$ rpki-client -vvf repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a333a3a2f34382d3438203d3e203338353234.roa File: 323430313a646538303a333a3a2f34382d3438203d3e203338353234.roa (raw, json) Hash identifier: 4DJlA1BosVcAXxrd9e3yvkw4/O+8UtgDxlCDL2Z8Frk= Subject key identifier: DA:51:01:40:2C:AA:49:2F:24:4A:A2:5D:58:D0:5A:15:06:7B:3A:BF Certificate issuer: /CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Certificate serial: 58DF0F0E962958A71391FBCA38EB4A2D5436AB60 Authority key identifier: 6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a333a3a2f34382d3438203d3e203338353234.roa Signing time: Tue 08 Aug 2023 23:00:00 +0000 ROA not before: Tue 08 Aug 2023 22:55:00 +0000 ROA not after: Tue 06 Aug 2024 23:00:00 +0000 asID: 38524 IP address blocks: 2401:de80:3::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Apr 2024 00:28:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:df:0f:0e:96:29:58:a7:13:91:fb:ca:38:eb:4a:2d:54:36:ab:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Validity Not Before: Aug 8 22:55:00 2023 GMT Not After : Aug 6 23:00:00 2024 GMT Subject: CN=DA5101402CAA492F244AA25D58D05A15067B3ABF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:18:9c:eb:e6:c6:9d:b8:5f:75:df:dc:fe:f4: 77:09:92:37:db:da:1a:c9:c9:e0:61:22:d5:1a:da: b6:2d:9b:bc:3e:4f:5a:51:59:b2:09:72:f5:7d:0d: 07:5f:2e:a5:fd:0c:30:98:81:8d:5c:ab:06:b8:04: b7:00:25:67:6f:f3:4e:2c:7a:2e:a0:27:26:ba:97: 8e:6b:70:af:81:f1:07:0b:ed:cf:88:57:51:7d:42: c0:e1:20:d1:3e:49:3c:3b:48:3c:2b:9e:96:04:26: 9e:36:b7:61:96:b5:63:6e:f0:0a:a3:11:fe:23:81: 5e:14:af:1b:8a:97:b8:33:55:47:44:1a:85:0f:e7: 0d:cf:45:06:90:47:f2:37:b6:ca:fa:1e:6b:4e:fb: 9d:e5:fa:9a:ac:30:09:7d:96:c8:1f:19:31:97:b9: 84:2d:42:2f:c0:2a:6e:bd:76:b4:1a:a4:50:c9:43: 9d:f0:19:26:33:f8:77:6f:c1:b6:a6:89:d4:2a:7a: 62:a9:45:2e:c0:fb:83:bb:19:e7:3f:34:7d:f3:4d: fb:12:fe:0d:38:6e:a3:e0:2b:d8:d2:2e:53:a4:40: 5a:11:41:53:8e:fe:df:bc:9c:3d:4c:b6:24:e3:19: eb:79:2d:b8:80:4d:f7:98:16:24:8a:70:02:12:62: 94:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:51:01:40:2C:AA:49:2F:24:4A:A2:5D:58:D0:5A:15:06:7B:3A:BF X509v3 Authority Key Identifier: keyid:6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a333a3a2f34382d3438203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:de80:3::/48 Signature Algorithm: sha256WithRSAEncryption 8d:1d:99:1d:8a:f3:56:79:22:85:9f:61:11:cf:76:dc:c5:22: bb:81:8a:c0:6a:cf:5c:ef:50:1e:37:2f:23:c2:cb:de:2e:df: 5f:22:72:39:77:c0:bf:ec:0b:14:cb:78:4c:e9:e7:14:73:cf: 97:05:64:21:6f:93:ac:7b:42:4d:80:d1:7f:e6:02:c7:82:eb: 53:f7:7d:f9:f9:73:0e:bd:da:ea:67:0b:5b:00:e9:6d:77:d1: 3d:86:35:e6:b9:de:7c:73:75:a7:60:76:5d:9c:1c:a6:5a:f2: b1:c4:d7:eb:ea:1d:73:ae:86:8d:27:3b:c5:73:81:2b:46:8b: 11:f0:5f:b5:fe:de:f9:ec:a0:a4:63:d5:46:17:42:f9:6f:dc: 5d:b2:90:6e:1e:50:21:74:37:f4:5b:61:1d:16:51:6d:e0:c8: ab:39:50:57:5b:0a:e6:38:5d:50:e2:d2:5e:cf:66:da:9f:35: 94:9b:6e:fc:92:32:96:bc:54:fa:bb:cf:e2:2b:cb:9e:1c:4a: ad:5d:a9:f5:29:02:49:ef:43:d2:39:d3:3b:6b:0d:51:5f:50: 5e:06:ce:02:8b:b3:fb:41:f9:48:0e:65:da:8c:65:99:52:8e: 6c:b8:2a:09:42:6f:4f:4c:06:ba:8c:66:17:70:02:d4:00:88: 0a:9d:60:a2 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUWN8PDpYpWKcTkfvKOOtKLVQ2q2AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBD RDI4M0U5QTAeFw0yMzA4MDgyMjU1MDBaFw0yNDA4MDYyMzAwMDBaMDMxMTAvBgNV BAMTKERBNTEwMTQwMkNBQTQ5MkYyNDRBQTI1RDU4RDA1QTE1MDY3QjNBQkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwGJzr5saduF9139z+9HcJkjfb 2hrJyeBhItUa2rYtm7w+T1pRWbIJcvV9DQdfLqX9DDCYgY1cqwa4BLcAJWdv804s ei6gJya6l45rcK+B8QcL7c+IV1F9QsDhINE+STw7SDwrnpYEJp42t2GWtWNu8Aqj Ef4jgV4UrxuKl7gzVUdEGoUP5w3PRQaQR/I3tsr6HmtO+53l+pqsMAl9lsgfGTGX uYQtQi/AKm69drQapFDJQ53wGSYz+HdvwbamidQqemKpRS7A+4O7Gec/NH3zTfsS /g04bqPgK9jSLlOkQFoRQVOO/t+8nD1MtiTjGet5LbiATfeYFiSKcAISYpRZAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQU2lEBQCyqSS8kSqJdWNBaFQZ7Or8wHwYDVR0j BBgwFoAUazOgjWRSSS04/l/GVg33UM0oPpowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZmY5NjlmYy0zOWM3LTQ0Y2QtODcxNi05Y2U0YzZkNWFjOTEvMC82QjMzQTA4RDY0 NTI0OTJEMzhGRTVGQzY1NjBERjc1MENEMjgzRTlBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBDRDI4 M0U5QS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdmZjk2OWZjLTM5YzctNDRjZC04 NzE2LTljZTRjNmQ1YWM5MS8wLzMyMzQzMDMxM2E2NDY1MzgzMDNhMzMzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAHegAADMA0G CSqGSIb3DQEBCwUAA4IBAQCNHZkdivNWeSKFn2ERz3bcxSK7gYrAas9c71AeNy8j wsveLt9fInI5d8C/7AsUy3hM6ecUc8+XBWQhb5Ose0JNgNF/5gLHgutT9335+XMO vdrqZwtbAOltd9E9hjXmud58c3WnYHZdnBymWvKxxNfr6h1zroaNJzvFc4ErRosR 8F+1/t757KCkY9VGF0L5b9xdspBuHlAhdDf0W2EdFlFt4MirOVBXWwrmOF1Q4tJe z2banzWUm278kjKWvFT6u8/iK8ueHEqtXan1KQJJ70PSOdM7aw1RX1BeBs4Ci7P7 QflIDmXajGWZUo5suCoJQm9PTAa6jGYXcALUAIgKnWCi -----END CERTIFICATE-----Generated at Fri Apr 19 01:15:58 2024 by rpki-client on console-fra.rpki-client.org