$ rpki-client -vvf repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a353a3a2f34382d3438203d3e203338353234.roa File: 323430313a646538303a353a3a2f34382d3438203d3e203338353234.roa (raw, json) Hash identifier: ZWjpE+i7qdQNBiohed9TDRONGNXj6q4+u0KtZV5yrFA= Subject key identifier: 3D:44:E0:0D:E2:F7:27:B7:D6:41:F2:D1:5E:6D:E1:CE:C0:E2:57:06 Certificate issuer: /CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Certificate serial: 10E344D5C8567E09C3DBCE966AD9B8FCDC5FC19A Authority key identifier: 6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a353a3a2f34382d3438203d3e203338353234.roa Signing time: Wed 09 Aug 2023 00:00:00 +0000 ROA not before: Tue 08 Aug 2023 23:55:00 +0000 ROA not after: Wed 07 Aug 2024 00:00:00 +0000 asID: 38524 IP address blocks: 2401:de80:5::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Apr 2024 00:28:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:e3:44:d5:c8:56:7e:09:c3:db:ce:96:6a:d9:b8:fc:dc:5f:c1:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Validity Not Before: Aug 8 23:55:00 2023 GMT Not After : Aug 7 00:00:00 2024 GMT Subject: CN=3D44E00DE2F727B7D641F2D15E6DE1CEC0E25706 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:18:fd:2f:5a:b5:3a:23:c2:ee:4a:dd:68:2e: 76:84:47:e0:b1:ec:63:1a:1e:8c:14:54:26:50:49: 28:cb:a6:97:b4:21:e0:c9:f0:b9:f3:e6:a9:04:0a: 7b:0a:64:fb:91:91:b6:f0:53:08:13:19:3a:b4:f7: fd:dd:2e:33:39:2b:39:30:28:85:d6:87:69:11:e7: db:0f:77:f1:d1:69:03:63:11:cf:37:2c:ab:3f:20: c7:da:50:25:80:1e:bf:5d:3d:d5:82:f1:58:10:69: 65:1a:75:29:ab:4b:e6:97:5c:53:e0:96:7a:27:e3: 01:d6:cd:2d:e4:63:fd:e3:de:20:5b:34:5c:f6:af: ef:91:c4:9a:10:79:7c:1f:d2:dc:50:ba:22:11:72: e9:f8:93:ce:c7:e0:39:97:0b:8d:9c:2a:1b:f2:bd: 0d:4a:0e:dc:f9:67:f8:f4:dc:c9:9c:ff:01:ab:4e: 0d:f6:9b:11:6b:68:c0:55:a3:66:a0:94:c1:29:b7: ea:14:54:fe:b0:a6:d3:06:d4:f6:73:9e:33:44:4e: 28:4c:74:7f:e8:e5:2a:36:05:35:90:2c:0f:07:a2: 67:11:0a:ce:09:11:0a:6e:d7:fe:33:38:1e:5d:bc: e1:19:8b:cf:2e:e8:1f:6a:3c:4d:40:a1:68:3e:4a: 74:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:44:E0:0D:E2:F7:27:B7:D6:41:F2:D1:5E:6D:E1:CE:C0:E2:57:06 X509v3 Authority Key Identifier: keyid:6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a353a3a2f34382d3438203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:de80:5::/48 Signature Algorithm: sha256WithRSAEncryption 61:c1:51:a1:3d:8c:54:42:5b:37:c5:aa:cc:08:ac:4d:59:03: 28:0a:2b:3d:b8:bc:9e:88:a5:e5:7a:98:dd:f4:97:ca:8b:10: 0c:6f:6b:53:d2:b5:dd:51:29:cb:e1:38:3f:d0:b7:b7:15:4f: 6d:78:bf:6a:5e:dc:1b:e7:16:f1:cc:50:d3:f5:c5:91:ff:29: e1:3e:6a:4b:f1:0c:60:99:63:74:d1:41:fc:8e:f4:74:3a:73: 18:42:6a:f4:c5:a9:12:d4:10:24:59:9d:15:10:02:0b:58:5c: 27:8b:9e:82:b4:1d:76:a4:58:e5:58:35:e7:32:16:95:08:8a: da:25:08:3e:59:f6:84:da:8c:37:09:1e:5b:32:24:54:45:31: 80:5a:1f:7d:ee:01:54:56:22:aa:08:37:c0:34:c6:e4:b1:bb: 37:81:1b:5b:32:5b:49:ee:3c:7d:71:60:d2:30:58:09:a1:ef: c9:fc:36:f3:7a:3c:9d:bd:97:d3:fc:bc:ca:8f:66:da:d7:1f: 42:24:37:77:a3:6f:b3:4a:a2:0c:bc:1e:d3:c2:9b:e4:a8:9d: a0:dd:a2:31:b4:c2:b4:32:6d:42:10:42:bf:7e:35:e5:84:8d: ed:df:f9:84:2f:ea:0b:9b:02:56:91:32:3c:f1:9d:eb:b4:73: 63:4e:b7:84 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUEONE1chWfgnD286Watm4/NxfwZowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBD RDI4M0U5QTAeFw0yMzA4MDgyMzU1MDBaFw0yNDA4MDcwMDAwMDBaMDMxMTAvBgNV BAMTKDNENDRFMDBERTJGNzI3QjdENjQxRjJEMTVFNkRFMUNFQzBFMjU3MDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOGP0vWrU6I8LuSt1oLnaER+Cx 7GMaHowUVCZQSSjLppe0IeDJ8Lnz5qkECnsKZPuRkbbwUwgTGTq09/3dLjM5Kzkw KIXWh2kR59sPd/HRaQNjEc83LKs/IMfaUCWAHr9dPdWC8VgQaWUadSmrS+aXXFPg lnon4wHWzS3kY/3j3iBbNFz2r++RxJoQeXwf0txQuiIRcun4k87H4DmXC42cKhvy vQ1KDtz5Z/j03Mmc/wGrTg32mxFraMBVo2aglMEpt+oUVP6wptMG1PZznjNETihM dH/o5So2BTWQLA8HomcRCs4JEQpu1/4zOB5dvOEZi88u6B9qPE1AoWg+SnTXAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUPUTgDeL3J7fWQfLRXm3hzsDiVwYwHwYDVR0j BBgwFoAUazOgjWRSSS04/l/GVg33UM0oPpowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZmY5NjlmYy0zOWM3LTQ0Y2QtODcxNi05Y2U0YzZkNWFjOTEvMC82QjMzQTA4RDY0 NTI0OTJEMzhGRTVGQzY1NjBERjc1MENEMjgzRTlBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBDRDI4 M0U5QS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdmZjk2OWZjLTM5YzctNDRjZC04 NzE2LTljZTRjNmQ1YWM5MS8wLzMyMzQzMDMxM2E2NDY1MzgzMDNhMzUzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAHegAAFMA0G CSqGSIb3DQEBCwUAA4IBAQBhwVGhPYxUQls3xarMCKxNWQMoCis9uLyeiKXlepjd 9JfKixAMb2tT0rXdUSnL4Tg/0Le3FU9teL9qXtwb5xbxzFDT9cWR/ynhPmpL8Qxg mWN00UH8jvR0OnMYQmr0xakS1BAkWZ0VEAILWFwni56CtB12pFjlWDXnMhaVCIra JQg+WfaE2ow3CR5bMiRURTGAWh997gFUViKqCDfANMbksbs3gRtbMltJ7jx9cWDS MFgJoe/J/DbzejydvZfT/LzKj2ba1x9CJDd3o2+zSqIMvB7TwpvkqJ2g3aIxtMK0 Mm1CEEK/fjXlhI3t3/mEL+oLmwJWkTI88Z3rtHNjTreE -----END CERTIFICATE-----Generated at Fri Apr 19 01:15:58 2024 by rpki-client on console-fra.rpki-client.org