$ rpki-client -vvf repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a343030343a3a2f34382d3438203d3e20313333383430.roa File: 323430343a653130303a343030343a3a2f34382d3438203d3e20313333383430.roa (raw, json) Hash identifier: /6vnDzMjiqNGRcOT1/A6CM41r4hGYf1w/5iW6ZnyLIw= Subject key identifier: 0A:4C:FE:27:50:B1:40:A8:E4:29:DF:4C:05:32:B5:53:8B:3A:A6:6F Certificate issuer: /CN=B6F0131510E62F73E5F29246F9C8F691811A704D Certificate serial: 3E04D4818C683D35119C1D3864FE532A4EEB71DD Authority key identifier: B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a343030343a3a2f34382d3438203d3e20313333383430.roa Signing time: Mon 01 Jul 2024 01:05:48 +0000 ROA not before: Mon 01 Jul 2024 01:00:48 +0000 ROA not after: Mon 30 Jun 2025 01:05:48 +0000 asID: 133840 IP address blocks: 2404:e100:4004::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Mar 2025 09:37:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:04:d4:81:8c:68:3d:35:11:9c:1d:38:64:fe:53:2a:4e:eb:71:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F0131510E62F73E5F29246F9C8F691811A704D Validity Not Before: Jul 1 01:00:48 2024 GMT Not After : Jun 30 01:05:48 2025 GMT Subject: CN=0A4CFE2750B140A8E429DF4C0532B5538B3AA66F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:e0:63:e1:f8:b2:49:08:57:f5:af:74:b0:57: d9:75:80:c7:ac:65:44:8b:12:61:a6:a3:9a:2e:15: 99:98:fd:69:1c:78:ae:d1:2c:3a:3a:24:2f:2e:84: 5d:54:03:2e:92:ef:1a:65:58:b4:26:5b:20:14:68: 60:8e:b4:f8:0c:71:d5:5c:43:52:5e:c7:47:8d:4d: 2f:56:81:1e:3d:a6:8a:a5:47:e0:0b:62:57:86:b2: f5:3b:d4:b0:53:30:cf:c3:ac:8e:f9:49:40:5c:b7: 5a:9b:8f:42:62:ac:be:4a:5b:0a:58:61:56:20:42: f2:b9:a1:6f:9d:93:ab:ba:e6:8f:89:13:4f:7a:4e: 64:1e:46:ba:5f:d4:68:01:6e:8f:b7:f9:83:86:d8: 28:9f:6b:d6:72:70:e5:b1:2a:37:e7:e5:67:cd:4d: b0:e4:62:d2:98:a9:54:10:9a:41:e6:ac:4e:38:c0: b2:da:78:96:da:7a:4e:02:7c:7f:5a:8c:11:ea:d5: cd:36:a2:e9:82:dd:08:16:5f:47:14:a2:2c:3b:e8: f7:b3:dc:81:60:61:06:b1:2e:84:ed:b7:83:d1:5c: 74:b8:f5:80:8e:81:23:9e:69:6c:1d:d9:fa:28:80: 03:45:2a:6e:43:c3:be:c6:2b:ad:ee:f6:ba:85:c5: f8:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:4C:FE:27:50:B1:40:A8:E4:29:DF:4C:05:32:B5:53:8B:3A:A6:6F X509v3 Authority Key Identifier: keyid:B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a343030343a3a2f34382d3438203d3e20313333383430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:e100:4004::/48 Signature Algorithm: sha256WithRSAEncryption 08:f4:0c:3a:4f:82:38:46:31:84:c2:3d:d2:74:98:04:20:94: 86:f4:e8:86:72:f8:53:f0:48:68:ae:f4:98:7c:d0:1b:f4:bc: cb:ad:60:49:1d:16:ee:b9:39:6b:18:0c:cc:fc:9b:da:51:34: f4:21:6d:14:5f:b9:ec:49:2e:2e:c3:ee:e7:07:59:77:e2:ff: aa:52:00:85:94:7d:8e:ce:6b:88:1b:9f:ad:46:d8:94:36:59: 50:cd:76:27:38:e9:c4:d6:62:07:3f:4a:54:80:2b:d4:bb:50: ba:6a:7e:13:b3:6b:55:ea:b1:69:6e:b8:53:fe:10:74:b2:fa: 47:95:ad:74:2b:2e:b6:b4:32:1b:c2:fc:0e:83:eb:8e:1f:02: 69:81:ae:fb:82:bd:4d:6e:c2:6f:0c:7a:24:20:04:19:ad:f5: b8:ec:20:8a:7b:07:c7:4d:4f:79:1d:f0:3e:23:80:8c:f2:9d: 57:b8:a2:3a:b0:e4:6a:d4:17:c1:87:d6:d1:32:9e:45:a9:74: 74:18:8d:d6:08:a8:9f:1a:bb:b3:7a:62:b8:3f:17:c1:cc:16: 38:b0:8c:51:12:a8:2c:97:5c:a3:79:a8:84:b8:49:a6:c2:b6: 69:ee:b6:df:79:ce:e5:ba:e0:bc:ef:a2:4b:7e:5c:70:61:44: 83:71:94:81 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUPgTUgYxoPTURnB04ZP5TKk7rcd0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4 MTFBNzA0RDAeFw0yNDA3MDEwMTAwNDhaFw0yNTA2MzAwMTA1NDhaMDMxMTAvBgNV BAMTKDBBNENGRTI3NTBCMTQwQThFNDI5REY0QzA1MzJCNTUzOEIzQUE2NkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDk4GPh+LJJCFf1r3SwV9l1gMes ZUSLEmGmo5ouFZmY/WkceK7RLDo6JC8uhF1UAy6S7xplWLQmWyAUaGCOtPgMcdVc Q1Jex0eNTS9WgR49poqlR+ALYleGsvU71LBTMM/DrI75SUBct1qbj0JirL5KWwpY YVYgQvK5oW+dk6u65o+JE096TmQeRrpf1GgBbo+3+YOG2Cifa9ZycOWxKjfn5WfN TbDkYtKYqVQQmkHmrE44wLLaeJbaek4CfH9ajBHq1c02oumC3QgWX0cUoiw76Pez 3IFgYQaxLoTtt4PRXHS49YCOgSOeaWwd2foogANFKm5Dw77GK63u9rqFxfitAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUCkz+J1CxQKjkKd9MBTK1U4s6pm8wHwYDVR0j BBgwFoAUtvATFRDmL3Pl8pJG+cj2kYEacE0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWQ4ZGFiNC04YmI2LTRlZDAtOGRhYi01YTQwNjE2N2I5OWQvMC9CNkYwMTMxNTEw RTYyRjczRTVGMjkyNDZGOUM4RjY5MTgxMUE3MDRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4MTFB NzA0RC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMyMzQzMDM0M2E2NTMxMzAzMDNhMzQzMDMwMzQz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzMzODM0MzAucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BOEAQAQwDQYJKoZIhvcNAQELBQADggEBAAj0DDpPgjhGMYTCPdJ0mAQglIb06IZy +FPwSGiu9Jh80Bv0vMutYEkdFu65OWsYDMz8m9pRNPQhbRRfuexJLi7D7ucHWXfi /6pSAIWUfY7Oa4gbn61G2JQ2WVDNdic46cTWYgc/SlSAK9S7ULpqfhOza1XqsWlu uFP+EHSy+keVrXQrLra0MhvC/A6D644fAmmBrvuCvU1uwm8MeiQgBBmt9bjsIIp7 B8dNT3kd8D4jgIzynVe4ojqw5GrUF8GH1tEynkWpdHQYjdYIqJ8au7N6Yrg/F8HM FjiwjFESqCyXXKN5qIS4SabCtmnutt95zuW64Lzvokt+XHBhRINxlIE= -----END CERTIFICATE-----Generated at Tue Mar 11 05:05:46 2025 by rpki-client