$ rpki-client -vvf repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a353a3a2f34382d3438203d3e203535363835.roa File: 323430343a653130303a353a3a2f34382d3438203d3e203535363835.roa (raw, json) Hash identifier: zQmpGTlvhX/Ax6Rx/+3UtQSnt5HgNEAdPZ5qM2sYiac= Subject key identifier: 09:D9:2E:B0:C2:CC:8A:EB:DD:5C:C1:0B:DC:15:7D:C8:8F:DE:AC:37 Certificate issuer: /CN=B6F0131510E62F73E5F29246F9C8F691811A704D Certificate serial: 32CFDA9F92D7F5E772B9DDCB066BB50A5F3FA976 Authority key identifier: B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a353a3a2f34382d3438203d3e203535363835.roa Signing time: Fri 25 Oct 2024 13:01:04 +0000 ROA not before: Fri 25 Oct 2024 12:56:04 +0000 ROA not after: Fri 24 Oct 2025 13:01:04 +0000 asID: 55685 IP address blocks: 2404:e100:5::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 03:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:cf:da:9f:92:d7:f5:e7:72:b9:dd:cb:06:6b:b5:0a:5f:3f:a9:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F0131510E62F73E5F29246F9C8F691811A704D Validity Not Before: Oct 25 12:56:04 2024 GMT Not After : Oct 24 13:01:04 2025 GMT Subject: CN=09D92EB0C2CC8AEBDD5CC10BDC157DC88FDEAC37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:25:7d:83:ad:93:2b:68:2a:15:c3:33:dc:f3: 02:b5:11:ec:04:eb:49:0d:60:52:6a:b3:9f:93:27: f5:85:47:47:69:23:4d:c8:89:b1:47:28:07:60:0e: e8:c3:e8:b0:d1:14:11:b5:81:ce:67:9e:52:0c:d6: 2e:b2:cd:6f:55:d6:0d:93:20:dc:c0:36:d4:14:a9: bb:af:d1:1e:36:ef:57:f5:90:6d:59:05:26:b9:a3: cc:4a:6c:c6:51:59:d5:15:06:7c:7a:71:c2:ae:f1: ae:ba:22:ca:7f:4c:17:d7:0b:d7:93:5a:8f:72:d2: 98:46:d3:5e:c6:1a:16:d8:dc:27:2c:fa:e1:7b:1f: 0e:c0:af:5d:8a:61:5e:b7:a0:49:1a:bb:0d:6e:9d: 74:ad:f0:b9:91:da:e3:79:bd:99:ed:67:09:f2:74: a7:55:50:a7:89:b5:dd:c4:a1:c0:9a:b2:4d:75:0d: 38:ca:8e:e9:91:4a:d2:c7:41:7b:66:7f:73:cf:a8: 01:c7:86:6a:3d:7b:30:ac:56:94:ec:87:d2:79:65: 56:1b:07:bd:98:82:6e:d3:b1:2a:13:4a:e2:f7:e1: a1:38:44:b3:41:35:21:32:cb:73:b9:86:29:ee:8a: ba:c3:08:15:d8:4d:e3:f9:9b:65:32:3d:be:3b:17: b7:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:D9:2E:B0:C2:CC:8A:EB:DD:5C:C1:0B:DC:15:7D:C8:8F:DE:AC:37 X509v3 Authority Key Identifier: keyid:B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a353a3a2f34382d3438203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:e100:5::/48 Signature Algorithm: sha256WithRSAEncryption 8a:b5:bc:62:05:b8:46:d2:6e:be:39:2f:6e:a0:5e:73:9c:e3: 5f:fd:26:69:1d:15:ef:61:75:06:57:f5:73:87:10:88:5a:cb: b0:ba:50:80:a8:92:b6:cc:dd:54:67:13:95:cc:7b:51:9f:1c: d9:3c:24:7f:06:28:d0:ca:2f:71:3c:a4:62:ed:2c:cf:9a:ee: b7:f9:33:03:d4:02:d4:52:01:4f:6b:be:1c:6e:f8:5b:a2:6c: 1a:6c:37:44:2d:3c:a7:bc:3e:9f:a8:cb:97:82:2e:8c:99:cd: a8:ac:49:ea:4a:51:28:61:09:60:81:75:41:c9:b5:98:27:ea: 95:4d:6b:22:29:3e:08:4a:e0:77:52:30:2e:12:c2:d2:f2:29: 7e:e9:50:7f:80:d5:7c:5e:4e:42:c5:8f:ff:74:e8:e2:49:a7: 0e:73:58:a8:d5:ca:8e:df:65:a0:c4:2f:d7:ed:67:d7:67:d4: b9:63:41:8a:51:b6:e2:58:4c:8a:e0:37:2b:b0:3e:4d:b9:6c: 07:a7:b2:80:0d:12:e0:dc:be:ff:fa:8b:2a:66:cb:49:99:f0: 0a:65:44:82:3e:79:e3:99:99:d5:ee:bc:53:ec:bf:e5:ea:fc: a1:64:5f:94:1f:37:8d:31:3d:c3:49:33:b8:71:de:2e:b9:74: 27:ac:18:99 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUMs/an5LX9edyud3LBmu1Cl8/qXYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4 MTFBNzA0RDAeFw0yNDEwMjUxMjU2MDRaFw0yNTEwMjQxMzAxMDRaMDMxMTAvBgNV BAMTKDA5RDkyRUIwQzJDQzhBRUJERDVDQzEwQkRDMTU3REM4OEZERUFDMzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnJX2DrZMraCoVwzPc8wK1EewE 60kNYFJqs5+TJ/WFR0dpI03IibFHKAdgDujD6LDRFBG1gc5nnlIM1i6yzW9V1g2T INzANtQUqbuv0R4271f1kG1ZBSa5o8xKbMZRWdUVBnx6ccKu8a66Isp/TBfXC9eT Wo9y0phG017GGhbY3Ccs+uF7Hw7Ar12KYV63oEkauw1unXSt8LmR2uN5vZntZwny dKdVUKeJtd3EocCask11DTjKjumRStLHQXtmf3PPqAHHhmo9ezCsVpTsh9J5ZVYb B72Ygm7TsSoTSuL34aE4RLNBNSEyy3O5hinuirrDCBXYTeP5m2UyPb47F7dpAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUCdkusMLMiuvdXMEL3BV9yI/erDcwHwYDVR0j BBgwFoAUtvATFRDmL3Pl8pJG+cj2kYEacE0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWQ4ZGFiNC04YmI2LTRlZDAtOGRhYi01YTQwNjE2N2I5OWQvMC9CNkYwMTMxNTEw RTYyRjczRTVGMjkyNDZGOUM4RjY5MTgxMUE3MDRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4MTFB NzA0RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMyMzQzMDM0M2E2NTMxMzAzMDNhMzUzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzNTM1MzYzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAThAAAFMA0G CSqGSIb3DQEBCwUAA4IBAQCKtbxiBbhG0m6+OS9uoF5znONf/SZpHRXvYXUGV/Vz hxCIWsuwulCAqJK2zN1UZxOVzHtRnxzZPCR/BijQyi9xPKRi7SzPmu63+TMD1ALU UgFPa74cbvhbomwabDdELTynvD6fqMuXgi6Mmc2orEnqSlEoYQlggXVBybWYJ+qV TWsiKT4ISuB3UjAuEsLS8il+6VB/gNV8Xk5CxY//dOjiSacOc1io1cqO32WgxC/X 7WfXZ9S5Y0GKUbbiWEyK4DcrsD5NuWwHp7KADRLg3L7/+osqZstJmfAKZUSCPnnj mZnV7rxT7L/l6vyhZF+UHzeNMT3DSTO4cd4uuXQnrBiZ -----END CERTIFICATE-----Generated at Wed Nov 20 23:52:02 2024 by rpki-client on console-ams.rpki-client.org