$ rpki-client -vvf repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a333030323a3a2f34382d3438203d3e203535363835.roa File: 323430343a653130303a333030323a3a2f34382d3438203d3e203535363835.roa (raw, json) Hash identifier: 9E/hd2vhVmfKk0H74o1pGsTdOz1h5HydlvV0rfVXqGc= Subject key identifier: BA:53:9C:18:79:8B:A3:96:67:F6:D1:93:B0:F9:37:B3:38:41:A8:19 Certificate issuer: /CN=B6F0131510E62F73E5F29246F9C8F691811A704D Certificate serial: 10265B4D626EB1D9908ECCD39474037F747817B5 Authority key identifier: B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a333030323a3a2f34382d3438203d3e203535363835.roa Signing time: Thu 31 Oct 2024 10:00:02 +0000 ROA not before: Thu 31 Oct 2024 09:55:02 +0000 ROA not after: Thu 30 Oct 2025 10:00:02 +0000 asID: 55685 IP address blocks: 2404:e100:3002::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:26:5b:4d:62:6e:b1:d9:90:8e:cc:d3:94:74:03:7f:74:78:17:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F0131510E62F73E5F29246F9C8F691811A704D Validity Not Before: Oct 31 09:55:02 2024 GMT Not After : Oct 30 10:00:02 2025 GMT Subject: CN=BA539C18798BA39667F6D193B0F937B33841A819 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:28:f0:ee:69:42:02:02:d1:f9:be:41:2d:53: 48:49:14:b7:6a:d1:42:b7:ad:52:8f:37:45:63:16: 7c:73:1c:31:5e:26:95:e2:29:b6:67:94:86:ba:d7: a3:9c:51:a3:5f:e5:31:ba:2b:99:af:04:31:37:bb: d3:de:8c:22:fa:17:1a:a7:3e:c7:85:8d:76:39:0d: 6d:e7:57:ee:17:ba:ad:45:42:b6:f5:dd:e1:39:96: 11:b0:81:4f:07:95:d9:1d:70:23:8f:88:ae:8d:49: 59:b4:ab:c5:64:dd:90:78:fc:b1:83:aa:6b:01:ba: 4b:60:1e:3b:2f:76:1c:6a:17:3b:c7:c1:74:df:77: cd:d1:f3:ac:34:ff:93:04:67:b0:91:24:df:b9:48: 89:bb:d1:53:db:dd:57:85:61:66:e2:5a:7e:f1:51: f3:87:98:a4:a6:06:45:66:55:44:5c:7f:58:88:f9: 1f:41:aa:d9:ec:75:30:a0:c4:2c:1c:0e:27:1a:30: 50:96:2c:91:77:4c:7d:05:d3:15:b4:ef:3f:67:3c: a9:05:7a:1c:f8:73:ec:e1:62:d2:d2:35:a9:a2:3c: 58:f6:3f:dd:29:39:b8:c8:24:5c:31:9d:52:28:74: 37:e1:15:86:c8:ef:1a:2c:35:ba:10:2f:9c:38:56: 83:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:53:9C:18:79:8B:A3:96:67:F6:D1:93:B0:F9:37:B3:38:41:A8:19 X509v3 Authority Key Identifier: keyid:B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a333030323a3a2f34382d3438203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:e100:3002::/48 Signature Algorithm: sha256WithRSAEncryption 1f:85:ed:7d:71:f6:45:7e:55:ce:40:a4:a9:6a:2a:44:cd:1f: 07:27:2e:da:96:0a:a0:48:ba:80:07:2d:2d:3b:74:ae:ad:35: 54:24:e4:db:d8:7d:c2:e2:18:bf:c2:c6:93:12:68:83:c3:d7: 81:df:81:2a:cd:85:a7:34:f3:9f:d1:10:49:bd:af:dd:e8:a2: 79:1c:2a:d2:88:7d:6c:8c:ea:64:08:76:c6:04:1a:38:42:54: 5d:b7:8f:28:6a:89:3c:ef:6b:95:2d:2b:bf:20:a2:99:ca:3c: 54:6e:5b:8b:21:a5:7f:31:ac:d1:9d:c0:19:89:0b:88:86:8e: 33:fd:bd:30:b5:2d:ac:d0:dd:64:72:86:01:b4:7a:0c:9b:9c: 69:06:f9:a0:29:81:8f:c3:22:8f:5f:16:f0:2a:cb:e2:40:14: 86:2f:e3:10:48:8d:8c:9e:83:07:cd:a9:1d:1f:ab:ab:e0:b6: 91:7c:c5:32:43:c4:06:c5:3a:52:c2:00:c9:c7:83:64:ee:c2: b0:5f:1f:32:ef:f5:0f:ad:60:df:6b:c2:14:02:30:87:2a:3b: 0d:1c:36:dc:aa:13:13:07:eb:4b:59:33:7e:7c:16:fe:fa:06: 81:2d:cf:23:e4:9a:55:e4:1a:79:a6:14:98:84:fc:f4:f3:96: a9:9e:7c:22 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUECZbTWJusdmQjszTlHQDf3R4F7UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4 MTFBNzA0RDAeFw0yNDEwMzEwOTU1MDJaFw0yNTEwMzAxMDAwMDJaMDMxMTAvBgNV BAMTKEJBNTM5QzE4Nzk4QkEzOTY2N0Y2RDE5M0IwRjkzN0IzMzg0MUE4MTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsKPDuaUICAtH5vkEtU0hJFLdq 0UK3rVKPN0VjFnxzHDFeJpXiKbZnlIa616OcUaNf5TG6K5mvBDE3u9PejCL6Fxqn PseFjXY5DW3nV+4Xuq1FQrb13eE5lhGwgU8HldkdcCOPiK6NSVm0q8Vk3ZB4/LGD qmsBuktgHjsvdhxqFzvHwXTfd83R86w0/5MEZ7CRJN+5SIm70VPb3VeFYWbiWn7x UfOHmKSmBkVmVURcf1iI+R9BqtnsdTCgxCwcDicaMFCWLJF3TH0F0xW07z9nPKkF ehz4c+zhYtLSNamiPFj2P90pObjIJFwxnVIodDfhFYbI7xosNboQL5w4VoPrAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUulOcGHmLo5Zn9tGTsPk3szhBqBkwHwYDVR0j BBgwFoAUtvATFRDmL3Pl8pJG+cj2kYEacE0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWQ4ZGFiNC04YmI2LTRlZDAtOGRhYi01YTQwNjE2N2I5OWQvMC9CNkYwMTMxNTEw RTYyRjczRTVGMjkyNDZGOUM4RjY5MTgxMUE3MDRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4MTFB NzA0RC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMyMzQzMDM0M2E2NTMxMzAzMDNhMzMzMDMwMzIz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzNTM1MzYzODM1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJATh ADACMA0GCSqGSIb3DQEBCwUAA4IBAQAfhe19cfZFflXOQKSpaipEzR8HJy7algqg SLqABy0tO3SurTVUJOTb2H3C4hi/wsaTEmiDw9eB34EqzYWnNPOf0RBJva/d6KJ5 HCrSiH1sjOpkCHbGBBo4QlRdt48oaok872uVLSu/IKKZyjxUbluLIaV/MazRncAZ iQuIho4z/b0wtS2s0N1kcoYBtHoMm5xpBvmgKYGPwyKPXxbwKsviQBSGL+MQSI2M noMHzakdH6ur4LaRfMUyQ8QGxTpSwgDJx4Nk7sKwXx8y7/UPrWDfa8IUAjCHKjsN HDbcqhMTB+tLWTN+fBb++gaBLc8j5JpV5Bp5phSYhPz085apnnwi -----END CERTIFICATE-----Generated at Wed Nov 20 23:10:18 2024 by rpki-client on console-fra.rpki-client.org