$ rpki-client -vvf repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a333031303a3a2f34382d3438203d3e203535363835.roa File: 323430343a653130303a333031303a3a2f34382d3438203d3e203535363835.roa (raw, json) Hash identifier: Cx1a1B/mFr5FCv3tn2DvmFpSNEzFutci2nPO1bPWHto= Subject key identifier: F9:95:B4:5A:BD:21:7E:49:09:1C:CD:A7:5A:AA:38:C5:D6:5C:5E:85 Certificate issuer: /CN=B6F0131510E62F73E5F29246F9C8F691811A704D Certificate serial: 152CAE2F9EAF878AAD5341AB74DEEA038632ECF5 Authority key identifier: B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a333031303a3a2f34382d3438203d3e203535363835.roa Signing time: Tue 24 Oct 2023 06:29:58 +0000 ROA not before: Tue 24 Oct 2023 06:24:58 +0000 ROA not after: Tue 22 Oct 2024 06:29:58 +0000 asID: 55685 IP address blocks: 2404:e100:3010::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:2c:ae:2f:9e:af:87:8a:ad:53:41:ab:74:de:ea:03:86:32:ec:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F0131510E62F73E5F29246F9C8F691811A704D Validity Not Before: Oct 24 06:24:58 2023 GMT Not After : Oct 22 06:29:58 2024 GMT Subject: CN=F995B45ABD217E49091CCDA75AAA38C5D65C5E85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:9d:62:dd:13:da:41:9c:ba:c2:45:18:5f:f5: 90:90:e4:5f:95:71:36:3a:85:58:4b:c2:66:32:13: 73:1f:a3:4f:d4:14:a1:3d:7f:7f:b7:03:11:2b:7f: 25:81:69:03:8b:ca:af:4e:82:bc:01:ca:d8:13:47: 44:dd:0d:74:10:d0:f8:6b:71:75:21:fc:47:2a:6a: ac:3a:67:46:14:b9:c5:bc:53:82:8a:59:3d:5e:01: a7:05:cc:0d:7c:39:b8:c3:ee:16:b9:e9:6f:f7:8c: 43:67:c3:05:d2:7c:9c:1d:fb:0e:17:b8:99:9c:13: 39:c5:a2:56:98:82:c5:a8:17:cd:0c:78:29:62:95: c3:19:68:c4:12:03:2b:80:4d:d2:68:75:0d:72:e8: ac:37:3e:2b:c6:17:b9:ae:38:1c:ff:b7:d6:ff:27: af:36:15:b9:4e:9f:fa:0d:58:3c:d7:29:34:5c:3b: 50:ac:a5:9d:78:84:16:3f:14:c7:31:a2:c7:f1:2c: f8:5c:2f:8f:bb:6d:78:e3:a2:e1:34:31:26:1a:bc: 41:13:fc:a5:a9:7d:ac:a4:cc:4d:85:0a:36:23:23: 6d:cc:c0:37:55:16:de:23:a9:c9:6e:de:c6:5c:4d: 0f:b4:1c:8b:03:28:b2:40:9c:1c:2d:a7:a7:ba:59: eb:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:95:B4:5A:BD:21:7E:49:09:1C:CD:A7:5A:AA:38:C5:D6:5C:5E:85 X509v3 Authority Key Identifier: keyid:B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a333031303a3a2f34382d3438203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:e100:3010::/48 Signature Algorithm: sha256WithRSAEncryption 80:5f:04:18:95:89:ac:ae:5c:54:d8:50:5d:a4:ea:14:1c:1c: 17:25:84:4d:88:93:2a:4b:23:7e:06:41:3b:9d:5c:71:1d:18: d8:53:e9:8f:ad:97:3c:03:1a:58:3f:49:32:9a:39:57:55:26: 88:a9:80:70:cf:14:7f:56:65:ad:c3:89:75:09:e6:14:28:fd: 6c:ca:1e:e1:8e:8f:e4:fc:60:2e:46:8e:c5:49:62:ff:b4:d9: 03:64:20:55:4e:b0:8f:0f:77:eb:e3:d3:29:11:3e:4d:57:af: c5:41:f6:66:7d:8f:46:1a:24:40:0c:8f:84:ad:ee:81:09:90: 4f:b7:cd:f5:01:f3:27:03:d3:aa:cf:0a:82:8b:f0:69:33:b7: 58:cd:ac:b9:00:95:86:eb:ba:f4:a4:0b:fc:c9:53:bf:b2:18: 8c:08:04:16:9b:2c:9a:bd:92:a3:f1:c6:2f:6e:2b:96:b6:0c: 40:72:1a:57:20:e0:be:3d:a0:a4:36:95:9d:e6:0a:cb:5e:17: d6:dc:54:5b:91:f9:2e:e8:1d:41:f6:e1:3f:b0:c7:86:ad:11: d6:8d:22:a3:0c:b9:22:63:6f:d0:59:ad:54:a1:0b:84:66:c2: 27:dd:0a:31:66:28:0c:34:df:63:49:85:19:01:4c:5b:65:2a: 73:5d:d4:ef -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUFSyuL56vh4qtU0GrdN7qA4Yy7PUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4 MTFBNzA0RDAeFw0yMzEwMjQwNjI0NThaFw0yNDEwMjIwNjI5NThaMDMxMTAvBgNV BAMTKEY5OTVCNDVBQkQyMTdFNDkwOTFDQ0RBNzVBQUEzOEM1RDY1QzVFODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFnWLdE9pBnLrCRRhf9ZCQ5F+V cTY6hVhLwmYyE3Mfo0/UFKE9f3+3AxErfyWBaQOLyq9OgrwBytgTR0TdDXQQ0Phr cXUh/Ecqaqw6Z0YUucW8U4KKWT1eAacFzA18ObjD7ha56W/3jENnwwXSfJwd+w4X uJmcEznFolaYgsWoF80MeClilcMZaMQSAyuATdJodQ1y6Kw3PivGF7muOBz/t9b/ J682FblOn/oNWDzXKTRcO1CspZ14hBY/FMcxosfxLPhcL4+7bXjjouE0MSYavEET /KWpfaykzE2FCjYjI23MwDdVFt4jqclu3sZcTQ+0HIsDKLJAnBwtp6e6WevVAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU+ZW0Wr0hfkkJHM2nWqo4xdZcXoUwHwYDVR0j BBgwFoAUtvATFRDmL3Pl8pJG+cj2kYEacE0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWQ4ZGFiNC04YmI2LTRlZDAtOGRhYi01YTQwNjE2N2I5OWQvMC9CNkYwMTMxNTEw RTYyRjczRTVGMjkyNDZGOUM4RjY5MTgxMUE3MDRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4MTFB NzA0RC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMyMzQzMDM0M2E2NTMxMzAzMDNhMzMzMDMxMzAz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzNTM1MzYzODM1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJATh ADAQMA0GCSqGSIb3DQEBCwUAA4IBAQCAXwQYlYmsrlxU2FBdpOoUHBwXJYRNiJMq SyN+BkE7nVxxHRjYU+mPrZc8AxpYP0kymjlXVSaIqYBwzxR/VmWtw4l1CeYUKP1s yh7hjo/k/GAuRo7FSWL/tNkDZCBVTrCPD3fr49MpET5NV6/FQfZmfY9GGiRADI+E re6BCZBPt831AfMnA9OqzwqCi/BpM7dYzay5AJWG67r0pAv8yVO/shiMCAQWmyya vZKj8cYvbiuWtgxAchpXIOC+PaCkNpWd5grLXhfW3FRbkfku6B1B9uE/sMeGrRHW jSKjDLkiY2/QWa1UoQuEZsIn3QoxZigMNN9jSYUZAUxbZSpzXdTv -----END CERTIFICATE-----Generated at Fri May 3 10:33:22 2024 by rpki-client on console-ams.rpki-client.org