$ rpki-client -vvf repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a393a3a2f34382d3438203d3e203535363835.roa File: 323430343a653130303a393a3a2f34382d3438203d3e203535363835.roa (raw, json) Hash identifier: UGuUHRe3tZt1Kq3D1TEbrjQJoqpB+mJVZIcNmr5b6Pk= Subject key identifier: A3:8C:EC:FE:C8:8B:B2:C6:0E:CF:02:F2:78:C9:CA:CA:3B:38:99:84 Certificate issuer: /CN=B6F0131510E62F73E5F29246F9C8F691811A704D Certificate serial: 4759AF5EB77D4947E521520E5B10BEB81831FFCB Authority key identifier: B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a393a3a2f34382d3438203d3e203535363835.roa Signing time: Fri 24 Nov 2023 12:33:40 +0000 ROA not before: Fri 24 Nov 2023 12:28:40 +0000 ROA not after: Fri 22 Nov 2024 12:33:40 +0000 asID: 55685 IP address blocks: 2404:e100:9::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:59:af:5e:b7:7d:49:47:e5:21:52:0e:5b:10:be:b8:18:31:ff:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F0131510E62F73E5F29246F9C8F691811A704D Validity Not Before: Nov 24 12:28:40 2023 GMT Not After : Nov 22 12:33:40 2024 GMT Subject: CN=A38CECFEC88BB2C60ECF02F278C9CACA3B389984 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:d4:d2:99:f2:ec:09:3c:34:f4:eb:f0:ef:de: ca:72:cf:91:6c:9c:de:6b:aa:e6:c1:ae:50:5d:c2: 48:4f:ff:95:cc:f4:89:16:3c:38:8a:60:9e:2e:05: 83:03:12:bd:39:5a:c9:eb:d0:6d:87:ab:e9:94:58: e2:eb:7f:58:b7:be:f9:05:7f:06:6b:b3:f4:4d:a7: ee:05:2d:06:26:7e:df:8c:a1:00:d6:8b:15:85:b3: ee:ac:6c:a5:14:a0:26:a3:fd:80:a9:cc:63:0a:7f: d8:2c:5b:a7:57:1b:9e:c4:c6:3a:c7:65:41:61:14: 50:d0:e7:fa:7d:bf:a8:7b:c9:13:dd:a2:1e:e1:a5: 11:8b:ca:da:75:25:f3:47:cf:2d:e4:2f:55:35:84: 41:0b:c5:fc:45:8c:fb:92:b5:77:e1:4a:88:f1:d2: 92:ba:fc:d4:1c:5b:49:a4:f1:ee:ed:e6:72:46:3f: 04:fa:4d:57:5f:a8:90:ff:a5:a7:f1:84:05:b0:24: 22:34:e8:03:a2:0e:69:1b:57:b3:9d:15:9b:b6:cd: 24:8b:b2:7b:f3:31:a0:24:02:3f:92:88:42:94:ce: ae:bb:39:3e:2c:4b:44:d7:5c:c4:2e:d1:23:a8:19: 8c:18:84:72:dd:66:6c:7d:fb:a7:06:07:99:42:06: 42:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:8C:EC:FE:C8:8B:B2:C6:0E:CF:02:F2:78:C9:CA:CA:3B:38:99:84 X509v3 Authority Key Identifier: keyid:B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a393a3a2f34382d3438203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:e100:9::/48 Signature Algorithm: sha256WithRSAEncryption a3:a0:1a:5b:a6:06:ea:09:d7:37:b3:fc:b3:59:aa:67:1d:68: 0c:71:aa:82:bd:7a:55:00:fe:e3:4e:24:48:b0:fb:ec:a2:fa: 4b:66:6b:ae:24:9c:e5:f9:ac:9f:28:2b:89:86:d4:c2:cc:04: 6f:a3:8f:de:18:72:ce:83:e4:30:32:59:d9:cf:f4:85:31:d1: 54:8f:b9:da:09:03:df:3c:72:f4:a1:59:58:37:8e:d1:e9:14: 94:90:58:99:49:ed:dd:be:9a:54:26:84:4a:19:9e:99:6e:db: 56:51:86:41:76:ff:5f:75:14:ec:db:30:5c:f3:b7:a7:9d:74: b2:ce:c7:cd:46:eb:9f:c5:48:22:a1:7f:f2:2d:1c:a2:c1:9b: 7d:03:29:0e:37:60:16:7d:20:f8:5b:9d:b4:00:f5:cb:9c:c1: af:d7:9f:06:ef:6a:6d:8e:a3:ab:2c:2f:6d:d8:a8:9c:d0:ca: 7c:54:18:41:be:ce:15:23:bb:a7:84:bf:6f:a6:24:dd:46:ea: 98:42:c9:33:6e:68:9a:d4:f5:c9:77:35:ed:3a:94:54:61:9b: 79:fd:19:93:42:cc:c5:25:20:48:b8:7e:c1:d0:fb:99:86:69: 43:3f:21:0f:c2:b6:75:0b:74:03:a4:7f:0c:3b:cb:c1:15:ea: 35:96:11:53 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUR1mvXrd9SUflIVIOWxC+uBgx/8swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4 MTFBNzA0RDAeFw0yMzExMjQxMjI4NDBaFw0yNDExMjIxMjMzNDBaMDMxMTAvBgNV BAMTKEEzOENFQ0ZFQzg4QkIyQzYwRUNGMDJGMjc4QzlDQUNBM0IzODk5ODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCv1NKZ8uwJPDT06/Dv3spyz5Fs nN5rqubBrlBdwkhP/5XM9IkWPDiKYJ4uBYMDEr05Wsnr0G2Hq+mUWOLrf1i3vvkF fwZrs/RNp+4FLQYmft+MoQDWixWFs+6sbKUUoCaj/YCpzGMKf9gsW6dXG57ExjrH ZUFhFFDQ5/p9v6h7yRPdoh7hpRGLytp1JfNHzy3kL1U1hEELxfxFjPuStXfhSojx 0pK6/NQcW0mk8e7t5nJGPwT6TVdfqJD/pafxhAWwJCI06AOiDmkbV7OdFZu2zSSL snvzMaAkAj+SiEKUzq67OT4sS0TXXMQu0SOoGYwYhHLdZmx9+6cGB5lCBkKDAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUo4zs/siLssYOzwLyeMnKyjs4mYQwHwYDVR0j BBgwFoAUtvATFRDmL3Pl8pJG+cj2kYEacE0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWQ4ZGFiNC04YmI2LTRlZDAtOGRhYi01YTQwNjE2N2I5OWQvMC9CNkYwMTMxNTEw RTYyRjczRTVGMjkyNDZGOUM4RjY5MTgxMUE3MDRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4MTFB NzA0RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMyMzQzMDM0M2E2NTMxMzAzMDNhMzkzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzNTM1MzYzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAThAAAJMA0G CSqGSIb3DQEBCwUAA4IBAQCjoBpbpgbqCdc3s/yzWapnHWgMcaqCvXpVAP7jTiRI sPvsovpLZmuuJJzl+ayfKCuJhtTCzARvo4/eGHLOg+QwMlnZz/SFMdFUj7naCQPf PHL0oVlYN47R6RSUkFiZSe3dvppUJoRKGZ6ZbttWUYZBdv9fdRTs2zBc87ennXSy zsfNRuufxUgioX/yLRyiwZt9AykON2AWfSD4W520APXLnMGv158G72ptjqOrLC9t 2Kic0Mp8VBhBvs4VI7unhL9vpiTdRuqYQskzbmia1PXJdzXtOpRUYZt5/RmTQszF JSBIuH7B0PuZhmlDPyEPwrZ1C3QDpH8MO8vBFeo1lhFT -----END CERTIFICATE-----Generated at Fri May 3 10:33:22 2024 by rpki-client on console-ams.rpki-client.org