$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a373a3a2f34382d3438203d3e203535373031.roa File: 323430353a623930303a373a3a2f34382d3438203d3e203535373031.roa (raw, json) Hash identifier: DGlQPFroYaP6I6BMuDEtX3JQ/35J+ZEVF5J1BHu/5bE= Subject key identifier: 54:55:D6:AD:DE:58:0C:F2:59:E3:93:86:13:C8:6B:21:A9:58:48:82 Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 65F7B079FA757595DB07A53DD0DC07D9A61C35D2 Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a373a3a2f34382d3438203d3e203535373031.roa Signing time: Thu 09 May 2024 04:00:59 +0000 ROA not before: Thu 09 May 2024 03:55:59 +0000 ROA not after: Thu 08 May 2025 04:00:59 +0000 asID: 55701 IP address blocks: 2405:b900:7::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:f7:b0:79:fa:75:75:95:db:07:a5:3d:d0:dc:07:d9:a6:1c:35:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: May 9 03:55:59 2024 GMT Not After : May 8 04:00:59 2025 GMT Subject: CN=5455D6ADDE580CF259E3938613C86B21A9584882 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:01:89:8a:f2:ef:e8:20:0a:da:ef:8c:4f:6d: ba:e4:a3:df:92:38:4e:85:0d:7d:18:34:14:24:ea: de:d4:c6:26:75:67:78:eb:bc:bc:c3:2c:cc:17:df: 98:60:61:c8:46:10:97:72:43:ab:a9:de:cc:02:07: 71:02:ac:fe:38:19:9d:f1:68:67:8b:8b:b3:a1:90: 3e:47:d5:09:44:b2:fc:13:f7:34:56:71:ec:fa:94: 7a:aa:ba:69:87:d2:3b:18:c9:d0:6b:1e:ad:4b:b2: 66:ff:2d:40:49:76:3e:bf:61:ac:6d:08:86:ca:73: 46:b1:58:fe:c6:d6:21:d1:a5:3a:7e:74:d6:24:35: b4:fd:6c:d9:63:d0:09:52:d8:1f:84:f1:bd:a4:7f: 27:79:f1:61:71:ae:c8:f3:e2:08:75:1f:ae:24:70: f7:b5:2b:d7:3a:5a:c2:35:96:26:ca:6d:1b:a7:c7: 05:cc:89:b4:53:a7:54:fc:92:bb:97:3d:ad:4b:77: f6:c8:e0:fe:97:b9:96:ef:43:81:72:f2:5b:d4:b5: e2:f4:36:34:ff:96:ed:1a:13:d5:87:5c:a1:20:5b: 0a:9f:61:41:ab:1a:fc:2f:2f:7e:cd:cc:2f:7d:e6: d7:8c:8f:56:05:56:f4:a7:20:0b:fd:1e:3e:9a:6b: 40:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:55:D6:AD:DE:58:0C:F2:59:E3:93:86:13:C8:6B:21:A9:58:48:82 X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a373a3a2f34382d3438203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:b900:7::/48 Signature Algorithm: sha256WithRSAEncryption 58:ed:3f:e9:43:9d:34:cd:71:9d:f2:dd:e3:ee:76:77:e9:00: 6b:56:dd:14:80:87:c9:9a:0f:3e:68:fd:ad:8d:0d:3d:62:e7: ff:d5:ac:2f:f5:14:d8:14:d9:47:a1:29:d2:b0:09:95:cd:83: bc:ba:df:0a:44:88:db:e3:7a:65:a5:f1:27:af:d2:39:97:31: 10:df:ba:a2:f4:89:1d:b6:e1:01:90:0f:88:a8:12:55:8a:18: 12:f3:e9:e4:47:db:49:92:54:f0:0c:cb:0f:53:f2:12:bf:f8: 78:37:7b:a4:71:f7:5a:b7:f6:6f:b8:07:67:e3:cd:26:8a:47: 3e:53:f9:ba:b6:f0:4b:4d:85:df:27:22:a5:0a:76:c7:c8:01: 10:99:c9:83:23:ec:dc:ad:72:d4:40:5b:38:08:da:15:47:c4: d6:8d:f0:73:63:fd:28:d3:d3:bd:6f:92:45:05:7c:8b:33:cc: 0f:57:ed:da:d8:75:17:c5:b2:5f:aa:40:9c:82:61:23:9d:ee: a7:5c:ee:a5:a1:48:e9:d8:6e:60:cd:60:93:28:b0:4b:ba:df: 22:ad:ea:26:7f:07:72:4f:fe:f5:71:7c:f3:37:30:30:78:e1: df:cb:ae:86:a1:47:de:ef:d0:f6:a4:8f:2c:b0:61:2e:dc:01: 23:87:69:2e -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUZfewefp1dZXbB6U90NwH2aYcNdIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yNDA1MDkwMzU1NTlaFw0yNTA1MDgwNDAwNTlaMDMxMTAvBgNV BAMTKDU0NTVENkFEREU1ODBDRjI1OUUzOTM4NjEzQzg2QjIxQTk1ODQ4ODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAAYmK8u/oIAra74xPbbrko9+S OE6FDX0YNBQk6t7UxiZ1Z3jrvLzDLMwX35hgYchGEJdyQ6up3swCB3ECrP44GZ3x aGeLi7OhkD5H1QlEsvwT9zRWcez6lHqqummH0jsYydBrHq1Lsmb/LUBJdj6/Yaxt CIbKc0axWP7G1iHRpTp+dNYkNbT9bNlj0AlS2B+E8b2kfyd58WFxrsjz4gh1H64k cPe1K9c6WsI1libKbRunxwXMibRTp1T8kruXPa1Ld/bI4P6XuZbvQ4Fy8lvUteL0 NjT/lu0aE9WHXKEgWwqfYUGrGvwvL37NzC995teMj1YFVvSnIAv9Hj6aa0CtAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUVFXWrd5YDPJZ45OGE8hrIalYSIIwHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzQzMDM1M2E2MjM5MzAzMDNhMzczYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzNTM1MzczMDMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAW5AAAHMA0G CSqGSIb3DQEBCwUAA4IBAQBY7T/pQ500zXGd8t3j7nZ36QBrVt0UgIfJmg8+aP2t jQ09Yuf/1awv9RTYFNlHoSnSsAmVzYO8ut8KRIjb43plpfEnr9I5lzEQ37qi9Ikd tuEBkA+IqBJVihgS8+nkR9tJklTwDMsPU/ISv/h4N3ukcfdat/ZvuAdn480mikc+ U/m6tvBLTYXfJyKlCnbHyAEQmcmDI+zcrXLUQFs4CNoVR8TWjfBzY/0o09O9b5JF BXyLM8wPV+3a2HUXxbJfqkCcgmEjne6nXO6loUjp2G5gzWCTKLBLut8ireomfwdy T/71cXzzNzAweOHfy66GoUfe79D2pI8ssGEu3AEjh2ku -----END CERTIFICATE-----Generated at Fri Nov 22 06:33:23 2024 by rpki-client on console-ams.rpki-client.org