$ rpki-client -vvf repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a343030353a3a2f34382d3438203d3e20313333383430.roa File: 323430343a653130303a343030353a3a2f34382d3438203d3e20313333383430.roa (raw, json) Hash identifier: 5F6DPXr03rz8PT3GBU1/ONRlaOxGadkRz+KhmYD9peg= Subject key identifier: D4:69:F4:1E:0D:2E:37:B6:9D:46:36:2F:69:98:E7:4C:A3:94:49:3E Certificate issuer: /CN=B6F0131510E62F73E5F29246F9C8F691811A704D Certificate serial: 45A1610D02750C48849D8617868F8DD4E14E783C Authority key identifier: B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a343030353a3a2f34382d3438203d3e20313333383430.roa Signing time: Mon 31 Jul 2023 00:13:04 +0000 ROA not before: Mon 31 Jul 2023 00:08:04 +0000 ROA not after: Mon 29 Jul 2024 00:13:04 +0000 asID: 133840 IP address blocks: 2404:e100:4005::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 08:25:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:a1:61:0d:02:75:0c:48:84:9d:86:17:86:8f:8d:d4:e1:4e:78:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F0131510E62F73E5F29246F9C8F691811A704D Validity Not Before: Jul 31 00:08:04 2023 GMT Not After : Jul 29 00:13:04 2024 GMT Subject: CN=D469F41E0D2E37B69D46362F6998E74CA394493E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:62:8d:ff:c2:da:10:3e:c1:55:bf:ca:96:ec: 1c:8c:94:bc:c7:5a:1e:e3:7d:d7:5f:66:54:ff:fd: 18:7e:c7:bd:3e:65:68:4f:32:55:6e:97:77:84:01: 56:c0:d3:ab:73:fb:50:28:5d:c4:79:b8:00:01:b1: 61:80:2c:97:eb:ed:a3:6f:49:bb:fc:f8:51:98:96: 89:6f:f9:08:5c:2f:18:4f:c3:85:e1:5f:8a:bb:c7: 1f:32:94:a6:9f:a1:52:bc:b5:c4:9f:ed:4f:f5:4a: 78:04:89:84:0e:ea:53:8d:49:fa:65:af:f7:a5:b6: c0:34:b9:f4:13:2c:96:02:7e:1c:9d:04:22:f2:e5: 05:c9:a7:63:26:f7:6a:f8:df:a4:7f:a8:75:4d:d7: 21:d7:69:20:6f:00:9b:98:17:13:07:76:da:39:5a: b9:0d:79:4b:cd:9d:d6:9f:4a:93:ab:bf:96:a3:a1: fe:b3:96:28:1e:e3:8a:87:8a:47:49:b5:f2:0e:cb: dc:37:e0:71:cc:e1:a3:ad:0f:1f:38:a5:84:c1:46: 14:a5:b9:62:57:37:af:6a:00:b1:94:d6:c0:c0:bb: cf:f2:4f:25:1c:2f:6c:32:08:c3:a9:ac:5e:af:19: 02:b6:fd:b6:1b:79:b8:4a:33:38:a0:1d:e7:2d:dd: c9:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:69:F4:1E:0D:2E:37:B6:9D:46:36:2F:69:98:E7:4C:A3:94:49:3E X509v3 Authority Key Identifier: keyid:B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a343030353a3a2f34382d3438203d3e20313333383430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:e100:4005::/48 Signature Algorithm: sha256WithRSAEncryption 5e:4c:e4:a2:0f:09:f2:88:dd:a6:5f:43:49:8c:96:9a:21:5b: aa:0e:ba:95:62:c3:ab:a5:e3:a0:e9:d7:ea:00:e0:c3:16:32: 6d:de:9d:56:b6:85:f2:d3:2e:45:5d:54:fb:00:e3:8a:df:d5: ed:5d:fb:cc:50:96:29:f8:47:32:8c:11:d0:40:c6:2a:d4:6d: 71:46:61:cb:b6:a3:85:a5:a0:1b:d7:10:09:1c:69:50:cf:cc: 39:f8:96:42:db:29:03:d8:33:57:e6:ab:96:00:8b:5e:2e:ec: 7a:2a:72:23:7d:fc:c3:10:5e:2b:0d:d6:0e:8d:40:22:72:26: 3b:1b:50:9e:1f:1d:ed:23:ed:e1:eb:05:1b:7f:cc:a9:65:82: 82:d5:8d:a3:aa:3c:24:4d:8a:43:5e:09:c0:33:9a:cd:3d:b7: 25:69:ed:87:7f:21:57:6b:6f:31:47:f5:9e:fb:3f:9f:3a:9d: a0:06:a4:7b:80:9e:84:04:1b:57:85:57:c7:e2:6e:7e:2a:9d: ea:36:68:9f:d6:f5:24:15:eb:b0:e6:e4:fc:8a:93:dc:52:e9: 1a:3a:d9:78:e8:d4:33:fb:ba:b4:63:ee:a6:4b:53:e0:bf:bf: 23:dd:b7:90:2a:c6:af:f4:92:11:81:cd:09:0b:80:18:de:b0: 04:db:8d:b6 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIURaFhDQJ1DEiEnYYXho+N1OFOeDwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4 MTFBNzA0RDAeFw0yMzA3MzEwMDA4MDRaFw0yNDA3MjkwMDEzMDRaMDMxMTAvBgNV BAMTKEQ0NjlGNDFFMEQyRTM3QjY5RDQ2MzYyRjY5OThFNzRDQTM5NDQ5M0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcYo3/wtoQPsFVv8qW7ByMlLzH Wh7jfddfZlT//Rh+x70+ZWhPMlVul3eEAVbA06tz+1AoXcR5uAABsWGALJfr7aNv Sbv8+FGYlolv+QhcLxhPw4XhX4q7xx8ylKafoVK8tcSf7U/1SngEiYQO6lONSfpl r/eltsA0ufQTLJYCfhydBCLy5QXJp2Mm92r436R/qHVN1yHXaSBvAJuYFxMHdto5 WrkNeUvNndafSpOrv5ajof6zlige44qHikdJtfIOy9w34HHM4aOtDx84pYTBRhSl uWJXN69qALGU1sDAu8/yTyUcL2wyCMOprF6vGQK2/bYbebhKMzigHect3ckXAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQU1Gn0Hg0uN7adRjYvaZjnTKOUST4wHwYDVR0j BBgwFoAUtvATFRDmL3Pl8pJG+cj2kYEacE0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWQ4ZGFiNC04YmI2LTRlZDAtOGRhYi01YTQwNjE2N2I5OWQvMC9CNkYwMTMxNTEw RTYyRjczRTVGMjkyNDZGOUM4RjY5MTgxMUE3MDRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4MTFB NzA0RC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMyMzQzMDM0M2E2NTMxMzAzMDNhMzQzMDMwMzUz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzMzODM0MzAucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BOEAQAUwDQYJKoZIhvcNAQELBQADggEBAF5M5KIPCfKI3aZfQ0mMlpohW6oOupVi w6ul46Dp1+oA4MMWMm3enVa2hfLTLkVdVPsA44rf1e1d+8xQlin4RzKMEdBAxirU bXFGYcu2o4WloBvXEAkcaVDPzDn4lkLbKQPYM1fmq5YAi14u7HoqciN9/MMQXisN 1g6NQCJyJjsbUJ4fHe0j7eHrBRt/zKllgoLVjaOqPCRNikNeCcAzms09tyVp7Yd/ IVdrbzFH9Z77P586naAGpHuAnoQEG1eFV8fibn4qneo2aJ/W9SQV67Dm5PyKk9xS 6Ro62Xjo1DP7urRj7qZLU+C/vyPdt5Aqxq/0khGBzQkLgBjesATbjbY= -----END CERTIFICATE-----Generated at Sat Jun 1 04:58:28 2024 by rpki-client on console-fra.rpki-client.org