$ rpki-client -vvf repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a383a3a2f34382d3438203d3e203535363835.roa File: 323430343a653130303a383a3a2f34382d3438203d3e203535363835.roa (raw, json) Hash identifier: iXwEEiuXr0N0+/m9eg4SZ2+6tunqA/tN9YJYs/X4aAw= Subject key identifier: A0:5E:42:C9:FC:25:C6:DB:FB:E5:F7:30:90:A8:79:BB:27:71:79:57 Certificate issuer: /CN=B6F0131510E62F73E5F29246F9C8F691811A704D Certificate serial: 3C6A1B0BA2E2522630153C233DA5B82606512CCA Authority key identifier: B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a383a3a2f34382d3438203d3e203535363835.roa Signing time: Fri 24 Nov 2023 12:33:25 +0000 ROA not before: Fri 24 Nov 2023 12:28:25 +0000 ROA not after: Fri 22 Nov 2024 12:33:25 +0000 asID: 55685 IP address blocks: 2404:e100:8::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:6a:1b:0b:a2:e2:52:26:30:15:3c:23:3d:a5:b8:26:06:51:2c:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F0131510E62F73E5F29246F9C8F691811A704D Validity Not Before: Nov 24 12:28:25 2023 GMT Not After : Nov 22 12:33:25 2024 GMT Subject: CN=A05E42C9FC25C6DBFBE5F73090A879BB27717957 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:ec:78:5f:db:26:87:6a:ed:40:c8:a5:31:31: 36:a5:ba:7e:d5:a3:7c:aa:87:f2:50:51:8a:52:b1: 43:2d:f0:9f:01:95:f1:4b:78:72:c9:f0:69:fb:ca: ab:9e:22:af:a7:7d:50:16:92:29:55:fd:5c:d1:69: b4:77:e6:fb:6f:da:5c:d2:89:82:e8:ad:06:c8:90: e7:ed:1a:3f:ca:44:c7:a2:ae:bc:b4:19:8f:7d:bf: 62:b7:5d:bc:4a:1f:52:d1:b7:d2:51:43:1a:1c:de: 32:5d:13:4f:04:e4:82:e1:be:49:5b:26:09:6d:96: 21:16:12:12:d0:e1:d7:b1:37:6c:6d:ec:b4:8c:78: 8a:04:a0:a6:9b:a2:a0:1c:50:9a:5f:40:8d:b5:d7: 8c:99:62:97:b1:e3:6b:67:f9:e9:23:db:df:bb:08: 6e:9f:c8:ce:fc:82:b3:44:e4:93:59:13:aa:5e:27: 90:14:36:78:b2:81:94:23:5b:07:1f:4c:38:17:7a: b1:ba:d0:7d:3f:53:0b:02:24:19:0a:c1:65:f1:8f: 1a:79:b8:9b:cb:f7:59:77:60:8b:07:a0:ed:03:74: 86:e4:a6:a6:03:ae:5b:af:e0:7e:e8:da:cb:2d:9e: e3:33:14:1b:c8:f6:bf:0f:f7:f7:80:14:24:b5:d4: 21:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:5E:42:C9:FC:25:C6:DB:FB:E5:F7:30:90:A8:79:BB:27:71:79:57 X509v3 Authority Key Identifier: keyid:B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a383a3a2f34382d3438203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:e100:8::/48 Signature Algorithm: sha256WithRSAEncryption 88:3e:d1:6a:a4:a3:93:22:f1:db:65:44:26:b6:8b:98:98:50: a1:ca:1b:92:c4:09:1e:5a:d0:7a:71:a8:5f:15:04:6f:b6:87: fe:8a:3f:8a:0f:d5:f9:a4:fe:c2:ec:64:59:af:70:3d:28:6b: aa:47:1c:fc:90:42:22:d0:e3:fe:25:55:65:00:d3:ce:c6:2f: 6e:42:9e:cc:95:47:c0:f1:bc:71:da:2a:8b:1a:dc:b1:d4:e6: 18:7f:a0:30:6e:dc:cf:f9:ef:8b:a8:21:a9:b0:da:f4:0d:17: d3:e4:20:3c:a2:92:a6:f3:3a:bf:a7:94:3b:3f:74:21:92:56: 65:52:86:91:92:2e:ef:1a:1f:bd:34:64:c6:85:25:2a:c3:20: 4f:cd:c9:b6:24:16:97:9b:e6:36:ff:12:68:f8:11:eb:a3:80: e8:d6:2a:2c:79:44:e3:79:20:c6:cd:d6:fb:e0:64:ee:96:ab: 39:c6:b5:b3:55:42:61:0d:22:b9:1b:a7:a7:5d:c4:93:85:63: fe:a2:e9:de:2f:7a:ac:11:bd:79:61:d4:46:55:bf:e0:0b:75: 85:9b:54:62:c8:ef:8f:ba:e9:eb:0d:f2:5f:86:6c:5d:b3:2c: 62:51:e4:e4:ec:e5:8b:b7:fb:3b:71:9f:7c:a0:6d:af:2a:f1: 35:3a:ed:1b -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUPGobC6LiUiYwFTwjPaW4JgZRLMowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4 MTFBNzA0RDAeFw0yMzExMjQxMjI4MjVaFw0yNDExMjIxMjMzMjVaMDMxMTAvBgNV BAMTKEEwNUU0MkM5RkMyNUM2REJGQkU1RjczMDkwQTg3OUJCMjc3MTc5NTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDL7Hhf2yaHau1AyKUxMTalun7V o3yqh/JQUYpSsUMt8J8BlfFLeHLJ8Gn7yqueIq+nfVAWkilV/VzRabR35vtv2lzS iYLorQbIkOftGj/KRMeirry0GY99v2K3XbxKH1LRt9JRQxoc3jJdE08E5ILhvklb JgltliEWEhLQ4dexN2xt7LSMeIoEoKaboqAcUJpfQI2114yZYpex42tn+ekj29+7 CG6fyM78grNE5JNZE6peJ5AUNniygZQjWwcfTDgXerG60H0/UwsCJBkKwWXxjxp5 uJvL91l3YIsHoO0DdIbkpqYDrluv4H7o2sstnuMzFBvI9r8P9/eAFCS11CEZAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUoF5Cyfwlxtv75fcwkKh5uydxeVcwHwYDVR0j BBgwFoAUtvATFRDmL3Pl8pJG+cj2kYEacE0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWQ4ZGFiNC04YmI2LTRlZDAtOGRhYi01YTQwNjE2N2I5OWQvMC9CNkYwMTMxNTEw RTYyRjczRTVGMjkyNDZGOUM4RjY5MTgxMUE3MDRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4MTFB NzA0RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMyMzQzMDM0M2E2NTMxMzAzMDNhMzgzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzNTM1MzYzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAThAAAIMA0G CSqGSIb3DQEBCwUAA4IBAQCIPtFqpKOTIvHbZUQmtouYmFChyhuSxAkeWtB6cahf FQRvtof+ij+KD9X5pP7C7GRZr3A9KGuqRxz8kEIi0OP+JVVlANPOxi9uQp7MlUfA 8bxx2iqLGtyx1OYYf6AwbtzP+e+LqCGpsNr0DRfT5CA8opKm8zq/p5Q7P3QhklZl UoaRki7vGh+9NGTGhSUqwyBPzcm2JBaXm+Y2/xJo+BHro4Do1ioseUTjeSDGzdb7 4GTulqs5xrWzVUJhDSK5G6enXcSThWP+ouneL3qsEb15YdRGVb/gC3WFm1RiyO+P uunrDfJfhmxdsyxiUeTk7OWLt/s7cZ98oG2vKvE1Ou0b -----END CERTIFICATE-----Generated at Fri May 3 10:33:22 2024 by rpki-client on console-ams.rpki-client.org