$ rpki-client -vvf repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a613a3a2f34382d3438203d3e203535363835.roa File: 323430343a653130303a613a3a2f34382d3438203d3e203535363835.roa (raw, json) Hash identifier: wRaOnPP9xuiY8Jdl9c5XW8X1352IXXtbgl/bhf5XzME= Subject key identifier: 80:5F:C2:54:C1:85:75:4E:A0:F6:F6:BA:12:BD:C0:F0:B3:1F:9C:16 Certificate issuer: /CN=B6F0131510E62F73E5F29246F9C8F691811A704D Certificate serial: 1C9BAEA6B3030D7E93B8F2533D28F67B584372AD Authority key identifier: B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a613a3a2f34382d3438203d3e203535363835.roa Signing time: Tue 12 Dec 2023 03:02:42 +0000 ROA not before: Tue 12 Dec 2023 02:57:42 +0000 ROA not after: Tue 10 Dec 2024 03:02:42 +0000 asID: 55685 IP address blocks: 2404:e100:a::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:9b:ae:a6:b3:03:0d:7e:93:b8:f2:53:3d:28:f6:7b:58:43:72:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F0131510E62F73E5F29246F9C8F691811A704D Validity Not Before: Dec 12 02:57:42 2023 GMT Not After : Dec 10 03:02:42 2024 GMT Subject: CN=805FC254C185754EA0F6F6BA12BDC0F0B31F9C16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:89:21:e9:88:25:03:6c:b8:ac:13:77:1b:ca: ec:0c:f9:db:68:26:41:62:db:a5:7c:96:a5:e5:89: cb:95:0b:37:67:64:28:4f:79:6c:be:24:b9:aa:fb: 53:96:1f:02:ca:00:9c:7b:cb:7a:e3:0b:0d:6e:bf: 7b:3c:d2:ed:74:31:41:e4:29:60:a7:ed:f9:29:71: 5d:d6:62:27:a2:76:8f:21:c5:5a:8d:e5:2a:1b:0d: 7a:f2:0f:7c:db:75:b7:ca:91:04:95:8a:f6:d6:e9: 03:9b:33:a6:d2:a2:4b:8f:16:58:9b:52:d4:cd:5e: dc:4d:1c:25:7c:a9:a9:0a:62:27:ae:25:1a:93:e8: 94:44:70:51:88:51:74:bc:61:80:91:26:cf:48:63: 9a:be:38:94:86:1f:f9:df:28:74:23:e5:ae:e5:51: 6a:55:24:48:18:ad:e7:bf:8b:76:d9:64:e4:0c:fe: 33:33:5a:6e:f7:02:f7:45:0d:e3:e6:5e:d5:55:85: 9d:2c:5b:35:10:01:75:84:09:38:ca:8d:1c:e4:9e: 8b:23:db:5e:c9:28:0e:74:5e:36:f9:a8:9d:52:28: 46:a1:1b:04:22:af:ff:b6:28:e7:0c:52:07:89:ac: f7:52:0a:19:d4:32:26:6c:d4:2a:5b:2d:60:13:36: 18:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:5F:C2:54:C1:85:75:4E:A0:F6:F6:BA:12:BD:C0:F0:B3:1F:9C:16 X509v3 Authority Key Identifier: keyid:B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a613a3a2f34382d3438203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:e100:a::/48 Signature Algorithm: sha256WithRSAEncryption 52:59:19:b1:d8:e0:9c:32:aa:a3:00:84:0b:5f:6c:e6:90:78: ee:b7:f8:2d:26:4a:eb:b9:09:14:71:a1:ba:e5:e9:eb:01:57: 0e:ed:fb:b6:aa:8a:66:7d:65:99:96:f4:3b:97:76:f4:6e:43: dc:02:84:96:a6:15:69:0c:d7:82:b3:46:62:15:d7:00:14:98: ab:06:c2:49:93:e9:11:2d:38:da:dd:ec:47:7a:32:ac:20:2e: 18:b5:45:ad:16:96:90:17:94:95:e2:50:31:c6:be:4b:45:0b: c5:68:c6:70:2d:24:91:25:63:1e:e3:2b:81:1a:50:1f:c6:39: bb:19:6c:9c:bb:97:2b:0a:56:40:e1:d2:15:cb:c0:68:1d:64: 13:e2:4c:64:58:d2:2a:97:e2:36:c0:f0:28:14:9f:95:66:d8: cf:28:58:54:9d:34:09:9e:75:03:d0:72:41:fb:81:24:5b:45: b4:b9:04:f1:ec:c8:9a:e4:37:b1:7a:36:d6:d7:5c:05:1d:5b: 94:c9:ee:26:6a:06:62:27:60:38:f3:3d:1d:c7:cd:83:00:0e: 9f:1f:5b:39:d7:72:fa:c3:5b:aa:6d:3d:70:59:e9:d5:ae:8f: 2b:c4:68:43:11:a5:a2:b4:c2:5b:84:28:19:c7:32:d3:93:48: bd:3e:f8:c6 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUHJuuprMDDX6TuPJTPSj2e1hDcq0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4 MTFBNzA0RDAeFw0yMzEyMTIwMjU3NDJaFw0yNDEyMTAwMzAyNDJaMDMxMTAvBgNV BAMTKDgwNUZDMjU0QzE4NTc1NEVBMEY2RjZCQTEyQkRDMEYwQjMxRjlDMTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkiSHpiCUDbLisE3cbyuwM+dto JkFi26V8lqXlicuVCzdnZChPeWy+JLmq+1OWHwLKAJx7y3rjCw1uv3s80u10MUHk KWCn7fkpcV3WYieido8hxVqN5SobDXryD3zbdbfKkQSVivbW6QObM6bSokuPFlib UtTNXtxNHCV8qakKYieuJRqT6JREcFGIUXS8YYCRJs9IY5q+OJSGH/nfKHQj5a7l UWpVJEgYree/i3bZZOQM/jMzWm73AvdFDePmXtVVhZ0sWzUQAXWECTjKjRzknosj 217JKA50Xjb5qJ1SKEahGwQir/+2KOcMUgeJrPdSChnUMiZs1CpbLWATNhgDAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUgF/CVMGFdU6g9va6Er3A8LMfnBYwHwYDVR0j BBgwFoAUtvATFRDmL3Pl8pJG+cj2kYEacE0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWQ4ZGFiNC04YmI2LTRlZDAtOGRhYi01YTQwNjE2N2I5OWQvMC9CNkYwMTMxNTEw RTYyRjczRTVGMjkyNDZGOUM4RjY5MTgxMUE3MDRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4MTFB NzA0RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMyMzQzMDM0M2E2NTMxMzAzMDNhNjEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzNTM1MzYzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAThAAAKMA0G CSqGSIb3DQEBCwUAA4IBAQBSWRmx2OCcMqqjAIQLX2zmkHjut/gtJkrruQkUcaG6 5enrAVcO7fu2qopmfWWZlvQ7l3b0bkPcAoSWphVpDNeCs0ZiFdcAFJirBsJJk+kR LTja3exHejKsIC4YtUWtFpaQF5SV4lAxxr5LRQvFaMZwLSSRJWMe4yuBGlAfxjm7 GWycu5crClZA4dIVy8BoHWQT4kxkWNIql+I2wPAoFJ+VZtjPKFhUnTQJnnUD0HJB +4EkW0W0uQTx7Mia5DexejbW11wFHVuUye4magZiJ2A48z0dx82DAA6fH1s513L6 w1uqbT1wWenVro8rxGhDEaWitMJbhCgZxzLTk0i9PvjG -----END CERTIFICATE-----Generated at Fri May 3 09:07:40 2024 by rpki-client on console-fra.rpki-client.org