$ rpki-client -vvf repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a333a3a2f34382d3438203d3e203535363835.roa File: 323430343a653130303a333a3a2f34382d3438203d3e203535363835.roa (raw, json) Hash identifier: A65M3kElBuCh4wydFCtCZmoNGYmDBOVYVY/3he62/4M= Subject key identifier: 82:EC:99:7B:AD:54:A2:74:82:4D:8E:A9:05:C9:D2:A9:40:0E:02:AF Certificate issuer: /CN=B6F0131510E62F73E5F29246F9C8F691811A704D Certificate serial: 43C433E9A4993AC34623086FB41D034FB776CDF3 Authority key identifier: B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a333a3a2f34382d3438203d3e203535363835.roa Signing time: Mon 31 Jul 2023 00:13:03 +0000 ROA not before: Mon 31 Jul 2023 00:08:03 +0000 ROA not after: Mon 29 Jul 2024 00:13:03 +0000 asID: 55685 IP address blocks: 2404:e100:3::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 13:23:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:c4:33:e9:a4:99:3a:c3:46:23:08:6f:b4:1d:03:4f:b7:76:cd:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F0131510E62F73E5F29246F9C8F691811A704D Validity Not Before: Jul 31 00:08:03 2023 GMT Not After : Jul 29 00:13:03 2024 GMT Subject: CN=82EC997BAD54A274824D8EA905C9D2A9400E02AF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:f8:8a:ba:b3:eb:11:4c:b6:4f:81:ad:aa:84: 74:21:23:13:c1:9e:76:0b:2f:0c:26:b4:cf:aa:4c: 46:ab:1b:5b:92:de:01:de:be:12:8d:08:9a:8b:4b: 52:32:99:a2:49:71:74:f8:c9:28:50:25:1b:b8:15: 25:d9:14:90:6f:1d:e5:d6:65:f7:26:10:5f:be:ba: e7:f4:d9:0e:53:e5:fe:e5:05:dd:6f:d5:61:64:6b: 76:e1:5d:3c:e2:bf:4b:ce:92:37:fe:3c:69:94:74: 64:53:b8:6b:66:15:cb:81:f6:b4:9d:46:af:ba:6f: b5:87:53:62:bd:6e:22:e2:65:31:31:d2:d4:85:b9: 42:3c:de:9d:67:9e:1a:ba:28:6d:c7:5d:f7:6f:83: 37:b4:de:88:b5:1f:97:71:23:0c:bc:9a:b2:bb:18: 98:41:ff:a2:1b:c0:34:8c:c8:7b:ba:da:f4:f3:98: 68:39:f7:64:29:c1:06:0b:a7:a8:cc:a1:25:bc:95: 7e:51:dc:88:da:d3:55:6d:e2:ed:10:39:42:65:70: 05:06:74:c6:b5:24:9b:61:d0:44:33:af:d4:d2:3c: 3c:41:26:f8:ba:42:b5:98:30:a3:93:29:25:86:6b: cf:12:ab:51:70:07:cd:07:34:bc:37:38:0a:cb:04: c9:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:EC:99:7B:AD:54:A2:74:82:4D:8E:A9:05:C9:D2:A9:40:0E:02:AF X509v3 Authority Key Identifier: keyid:B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a333a3a2f34382d3438203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:e100:3::/48 Signature Algorithm: sha256WithRSAEncryption 68:17:d0:83:cd:76:35:19:29:d3:0d:f6:4c:3a:6b:8a:9e:81: d9:87:f5:0a:ed:a0:65:a3:87:ad:5c:92:63:c3:a6:0e:5c:bb: e2:a1:9c:b2:48:25:20:ea:ad:6c:bf:00:fa:7b:8b:08:ab:24: f0:d7:73:31:50:78:6e:c6:6f:fb:56:03:83:5c:9d:7b:aa:7f: 5a:86:04:4c:39:9c:17:18:55:ce:5a:8c:3f:51:9f:ec:ed:2c: 19:52:d3:f2:02:5b:aa:aa:f9:65:15:12:e8:90:b0:f8:ef:8b: cb:c2:70:41:49:68:6b:37:4e:73:fe:fc:1d:aa:c2:e3:6c:5e: 25:1a:85:77:47:6f:d7:98:2f:3d:e2:4a:87:ff:bd:fe:38:f7: 3d:93:24:b6:34:6f:c4:4e:bb:cf:94:d3:a6:8b:da:68:8f:d4: 94:ec:e0:97:b5:c3:5d:c0:e7:e5:55:b4:30:89:90:a4:42:9b: 90:89:5a:42:4b:d2:7f:11:11:8c:7d:ef:4e:08:98:78:b3:34: 14:a5:a6:89:d7:0c:6b:b1:f3:7a:a4:52:75:1a:f3:47:51:42: b5:48:b4:e0:ef:cb:d1:95:36:b8:5d:a2:aa:b1:77:7c:d4:6e: 27:f5:92:ea:c3:a5:52:ea:4a:69:70:6d:38:0d:2e:17:28:b4: ff:b3:f1:33 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUQ8Qz6aSZOsNGIwhvtB0DT7d2zfMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4 MTFBNzA0RDAeFw0yMzA3MzEwMDA4MDNaFw0yNDA3MjkwMDEzMDNaMDMxMTAvBgNV BAMTKDgyRUM5OTdCQUQ1NEEyNzQ4MjREOEVBOTA1QzlEMkE5NDAwRTAyQUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDK+Iq6s+sRTLZPga2qhHQhIxPB nnYLLwwmtM+qTEarG1uS3gHevhKNCJqLS1IymaJJcXT4yShQJRu4FSXZFJBvHeXW ZfcmEF++uuf02Q5T5f7lBd1v1WFka3bhXTziv0vOkjf+PGmUdGRTuGtmFcuB9rSd Rq+6b7WHU2K9biLiZTEx0tSFuUI83p1nnhq6KG3HXfdvgze03oi1H5dxIwy8mrK7 GJhB/6IbwDSMyHu62vTzmGg592QpwQYLp6jMoSW8lX5R3Ija01Vt4u0QOUJlcAUG dMa1JJth0EQzr9TSPDxBJvi6QrWYMKOTKSWGa88Sq1FwB80HNLw3OArLBMmFAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUguyZe61UonSCTY6pBcnSqUAOAq8wHwYDVR0j BBgwFoAUtvATFRDmL3Pl8pJG+cj2kYEacE0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWQ4ZGFiNC04YmI2LTRlZDAtOGRhYi01YTQwNjE2N2I5OWQvMC9CNkYwMTMxNTEw RTYyRjczRTVGMjkyNDZGOUM4RjY5MTgxMUE3MDRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4MTFB NzA0RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMyMzQzMDM0M2E2NTMxMzAzMDNhMzMzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzNTM1MzYzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAThAAADMA0G CSqGSIb3DQEBCwUAA4IBAQBoF9CDzXY1GSnTDfZMOmuKnoHZh/UK7aBlo4etXJJj w6YOXLvioZyySCUg6q1svwD6e4sIqyTw13MxUHhuxm/7VgODXJ17qn9ahgRMOZwX GFXOWow/UZ/s7SwZUtPyAluqqvllFRLokLD474vLwnBBSWhrN05z/vwdqsLjbF4l GoV3R2/XmC894kqH/73+OPc9kyS2NG/ETrvPlNOmi9poj9SU7OCXtcNdwOflVbQw iZCkQpuQiVpCS9J/ERGMfe9OCJh4szQUpaaJ1wxrsfN6pFJ1GvNHUUK1SLTg78vR lTa4XaKqsXd81G4n9ZLqw6VS6kppcG04DS4XKLT/s/Ez -----END CERTIFICATE-----Generated at Thu Apr 25 22:30:53 2024 by rpki-client on console-fra.rpki-client.org