$ rpki-client -vvf repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a3a2f34372d3438203d3e203535363835.roa File: 323430343a653130303a3a2f34372d3438203d3e203535363835.roa (raw, json) Hash identifier: tcdZ0BFUkhu8Cg9kmdDffxYuz1UzH0w4sZVqYvLmyKU= Subject key identifier: 09:71:A6:6E:B3:73:E7:58:B3:E4:5C:D1:19:4D:C7:F0:E8:FD:42:04 Certificate issuer: /CN=B6F0131510E62F73E5F29246F9C8F691811A704D Certificate serial: 5FD83F5F79EEAAA654342B56C44C5840378CFF8F Authority key identifier: B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a3a2f34372d3438203d3e203535363835.roa Signing time: Mon 01 Jul 2024 01:05:50 +0000 ROA not before: Mon 01 Jul 2024 01:00:50 +0000 ROA not after: Mon 30 Jun 2025 01:05:50 +0000 asID: 55685 IP address blocks: 2404:e100::/47 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 03:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:d8:3f:5f:79:ee:aa:a6:54:34:2b:56:c4:4c:58:40:37:8c:ff:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F0131510E62F73E5F29246F9C8F691811A704D Validity Not Before: Jul 1 01:00:50 2024 GMT Not After : Jun 30 01:05:50 2025 GMT Subject: CN=0971A66EB373E758B3E45CD1194DC7F0E8FD4204 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:0c:c0:9a:99:96:25:e6:82:1e:8b:1e:7e:04: 3a:11:67:72:50:13:66:d9:d0:2d:ee:ab:79:10:78: 95:94:0b:8f:f3:98:e5:3c:ac:15:b8:e6:5a:34:bf: a6:c9:58:6a:05:6a:af:56:a4:56:45:ca:2a:3a:fd: 03:82:ad:70:28:3f:ed:45:85:0b:22:c5:cb:9b:e6: 3b:bd:4e:92:87:c0:43:5f:36:43:6a:0e:85:21:a5: fc:36:a9:f8:8f:fe:2f:72:08:50:0a:24:da:b7:d6: c2:2d:1e:aa:2f:14:2f:f4:c7:3a:79:aa:fe:a5:a6: cc:cb:6b:33:95:38:54:db:a0:71:fe:9b:fa:7a:51: cd:2c:1f:27:cd:4c:37:f7:32:1d:ac:d5:f0:61:9e: c6:3c:71:92:d0:99:af:76:91:7e:a4:e1:fa:ec:54: aa:b8:42:5f:16:72:71:97:b7:4c:c0:cb:96:cc:37: 3b:56:e1:ef:9e:98:5d:17:6c:08:06:78:7d:f1:7a: 26:4c:a2:15:83:24:74:50:b1:4a:b1:f1:81:11:05: 56:27:e8:ed:51:2f:99:00:4f:e1:58:d3:40:1d:b7: 22:44:e5:2b:ec:85:10:ca:8c:bd:05:47:08:ea:30: e9:57:f8:ea:29:95:29:61:fa:89:c4:59:be:57:cb: 2b:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:71:A6:6E:B3:73:E7:58:B3:E4:5C:D1:19:4D:C7:F0:E8:FD:42:04 X509v3 Authority Key Identifier: keyid:B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a3a2f34372d3438203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:e100::/47 Signature Algorithm: sha256WithRSAEncryption 84:8b:84:7c:97:4d:70:60:7b:4a:07:18:a5:b9:03:d7:b8:8c: e9:2c:78:e1:cf:09:c5:99:25:5c:21:f6:1c:13:32:d0:53:de: 15:85:b5:b8:7e:3d:b0:e8:34:96:14:ca:a0:be:02:0c:99:75: 49:0d:b7:35:b4:46:67:53:e4:be:94:42:2e:a8:31:02:cc:50: b3:8c:e9:67:7a:a3:e6:13:7c:0a:7b:10:f2:6f:fa:69:0c:75: 31:dc:db:d8:bd:8d:de:0c:da:77:02:f7:d1:9b:b7:b3:50:d9: fa:72:24:d5:d2:73:dd:6d:c6:29:a4:df:13:1e:a4:71:db:36: 79:95:ad:d7:f7:5c:22:94:19:a9:b9:e2:c0:74:5d:25:40:99: aa:8d:ba:63:a9:97:15:05:d8:4a:9a:5d:ef:4d:78:39:1a:72: 6f:aa:4a:ca:a6:d3:f5:52:4c:f6:21:9e:72:89:ae:af:d9:a4: ae:28:5a:35:b8:b3:b1:bd:e2:aa:b8:a4:5d:a9:10:68:22:53: fd:f9:db:e0:70:c0:cc:51:77:a9:0a:b7:e0:b8:36:0b:84:27: 9f:f5:8d:9b:88:c6:c0:03:e4:96:36:3f:8e:32:d9:b5:9d:89: ca:a6:9b:08:05:2f:0d:8f:3c:e9:ff:fc:a3:26:5f:00:2d:20: 3a:6d:d4:b8 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUX9g/X3nuqqZUNCtWxExYQDeM/48wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4 MTFBNzA0RDAeFw0yNDA3MDEwMTAwNTBaFw0yNTA2MzAwMTA1NTBaMDMxMTAvBgNV BAMTKDA5NzFBNjZFQjM3M0U3NThCM0U0NUNEMTE5NERDN0YwRThGRDQyMDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDADMCamZYl5oIeix5+BDoRZ3JQ E2bZ0C3uq3kQeJWUC4/zmOU8rBW45lo0v6bJWGoFaq9WpFZFyio6/QOCrXAoP+1F hQsixcub5ju9TpKHwENfNkNqDoUhpfw2qfiP/i9yCFAKJNq31sItHqovFC/0xzp5 qv6lpszLazOVOFTboHH+m/p6Uc0sHyfNTDf3Mh2s1fBhnsY8cZLQma92kX6k4frs VKq4Ql8WcnGXt0zAy5bMNztW4e+emF0XbAgGeH3xeiZMohWDJHRQsUqx8YERBVYn 6O1RL5kAT+FY00AdtyJE5SvshRDKjL0FRwjqMOlX+OoplSlh+onEWb5XyyvDAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUCXGmbrNz51iz5FzRGU3H8Oj9QgQwHwYDVR0j BBgwFoAUtvATFRDmL3Pl8pJG+cj2kYEacE0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWQ4ZGFiNC04YmI2LTRlZDAtOGRhYi01YTQwNjE2N2I5OWQvMC9CNkYwMTMxNTEw RTYyRjczRTVGMjkyNDZGOUM4RjY5MTgxMUE3MDRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4MTFB NzA0RC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMyMzQzMDM0M2E2NTMxMzAzMDNhM2EyZjM0Mzcy ZDM0MzgyMDNkM2UyMDM1MzUzNjM4MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwEkBOEAAAAwDQYJKoZI hvcNAQELBQADggEBAISLhHyXTXBge0oHGKW5A9e4jOkseOHPCcWZJVwh9hwTMtBT 3hWFtbh+PbDoNJYUyqC+AgyZdUkNtzW0RmdT5L6UQi6oMQLMULOM6Wd6o+YTfAp7 EPJv+mkMdTHc29i9jd4M2ncC99Gbt7NQ2fpyJNXSc91tximk3xMepHHbNnmVrdf3 XCKUGam54sB0XSVAmaqNumOplxUF2EqaXe9NeDkacm+qSsqm0/VSTPYhnnKJrq/Z pK4oWjW4s7G94qq4pF2pEGgiU/352+BwwMxRd6kKt+C4NguEJ5/1jZuIxsAD5JY2 P44y2bWdicqmmwgFLw2PPOn//KMmXwAtIDpt1Lg= -----END CERTIFICATE-----Generated at Wed Nov 20 23:52:02 2024 by rpki-client on console-ams.rpki-client.org