$ rpki-client -vvf repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a323a3a2f34382d3438203d3e203535363835.roa File: 323430343a653130303a323a3a2f34382d3438203d3e203535363835.roa (raw, json) Hash identifier: FMchjpSNsol58keir4OZ/KjzzsIT8c6VRnWxzbIEphI= Subject key identifier: 8B:70:AE:8E:23:01:E9:5D:08:0A:B1:03:12:A7:49:2F:3E:CC:2D:25 Certificate issuer: /CN=B6F0131510E62F73E5F29246F9C8F691811A704D Certificate serial: 60743C4A5A81A8E80E41408E0537C9CB66306B29 Authority key identifier: B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a323a3a2f34382d3438203d3e203535363835.roa Signing time: Tue 24 Oct 2023 06:14:01 +0000 ROA not before: Tue 24 Oct 2023 06:09:01 +0000 ROA not after: Tue 22 Oct 2024 06:14:01 +0000 asID: 55685 IP address blocks: 2404:e100:2::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:74:3c:4a:5a:81:a8:e8:0e:41:40:8e:05:37:c9:cb:66:30:6b:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F0131510E62F73E5F29246F9C8F691811A704D Validity Not Before: Oct 24 06:09:01 2023 GMT Not After : Oct 22 06:14:01 2024 GMT Subject: CN=8B70AE8E2301E95D080AB10312A7492F3ECC2D25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:f7:87:0e:94:3f:6b:91:c5:ee:c3:3b:74:b8: 3f:d8:c3:30:c7:48:d8:88:90:ca:3a:40:86:86:20: 9f:ce:a7:73:24:91:17:28:91:ac:f3:f2:fc:51:2f: 4a:6c:f4:86:38:94:8c:a3:66:91:f4:0d:4e:6a:57: 2e:5d:f5:5b:11:09:98:50:a0:14:39:b4:41:ef:5f: 30:62:65:00:fd:42:3d:70:51:00:5d:70:69:b0:00: 65:15:7e:f5:15:49:8a:fc:09:a0:52:9c:ab:a5:d2: 1e:4f:4e:9c:d3:25:45:b6:d2:fb:21:bf:1d:22:fb: 04:2e:88:23:db:4a:a2:d1:9e:99:90:17:09:b8:c1: 20:84:01:61:15:ad:02:f7:ed:af:c9:d0:f6:a5:85: 15:70:5e:9c:29:76:a1:cf:40:9b:7d:4a:fa:39:f5: 24:93:7e:df:c5:53:45:e6:a4:db:93:e6:c0:f0:f5: ef:26:f3:2b:a7:be:b0:0d:38:c5:2c:18:5e:b5:32: c5:32:01:65:73:85:3c:01:8f:2c:44:a7:d9:0b:a5: d7:46:7c:6b:6f:35:cb:27:1f:cf:38:1a:62:97:19: 12:44:c3:75:cd:e4:06:70:af:7f:64:ff:44:c1:c3: fa:96:92:bb:35:90:75:a3:b8:9b:a4:46:f0:5f:21: 71:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:70:AE:8E:23:01:E9:5D:08:0A:B1:03:12:A7:49:2F:3E:CC:2D:25 X509v3 Authority Key Identifier: keyid:B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a323a3a2f34382d3438203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:e100:2::/48 Signature Algorithm: sha256WithRSAEncryption 96:3c:42:3b:c9:25:00:96:5d:ae:ac:5f:90:a7:d9:73:0d:c2: f4:63:da:71:19:e5:0d:0a:53:83:6d:77:63:05:68:f5:5a:90: 5d:15:6a:b0:8d:2c:d4:be:50:de:dc:b7:b1:9e:16:e6:f0:0b: 23:27:6a:eb:5d:f2:9a:80:85:65:1d:b8:ad:e4:c4:27:e4:47: 47:64:67:1f:b0:83:70:93:f7:3e:88:78:b6:38:21:69:53:f6: 67:06:56:f9:06:d6:da:dc:e0:1d:b3:eb:56:65:a7:51:b8:0b: ad:ae:d0:14:40:7f:bf:c0:48:6d:75:f3:3b:06:41:01:ac:b8: a1:96:d4:9a:fa:ba:4a:99:70:b9:59:97:49:31:8a:1d:bb:e0: aa:39:6c:e5:f9:ca:54:94:e3:7c:09:fb:15:10:eb:c6:cb:d3: 6c:03:4c:94:df:08:fd:24:95:fa:2a:9e:1c:59:ed:fb:84:67: 58:cb:55:8e:9e:6e:93:f4:a5:44:05:86:67:b3:69:a1:c5:28: d1:e6:15:fa:67:ae:49:bc:db:7a:9e:47:17:d2:22:61:08:96: 03:a0:4a:59:2a:f6:76:4e:2e:b3:e4:68:c8:c5:26:5b:cf:11: b3:04:3f:17:fa:9c:ca:c0:d6:e8:4b:ad:4d:c0:cc:8b:b1:b9: 51:c3:ca:21 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUYHQ8SlqBqOgOQUCOBTfJy2YwaykwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4 MTFBNzA0RDAeFw0yMzEwMjQwNjA5MDFaFw0yNDEwMjIwNjE0MDFaMDMxMTAvBgNV BAMTKDhCNzBBRThFMjMwMUU5NUQwODBBQjEwMzEyQTc0OTJGM0VDQzJEMjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC994cOlD9rkcXuwzt0uD/YwzDH SNiIkMo6QIaGIJ/Op3MkkRcokazz8vxRL0ps9IY4lIyjZpH0DU5qVy5d9VsRCZhQ oBQ5tEHvXzBiZQD9Qj1wUQBdcGmwAGUVfvUVSYr8CaBSnKul0h5PTpzTJUW20vsh vx0i+wQuiCPbSqLRnpmQFwm4wSCEAWEVrQL37a/J0PalhRVwXpwpdqHPQJt9Svo5 9SSTft/FU0XmpNuT5sDw9e8m8yunvrANOMUsGF61MsUyAWVzhTwBjyxEp9kLpddG fGtvNcsnH884GmKXGRJEw3XN5AZwr39k/0TBw/qWkrs1kHWjuJukRvBfIXH7AgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUi3CujiMB6V0ICrEDEqdJLz7MLSUwHwYDVR0j BBgwFoAUtvATFRDmL3Pl8pJG+cj2kYEacE0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWQ4ZGFiNC04YmI2LTRlZDAtOGRhYi01YTQwNjE2N2I5OWQvMC9CNkYwMTMxNTEw RTYyRjczRTVGMjkyNDZGOUM4RjY5MTgxMUE3MDRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4MTFB NzA0RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMyMzQzMDM0M2E2NTMxMzAzMDNhMzIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzNTM1MzYzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAThAAACMA0G CSqGSIb3DQEBCwUAA4IBAQCWPEI7ySUAll2urF+Qp9lzDcL0Y9pxGeUNClODbXdj BWj1WpBdFWqwjSzUvlDe3Lexnhbm8AsjJ2rrXfKagIVlHbit5MQn5EdHZGcfsINw k/c+iHi2OCFpU/ZnBlb5Btba3OAds+tWZadRuAutrtAUQH+/wEhtdfM7BkEBrLih ltSa+rpKmXC5WZdJMYodu+CqOWzl+cpUlON8CfsVEOvGy9NsA0yU3wj9JJX6Kp4c We37hGdYy1WOnm6T9KVEBYZns2mhxSjR5hX6Z65JvNt6nkcX0iJhCJYDoEpZKvZ2 Ti6z5GjIxSZbzxGzBD8X+pzKwNboS61NwMyLsblRw8oh -----END CERTIFICATE-----Generated at Fri May 3 09:07:40 2024 by rpki-client on console-fra.rpki-client.org