$ rpki-client -vvf repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a333030313a3a2f34382d3438203d3e20313333383430.roa File: 323430343a653130303a333030313a3a2f34382d3438203d3e20313333383430.roa (raw, json) Hash identifier: UMw6njx5iVJ01mWj6icarVR57R0aFK2iR4FWKg9nl3s= Subject key identifier: B5:18:C9:A7:9A:31:05:FE:75:99:07:52:3F:29:5A:5A:79:72:D7:C0 Certificate issuer: /CN=B6F0131510E62F73E5F29246F9C8F691811A704D Certificate serial: 2FA55F14265DEA02F7D3F8547CF7C79F2867B980 Authority key identifier: B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a333030313a3a2f34382d3438203d3e20313333383430.roa Signing time: Sat 27 Jan 2024 09:00:02 +0000 ROA not before: Sat 27 Jan 2024 08:55:02 +0000 ROA not after: Sat 25 Jan 2025 09:00:02 +0000 asID: 133840 IP address blocks: 2404:e100:3001::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 19:06:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:a5:5f:14:26:5d:ea:02:f7:d3:f8:54:7c:f7:c7:9f:28:67:b9:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F0131510E62F73E5F29246F9C8F691811A704D Validity Not Before: Jan 27 08:55:02 2024 GMT Not After : Jan 25 09:00:02 2025 GMT Subject: CN=B518C9A79A3105FE759907523F295A5A7972D7C0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:e3:dc:e8:ee:4e:1b:0c:17:c7:2f:a7:49:ee: 6e:d1:1d:c2:b9:dd:e3:ab:24:9f:98:5b:f1:6a:ef: 6c:6d:e7:63:d1:ed:50:36:e8:0a:ce:62:0d:cd:93: ac:77:de:18:fc:14:97:4e:1a:ee:bf:a6:b4:e2:9d: e1:8f:4a:67:15:ba:92:23:9c:a6:e7:69:7e:a7:51: b5:d5:49:01:8b:96:81:ba:22:ad:76:78:e5:13:0b: e1:45:7a:0b:f2:de:1e:03:f2:47:89:8b:bc:bc:ad: 6e:c0:0a:9f:c1:13:52:df:1d:13:af:96:35:b8:ca: c2:80:37:99:92:1e:ab:4e:63:ff:bb:35:a1:26:61: a5:25:d2:e4:11:d2:b9:57:c7:a6:85:ea:ed:57:d7: 49:e3:4a:b3:db:b0:e2:1e:39:d5:24:e9:98:a3:92: ef:15:61:90:3a:8f:12:28:fa:4c:e5:f1:f2:c5:c2: 35:be:5d:fe:82:44:34:a5:9f:97:d6:21:c9:10:b7: 27:72:1a:62:be:ec:06:cc:7e:43:9c:2f:f7:c3:02: d8:f3:9f:f2:f6:10:fb:e8:ae:bb:18:7f:e1:42:18: 9a:f7:ae:60:97:0c:74:6e:ff:98:6f:6a:ba:98:0f: b2:eb:3e:5e:1c:a9:af:8d:42:04:30:24:6b:9d:3b: 84:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:18:C9:A7:9A:31:05:FE:75:99:07:52:3F:29:5A:5A:79:72:D7:C0 X509v3 Authority Key Identifier: keyid:B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a333030313a3a2f34382d3438203d3e20313333383430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:e100:3001::/48 Signature Algorithm: sha256WithRSAEncryption 25:16:97:82:34:09:ea:d9:30:6f:08:c9:29:50:7c:52:d5:d1: 8e:b8:d2:0f:32:45:2a:5d:50:51:f0:66:24:00:da:68:fb:ba: ff:1b:bb:7f:38:ed:02:03:ed:f2:27:cb:4e:b8:bd:7c:99:43: 04:dd:d4:a6:80:c2:31:1a:be:81:1c:13:a2:3c:95:3e:bd:d9: 25:34:0e:9a:36:01:8c:0d:81:66:ce:00:ce:b5:18:2b:d5:3f: d1:b3:49:43:08:90:de:6b:ee:1b:fd:d3:2f:e7:60:e1:a3:01: 48:19:96:8d:00:f4:d4:25:d4:17:a4:ba:3d:e8:89:b3:26:c4: 60:2c:cf:93:c6:09:e6:ba:7a:06:e3:4e:36:ea:73:75:1a:3f: 56:6d:22:c6:39:4d:07:f0:49:2b:14:ef:37:ff:cd:66:9f:35: a9:f7:d4:06:e3:0d:c6:78:8c:bd:10:cf:2b:25:e9:b1:99:7a: 09:a6:e5:50:e3:71:cf:57:de:f8:96:43:43:02:5f:b3:0d:4b: d2:7f:cb:96:03:df:10:41:ae:c2:cb:cd:85:47:75:03:82:97: a6:48:4c:67:d0:96:4e:73:3c:c3:58:01:1b:81:c4:72:ce:32: b9:70:75:83:fe:e9:26:c6:c1:54:ef:a4:d9:eb:0c:d8:bd:62: 6f:e7:6f:31 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUL6VfFCZd6gL30/hUfPfHnyhnuYAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4 MTFBNzA0RDAeFw0yNDAxMjcwODU1MDJaFw0yNTAxMjUwOTAwMDJaMDMxMTAvBgNV BAMTKEI1MThDOUE3OUEzMTA1RkU3NTk5MDc1MjNGMjk1QTVBNzk3MkQ3QzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCo49zo7k4bDBfHL6dJ7m7RHcK5 3eOrJJ+YW/Fq72xt52PR7VA26ArOYg3Nk6x33hj8FJdOGu6/prTineGPSmcVupIj nKbnaX6nUbXVSQGLloG6Iq12eOUTC+FFegvy3h4D8keJi7y8rW7ACp/BE1LfHROv ljW4ysKAN5mSHqtOY/+7NaEmYaUl0uQR0rlXx6aF6u1X10njSrPbsOIeOdUk6Zij ku8VYZA6jxIo+kzl8fLFwjW+Xf6CRDSln5fWIckQtydyGmK+7AbMfkOcL/fDAtjz n/L2EPvorrsYf+FCGJr3rmCXDHRu/5hvarqYD7LrPl4cqa+NQgQwJGudO4RRAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUtRjJp5oxBf51mQdSPylaWnly18AwHwYDVR0j BBgwFoAUtvATFRDmL3Pl8pJG+cj2kYEacE0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWQ4ZGFiNC04YmI2LTRlZDAtOGRhYi01YTQwNjE2N2I5OWQvMC9CNkYwMTMxNTEw RTYyRjczRTVGMjkyNDZGOUM4RjY5MTgxMUE3MDRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4MTFB NzA0RC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMyMzQzMDM0M2E2NTMxMzAzMDNhMzMzMDMwMzEz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzMzODM0MzAucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BOEAMAEwDQYJKoZIhvcNAQELBQADggEBACUWl4I0CerZMG8IySlQfFLV0Y640g8y RSpdUFHwZiQA2mj7uv8bu3847QID7fIny064vXyZQwTd1KaAwjEavoEcE6I8lT69 2SU0Dpo2AYwNgWbOAM61GCvVP9GzSUMIkN5r7hv90y/nYOGjAUgZlo0A9NQl1Bek uj3oibMmxGAsz5PGCea6egbjTjbqc3UaP1ZtIsY5TQfwSSsU7zf/zWafNan31Abj DcZ4jL0Qzysl6bGZegmm5VDjcc9X3viWQ0MCX7MNS9J/y5YD3xBBrsLLzYVHdQOC l6ZITGfQlk5zPMNYARuBxHLOMrlwdYP+6SbGwVTvpNnrDNi9Ym/nbzE= -----END CERTIFICATE-----Generated at Sun May 12 05:58:18 2024 by rpki-client on console-fra.rpki-client.org