$ rpki-client -vvf repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a343a3a2f34382d3438203d3e203535363835.roa File: 323430343a653130303a343a3a2f34382d3438203d3e203535363835.roa (raw, json) Hash identifier: 6vODrTO+sML3jU7SSXIw5PFW2MCEXG6gxr9cAeiBNvM= Subject key identifier: B7:75:C6:ED:A4:68:D7:8E:50:1E:4F:15:B1:F9:42:5F:0B:55:1B:D9 Certificate issuer: /CN=B6F0131510E62F73E5F29246F9C8F691811A704D Certificate serial: 301086344BE216467389DE49F4B34CE5AC8A974D Authority key identifier: B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a343a3a2f34382d3438203d3e203535363835.roa Signing time: Fri 25 Oct 2024 13:01:05 +0000 ROA not before: Fri 25 Oct 2024 12:56:05 +0000 ROA not after: Fri 24 Oct 2025 13:01:05 +0000 asID: 55685 IP address blocks: 2404:e100:4::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 03:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:10:86:34:4b:e2:16:46:73:89:de:49:f4:b3:4c:e5:ac:8a:97:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F0131510E62F73E5F29246F9C8F691811A704D Validity Not Before: Oct 25 12:56:05 2024 GMT Not After : Oct 24 13:01:05 2025 GMT Subject: CN=B775C6EDA468D78E501E4F15B1F9425F0B551BD9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:50:73:ff:c2:15:2b:43:89:09:91:59:85:c4: 6c:5a:e1:2b:df:31:d2:b8:6f:72:9d:83:f2:65:29: 26:47:f1:f9:1d:67:ad:db:60:70:d7:7d:24:38:af: 9d:ba:09:f4:61:37:25:06:5f:29:4e:10:61:aa:83: ee:9a:9b:88:90:54:09:41:7f:c6:58:f7:9d:06:41: 0c:9e:cd:fe:54:01:31:93:a7:dd:d7:5e:23:a7:ca: 2f:ff:19:52:db:67:90:0d:e5:5a:9c:b1:e7:e8:de: c2:b5:c7:31:34:97:2e:de:91:1e:11:52:d2:14:90: 8d:a6:42:4e:85:7c:81:84:02:f5:d1:c0:0e:e4:a8: 37:ea:1e:cf:5a:50:21:17:4b:95:f0:bd:7f:48:ba: 62:02:63:77:cf:51:bf:44:ed:39:2d:2b:b2:fa:d4: e0:b5:8f:2b:ed:5a:b1:d4:06:40:73:62:9b:b3:b3: e9:80:8e:21:f3:13:b1:14:c2:f7:fb:75:4b:96:58: 3b:66:06:4f:41:89:0d:53:48:43:cb:97:da:d4:80: d3:e3:1f:21:0c:24:3f:f9:99:94:dd:4d:8d:15:d2: 61:7e:70:01:2b:4a:58:20:b8:c1:cf:a4:c5:e5:fa: 4e:a1:b7:ff:94:c0:20:33:95:1a:a1:11:02:63:8e: ea:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:75:C6:ED:A4:68:D7:8E:50:1E:4F:15:B1:F9:42:5F:0B:55:1B:D9 X509v3 Authority Key Identifier: keyid:B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a343a3a2f34382d3438203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:e100:4::/48 Signature Algorithm: sha256WithRSAEncryption 66:65:30:0c:2e:4d:5c:b0:ed:e9:49:d7:4c:d0:ee:eb:62:5a: 31:7d:be:2d:c0:6b:72:b9:53:ce:40:8b:00:d9:a1:a9:ed:3f: fc:a0:c6:f6:f1:f2:88:2c:d3:d8:95:f2:70:d9:81:ef:f5:f1: 8b:c0:9b:6c:72:a7:ba:a4:ef:20:1b:f1:7d:44:b2:9f:54:5b: cb:c5:f0:a1:8f:83:3b:8d:a6:3d:7a:ba:b6:b0:69:0c:5a:6a: 20:10:48:56:b9:1a:58:e1:f0:b1:18:80:96:93:48:1e:c5:09: 07:ba:ad:cc:28:88:31:ff:0f:d7:af:f5:4e:8b:75:10:d9:21: fd:8e:8f:cc:07:b7:08:4f:ae:8b:51:84:d2:27:2b:b2:d0:9c: 1c:eb:3d:74:a5:ef:af:a0:61:30:bd:da:fd:dc:24:7e:c5:f0: f8:4f:d4:20:32:1c:6a:2a:29:3f:5a:91:c0:cd:a0:22:42:89: 01:df:ce:ff:e2:fe:b6:1a:ae:59:ba:3c:94:f5:ce:dc:dd:d6: 70:34:96:e6:ff:0c:81:13:7b:90:01:2d:fc:aa:30:4a:03:e3: e1:b0:1e:60:cc:aa:9f:86:5e:78:c0:b5:03:4d:e4:ee:85:59: d9:c7:28:f8:75:b4:cb:4c:d4:8f:91:f4:55:8b:4f:2c:5a:d3: d8:6e:05:81 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUMBCGNEviFkZzid5J9LNM5ayKl00wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4 MTFBNzA0RDAeFw0yNDEwMjUxMjU2MDVaFw0yNTEwMjQxMzAxMDVaMDMxMTAvBgNV BAMTKEI3NzVDNkVEQTQ2OEQ3OEU1MDFFNEYxNUIxRjk0MjVGMEI1NTFCRDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNUHP/whUrQ4kJkVmFxGxa4Svf MdK4b3Kdg/JlKSZH8fkdZ63bYHDXfSQ4r526CfRhNyUGXylOEGGqg+6am4iQVAlB f8ZY950GQQyezf5UATGTp93XXiOnyi//GVLbZ5AN5Vqcsefo3sK1xzE0ly7ekR4R UtIUkI2mQk6FfIGEAvXRwA7kqDfqHs9aUCEXS5XwvX9IumICY3fPUb9E7TktK7L6 1OC1jyvtWrHUBkBzYpuzs+mAjiHzE7EUwvf7dUuWWDtmBk9BiQ1TSEPLl9rUgNPj HyEMJD/5mZTdTY0V0mF+cAErSlgguMHPpMXl+k6ht/+UwCAzlRqhEQJjjuoBAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUt3XG7aRo145QHk8VsflCXwtVG9kwHwYDVR0j BBgwFoAUtvATFRDmL3Pl8pJG+cj2kYEacE0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWQ4ZGFiNC04YmI2LTRlZDAtOGRhYi01YTQwNjE2N2I5OWQvMC9CNkYwMTMxNTEw RTYyRjczRTVGMjkyNDZGOUM4RjY5MTgxMUE3MDRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4MTFB NzA0RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMyMzQzMDM0M2E2NTMxMzAzMDNhMzQzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzNTM1MzYzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAThAAAEMA0G CSqGSIb3DQEBCwUAA4IBAQBmZTAMLk1csO3pSddM0O7rYloxfb4twGtyuVPOQIsA 2aGp7T/8oMb28fKILNPYlfJw2YHv9fGLwJtscqe6pO8gG/F9RLKfVFvLxfChj4M7 jaY9erq2sGkMWmogEEhWuRpY4fCxGICWk0gexQkHuq3MKIgx/w/Xr/VOi3UQ2SH9 jo/MB7cIT66LUYTSJyuy0Jwc6z10pe+voGEwvdr93CR+xfD4T9QgMhxqKik/WpHA zaAiQokB387/4v62Gq5ZujyU9c7c3dZwNJbm/wyBE3uQAS38qjBKA+PhsB5gzKqf hl54wLUDTeTuhVnZxyj4dbTLTNSPkfRVi08sWtPYbgWB -----END CERTIFICATE-----Generated at Wed Nov 20 23:52:02 2024 by rpki-client on console-ams.rpki-client.org