$ rpki-client -vvf repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a373a3a2f34382d3438203d3e203338353234.roa File: 323430313a646538303a373a3a2f34382d3438203d3e203338353234.roa (raw, json) Hash identifier: gpDtsnwndoj98NYbYOvUebVukixlmGsuI58bprOqTWM= Subject key identifier: 60:9C:A0:0A:4E:AD:6A:6D:FB:A5:88:8C:6D:4D:B4:FD:4C:0E:4A:79 Certificate issuer: /CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Certificate serial: 52DAD141B79E04F83965234F8FB6CC0C09DD80E1 Authority key identifier: 6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a373a3a2f34382d3438203d3e203338353234.roa Signing time: Tue 08 Aug 2023 23:00:01 +0000 ROA not before: Tue 08 Aug 2023 22:55:01 +0000 ROA not after: Tue 06 Aug 2024 23:00:01 +0000 asID: 38524 IP address blocks: 2401:de80:7::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Apr 2024 08:08:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:da:d1:41:b7:9e:04:f8:39:65:23:4f:8f:b6:cc:0c:09:dd:80:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Validity Not Before: Aug 8 22:55:01 2023 GMT Not After : Aug 6 23:00:01 2024 GMT Subject: CN=609CA00A4EAD6A6DFBA5888C6D4DB4FD4C0E4A79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:41:12:ea:3d:e5:35:5e:1e:c3:b1:61:8f:dc: 0d:c1:c0:df:93:76:27:f9:eb:a4:48:77:2b:f1:7a: 9e:ba:1a:3b:b5:75:3c:19:de:86:e2:b7:49:1d:56: b9:00:1d:ba:d0:b0:43:ad:4f:ca:6e:51:17:9c:12: 7b:34:92:46:db:6e:54:2e:5a:7c:ae:ee:5c:e0:a2: e1:93:49:05:03:aa:ff:d6:67:cd:78:36:6c:f5:87: 6d:9c:fd:ac:81:ff:df:01:2c:05:e8:d6:dc:cb:22: 30:f0:74:9d:fb:92:84:7c:b1:ba:cd:87:15:49:cf: 0a:ee:8f:84:66:77:05:bf:b6:ea:e8:a6:48:53:99: 0b:e7:d2:f8:13:75:67:f0:2a:21:38:fd:59:97:49: 36:5f:5b:b8:6c:08:91:66:c2:b9:a8:15:28:91:20: a6:d3:91:55:59:cb:fc:82:50:e7:8e:1f:c0:ea:58: f0:2b:70:5b:31:95:cd:db:5f:28:0c:d9:38:91:fa: 5d:63:2b:22:f7:b5:58:a5:65:ef:ef:d1:69:0d:bf: 5e:d1:ae:1c:1a:e7:06:5f:7f:23:0f:a7:6d:f7:7b: 65:e7:bb:0a:4a:67:62:fb:b3:0c:92:c1:d0:cf:3e: 8b:57:d0:1d:88:c1:3b:ed:20:32:92:0f:82:6e:1e: 5f:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:9C:A0:0A:4E:AD:6A:6D:FB:A5:88:8C:6D:4D:B4:FD:4C:0E:4A:79 X509v3 Authority Key Identifier: keyid:6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a373a3a2f34382d3438203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:de80:7::/48 Signature Algorithm: sha256WithRSAEncryption 63:a7:84:fb:00:70:36:92:eb:ba:78:2e:e4:4e:68:38:5b:97: ed:ec:36:c2:00:66:31:57:74:88:84:0c:82:5e:de:a8:1b:0c: 0b:b9:5f:44:f7:7c:96:f5:eb:29:4d:8e:11:f2:0d:fb:a5:2a: 4a:86:5d:7d:bf:ed:a4:64:d6:76:34:d9:22:b3:01:fe:28:fd: 8f:f1:99:d4:8d:bf:bc:ed:2f:c2:10:e8:4c:e4:99:9d:bb:49: fc:b5:7f:bd:9b:1d:a9:7c:e9:e1:df:c7:08:98:4c:56:af:d6: 98:5f:f4:73:bb:eb:8c:b3:42:29:fd:eb:88:01:78:d6:20:bd: bc:1b:3b:82:c3:d0:df:3a:49:eb:ba:c0:8a:d4:b0:3c:1c:d8: dc:ef:4e:21:0d:7d:20:98:04:65:e6:02:4f:8f:35:2e:b4:40: 34:b4:ba:ad:43:b5:e3:5d:f5:82:c8:68:25:81:d4:38:66:6d: d0:6f:e1:9f:a5:c0:ea:c3:80:9d:ba:9b:2e:62:58:22:ca:e9: 31:d5:03:a4:79:b5:02:ed:6b:18:d0:e0:5b:13:13:1d:c2:b1: eb:b5:80:3e:87:dc:a8:33:8a:6c:21:3d:bf:80:f4:d9:4d:37: 18:d3:15:63:18:e4:ee:61:6f:c2:f6:f0:23:4e:af:7b:51:ae: 9d:6a:2b:bd -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUUtrRQbeeBPg5ZSNPj7bMDAndgOEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBD RDI4M0U5QTAeFw0yMzA4MDgyMjU1MDFaFw0yNDA4MDYyMzAwMDFaMDMxMTAvBgNV BAMTKDYwOUNBMDBBNEVBRDZBNkRGQkE1ODg4QzZENERCNEZENEMwRTRBNzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdQRLqPeU1Xh7DsWGP3A3BwN+T dif566RIdyvxep66Gju1dTwZ3obit0kdVrkAHbrQsEOtT8puURecEns0kkbbblQu Wnyu7lzgouGTSQUDqv/WZ814Nmz1h22c/ayB/98BLAXo1tzLIjDwdJ37koR8sbrN hxVJzwruj4RmdwW/turopkhTmQvn0vgTdWfwKiE4/VmXSTZfW7hsCJFmwrmoFSiR IKbTkVVZy/yCUOeOH8DqWPArcFsxlc3bXygM2TiR+l1jKyL3tVilZe/v0WkNv17R rhwa5wZffyMPp233e2XnuwpKZ2L7swySwdDPPotX0B2IwTvtIDKSD4JuHl8FAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUYJygCk6tam37pYiMbU20/UwOSnkwHwYDVR0j BBgwFoAUazOgjWRSSS04/l/GVg33UM0oPpowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZmY5NjlmYy0zOWM3LTQ0Y2QtODcxNi05Y2U0YzZkNWFjOTEvMC82QjMzQTA4RDY0 NTI0OTJEMzhGRTVGQzY1NjBERjc1MENEMjgzRTlBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBDRDI4 M0U5QS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdmZjk2OWZjLTM5YzctNDRjZC04 NzE2LTljZTRjNmQ1YWM5MS8wLzMyMzQzMDMxM2E2NDY1MzgzMDNhMzczYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAHegAAHMA0G CSqGSIb3DQEBCwUAA4IBAQBjp4T7AHA2kuu6eC7kTmg4W5ft7DbCAGYxV3SIhAyC Xt6oGwwLuV9E93yW9espTY4R8g37pSpKhl19v+2kZNZ2NNkiswH+KP2P8ZnUjb+8 7S/CEOhM5Jmdu0n8tX+9mx2pfOnh38cImExWr9aYX/Rzu+uMs0Ip/euIAXjWIL28 GzuCw9DfOknrusCK1LA8HNjc704hDX0gmARl5gJPjzUutEA0tLqtQ7XjXfWCyGgl gdQ4Zm3Qb+GfpcDqw4CdupsuYlgiyukx1QOkebUC7WsY0OBbExMdwrHrtYA+h9yo M4psIT2/gPTZTTcY0xVjGOTuYW/C9vAjTq97Ua6daiu9 -----END CERTIFICATE-----Generated at Tue Apr 23 18:27:44 2024 by rpki-client on console-fra.rpki-client.org