$ rpki-client -vvf repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a393a3a2f34382d3438203d3e203535363835.roa File: 323430343a653130303a393a3a2f34382d3438203d3e203535363835.roa (raw, json) Hash identifier: ol+J52kRJbMFyJEf3OoJy3RUnEgS84/IyqDcSAi4puE= Subject key identifier: 57:6D:40:67:72:2F:71:E0:69:6F:23:67:CD:C3:6C:E5:0C:7B:02:05 Certificate issuer: /CN=B6F0131510E62F73E5F29246F9C8F691811A704D Certificate serial: 4F419834C1BAE1B8625C85E7AD0113CBE29181F9 Authority key identifier: B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a393a3a2f34382d3438203d3e203535363835.roa Signing time: Fri 25 Oct 2024 13:01:05 +0000 ROA not before: Fri 25 Oct 2024 12:56:05 +0000 ROA not after: Fri 24 Oct 2025 13:01:05 +0000 asID: 55685 IP address blocks: 2404:e100:9::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:41:98:34:c1:ba:e1:b8:62:5c:85:e7:ad:01:13:cb:e2:91:81:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F0131510E62F73E5F29246F9C8F691811A704D Validity Not Before: Oct 25 12:56:05 2024 GMT Not After : Oct 24 13:01:05 2025 GMT Subject: CN=576D4067722F71E0696F2367CDC36CE50C7B0205 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:82:6d:56:fd:24:30:3c:22:04:21:8a:8a:03: 15:46:f9:62:e5:d6:df:78:bc:57:0a:ad:44:50:dd: 9b:82:82:81:b5:0e:a0:19:fe:fe:e3:45:1f:f1:65: 45:1d:a7:2a:64:82:5c:84:9d:d4:27:68:24:5c:72: 2c:68:78:5c:7d:ad:51:6c:e7:31:db:cc:99:06:11: 60:a4:3e:96:31:03:5e:eb:c8:9c:89:c9:1d:46:17: cd:15:8a:8f:e3:6f:77:ac:6c:f3:80:8b:a4:7b:d1: 12:96:b3:6a:ac:58:9c:74:00:6e:60:e8:ad:65:25: c1:1b:4b:86:ee:97:c6:e6:13:43:d3:44:0d:ad:97: 1c:4e:b1:37:30:71:06:80:88:d3:af:3f:1b:58:f6: 6a:d7:53:b4:bc:17:e0:ac:08:08:13:ee:f2:69:31: 8a:58:c3:fc:b6:a8:c8:ce:62:9a:36:86:d7:82:0b: 4d:da:87:f0:a8:c6:de:4c:1a:2b:92:ab:4c:13:c4: 0b:53:a8:44:66:1f:a3:00:b9:c1:07:d1:4d:88:13: 6b:a1:d6:bc:db:60:46:a0:e9:7b:e1:b0:08:a0:ee: 36:85:83:3e:f4:e3:88:de:a3:fa:05:64:25:a9:b1: 4c:da:65:9f:b3:a7:0c:d2:85:77:b3:37:9d:ef:8e: b0:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:6D:40:67:72:2F:71:E0:69:6F:23:67:CD:C3:6C:E5:0C:7B:02:05 X509v3 Authority Key Identifier: keyid:B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a393a3a2f34382d3438203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:e100:9::/48 Signature Algorithm: sha256WithRSAEncryption 65:3e:93:5f:e8:75:a4:b2:1f:4f:6a:7e:1c:bf:1a:0d:ab:c0: 33:e6:9f:a6:60:68:54:0f:2e:cf:5f:35:a2:75:6d:6d:14:bf: c0:fd:1b:e4:ff:37:46:cd:41:3f:ed:e0:3a:6b:33:ab:fd:98: df:26:5d:27:de:8b:e3:d5:34:3f:81:16:67:cd:31:87:2e:5c: fa:f5:5b:d6:63:f9:15:48:6f:24:24:71:8e:78:c2:4b:85:ce: a6:be:4a:eb:fb:0d:ea:67:be:c4:a1:0c:57:a9:98:22:ab:75: 42:68:b8:2c:bb:62:35:2e:82:93:f7:68:fb:c7:f0:e2:91:aa: 1a:57:d9:e5:83:12:69:7b:7c:14:b4:c8:1d:4a:bf:1a:10:fd: a8:2d:be:ea:db:1d:f3:e9:2a:47:5c:d3:e0:ea:ae:71:2b:72: 95:8b:64:4b:1a:7c:16:c1:69:68:70:3f:b3:6c:aa:3a:90:d1: 1d:c2:cd:76:a6:0e:27:3b:fe:7d:f6:b2:ae:aa:28:85:35:aa: b9:e4:7e:0f:1a:19:7c:ac:f1:26:c5:aa:2b:33:32:91:ab:81: 15:ff:04:c9:6c:af:c0:31:74:e8:19:82:b0:07:de:f4:bc:be: d3:e8:08:4b:c3:b4:48:1d:73:89:6b:6e:82:ed:d9:9f:05:94: 82:46:6b:b0 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUT0GYNMG64bhiXIXnrQETy+KRgfkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4 MTFBNzA0RDAeFw0yNDEwMjUxMjU2MDVaFw0yNTEwMjQxMzAxMDVaMDMxMTAvBgNV BAMTKDU3NkQ0MDY3NzIyRjcxRTA2OTZGMjM2N0NEQzM2Q0U1MEM3QjAyMDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFgm1W/SQwPCIEIYqKAxVG+WLl 1t94vFcKrURQ3ZuCgoG1DqAZ/v7jRR/xZUUdpypkglyEndQnaCRccixoeFx9rVFs 5zHbzJkGEWCkPpYxA17ryJyJyR1GF80Vio/jb3esbPOAi6R70RKWs2qsWJx0AG5g 6K1lJcEbS4bul8bmE0PTRA2tlxxOsTcwcQaAiNOvPxtY9mrXU7S8F+CsCAgT7vJp MYpYw/y2qMjOYpo2hteCC03ah/Coxt5MGiuSq0wTxAtTqERmH6MAucEH0U2IE2uh 1rzbYEag6XvhsAig7jaFgz7044jeo/oFZCWpsUzaZZ+zpwzShXezN53vjrBjAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUV21AZ3IvceBpbyNnzcNs5Qx7AgUwHwYDVR0j BBgwFoAUtvATFRDmL3Pl8pJG+cj2kYEacE0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWQ4ZGFiNC04YmI2LTRlZDAtOGRhYi01YTQwNjE2N2I5OWQvMC9CNkYwMTMxNTEw RTYyRjczRTVGMjkyNDZGOUM4RjY5MTgxMUE3MDRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4MTFB NzA0RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMyMzQzMDM0M2E2NTMxMzAzMDNhMzkzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzNTM1MzYzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAThAAAJMA0G CSqGSIb3DQEBCwUAA4IBAQBlPpNf6HWksh9Pan4cvxoNq8Az5p+mYGhUDy7PXzWi dW1tFL/A/Rvk/zdGzUE/7eA6azOr/ZjfJl0n3ovj1TQ/gRZnzTGHLlz69VvWY/kV SG8kJHGOeMJLhc6mvkrr+w3qZ77EoQxXqZgiq3VCaLgsu2I1LoKT92j7x/Dikaoa V9nlgxJpe3wUtMgdSr8aEP2oLb7q2x3z6SpHXNPg6q5xK3KVi2RLGnwWwWlocD+z bKo6kNEdws12pg4nO/599rKuqiiFNaq55H4PGhl8rPEmxaorMzKRq4EV/wTJbK/A MXToGYKwB970vL7T6AhLw7RIHXOJa26C7dmfBZSCRmuw -----END CERTIFICATE-----Generated at Wed Nov 20 23:10:18 2024 by rpki-client on console-fra.rpki-client.org