$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a37353a3a2f34382d3438203d3e203535373031.roa File: 323430353a623930303a37353a3a2f34382d3438203d3e203535373031.roa (raw, json) Hash identifier: P//lK0/5aAGLD7neQYiSBcYzauK+wBryt3yRB/vTsD0= Subject key identifier: 86:D7:DA:43:45:99:F1:A2:F0:3E:7E:F8:80:1F:4A:C7:A4:FF:EA:6C Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 4F66AFAAC2089D920B4C56C091E8FF708A35733A Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a37353a3a2f34382d3438203d3e203535373031.roa Signing time: Thu 18 Jul 2024 02:00:02 +0000 ROA not before: Thu 18 Jul 2024 01:55:02 +0000 ROA not after: Thu 17 Jul 2025 02:00:02 +0000 asID: 55701 IP address blocks: 2405:b900:75::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:66:af:aa:c2:08:9d:92:0b:4c:56:c0:91:e8:ff:70:8a:35:73:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: Jul 18 01:55:02 2024 GMT Not After : Jul 17 02:00:02 2025 GMT Subject: CN=86D7DA434599F1A2F03E7EF8801F4AC7A4FFEA6C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:52:fa:db:e4:86:74:40:5f:ff:f4:37:9c:3a: a4:72:25:3b:86:be:76:8e:5d:d4:07:cd:d0:07:2a: 6f:2f:8e:f2:1d:2f:bf:7a:e3:e1:e0:7d:df:b8:5b: be:cc:3f:ed:44:01:83:28:78:9e:86:ef:c0:7a:6c: 48:15:0a:7c:39:d0:b4:50:93:43:ed:a5:06:02:a7: b9:00:d4:f2:1a:b3:86:60:a5:9f:0a:91:07:d3:27: 93:09:37:ff:43:09:77:cf:3f:ae:96:84:1f:12:28: 45:c0:4b:85:a8:00:51:c7:ce:83:10:6f:3c:3f:c6: 26:ce:61:bb:13:44:b3:17:48:79:18:1e:91:10:17: a6:ac:3c:4a:6d:a0:95:29:7c:d3:bd:1d:61:46:60: 53:c2:43:d1:cd:20:81:7d:79:4a:23:7f:34:db:81: dc:fe:bd:8a:3e:15:b6:59:4c:87:c8:5b:17:e4:b2: 27:8c:04:de:41:1a:ef:51:98:6c:cb:4d:92:2f:93: 8c:d5:8e:11:fa:66:b7:a6:b1:ee:ec:dd:01:2f:48: 9c:7a:5d:cf:c9:8b:91:64:e2:30:75:57:04:d5:e1: ae:f0:71:08:b7:b7:fb:3b:d4:bd:b7:bd:b2:57:0d: dd:65:35:64:1c:bb:69:21:f6:70:2e:39:b5:e3:62: d1:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:D7:DA:43:45:99:F1:A2:F0:3E:7E:F8:80:1F:4A:C7:A4:FF:EA:6C X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a37353a3a2f34382d3438203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:b900:75::/48 Signature Algorithm: sha256WithRSAEncryption bb:69:be:6c:93:83:67:78:3b:35:2d:9a:5d:22:f7:7f:e6:47: 8d:83:b3:1f:0d:42:b2:15:ed:c3:d3:ad:a2:f2:04:48:cb:e5: 0f:2e:7a:17:0a:c2:06:f5:fb:3b:5c:4a:ae:ac:e8:44:07:f7: 2d:3d:2e:db:d8:21:b7:5c:d6:56:0a:a7:81:ee:70:f6:2e:ee: 6f:c3:b9:43:6d:86:b8:d8:f4:b1:83:23:60:10:ad:08:d1:45: 96:c5:3d:b5:8c:be:c6:98:6f:cd:fb:dd:3e:a9:02:d4:16:13: 78:6f:9e:23:b6:4c:94:ab:95:f4:4c:dc:df:f3:d1:86:f9:ff: 76:f0:8c:15:f6:ac:5c:d4:63:0c:c0:d9:2b:09:3f:9f:ef:7a: ed:ab:cf:30:a3:88:42:8e:8e:9d:36:e5:b8:47:b6:40:06:cb: fe:9a:4e:31:0c:7e:d5:46:42:f9:f8:d1:53:90:18:a9:e8:fd: ba:4f:e4:3b:f0:66:75:27:ea:7a:58:09:5e:66:51:8f:5d:dc: 84:b8:2e:38:be:77:81:84:50:80:01:11:52:75:52:50:31:44: ae:7d:9d:17:7d:1f:b3:97:e6:98:f7:33:f2:1b:17:d9:cd:5a: f3:d3:fb:bd:34:09:1a:b4:4e:8a:da:b4:3e:69:0e:5f:48:06: d8:fb:fb:22 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUT2avqsIInZILTFbAkej/cIo1czowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yNDA3MTgwMTU1MDJaFw0yNTA3MTcwMjAwMDJaMDMxMTAvBgNV BAMTKDg2RDdEQTQzNDU5OUYxQTJGMDNFN0VGODgwMUY0QUM3QTRGRkVBNkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdUvrb5IZ0QF//9DecOqRyJTuG vnaOXdQHzdAHKm8vjvIdL7964+Hgfd+4W77MP+1EAYMoeJ6G78B6bEgVCnw50LRQ k0PtpQYCp7kA1PIas4ZgpZ8KkQfTJ5MJN/9DCXfPP66WhB8SKEXAS4WoAFHHzoMQ bzw/xibOYbsTRLMXSHkYHpEQF6asPEptoJUpfNO9HWFGYFPCQ9HNIIF9eUojfzTb gdz+vYo+FbZZTIfIWxfksieMBN5BGu9RmGzLTZIvk4zVjhH6Zremse7s3QEvSJx6 Xc/Ji5Fk4jB1VwTV4a7wcQi3t/s71L23vbJXDd1lNWQcu2kh9nAuObXjYtGhAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUhtfaQ0WZ8aLwPn74gB9Kx6T/6mwwHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzQzMDM1M2E2MjM5MzAzMDNhMzczNTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzUzNzMwMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBbkAAHUw DQYJKoZIhvcNAQELBQADggEBALtpvmyTg2d4OzUtml0i93/mR42Dsx8NQrIV7cPT raLyBEjL5Q8uehcKwgb1+ztcSq6s6EQH9y09LtvYIbdc1lYKp4HucPYu7m/DuUNt hrjY9LGDI2AQrQjRRZbFPbWMvsaYb8373T6pAtQWE3hvniO2TJSrlfRM3N/z0Yb5 /3bwjBX2rFzUYwzA2SsJP5/veu2rzzCjiEKOjp025bhHtkAGy/6aTjEMftVGQvn4 0VOQGKno/bpP5DvwZnUn6npYCV5mUY9d3IS4Lji+d4GEUIABEVJ1UlAxRK59nRd9 H7OX5pj3M/IbF9nNWvPT+700CRq0ToratD5pDl9IBtj7+yI= -----END CERTIFICATE-----Generated at Fri Nov 22 06:56:25 2024 by rpki-client on console-fra.rpki-client.org