$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a37313a3a2f34382d3438203d3e203535373031.roa File: 323430353a623930303a37313a3a2f34382d3438203d3e203535373031.roa (raw, json) Hash identifier: 7pN8rBthaz95KOS0dSWqdW7U0Z+R5lFUxyYi9qL2K5Y= Subject key identifier: 64:7E:2E:B3:7D:9D:9B:D0:96:3F:7D:6E:C2:5B:EC:50:69:6E:E6:7F Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 472439CBC5966064EF518A8FCDAB98D5B59170BF Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a37313a3a2f34382d3438203d3e203535373031.roa Signing time: Thu 18 Jul 2024 02:00:02 +0000 ROA not before: Thu 18 Jul 2024 01:55:02 +0000 ROA not after: Thu 17 Jul 2025 02:00:02 +0000 asID: 55701 IP address blocks: 2405:b900:71::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:24:39:cb:c5:96:60:64:ef:51:8a:8f:cd:ab:98:d5:b5:91:70:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: Jul 18 01:55:02 2024 GMT Not After : Jul 17 02:00:02 2025 GMT Subject: CN=647E2EB37D9D9BD0963F7D6EC25BEC50696EE67F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:e3:3c:d8:2d:2b:ab:08:5f:c2:9e:ff:77:4f: 05:4d:ca:fe:35:45:17:b5:38:df:41:a0:14:2c:51: 67:7d:28:0a:f7:81:a8:20:df:48:04:be:72:85:ab: de:2c:82:4a:97:2f:b6:a8:17:6b:33:7f:5c:c3:22: 84:83:50:06:2e:9a:93:28:31:da:b6:f2:db:62:c0: 6b:9f:a5:33:57:18:61:b1:31:d7:9c:b5:6a:ea:61: 76:cf:46:1d:48:51:09:90:7e:a4:15:4d:f2:af:03: 93:1e:d2:14:99:b1:91:c0:6d:fb:af:75:6f:f6:99: 72:82:94:c2:0a:17:d1:8e:70:de:cf:7f:36:58:df: 84:f1:f2:a8:45:b8:2a:2e:75:24:f1:10:09:dc:df: f7:47:cf:57:51:d4:79:47:aa:ad:22:8a:0d:dd:01: 19:ec:ac:f6:4a:d0:03:65:43:7f:e0:ad:73:31:2e: 54:29:76:e9:e1:53:5f:5a:49:32:78:2d:cf:e4:90: 06:1d:7f:25:8d:87:dd:38:28:1a:7e:58:0c:5c:c1: 23:d6:c5:b2:1f:f0:83:f5:75:3d:eb:d9:9c:36:03: 43:af:ab:1b:e0:01:bd:56:60:45:07:1c:ba:a3:d0: 30:e8:af:69:92:3d:6f:be:87:5a:4b:a4:c2:f9:8a: 2c:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:7E:2E:B3:7D:9D:9B:D0:96:3F:7D:6E:C2:5B:EC:50:69:6E:E6:7F X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a37313a3a2f34382d3438203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:b900:71::/48 Signature Algorithm: sha256WithRSAEncryption c3:e6:f9:e4:35:c3:45:38:28:58:dd:68:15:16:70:0e:ee:b6: 86:c1:6c:f8:41:0e:dc:f9:78:7d:4d:73:53:03:af:ae:56:4b: 62:e0:40:4d:21:3f:0f:2e:c7:f2:6e:c4:ef:65:c0:7d:2c:53: 9f:58:c4:7a:2c:d7:7a:e3:27:69:5c:85:f1:3a:c9:27:cb:dc: fa:0e:cd:57:93:9b:05:60:59:23:2c:ae:8f:1b:31:f9:7f:05: 58:6e:9e:6e:cd:31:1a:d5:5e:0a:fd:50:50:c2:31:d4:36:1c: 28:f5:42:8c:95:5e:b1:6d:54:17:3c:20:8a:80:e2:0b:ac:ad: fb:2d:41:9a:ea:7e:62:b5:0c:5e:f7:b6:5b:7e:f2:d1:6e:e5: 0a:a4:e4:c3:fd:e7:27:ce:2e:9c:8f:70:64:84:06:d2:72:5f: 5e:e2:26:c9:41:53:00:a9:c2:3a:25:9f:92:d0:fa:86:6b:fd: 68:01:18:25:2f:7e:ad:d2:fb:a0:7d:6f:9a:99:fe:d9:f3:33: ed:64:7f:b4:2c:4d:6c:98:7f:5e:87:8f:82:3c:bd:4f:81:49: c8:c7:04:62:4e:21:e3:5f:45:22:82:5d:37:af:05:6c:1b:49: d8:f1:5d:aa:db:11:fa:93:c8:f7:f2:dc:57:32:27:48:04:79: ac:fc:23:99 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIURyQ5y8WWYGTvUYqPzauY1bWRcL8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yNDA3MTgwMTU1MDJaFw0yNTA3MTcwMjAwMDJaMDMxMTAvBgNV BAMTKDY0N0UyRUIzN0Q5RDlCRDA5NjNGN0Q2RUMyNUJFQzUwNjk2RUU2N0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC14zzYLSurCF/Cnv93TwVNyv41 RRe1ON9BoBQsUWd9KAr3gagg30gEvnKFq94sgkqXL7aoF2szf1zDIoSDUAYumpMo Mdq28ttiwGufpTNXGGGxMdectWrqYXbPRh1IUQmQfqQVTfKvA5Me0hSZsZHAbfuv dW/2mXKClMIKF9GOcN7PfzZY34Tx8qhFuCoudSTxEAnc3/dHz1dR1HlHqq0iig3d ARnsrPZK0ANlQ3/grXMxLlQpdunhU19aSTJ4Lc/kkAYdfyWNh904KBp+WAxcwSPW xbIf8IP1dT3r2Zw2A0OvqxvgAb1WYEUHHLqj0DDor2mSPW++h1pLpML5iiz5AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUZH4us32dm9CWP31uwlvsUGlu5n8wHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzQzMDM1M2E2MjM5MzAzMDNhMzczMTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzUzNzMwMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBbkAAHEw DQYJKoZIhvcNAQELBQADggEBAMPm+eQ1w0U4KFjdaBUWcA7utobBbPhBDtz5eH1N c1MDr65WS2LgQE0hPw8ux/JuxO9lwH0sU59YxHos13rjJ2lchfE6ySfL3PoOzVeT mwVgWSMsro8bMfl/BVhunm7NMRrVXgr9UFDCMdQ2HCj1QoyVXrFtVBc8IIqA4gus rfstQZrqfmK1DF73tlt+8tFu5Qqk5MP95yfOLpyPcGSEBtJyX17iJslBUwCpwjol n5LQ+oZr/WgBGCUvfq3S+6B9b5qZ/tnzM+1kf7QsTWyYf16Hj4I8vU+BScjHBGJO IeNfRSKCXTevBWwbSdjxXarbEfqTyPfy3FcyJ0gEeaz8I5k= -----END CERTIFICATE-----Generated at Fri Nov 22 06:56:25 2024 by rpki-client on console-fra.rpki-client.org