$ rpki-client -vvf repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a333030333a3a2f34382d3438203d3e203535363835.roa File: 323430343a653130303a333030333a3a2f34382d3438203d3e203535363835.roa (raw, json) Hash identifier: QdxgP+LIE5vfPbWUuf26VJO1nnYOAzRgL7//6rKYgz0= Subject key identifier: B4:3F:48:FA:22:2A:EC:0D:B9:EF:90:69:C5:43:09:BF:0E:8A:5D:B4 Certificate issuer: /CN=B6F0131510E62F73E5F29246F9C8F691811A704D Certificate serial: 7F7915DDEEBBFC63AE27EBB9D215D1E64FB9923C Authority key identifier: B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a333030333a3a2f34382d3438203d3e203535363835.roa Signing time: Thu 31 Oct 2024 10:00:02 +0000 ROA not before: Thu 31 Oct 2024 09:55:02 +0000 ROA not after: Thu 30 Oct 2025 10:00:02 +0000 asID: 55685 IP address blocks: 2404:e100:3003::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:79:15:dd:ee:bb:fc:63:ae:27:eb:b9:d2:15:d1:e6:4f:b9:92:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F0131510E62F73E5F29246F9C8F691811A704D Validity Not Before: Oct 31 09:55:02 2024 GMT Not After : Oct 30 10:00:02 2025 GMT Subject: CN=B43F48FA222AEC0DB9EF9069C54309BF0E8A5DB4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:73:19:f7:12:67:93:00:15:2e:ab:27:65:ea: d7:25:aa:5f:57:80:18:67:41:ef:74:db:40:4a:fc: cc:55:66:f2:23:77:a9:17:f3:b3:a8:d4:d6:21:cb: ad:c9:83:a5:65:8d:52:4d:5e:56:5b:2e:a7:9c:51: 6c:b2:f2:4d:18:45:1f:23:25:18:e5:ec:5e:33:33: 50:2f:c7:c0:0c:a7:15:e6:16:24:b4:fc:78:cc:1a: 2e:d8:cb:dd:cf:ed:d3:d9:63:81:4e:82:13:8f:a4: 0e:51:99:30:17:3b:15:29:0c:d6:0c:ec:01:2a:5c: c6:b6:b7:20:9b:22:e9:17:fe:b8:14:90:69:dd:12: 73:46:17:66:e6:10:20:7d:ff:9b:06:a3:9d:7c:d8: ba:4f:43:e7:c1:66:ac:06:2d:c7:d7:16:93:a0:5d: fb:1f:9a:ed:a0:9b:e5:ea:d7:68:df:4a:3f:da:24: 60:30:d7:fa:cb:8e:bc:b2:53:37:48:d3:3a:c8:76: bb:e5:bb:00:4d:72:d3:6c:72:cf:48:c8:eb:de:b8: ce:ac:ab:1e:e7:71:aa:d7:67:a2:f1:85:34:e1:6f: ed:c7:37:ca:e6:fa:bc:04:c9:0b:fd:2e:da:76:e6: 76:35:96:db:24:9e:58:dd:2e:d6:b7:79:40:70:75: 93:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:3F:48:FA:22:2A:EC:0D:B9:EF:90:69:C5:43:09:BF:0E:8A:5D:B4 X509v3 Authority Key Identifier: keyid:B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a333030333a3a2f34382d3438203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:e100:3003::/48 Signature Algorithm: sha256WithRSAEncryption 04:e7:3a:6f:f0:c3:54:fb:ea:68:48:b2:9f:a4:99:80:54:c7: af:ce:34:73:13:d2:3d:a7:63:84:0d:b9:03:16:82:ca:5c:7b: 72:0d:84:17:74:16:12:b8:8b:ac:84:60:a5:d2:44:c2:55:5a: e3:44:eb:3a:3d:98:bf:4d:25:77:bb:0f:34:6d:cf:17:36:06: 1d:15:39:03:31:2f:1b:95:3e:49:8e:d1:35:e7:58:50:79:c9: 1d:db:a3:cb:d7:fd:ac:15:30:68:72:a3:ca:b5:7a:2a:3b:68: 11:ab:c7:2a:75:02:56:9c:29:47:88:9d:19:49:70:17:17:10: eb:e4:44:da:a8:05:62:d9:17:a1:66:77:aa:f8:b5:57:16:46: 7b:41:8b:8c:8f:4a:6b:c5:bc:bd:8a:66:87:78:77:29:38:dc: 28:63:97:b9:27:ea:9a:71:98:dc:48:8f:bc:93:9d:94:8c:0b: 2f:37:50:dc:80:ec:f4:5a:42:b9:1e:17:41:2c:52:7f:7f:0f: 2b:3e:10:0c:cd:f7:d1:92:95:a2:8e:b9:4f:1f:09:7b:c8:93: e4:bd:5c:21:b1:cb:dc:ab:18:c8:4d:c2:f9:f9:f7:3f:bb:c4: dd:78:f7:ae:c5:0f:20:ab:dd:87:42:c8:e0:30:ac:aa:4c:56: c6:4e:ed:4a -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUf3kV3e67/GOuJ+u50hXR5k+5kjwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4 MTFBNzA0RDAeFw0yNDEwMzEwOTU1MDJaFw0yNTEwMzAxMDAwMDJaMDMxMTAvBgNV BAMTKEI0M0Y0OEZBMjIyQUVDMERCOUVGOTA2OUM1NDMwOUJGMEU4QTVEQjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCscxn3EmeTABUuqydl6tclql9X gBhnQe9020BK/MxVZvIjd6kX87Oo1NYhy63Jg6VljVJNXlZbLqecUWyy8k0YRR8j JRjl7F4zM1Avx8AMpxXmFiS0/HjMGi7Yy93P7dPZY4FOghOPpA5RmTAXOxUpDNYM 7AEqXMa2tyCbIukX/rgUkGndEnNGF2bmECB9/5sGo5182LpPQ+fBZqwGLcfXFpOg Xfsfmu2gm+Xq12jfSj/aJGAw1/rLjryyUzdI0zrIdrvluwBNctNscs9IyOveuM6s qx7ncarXZ6LxhTThb+3HN8rm+rwEyQv9Ltp25nY1ltsknljdLta3eUBwdZPTAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUtD9I+iIq7A2575BpxUMJvw6KXbQwHwYDVR0j BBgwFoAUtvATFRDmL3Pl8pJG+cj2kYEacE0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWQ4ZGFiNC04YmI2LTRlZDAtOGRhYi01YTQwNjE2N2I5OWQvMC9CNkYwMTMxNTEw RTYyRjczRTVGMjkyNDZGOUM4RjY5MTgxMUE3MDRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4MTFB NzA0RC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMyMzQzMDM0M2E2NTMxMzAzMDNhMzMzMDMwMzMz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzNTM1MzYzODM1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJATh ADADMA0GCSqGSIb3DQEBCwUAA4IBAQAE5zpv8MNU++poSLKfpJmAVMevzjRzE9I9 p2OEDbkDFoLKXHtyDYQXdBYSuIushGCl0kTCVVrjROs6PZi/TSV3uw80bc8XNgYd FTkDMS8blT5JjtE151hQeckd26PL1/2sFTBocqPKtXoqO2gRq8cqdQJWnClHiJ0Z SXAXFxDr5ETaqAVi2RehZneq+LVXFkZ7QYuMj0prxby9imaHeHcpONwoY5e5J+qa cZjcSI+8k52UjAsvN1DcgOz0WkK5HhdBLFJ/fw8rPhAMzffRkpWijrlPHwl7yJPk vVwhscvcqxjITcL5+fc/u8TdePeuxQ8gq92HQsjgMKyqTFbGTu1K -----END CERTIFICATE-----Generated at Wed Nov 20 23:10:18 2024 by rpki-client on console-fra.rpki-client.org