: 3c:db:ae:36:92:8c:4a:8e:27:db:26:33:5b:b2:f4: 86:71:50:63:9c:a5:97:11:1b:fb:fb:b7:85:92:2e: 4a:ca:b4:6f:80:2b:c8:3e:fd:49:9f:db:ba:33:b0: 02:6f:90:a6:7a:9a:76:60:60:3a:7c:b1:8c:15:36: 0a:30:e5:fe:c4:ca:71:69:b7:30:bf:32:cd:a4:a6: f5:41:fc:0f:d2:58:e7:02:b6:0d:5b:ef:c6:6f:d6: d5:fb:6a:bb:87:a3:c2:b4:46:09:4c:53:9c:cc:c3: 4d:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:73:D8:B8:9F:D9:0C:13:0F:50:F3:8A:02:87:45:28:A4:A6:2E:13 X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a36383a3a2f34382d3438203d3e20313431383932.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:b900:68::/48 Signature Algorithm: sha256WithRSAEncryption c1:c6:e4:9a:73:be:f8:5c:db:d2:87:6c:1c:d8:06:41:db:46: 16:64:ff:df:3f:e2:e5:dc:f4:66:d9:5f:7d:ca:90:76:0f:b7: e7:a1:43:18:01:18:e9:73:20:9f:fd:16:d3:fe:41:0f:3b:ca: f8:90:f0:6e:3d:3c:eb:fe:a0:06:b3:5b:b8:1f:43:91:6b:1e: 6d:9d:37:47:29:4f:87:b7:37:49:07:71:96:74:1b:97:05:26: 09:3e:83:2a:b5:b1:74:d1:78:0b:02:6c:be:1c:55:3f:8f:1a: 23:94:87:12:6e:bf:29:ef:4a:bd:f0:66:e7:78:04:66:6d:22: 86:d0:e4:26:46:c3:34:b4:6e:a3:63:cb:dd:07:d7:0f:9f:0d: a0:fa:e4:58:32:95:d6:9f:b1:9b:ca:bf:4a:15:72:88:e4:3d: 5f:73:54:db:57:18:b2:39:32:d3:86:2f:f0:1a:c0:ec:bc:43: 7d:90:20:8f:ce:dd:b5:62:9f:4a:6a:6f:08:57:69:bf:bf:2a: 7a:6f:27:b3:d0:af:d2:e6:f6:27:99:65:38:24:88:b4:2a:96: 31:ed:e7:62:37:14:9a:e3:ee:2a:ea:b1:c6:20:88:2c:e4:47: 4a:98:8c:92:11:8b:c1:52:d8:af:7e:da:d7:ba:5c:8c:55:0b: 72:47:0c:a6 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUZuqgIbxSd02fPz26va/f8/VKyhIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yNDA1MDkwMzU2MDJaFw0yNTA1MDgwNDAxMDJaMDMxMTAvBgNV BAMTKEJCNzNEOEI4OUZEOTBDMTMwRjUwRjM4QTAyODc0NTI4QTRBNjJFMTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0QsvFhv2FlGoYOcbJDWVapta4 3vKKQo9RHcnpZPOHwEWPcc58hAOUAJSAIJtxtQH408xkRMyIm6PKBlMgfJz9obEM cQ6nz9CZ2YVLld9zN0qX9huY+q/11dqzYSTfLrHdSZzWEEjuoC3jQdqzB+Q6wojo X1KjFjjMh2KtAGcxr5wI7MuW8VukFaqkbTVHCgYVhwrbgzzbrjaSjEqOJ9smM1uy 9IZxUGOcpZcRG/v7t4WSLkrKtG+AK8g+/Umf27ozsAJvkKZ6mnZgYDp8sYwVNgow 5f7EynFptzC/Ms2kpvVB/A/SWOcCtg1b78Zv1tX7aruHo8K0RglMU5zMw00XAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUu3PYuJ/ZDBMPUPOKAodFKKSmLhMwHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzQzMDM1M2E2MjM5MzAzMDNhMzYzODNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzQzMTM4MzkzMi5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQFuQAA aDANBgkqhkiG9w0BAQsFAAOCAQEAwcbkmnO++Fzb0odsHNgGQdtGFmT/3z/i5dz0 ZtlffcqQdg+356FDGAEY6XMgn/0W0/5BDzvK+JDwbj086/6gBrNbuB9DkWsebZ03 RylPh7c3SQdxlnQblwUmCT6DKrWxdNF4CwJsvhxVP48aI5SHEm6/Ke9KvfBm53gE Zm0ihtDkJkbDNLRuo2PL3QfXD58NoPrkWDKV1p+xm8q/ShVyiOQ9X3NU21cYsjky 04Yv8BrA7LxDfZAgj87dtWKfSmpvCFdpv78qem8ns9Cv0ub2J5llOCSItCqWMe3n YjcUmuPuKuqxxiCILORHSpiMkhGLwVLYr37a17pcjFULckcMpg== -----END CERTIFICATE-----Generated at Fri Nov 22 06:56:25 2024 by rpki-client on console-fra.rpki-client.org