$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a37323a3a2f34382d3438203d3e203535373031.roa File: 323430353a623930303a37323a3a2f34382d3438203d3e203535373031.roa (raw, json) Hash identifier: vz33WyhZAE6KQ6N3KWsm7lQ33vCn6Gf3hSls+eboepI= Subject key identifier: AC:B8:40:19:46:4F:A3:98:9E:41:78:D1:69:DF:59:6A:41:80:B9:5E Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 3728A185734082B499E1110908124E065D78D576 Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a37323a3a2f34382d3438203d3e203535373031.roa Signing time: Thu 17 Aug 2023 02:00:02 +0000 ROA not before: Thu 17 Aug 2023 01:55:02 +0000 ROA not after: Thu 15 Aug 2024 02:00:02 +0000 asID: 55701 IP address blocks: 2405:b900:72::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 01:31:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:28:a1:85:73:40:82:b4:99:e1:11:09:08:12:4e:06:5d:78:d5:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: Aug 17 01:55:02 2023 GMT Not After : Aug 15 02:00:02 2024 GMT Subject: CN=ACB84019464FA3989E4178D169DF596A4180B95E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:7d:5d:c5:1d:93:4e:43:59:a5:db:15:0c:23: 38:8e:16:17:38:70:1b:0c:80:e3:38:61:66:14:a6: c9:3b:fc:41:c9:5b:f7:87:f6:89:20:0c:87:28:6d: 5f:52:cf:e0:3b:e2:f7:88:4a:07:4b:f9:aa:42:5e: af:77:fc:7c:19:65:41:a7:d6:18:f7:ea:43:a1:7b: a6:d9:bd:3e:54:bd:b5:7b:36:ee:9b:0a:34:2c:1d: d9:a7:83:a1:bd:2a:24:e3:c7:97:97:58:6d:43:57: c3:90:e8:28:60:cf:5b:e4:cc:fc:a2:bb:b6:c5:65: 05:41:53:53:ac:74:ab:fc:2f:e1:84:35:40:98:15: 40:50:cc:5b:af:ac:d8:73:81:30:99:3b:60:4c:be: f5:bd:69:6c:bb:46:51:8f:ae:4c:33:f0:44:83:36: 45:a6:41:de:e3:e5:5b:57:3d:0a:b5:10:ee:22:58: 1b:de:c9:9a:03:5c:f9:be:46:48:58:d8:20:60:6d: 73:bd:52:0b:84:ed:39:74:da:f2:cd:0c:10:47:ee: ee:1b:4d:b9:ee:57:2b:b1:dd:d8:38:af:f3:fc:3a: 66:de:ea:0b:25:1e:63:2d:7c:d9:35:e7:88:3c:ec: 1d:6f:1a:f2:88:e2:d0:b2:3e:71:39:dd:f9:65:04: c9:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:B8:40:19:46:4F:A3:98:9E:41:78:D1:69:DF:59:6A:41:80:B9:5E X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a37323a3a2f34382d3438203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:b900:72::/48 Signature Algorithm: sha256WithRSAEncryption b2:9f:11:44:f0:24:cc:97:0e:9b:8c:b5:20:cd:a8:b9:db:68: 32:1b:65:30:9c:c8:f1:88:b2:ac:9d:1b:53:5c:8e:d9:49:f0: cc:ce:0e:4a:c9:fa:b5:5a:9f:65:9f:cc:53:b9:d9:eb:b5:da: 50:d6:b0:b2:72:47:25:f7:e8:58:61:5f:cb:68:2f:a3:18:8a: 31:23:23:fb:b3:a2:c8:57:a0:54:66:3f:bc:ba:2a:00:58:d7: a4:e0:29:c5:5f:74:81:4b:22:8f:65:32:05:16:23:ae:39:b5: 8d:06:7f:f0:2d:0e:19:6a:a3:5b:50:c9:05:ee:f3:23:23:ad: 93:ab:aa:cb:ef:df:33:1f:bb:53:ee:ae:6f:c2:48:cd:c7:37: 8a:7c:c8:a9:4d:07:11:e5:ba:14:db:de:3f:d1:5a:6c:f4:ce: 5e:e8:cb:8b:1b:ab:08:34:ed:01:fa:49:6d:b7:90:7d:a3:70: 18:24:2d:d4:cb:3b:14:a2:a6:9c:73:52:65:cc:04:ca:af:c1: 1f:98:8f:47:b4:61:c5:88:5d:c6:33:fa:71:53:5c:44:0a:a3: 21:3b:29:bf:c9:71:f2:5b:66:d1:07:80:c6:8c:17:46:e2:8f: 43:24:df:33:7c:84:9a:92:31:c7:df:9d:f9:6e:2e:4c:ec:31: 03:0d:67:71 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUNyihhXNAgrSZ4REJCBJOBl141XYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yMzA4MTcwMTU1MDJaFw0yNDA4MTUwMjAwMDJaMDMxMTAvBgNV BAMTKEFDQjg0MDE5NDY0RkEzOTg5RTQxNzhEMTY5REY1OTZBNDE4MEI5NUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsfV3FHZNOQ1ml2xUMIziOFhc4 cBsMgOM4YWYUpsk7/EHJW/eH9okgDIcobV9Sz+A74veISgdL+apCXq93/HwZZUGn 1hj36kOhe6bZvT5UvbV7Nu6bCjQsHdmng6G9KiTjx5eXWG1DV8OQ6Chgz1vkzPyi u7bFZQVBU1OsdKv8L+GENUCYFUBQzFuvrNhzgTCZO2BMvvW9aWy7RlGPrkwz8ESD NkWmQd7j5VtXPQq1EO4iWBveyZoDXPm+RkhY2CBgbXO9UguE7Tl02vLNDBBH7u4b TbnuVyux3dg4r/P8Ombe6gslHmMtfNk154g87B1vGvKI4tCyPnE53fllBMk9AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUrLhAGUZPo5ieQXjRad9ZakGAuV4wHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzQzMDM1M2E2MjM5MzAzMDNhMzczMjNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzUzNzMwMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBbkAAHIw DQYJKoZIhvcNAQELBQADggEBALKfEUTwJMyXDpuMtSDNqLnbaDIbZTCcyPGIsqyd G1NcjtlJ8MzODkrJ+rVan2WfzFO52eu12lDWsLJyRyX36FhhX8toL6MYijEjI/uz oshXoFRmP7y6KgBY16TgKcVfdIFLIo9lMgUWI645tY0Gf/AtDhlqo1tQyQXu8yMj rZOrqsvv3zMfu1Purm/CSM3HN4p8yKlNBxHluhTb3j/RWmz0zl7oy4sbqwg07QH6 SW23kH2jcBgkLdTLOxSippxzUmXMBMqvwR+Yj0e0YcWIXcYz+nFTXEQKoyE7Kb/J cfJbZtEHgMaMF0bij0Mk3zN8hJqSMcffnfluLkzsMQMNZ3E= -----END CERTIFICATE-----Generated at Tue May 7 03:08:50 2024 by rpki-client on console-ams.rpki-client.org