$ rpki-client -vvf repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a333031303a3a2f34382d3438203d3e203535363835.roa File: 323430343a653130303a333031303a3a2f34382d3438203d3e203535363835.roa (raw, json) Hash identifier: f84e2+Bn49I4JB8bClHpBQndSFlJw6s44EZ8K3BM5TY= Subject key identifier: 76:D8:82:4E:B3:DE:67:F7:90:13:84:CE:A1:C3:2A:B8:31:5D:84:09 Certificate issuer: /CN=B6F0131510E62F73E5F29246F9C8F691811A704D Certificate serial: 50261C1F75B5E90CA2D6F34171B1567DED74BA2D Authority key identifier: B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a333031303a3a2f34382d3438203d3e203535363835.roa Signing time: Tue 24 Sep 2024 07:00:32 +0000 ROA not before: Tue 24 Sep 2024 06:55:32 +0000 ROA not after: Tue 23 Sep 2025 07:00:32 +0000 asID: 55685 IP address blocks: 2404:e100:3010::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 03:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:26:1c:1f:75:b5:e9:0c:a2:d6:f3:41:71:b1:56:7d:ed:74:ba:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F0131510E62F73E5F29246F9C8F691811A704D Validity Not Before: Sep 24 06:55:32 2024 GMT Not After : Sep 23 07:00:32 2025 GMT Subject: CN=76D8824EB3DE67F7901384CEA1C32AB8315D8409 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:33:0f:cb:0f:78:7c:1a:38:20:f1:24:c5:13: a6:91:fa:dc:f2:75:43:a0:8d:f0:18:2d:db:98:cf: ec:92:b8:94:79:25:84:97:a9:0d:4d:f9:30:e3:2b: 3b:40:37:e0:58:5f:90:05:b2:9b:06:7f:85:e0:22: 11:ce:4f:d8:d7:11:28:1f:78:a1:4d:b1:0d:45:d0: bb:19:ce:b3:dc:73:a2:98:df:5f:cc:f1:83:ba:2a: 60:ab:05:b6:a0:b4:63:0d:5c:46:33:de:1e:ec:28: 25:3b:20:77:36:ed:f8:5a:7a:89:44:56:69:73:05: 9a:5c:9a:0d:40:4a:af:60:e9:29:71:05:f4:ac:8b: f6:c1:f6:27:13:98:92:e6:19:52:09:fd:c3:30:ff: 79:a3:44:54:9b:5e:04:49:3f:c5:73:e4:69:5c:6d: b7:9c:e1:d3:5c:87:4f:8e:9c:4d:6e:2d:6b:0b:f9: d2:4b:d3:6c:b0:ff:5c:ff:16:93:96:98:21:f1:58: 82:1b:e0:d1:b5:6d:09:d7:28:b9:ff:66:e4:f2:49: 37:b6:ea:96:b5:83:b2:de:5a:ef:2b:8e:34:0b:6d: df:a5:0d:a4:cc:5c:95:1d:51:1f:0c:3b:39:31:2a: f5:fc:b8:2b:53:b5:82:fa:89:7b:3f:e0:27:eb:5c: cd:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:D8:82:4E:B3:DE:67:F7:90:13:84:CE:A1:C3:2A:B8:31:5D:84:09 X509v3 Authority Key Identifier: keyid:B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a333031303a3a2f34382d3438203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:e100:3010::/48 Signature Algorithm: sha256WithRSAEncryption 95:f3:34:fa:b8:e3:25:ba:9b:ef:63:b4:c9:aa:dc:a4:cb:61: dc:f2:3f:69:39:08:cf:88:4c:fb:53:4d:02:e0:b1:af:ad:6d: 83:2a:af:27:0f:57:2c:f5:53:da:e4:a5:f0:c1:21:f0:68:4b: 9e:1e:8f:f9:8a:7d:53:0d:ad:42:37:d5:67:96:f3:11:29:5d: 55:04:92:c1:35:38:72:ba:d6:77:ef:8b:a2:d2:1d:3f:8f:76: 20:56:6c:c5:1c:4e:2c:0d:b6:11:56:5a:26:9b:67:1f:2d:03: d5:71:17:c0:36:21:37:84:ac:71:e2:42:70:db:7e:08:ba:f9: 1e:cc:ac:d0:5d:32:05:f6:3f:d4:f5:8d:17:a4:4c:00:99:28: 7a:33:50:33:a7:28:2a:4c:d0:d0:26:99:4a:d5:1b:c9:03:d3: fd:09:d3:fd:ac:9f:00:76:31:95:7d:b6:63:3b:18:c8:ca:3b: eb:fb:ee:00:4d:31:23:a4:76:89:63:8e:11:85:ca:78:6a:20: b5:9b:f7:17:5d:bf:0c:39:e6:99:30:78:10:ff:51:89:bd:be: 8e:cb:19:a6:20:c1:76:37:93:94:0f:51:a1:ce:7d:32:0e:c1: 81:7c:4b:f6:79:41:47:ab:2f:f2:b1:78:7c:13:74:6a:a1:9d: dc:fc:3d:17 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUUCYcH3W16Qyi1vNBcbFWfe10ui0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4 MTFBNzA0RDAeFw0yNDA5MjQwNjU1MzJaFw0yNTA5MjMwNzAwMzJaMDMxMTAvBgNV BAMTKDc2RDg4MjRFQjNERTY3Rjc5MDEzODRDRUExQzMyQUI4MzE1RDg0MDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmMw/LD3h8Gjgg8STFE6aR+tzy dUOgjfAYLduYz+ySuJR5JYSXqQ1N+TDjKztAN+BYX5AFspsGf4XgIhHOT9jXESgf eKFNsQ1F0LsZzrPcc6KY31/M8YO6KmCrBbagtGMNXEYz3h7sKCU7IHc27fhaeolE VmlzBZpcmg1ASq9g6SlxBfSsi/bB9icTmJLmGVIJ/cMw/3mjRFSbXgRJP8Vz5Glc bbec4dNch0+OnE1uLWsL+dJL02yw/1z/FpOWmCHxWIIb4NG1bQnXKLn/ZuTySTe2 6pa1g7LeWu8rjjQLbd+lDaTMXJUdUR8MOzkxKvX8uCtTtYL6iXs/4CfrXM2/AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUdtiCTrPeZ/eQE4TOocMquDFdhAkwHwYDVR0j BBgwFoAUtvATFRDmL3Pl8pJG+cj2kYEacE0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWQ4ZGFiNC04YmI2LTRlZDAtOGRhYi01YTQwNjE2N2I5OWQvMC9CNkYwMTMxNTEw RTYyRjczRTVGMjkyNDZGOUM4RjY5MTgxMUE3MDRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4MTFB NzA0RC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMyMzQzMDM0M2E2NTMxMzAzMDNhMzMzMDMxMzAz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzNTM1MzYzODM1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJATh ADAQMA0GCSqGSIb3DQEBCwUAA4IBAQCV8zT6uOMlupvvY7TJqtyky2Hc8j9pOQjP iEz7U00C4LGvrW2DKq8nD1cs9VPa5KXwwSHwaEueHo/5in1TDa1CN9VnlvMRKV1V BJLBNThyutZ374ui0h0/j3YgVmzFHE4sDbYRVlomm2cfLQPVcRfANiE3hKxx4kJw 234IuvkezKzQXTIF9j/U9Y0XpEwAmSh6M1AzpygqTNDQJplK1RvJA9P9CdP9rJ8A djGVfbZjOxjIyjvr++4ATTEjpHaJY44Rhcp4aiC1m/cXXb8MOeaZMHgQ/1GJvb6O yxmmIMF2N5OUD1Ghzn0yDsGBfEv2eUFHqy/ysXh8E3RqoZ3c/D0X -----END CERTIFICATE-----Generated at Wed Nov 20 23:52:02 2024 by rpki-client on console-ams.rpki-client.org