$ rpki-client -vvf repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a323030313a3a2f34382d3438203d3e203535363835.roa File: 323430343a653130303a323030313a3a2f34382d3438203d3e203535363835.roa (raw, json) Hash identifier: JpTUp+Fv7RomJm5ndW0ZQvyoW9QIwqshG+VJaNtzDnY= Subject key identifier: 25:2F:65:C9:08:C4:88:48:22:25:45:CF:E9:04:F6:95:F5:B9:07:1C Certificate issuer: /CN=B6F0131510E62F73E5F29246F9C8F691811A704D Certificate serial: 3FE73BF241F6A7A7B2EF270CA1C750AAD60A718D Authority key identifier: B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a323030313a3a2f34382d3438203d3e203535363835.roa Signing time: Mon 01 Jul 2024 01:05:50 +0000 ROA not before: Mon 01 Jul 2024 01:00:50 +0000 ROA not after: Mon 30 Jun 2025 01:05:50 +0000 asID: 55685 IP address blocks: 2404:e100:2001::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 21:52:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:e7:3b:f2:41:f6:a7:a7:b2:ef:27:0c:a1:c7:50:aa:d6:0a:71:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F0131510E62F73E5F29246F9C8F691811A704D Validity Not Before: Jul 1 01:00:50 2024 GMT Not After : Jun 30 01:05:50 2025 GMT Subject: CN=252F65C908C48848222545CFE904F695F5B9071C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:3b:54:93:cc:5c:ba:ae:df:90:82:2b:8a:1c: 75:4c:6c:fb:3d:bc:71:fa:a6:72:84:6e:ce:ae:5f: be:cf:08:71:a1:8e:cf:70:d8:34:97:1b:b2:58:13: e9:71:d8:fc:39:04:6a:b8:90:51:fc:07:dc:ec:9b: 12:fe:dd:7f:a4:b9:2b:2b:57:2c:95:93:6f:5b:ca: 18:23:6b:1c:38:80:a9:20:3d:09:68:11:1a:68:9d: 70:1f:c6:5c:f2:16:ea:fe:1d:59:96:fc:c5:bc:bc: 93:c5:08:d7:62:9c:c5:29:68:66:39:15:70:7b:e9: b2:a3:36:7c:41:ca:ca:0c:75:86:5d:d8:28:29:0d: 5b:30:35:18:4c:ce:30:64:8d:04:a9:da:d1:75:53: ad:df:d6:b3:02:46:c2:06:db:f6:89:28:55:6d:59: ac:76:33:1d:ab:db:1d:82:ca:4f:d1:85:7d:5b:74: ad:af:7d:10:cb:63:dc:62:47:1f:98:d2:7c:f1:d7: b7:62:ec:2d:fc:ba:d9:f7:4c:9c:f5:2b:2e:d1:a7: e0:b0:70:80:3e:61:b6:1d:86:6f:b8:df:22:56:cd: f2:82:0e:14:b0:4a:bf:ec:37:c8:64:bc:21:3b:e5: 15:2e:74:bf:73:8d:83:1d:2a:78:36:d9:12:75:eb: 00:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:2F:65:C9:08:C4:88:48:22:25:45:CF:E9:04:F6:95:F5:B9:07:1C X509v3 Authority Key Identifier: keyid:B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a323030313a3a2f34382d3438203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:e100:2001::/48 Signature Algorithm: sha256WithRSAEncryption 62:fb:1b:c8:53:28:83:a9:8b:bd:cc:83:e0:8d:80:3b:fd:a8: 47:4a:aa:8f:51:5d:79:2c:9b:1d:e3:b5:44:62:9d:ed:cd:1d: b9:31:f6:2c:41:b0:f2:00:36:49:1f:ce:c0:08:78:71:2e:f5: 5b:6e:db:a3:51:f7:d3:7b:37:83:a8:64:84:e1:32:88:19:e0: ee:5e:0a:51:48:ca:38:98:c4:10:f4:c2:a6:9d:d5:61:77:10: d1:c6:ae:59:19:76:eb:12:3f:e4:65:74:59:e8:a0:92:b2:61: 4f:a4:5b:ef:da:7e:70:53:18:c4:a0:be:3b:13:f4:91:23:e4: 51:73:50:ac:a4:97:df:58:35:4d:3d:cd:9e:b0:88:63:d4:3f: de:98:6e:62:5d:fb:bb:6e:b9:80:6c:45:8c:20:90:3d:50:a9: 7c:a5:22:9a:1c:87:21:6a:77:bf:de:06:99:58:ad:6e:9f:9a: 4a:68:80:4b:b8:22:0f:4f:14:11:bc:54:3b:ad:9f:7a:e1:a5: b8:74:9c:cd:f6:c7:55:c9:d8:4d:fb:54:d2:7e:5e:50:16:dd: bf:e7:30:2a:fa:cd:d2:8c:00:07:fd:a9:e3:1c:32:cb:83:77: 2b:ce:3e:5f:11:7a:ca:de:da:11:ef:6e:d8:e7:99:b9:2f:c2: f0:46:d9:55 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUP+c78kH2p6ey7ycMocdQqtYKcY0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4 MTFBNzA0RDAeFw0yNDA3MDEwMTAwNTBaFw0yNTA2MzAwMTA1NTBaMDMxMTAvBgNV BAMTKDI1MkY2NUM5MDhDNDg4NDgyMjI1NDVDRkU5MDRGNjk1RjVCOTA3MUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4O1STzFy6rt+QgiuKHHVMbPs9 vHH6pnKEbs6uX77PCHGhjs9w2DSXG7JYE+lx2Pw5BGq4kFH8B9zsmxL+3X+kuSsr VyyVk29byhgjaxw4gKkgPQloERponXAfxlzyFur+HVmW/MW8vJPFCNdinMUpaGY5 FXB76bKjNnxBysoMdYZd2CgpDVswNRhMzjBkjQSp2tF1U63f1rMCRsIG2/aJKFVt Wax2Mx2r2x2Cyk/RhX1bdK2vfRDLY9xiRx+Y0nzx17di7C38utn3TJz1Ky7Rp+Cw cIA+YbYdhm+43yJWzfKCDhSwSr/sN8hkvCE75RUudL9zjYMdKng22RJ16wDPAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUJS9lyQjEiEgiJUXP6QT2lfW5BxwwHwYDVR0j BBgwFoAUtvATFRDmL3Pl8pJG+cj2kYEacE0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWQ4ZGFiNC04YmI2LTRlZDAtOGRhYi01YTQwNjE2N2I5OWQvMC9CNkYwMTMxNTEw RTYyRjczRTVGMjkyNDZGOUM4RjY5MTgxMUE3MDRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4MTFB NzA0RC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMyMzQzMDM0M2E2NTMxMzAzMDNhMzIzMDMwMzEz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzNTM1MzYzODM1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJATh ACABMA0GCSqGSIb3DQEBCwUAA4IBAQBi+xvIUyiDqYu9zIPgjYA7/ahHSqqPUV15 LJsd47VEYp3tzR25MfYsQbDyADZJH87ACHhxLvVbbtujUffTezeDqGSE4TKIGeDu XgpRSMo4mMQQ9MKmndVhdxDRxq5ZGXbrEj/kZXRZ6KCSsmFPpFvv2n5wUxjEoL47 E/SRI+RRc1CspJffWDVNPc2esIhj1D/emG5iXfu7brmAbEWMIJA9UKl8pSKaHIch ane/3gaZWK1un5pKaIBLuCIPTxQRvFQ7rZ964aW4dJzN9sdVydhN+1TSfl5QFt2/ 5zAq+s3SjAAH/anjHDLLg3crzj5fEXrK3toR727Y55m5L8LwRtlV -----END CERTIFICATE-----Generated at Mon Nov 25 15:26:45 2024 by rpki-client on console-fra.rpki-client.org