$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a37323a3a2f34382d3438203d3e203535373031.roa File: 323430353a623930303a37323a3a2f34382d3438203d3e203535373031.roa (raw, json) Hash identifier: Upc9oJfa5wrNnPj9mi9zpHdq2h7cYUuUQNWWnP1PHAo= Subject key identifier: 13:07:1F:35:D2:05:5E:91:AE:7B:58:26:4E:F2:45:30:FA:F4:72:08 Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 49822FDF06E6B685B2FBE0D516AC6DAB433699CA Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a37323a3a2f34382d3438203d3e203535373031.roa Signing time: Thu 18 Jul 2024 02:00:02 +0000 ROA not before: Thu 18 Jul 2024 01:55:02 +0000 ROA not after: Thu 17 Jul 2025 02:00:02 +0000 asID: 55701 IP address blocks: 2405:b900:72::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:82:2f:df:06:e6:b6:85:b2:fb:e0:d5:16:ac:6d:ab:43:36:99:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: Jul 18 01:55:02 2024 GMT Not After : Jul 17 02:00:02 2025 GMT Subject: CN=13071F35D2055E91AE7B58264EF24530FAF47208 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:c6:e4:10:e1:01:90:df:ff:f6:4c:f9:3e:e7: 0b:0c:2c:ea:8b:68:8d:27:33:92:a8:57:a3:50:c2: ed:e8:e4:3c:ec:e9:0b:c7:66:04:c0:09:c5:cc:80: 2b:87:dd:a3:71:60:e6:69:e1:28:76:96:24:da:3a: ba:9f:b2:d2:69:a7:77:d6:c8:29:b7:b5:df:49:cd: db:31:c3:66:7e:51:3f:83:e6:cd:85:1b:84:c0:90: 9f:e4:e2:41:8f:be:a1:15:25:93:fe:20:77:5a:86: 90:34:d1:e7:7c:95:c0:42:1e:d7:2a:49:5d:4f:a7: 84:1d:66:76:32:1b:84:9a:00:ea:2b:0e:01:2f:6e: de:a3:aa:c3:fe:35:8f:f3:d4:13:51:da:bc:4d:e7: 02:2e:a8:2c:67:14:cb:00:71:ef:16:d0:fc:1f:d1: 42:db:b1:c1:87:bc:44:bd:91:cc:a5:3a:fb:80:37: 48:5c:19:34:6f:71:30:23:1b:b1:15:2f:e8:60:5f: 52:f1:c1:c6:36:49:11:c1:a6:38:6e:96:f2:f5:8c: 2e:d5:f5:2c:5e:8d:f8:7d:90:1a:2c:e5:fc:c4:0e: b2:fd:5b:f5:1f:5c:f6:45:fc:2d:95:c3:c9:f9:c3: 0e:06:ae:b2:8c:f4:ea:2e:7f:f2:e0:4e:e8:d8:64: 3b:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:07:1F:35:D2:05:5E:91:AE:7B:58:26:4E:F2:45:30:FA:F4:72:08 X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a37323a3a2f34382d3438203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:b900:72::/48 Signature Algorithm: sha256WithRSAEncryption 69:51:e6:39:d8:d8:25:a3:25:d9:a4:7f:e8:42:6b:5d:4b:85: 8e:3f:e2:47:ca:98:08:51:20:fd:d9:9c:fd:bb:e3:0f:cf:d3: f5:c9:87:22:10:ad:ae:b4:56:34:ce:c1:cf:94:69:3a:8c:3a: f3:42:d0:d3:d6:9d:ca:99:65:ca:75:cf:fa:0d:50:01:39:15: 0c:fb:b0:98:0e:50:db:f5:55:00:40:08:e0:b9:42:61:ce:c2: e9:8a:6b:a8:ef:4a:cf:57:83:b1:26:8e:7e:bb:38:a3:3b:f8: 50:63:ba:18:1c:b6:74:44:bf:6c:a0:ae:25:db:01:65:07:80: 29:14:79:54:46:7e:48:e2:21:e1:1a:a0:fb:44:65:40:fe:0e: 73:04:99:0c:c0:fe:e3:ab:e2:d6:ab:dd:46:33:c5:a3:ef:67: 7d:ff:e0:2a:b6:17:a7:66:3d:58:c7:97:a8:22:81:5a:c1:38: 5c:09:d3:8d:d6:f0:11:48:0f:db:fe:c2:39:fc:f2:56:35:4b: c5:ba:54:10:23:31:e3:5e:b8:83:39:91:05:37:89:08:b6:0f: cf:82:2f:ed:b8:3c:63:7c:0d:e4:74:14:79:df:e4:c9:d7:9e: 7e:67:38:e0:dd:b6:12:15:71:d5:93:1d:64:9b:32:cd:96:bc: d0:b7:a3:dc -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUSYIv3wbmtoWy++DVFqxtq0M2mcowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yNDA3MTgwMTU1MDJaFw0yNTA3MTcwMjAwMDJaMDMxMTAvBgNV BAMTKDEzMDcxRjM1RDIwNTVFOTFBRTdCNTgyNjRFRjI0NTMwRkFGNDcyMDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAxuQQ4QGQ3//2TPk+5wsMLOqL aI0nM5KoV6NQwu3o5Dzs6QvHZgTACcXMgCuH3aNxYOZp4Sh2liTaOrqfstJpp3fW yCm3td9Jzdsxw2Z+UT+D5s2FG4TAkJ/k4kGPvqEVJZP+IHdahpA00ed8lcBCHtcq SV1Pp4QdZnYyG4SaAOorDgEvbt6jqsP+NY/z1BNR2rxN5wIuqCxnFMsAce8W0Pwf 0ULbscGHvES9kcylOvuAN0hcGTRvcTAjG7EVL+hgX1LxwcY2SRHBpjhulvL1jC7V 9Sxejfh9kBos5fzEDrL9W/UfXPZF/C2Vw8n5ww4GrrKM9Oouf/LgTujYZDsTAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUEwcfNdIFXpGue1gmTvJFMPr0cggwHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzQzMDM1M2E2MjM5MzAzMDNhMzczMjNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzUzNzMwMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBbkAAHIw DQYJKoZIhvcNAQELBQADggEBAGlR5jnY2CWjJdmkf+hCa11LhY4/4kfKmAhRIP3Z nP274w/P0/XJhyIQra60VjTOwc+UaTqMOvNC0NPWncqZZcp1z/oNUAE5FQz7sJgO UNv1VQBACOC5QmHOwumKa6jvSs9Xg7Emjn67OKM7+FBjuhgctnREv2ygriXbAWUH gCkUeVRGfkjiIeEaoPtEZUD+DnMEmQzA/uOr4tar3UYzxaPvZ33/4Cq2F6dmPVjH l6gigVrBOFwJ043W8BFID9v+wjn88lY1S8W6VBAjMeNeuIM5kQU3iQi2D8+CL+24 PGN8DeR0FHnf5MnXnn5nOODdthIVcdWTHWSbMs2WvNC3o9w= -----END CERTIFICATE-----Generated at Fri Nov 22 06:56:25 2024 by rpki-client on console-fra.rpki-client.org