$ rpki-client -vvf repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a343030303a3a2f34372d3438203d3e203535363835.roa File: 323430343a653130303a343030303a3a2f34372d3438203d3e203535363835.roa (raw, json) Hash identifier: aeOkdqL+0LDQ6D2gSPdNhEhI1VPqPC1RHOcy/ZkW+2w= Subject key identifier: B2:0B:F1:D6:C4:22:6E:50:0E:18:C5:49:4C:BC:85:46:40:3C:70:F4 Certificate issuer: /CN=B6F0131510E62F73E5F29246F9C8F691811A704D Certificate serial: 385AAF180C917596763229DF6FB2D2D87FF8D260 Authority key identifier: B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a343030303a3a2f34372d3438203d3e203535363835.roa Signing time: Mon 31 Jul 2023 00:13:05 +0000 ROA not before: Mon 31 Jul 2023 00:08:05 +0000 ROA not after: Mon 29 Jul 2024 00:13:05 +0000 asID: 55685 IP address blocks: 2404:e100:4000::/47 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 13:23:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:5a:af:18:0c:91:75:96:76:32:29:df:6f:b2:d2:d8:7f:f8:d2:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F0131510E62F73E5F29246F9C8F691811A704D Validity Not Before: Jul 31 00:08:05 2023 GMT Not After : Jul 29 00:13:05 2024 GMT Subject: CN=B20BF1D6C4226E500E18C5494CBC8546403C70F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:69:83:62:5f:ad:b5:d1:d4:fb:d1:68:28:ca: 4d:f9:ec:57:5b:90:a7:c2:a3:68:de:39:61:82:ac: 68:28:11:6b:19:e8:23:2a:d9:21:77:1a:ca:67:39: 5f:8e:ec:a2:6d:28:9f:08:12:cf:93:fd:aa:09:71: 23:1a:c1:5b:36:d8:56:a5:d5:f2:77:ec:cb:39:f4: 69:1a:7e:4d:99:93:98:ef:f8:f1:f1:a3:0a:68:69: 8e:67:6a:a0:fa:1b:c2:c1:6f:a1:30:cd:9c:78:91: ef:a6:45:da:b6:dd:d3:fa:a7:c8:f5:a9:7d:83:12: 99:b6:c9:83:25:f5:f2:bc:eb:7a:c9:da:3c:31:8f: 5c:b1:ff:8f:35:b3:c0:c8:ab:ab:3a:b9:8e:b4:f0: 65:3e:5b:a0:bc:1c:0f:f7:30:37:c0:61:98:ef:5d: 76:7d:e7:5b:96:3d:c9:0a:e4:aa:c8:0f:12:d3:85: 37:c8:0c:17:8b:d8:c4:69:d5:41:46:d3:01:d5:83: c1:6c:ce:e0:22:a9:36:6d:52:ec:be:70:14:b9:61: 92:45:3a:b0:f0:e7:34:32:19:e8:d4:f9:4d:df:ae: a1:bf:ad:f6:e8:26:7e:36:39:81:45:e7:32:8a:7a: 91:cb:24:43:b3:b8:5e:a2:de:f6:cf:6a:b1:7d:7a: c8:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:0B:F1:D6:C4:22:6E:50:0E:18:C5:49:4C:BC:85:46:40:3C:70:F4 X509v3 Authority Key Identifier: keyid:B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a343030303a3a2f34372d3438203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:e100:4000::/47 Signature Algorithm: sha256WithRSAEncryption 6d:ff:cd:16:cc:4c:40:da:94:fb:42:82:78:7b:a9:0d:38:70: b1:52:e7:b4:a1:48:d5:5c:17:86:ec:29:b5:c6:2f:1f:47:32: 9c:f6:a9:0f:9d:3a:30:41:21:be:b1:ee:bf:00:ec:fa:18:c5: 0a:24:04:ea:3b:e2:aa:c4:f7:06:4b:af:53:ec:84:35:73:3d: 40:5d:03:8a:34:29:f4:9b:81:73:ae:b0:a1:46:fc:4d:e8:7d: a5:a1:c0:1e:86:02:f1:b1:89:60:0c:cc:11:83:86:9a:15:04: 09:e1:86:72:be:22:61:48:a7:16:0b:49:9b:8a:15:59:ae:9d: 4f:bb:18:48:14:47:c6:30:59:57:80:23:e7:e2:b1:6f:5c:f6: 45:51:81:a9:ae:5e:68:fa:92:cb:33:21:a8:f5:86:04:07:b9: a4:d3:49:c9:e9:f9:42:74:96:35:0f:09:ef:c7:9f:26:a6:00: 2e:fe:70:dd:ba:55:23:a6:c2:eb:e4:b1:c7:26:35:91:b8:d7: 94:05:c2:91:31:df:a0:3e:d9:3e:f2:04:30:06:33:7e:d9:fe: 4e:11:17:da:29:43:cb:7c:ee:ec:bd:27:51:e3:15:1d:38:80: ab:94:26:9e:4a:ec:86:a5:fe:f4:8a:32:dc:b3:49:43:fd:66: 40:9c:49:bf -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUOFqvGAyRdZZ2Minfb7LS2H/40mAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4 MTFBNzA0RDAeFw0yMzA3MzEwMDA4MDVaFw0yNDA3MjkwMDEzMDVaMDMxMTAvBgNV BAMTKEIyMEJGMUQ2QzQyMjZFNTAwRTE4QzU0OTRDQkM4NTQ2NDAzQzcwRjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1aYNiX6210dT70Wgoyk357Fdb kKfCo2jeOWGCrGgoEWsZ6CMq2SF3GspnOV+O7KJtKJ8IEs+T/aoJcSMawVs22Fal 1fJ37Ms59Gkafk2Zk5jv+PHxowpoaY5naqD6G8LBb6EwzZx4ke+mRdq23dP6p8j1 qX2DEpm2yYMl9fK863rJ2jwxj1yx/481s8DIq6s6uY608GU+W6C8HA/3MDfAYZjv XXZ951uWPckK5KrIDxLThTfIDBeL2MRp1UFG0wHVg8FszuAiqTZtUuy+cBS5YZJF OrDw5zQyGejU+U3frqG/rfboJn42OYFF5zKKepHLJEOzuF6i3vbParF9esgLAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUsgvx1sQiblAOGMVJTLyFRkA8cPQwHwYDVR0j BBgwFoAUtvATFRDmL3Pl8pJG+cj2kYEacE0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWQ4ZGFiNC04YmI2LTRlZDAtOGRhYi01YTQwNjE2N2I5OWQvMC9CNkYwMTMxNTEw RTYyRjczRTVGMjkyNDZGOUM4RjY5MTgxMUE3MDRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4MTFB NzA0RC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMyMzQzMDM0M2E2NTMxMzAzMDNhMzQzMDMwMzAz YTNhMmYzNDM3MmQzNDM4MjAzZDNlMjAzNTM1MzYzODM1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcBJATh AEAAMA0GCSqGSIb3DQEBCwUAA4IBAQBt/80WzExA2pT7QoJ4e6kNOHCxUue0oUjV XBeG7Cm1xi8fRzKc9qkPnTowQSG+se6/AOz6GMUKJATqO+KqxPcGS69T7IQ1cz1A XQOKNCn0m4FzrrChRvxN6H2locAehgLxsYlgDMwRg4aaFQQJ4YZyviJhSKcWC0mb ihVZrp1PuxhIFEfGMFlXgCPn4rFvXPZFUYGprl5o+pLLMyGo9YYEB7mk00nJ6flC dJY1Dwnvx58mpgAu/nDdulUjpsLr5LHHJjWRuNeUBcKRMd+gPtk+8gQwBjN+2f5O ERfaKUPLfO7svSdR4xUdOICrlCaeSuyGpf70ijLcs0lD/WZAnEm/ -----END CERTIFICATE-----Generated at Thu Apr 25 14:06:03 2024 by rpki-client on console-ams.rpki-client.org