$ rpki-client -vvf repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a623a3a2f34382d3438203d3e203535363835.roa File: 323430343a653130303a623a3a2f34382d3438203d3e203535363835.roa (raw, json) Hash identifier: 9eV770vQJ2reww3Y5Ef1i7yuaK9ze/RKWwKMDYol+yc= Subject key identifier: 26:A4:F9:D9:3C:C5:4A:66:30:92:9F:A8:CA:0D:CA:50:48:7E:F0:2F Certificate issuer: /CN=B6F0131510E62F73E5F29246F9C8F691811A704D Certificate serial: 3B134289720C8053665C9C9890A69585C192E013 Authority key identifier: B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a623a3a2f34382d3438203d3e203535363835.roa Signing time: Tue 12 Nov 2024 04:01:47 +0000 ROA not before: Tue 12 Nov 2024 03:56:47 +0000 ROA not after: Tue 11 Nov 2025 04:01:47 +0000 asID: 55685 IP address blocks: 2404:e100:b::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:13:42:89:72:0c:80:53:66:5c:9c:98:90:a6:95:85:c1:92:e0:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F0131510E62F73E5F29246F9C8F691811A704D Validity Not Before: Nov 12 03:56:47 2024 GMT Not After : Nov 11 04:01:47 2025 GMT Subject: CN=26A4F9D93CC54A6630929FA8CA0DCA50487EF02F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:64:d2:86:41:98:f2:8c:cc:71:df:79:30:41: 79:38:c0:41:e3:4b:c8:65:5a:79:95:24:6a:5a:f8: 1c:ba:67:d7:2a:3e:14:13:82:1b:e6:37:ce:16:31: a2:fa:15:39:e1:29:75:1e:87:4d:00:90:77:20:f8: f4:90:9d:71:12:62:b3:bf:b5:ab:97:a2:c9:e3:bf: 25:f8:fe:d0:2d:2d:16:ef:16:ee:00:2d:f2:93:c1: dc:41:86:aa:78:92:17:14:d3:1d:68:9d:3b:ee:a1: 67:e9:8c:cb:68:9a:8b:a5:ac:ea:64:22:ee:5b:c9: d3:db:b7:6b:a4:a2:3d:4c:e0:d2:e8:cf:56:e2:f8: 77:36:5c:d7:27:4d:09:02:2e:f4:a4:b2:8b:fb:98: 85:97:9c:72:2e:28:b0:07:bb:44:8f:13:6f:30:e6: f4:43:74:9d:a5:7a:66:7b:d7:87:8b:44:75:1a:93: 0e:ee:34:b7:50:14:78:d9:73:6d:53:9b:5e:1e:97: c3:18:35:84:f6:50:4d:c4:85:35:0a:fd:a5:93:4c: 81:7c:2b:e5:9f:85:d0:97:fc:49:02:22:82:38:f0: 8c:66:a4:2d:b6:08:e7:31:7f:b0:80:03:3b:c3:8a: 24:09:32:e7:bb:1e:08:14:7e:37:61:48:a3:7d:18: 49:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:A4:F9:D9:3C:C5:4A:66:30:92:9F:A8:CA:0D:CA:50:48:7E:F0:2F X509v3 Authority Key Identifier: keyid:B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a623a3a2f34382d3438203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:e100:b::/48 Signature Algorithm: sha256WithRSAEncryption 6d:dd:8f:04:fa:fe:79:4a:b2:b3:d3:c7:60:8a:57:6e:56:e3: d4:8c:fa:d0:d5:94:dc:c3:4a:d2:72:31:5f:14:2c:67:23:d9: 34:b3:30:d3:51:bf:4b:ce:52:f0:34:28:63:11:8d:75:c0:e2: 6f:11:c6:08:a0:87:e3:3c:cd:e2:0b:0e:9a:5c:e9:44:8c:8f: c6:c2:25:3f:15:9c:58:59:97:94:5c:5d:49:0e:85:0f:d5:e9: c6:12:36:f1:98:23:09:ea:f1:fd:0e:ed:0a:cf:0b:97:d1:2f: 45:23:81:51:5b:b6:b9:bc:8b:b9:c3:1f:7e:e8:31:6d:08:02: 3d:d3:7e:0e:ab:3e:bd:ee:a6:fe:c4:fb:cc:e1:64:39:89:e7: 65:eb:57:cc:78:5b:d9:8d:d2:46:2b:98:36:c9:e8:db:1e:85: a2:44:3c:61:8e:0d:bb:80:7a:b1:76:4f:5c:7d:a8:cc:de:c0: 5e:89:0f:c4:6e:89:8c:5b:e1:8f:b8:da:0d:0f:83:9b:e6:56: aa:84:b0:a5:62:76:0b:9a:de:17:84:fc:a1:dc:95:01:54:da: 2b:ee:93:d3:01:05:09:5d:dc:0d:f2:36:a2:d7:f0:07:e4:ed: 51:47:62:88:7f:5c:50:cb:81:65:76:b3:19:80:c8:fd:05:a7: 2e:4f:1f:14 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUOxNCiXIMgFNmXJyYkKaVhcGS4BMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4 MTFBNzA0RDAeFw0yNDExMTIwMzU2NDdaFw0yNTExMTEwNDAxNDdaMDMxMTAvBgNV BAMTKDI2QTRGOUQ5M0NDNTRBNjYzMDkyOUZBOENBMERDQTUwNDg3RUYwMkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDtZNKGQZjyjMxx33kwQXk4wEHj S8hlWnmVJGpa+By6Z9cqPhQTghvmN84WMaL6FTnhKXUeh00AkHcg+PSQnXESYrO/ tauXosnjvyX4/tAtLRbvFu4ALfKTwdxBhqp4khcU0x1onTvuoWfpjMtomoulrOpk Iu5bydPbt2ukoj1M4NLoz1bi+Hc2XNcnTQkCLvSksov7mIWXnHIuKLAHu0SPE28w 5vRDdJ2lemZ714eLRHUakw7uNLdQFHjZc21Tm14el8MYNYT2UE3EhTUK/aWTTIF8 K+WfhdCX/EkCIoI48IxmpC22COcxf7CAAzvDiiQJMue7HggUfjdhSKN9GEk5AgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUJqT52TzFSmYwkp+oyg3KUEh+8C8wHwYDVR0j BBgwFoAUtvATFRDmL3Pl8pJG+cj2kYEacE0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWQ4ZGFiNC04YmI2LTRlZDAtOGRhYi01YTQwNjE2N2I5OWQvMC9CNkYwMTMxNTEw RTYyRjczRTVGMjkyNDZGOUM4RjY5MTgxMUE3MDRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4MTFB NzA0RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMyMzQzMDM0M2E2NTMxMzAzMDNhNjIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzNTM1MzYzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAThAAALMA0G CSqGSIb3DQEBCwUAA4IBAQBt3Y8E+v55SrKz08dgilduVuPUjPrQ1ZTcw0rScjFf FCxnI9k0szDTUb9LzlLwNChjEY11wOJvEcYIoIfjPM3iCw6aXOlEjI/GwiU/FZxY WZeUXF1JDoUP1enGEjbxmCMJ6vH9Du0KzwuX0S9FI4FRW7a5vIu5wx9+6DFtCAI9 034Oqz697qb+xPvM4WQ5iedl61fMeFvZjdJGK5g2yejbHoWiRDxhjg27gHqxdk9c fajM3sBeiQ/EbomMW+GPuNoND4Ob5laqhLClYnYLmt4XhPyh3JUBVNor7pPTAQUJ XdwN8jai1/AH5O1RR2KIf1xQy4FldrMZgMj9BacuTx8U -----END CERTIFICATE-----Generated at Wed Nov 20 23:10:18 2024 by rpki-client on console-fra.rpki-client.org