$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a383a3a2f34382d3438203d3e203535373031.roa File: 323430353a623930303a383a3a2f34382d3438203d3e203535373031.roa (raw, json) Hash identifier: SldEmaEf7wcnddO6BUMVONvWSaQmcPm18WE3HKN5ahQ= Subject key identifier: 31:7F:14:5C:8E:2D:01:0B:EB:32:6C:D4:48:FF:C4:37:CE:11:BA:03 Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Certificate serial: 64BF0ECEFDAC7A5C29127A289A404499726B15D1 Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a383a3a2f34382d3438203d3e203535373031.roa Signing time: Thu 09 May 2024 04:01:09 +0000 ROA not before: Thu 09 May 2024 03:56:09 +0000 ROA not after: Thu 08 May 2025 04:01:09 +0000 asID: 55701 IP address blocks: 2405:b900:8::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:bf:0e:ce:fd:ac:7a:5c:29:12:7a:28:9a:40:44:99:72:6b:15:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A Validity Not Before: May 9 03:56:09 2024 GMT Not After : May 8 04:01:09 2025 GMT Subject: CN=317F145C8E2D010BEB326CD448FFC437CE11BA03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:86:42:b4:63:47:c0:b8:eb:8b:59:ce:14:b7: fd:e1:34:3e:a2:34:ad:99:83:f2:93:20:c9:22:d2: 1b:60:5d:2a:ad:6f:28:d2:77:f0:be:de:51:69:06: 94:36:57:6c:8b:bb:f1:f2:a4:59:44:4a:5a:d8:3f: c2:3e:0a:8a:4d:45:8a:41:2b:a4:e4:38:39:49:19: a2:70:42:f0:64:bd:04:0e:13:5a:5f:38:a4:53:25: af:7e:ea:4a:b3:72:80:87:b0:3c:c1:a6:7e:95:a2: 05:a1:34:e0:cf:a7:da:08:61:f8:99:86:19:27:83: d4:5f:93:ba:34:ce:f4:31:15:65:c7:8a:b3:d7:03: 1b:fd:71:77:06:84:b5:8d:a2:4a:ff:16:cf:bc:53: 73:7a:cd:76:63:15:0c:ef:db:b1:52:82:14:62:15: 42:f2:96:19:05:3d:d6:1b:2e:57:f6:1c:8d:0c:8a: 81:67:77:af:10:c1:b6:93:24:84:04:63:75:7d:25: f7:b6:b6:d2:65:de:dc:ff:73:64:87:1c:7b:0c:08: 28:62:0d:51:58:8d:da:3d:ce:e0:10:9d:d5:74:3f: e6:7f:42:46:17:65:d9:3a:0a:be:59:46:ca:95:34: 97:b6:58:7b:ce:ba:b4:c0:67:a8:95:17:ff:b9:ae: bf:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:7F:14:5C:8E:2D:01:0B:EB:32:6C:D4:48:FF:C4:37:CE:11:BA:03 X509v3 Authority Key Identifier: keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a383a3a2f34382d3438203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:b900:8::/48 Signature Algorithm: sha256WithRSAEncryption 5f:89:ec:21:f6:c4:74:fb:69:33:d3:58:d7:55:4b:7c:5f:21: fb:64:7d:92:81:f3:65:35:62:d8:f6:49:e0:54:06:ad:08:61: d0:9b:e9:bf:78:1e:b6:19:d2:58:47:fd:e6:cf:a9:2b:3b:f2: cf:a9:42:4f:47:e0:9b:87:82:26:97:e5:1e:27:26:78:10:f0: da:c4:60:d4:98:7e:1c:bd:2a:cf:b9:03:82:46:36:d2:6a:82: a5:a8:f9:e8:0f:b0:86:06:94:c7:7d:84:98:f3:ff:12:20:3c: 36:48:13:e9:20:1a:a9:55:21:27:9b:a6:f3:68:ea:1c:bc:f7: a3:a2:47:a5:8a:5d:1b:41:11:a8:15:7c:25:10:52:b0:d0:e2: d2:9c:da:94:2e:44:82:b7:1c:d6:74:ed:9f:73:80:77:b8:80: 47:a0:b6:d2:35:fd:28:0f:6b:d6:7b:bd:34:0c:ba:d6:61:a9: d9:bf:03:90:13:4e:67:42:76:8e:0c:dd:4d:17:ff:b4:2a:8b: 34:60:bd:70:d2:37:eb:01:31:62:7c:62:5f:d5:c3:4c:c7:7e: 77:23:13:8c:85:a5:57:72:f3:ab:53:88:34:4f:3d:7e:34:64: c1:8f:f4:ee:54:20:37:02:7b:39:80:fd:a8:1a:43:10:11:a6: 6a:f8:1f:b3 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUZL8Ozv2selwpEnoomkBEmXJrFdEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4 QkY1MEY2QTAeFw0yNDA1MDkwMzU2MDlaFw0yNTA1MDgwNDAxMDlaMDMxMTAvBgNV BAMTKDMxN0YxNDVDOEUyRDAxMEJFQjMyNkNENDQ4RkZDNDM3Q0UxMUJBMDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkhkK0Y0fAuOuLWc4Ut/3hND6i NK2Zg/KTIMki0htgXSqtbyjSd/C+3lFpBpQ2V2yLu/HypFlESlrYP8I+CopNRYpB K6TkODlJGaJwQvBkvQQOE1pfOKRTJa9+6kqzcoCHsDzBpn6VogWhNODPp9oIYfiZ hhkng9Rfk7o0zvQxFWXHirPXAxv9cXcGhLWNokr/Fs+8U3N6zXZjFQzv27FSghRi FULylhkFPdYbLlf2HI0MioFnd68QwbaTJIQEY3V9Jfe2ttJl3tz/c2SHHHsMCChi DVFYjdo9zuAQndV0P+Z/QkYXZdk6Cr5ZRsqVNJe2WHvOurTAZ6iVF/+5rr+7AgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUMX8UXI4tAQvrMmzUSP/EN84RugMwHwYDVR0j BBgwFoAUj4TW/ur4xdPF0T8QG8cLdYv1D2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5Zjg1MS03ZTczLTQzODQtOTUwZS04YmU4ZTE1ZmQzZWUvMC84Rjg0RDZGRUVB RjhDNUQzQzVEMTNGMTAxQkM3MEI3NThCRjUwRjZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEY4NEQ2RkVFQUY4QzVEM0M1RDEzRjEwMUJDNzBCNzU4QkY1 MEY2QS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlmODUxLTdlNzMtNDM4NC05 NTBlLThiZThlMTVmZDNlZS8wLzMyMzQzMDM1M2E2MjM5MzAzMDNhMzgzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzNTM1MzczMDMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAW5AAAIMA0G CSqGSIb3DQEBCwUAA4IBAQBfiewh9sR0+2kz01jXVUt8XyH7ZH2SgfNlNWLY9kng VAatCGHQm+m/eB62GdJYR/3mz6krO/LPqUJPR+Cbh4Iml+UeJyZ4EPDaxGDUmH4c vSrPuQOCRjbSaoKlqPnoD7CGBpTHfYSY8/8SIDw2SBPpIBqpVSEnm6bzaOocvPej okelil0bQRGoFXwlEFKw0OLSnNqULkSCtxzWdO2fc4B3uIBHoLbSNf0oD2vWe700 DLrWYanZvwOQE05nQnaODN1NF/+0Kos0YL1w0jfrATFifGJf1cNMx353IxOMhaVX cvOrU4g0Tz1+NGTBj/TuVCA3Ans5gP2oGkMQEaZq+B+z -----END CERTIFICATE-----Generated at Fri Nov 22 06:56:25 2024 by rpki-client on console-fra.rpki-client.org