$ rpki-client -vvf repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a323a3a2f34382d3438203d3e203535363835.roa File: 323430343a653130303a323a3a2f34382d3438203d3e203535363835.roa (raw, json) Hash identifier: Cx7ScndNksxbXmWDm7AH+TZdstqT3JLUqjr4SHopBEk= Subject key identifier: C9:DB:89:9F:56:6E:3E:D2:1D:1B:1D:9A:06:21:25:71:1B:B3:FD:B2 Certificate issuer: /CN=B6F0131510E62F73E5F29246F9C8F691811A704D Certificate serial: 03423D0A1A7F3A3AA5524A086D333D27B4E22119 Authority key identifier: B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a323a3a2f34382d3438203d3e203535363835.roa Signing time: Tue 24 Sep 2024 07:00:32 +0000 ROA not before: Tue 24 Sep 2024 06:55:32 +0000 ROA not after: Tue 23 Sep 2025 07:00:32 +0000 asID: 55685 IP address blocks: 2404:e100:2::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:42:3d:0a:1a:7f:3a:3a:a5:52:4a:08:6d:33:3d:27:b4:e2:21:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F0131510E62F73E5F29246F9C8F691811A704D Validity Not Before: Sep 24 06:55:32 2024 GMT Not After : Sep 23 07:00:32 2025 GMT Subject: CN=C9DB899F566E3ED21D1B1D9A062125711BB3FDB2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:49:49:05:92:49:0e:63:0f:c9:ec:8f:80:db: 12:6b:88:bf:2d:c0:46:f7:d2:a2:cf:b3:b4:dd:62: 46:b8:92:34:c9:7a:17:a6:6c:90:60:db:49:3e:cb: c4:31:3d:60:f4:dc:20:bb:68:96:c2:17:e0:e9:6c: db:a6:4a:68:67:fc:dc:53:4f:59:20:26:69:34:45: e6:17:22:d5:d5:7b:46:ce:16:c4:27:e5:a6:5e:98: 4f:f4:df:c1:6c:62:bd:5e:76:02:e7:39:f1:af:71: 15:ac:93:fa:c4:b4:36:51:1f:f7:19:6a:d8:f2:b1: 5b:f0:d5:d9:50:c1:91:f5:e4:7f:2b:89:c5:ab:91: ba:b2:79:72:88:a2:99:a3:9b:d9:b4:18:c5:66:83: 78:d4:0a:29:b1:51:12:d7:0c:b8:65:98:53:36:1f: c1:72:4d:37:ee:60:53:bb:04:4f:4c:bd:33:85:e0: 41:e4:6d:e9:c4:b4:28:85:75:ef:3a:10:ae:19:75: fd:b2:bf:16:b7:7a:ac:ba:b0:d6:c6:a9:fc:ea:e8: 3d:24:2b:bc:12:32:3b:ce:88:71:1a:2d:e8:40:04: b8:a0:b4:18:a0:53:27:a0:df:43:a5:a1:f2:55:8c: 4f:b6:05:df:c6:2a:80:0b:28:2f:1e:39:53:7e:08: af:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:DB:89:9F:56:6E:3E:D2:1D:1B:1D:9A:06:21:25:71:1B:B3:FD:B2 X509v3 Authority Key Identifier: keyid:B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a323a3a2f34382d3438203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:e100:2::/48 Signature Algorithm: sha256WithRSAEncryption 59:7e:0e:f4:9f:1f:48:ec:47:a3:80:e2:34:2e:46:14:33:2c: 7d:a4:2c:92:db:81:11:f7:2d:54:28:5d:78:86:2b:97:d8:c9: 24:59:5f:89:f6:63:44:3c:c7:5d:74:47:6f:32:4e:b7:da:cb: 9b:5e:ba:5e:08:d5:34:02:7e:90:40:96:ef:d5:43:65:0c:01: bf:d2:7b:e8:00:7e:8b:71:07:9a:c8:6c:a5:fd:b5:59:e8:23: 9e:58:86:01:aa:e4:46:5b:ce:42:04:d7:a6:9d:b5:0a:c7:20: 97:cb:77:e6:12:15:7b:03:a2:fe:fc:bc:93:0e:7b:f7:1c:8f: 5e:42:dd:ab:8d:e0:32:13:ed:3a:95:e1:e7:c5:64:d1:e8:42: 16:e1:47:91:ed:e2:1d:3b:f8:07:c1:0b:08:d2:75:07:b1:0d: 7b:5d:cf:31:a3:6b:77:90:65:95:78:76:9b:98:aa:69:91:f9: a6:5e:e4:1d:f2:f4:56:06:3b:7f:c5:0d:f5:a4:26:c1:ef:df: 28:67:14:85:18:1e:12:99:33:05:5b:c2:3b:43:f8:4f:46:0c: f4:34:90:07:2d:7a:7a:a1:38:9c:8b:e1:e8:0a:2f:a5:81:7c: 1f:02:10:f8:06:4e:35:19:f4:ac:a7:6b:1b:34:83:43:8d:0a: 3b:53:1d:c5 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUA0I9Chp/OjqlUkoIbTM9J7TiIRkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4 MTFBNzA0RDAeFw0yNDA5MjQwNjU1MzJaFw0yNTA5MjMwNzAwMzJaMDMxMTAvBgNV BAMTKEM5REI4OTlGNTY2RTNFRDIxRDFCMUQ5QTA2MjEyNTcxMUJCM0ZEQjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGSUkFkkkOYw/J7I+A2xJriL8t wEb30qLPs7TdYka4kjTJehembJBg20k+y8QxPWD03CC7aJbCF+DpbNumSmhn/NxT T1kgJmk0ReYXItXVe0bOFsQn5aZemE/038FsYr1edgLnOfGvcRWsk/rEtDZRH/cZ atjysVvw1dlQwZH15H8ricWrkbqyeXKIopmjm9m0GMVmg3jUCimxURLXDLhlmFM2 H8FyTTfuYFO7BE9MvTOF4EHkbenEtCiFde86EK4Zdf2yvxa3eqy6sNbGqfzq6D0k K7wSMjvOiHEaLehABLigtBigUyeg30OlofJVjE+2Bd/GKoALKC8eOVN+CK+hAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUyduJn1ZuPtIdGx2aBiElcRuz/bIwHwYDVR0j BBgwFoAUtvATFRDmL3Pl8pJG+cj2kYEacE0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWQ4ZGFiNC04YmI2LTRlZDAtOGRhYi01YTQwNjE2N2I5OWQvMC9CNkYwMTMxNTEw RTYyRjczRTVGMjkyNDZGOUM4RjY5MTgxMUE3MDRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4MTFB NzA0RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMyMzQzMDM0M2E2NTMxMzAzMDNhMzIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzNTM1MzYzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAThAAACMA0G CSqGSIb3DQEBCwUAA4IBAQBZfg70nx9I7EejgOI0LkYUMyx9pCyS24ER9y1UKF14 hiuX2MkkWV+J9mNEPMdddEdvMk632subXrpeCNU0An6QQJbv1UNlDAG/0nvoAH6L cQeayGyl/bVZ6COeWIYBquRGW85CBNemnbUKxyCXy3fmEhV7A6L+/LyTDnv3HI9e Qt2rjeAyE+06leHnxWTR6EIW4UeR7eIdO/gHwQsI0nUHsQ17Xc8xo2t3kGWVeHab mKppkfmmXuQd8vRWBjt/xQ31pCbB798oZxSFGB4SmTMFW8I7Q/hPRgz0NJAHLXp6 oTici+HoCi+lgXwfAhD4Bk41GfSsp2sbNINDjQo7Ux3F -----END CERTIFICATE-----Generated at Wed Nov 20 23:10:18 2024 by rpki-client on console-fra.rpki-client.org