$ rpki-client -vvf repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a613a3a2f34382d3438203d3e203338353234.roa File: 323430313a646538303a613a3a2f34382d3438203d3e203338353234.roa (raw, json) Hash identifier: Osomb/hrqH7kOzo2E1ygGEU0c4xuFEmaKE28MGfhmyk= Subject key identifier: 5E:C0:6F:61:61:85:C1:4A:6B:A4:96:B9:68:AE:8F:A0:B0:B2:6A:74 Certificate issuer: /CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Certificate serial: 30C6BBF23E489CE8CD38AB59E43557CAE944683E Authority key identifier: 6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a613a3a2f34382d3438203d3e203338353234.roa Signing time: Wed 09 Aug 2023 00:00:01 +0000 ROA not before: Tue 08 Aug 2023 23:55:01 +0000 ROA not after: Wed 07 Aug 2024 00:00:01 +0000 asID: 38524 IP address blocks: 2401:de80:a::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Apr 2024 08:08:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:c6:bb:f2:3e:48:9c:e8:cd:38:ab:59:e4:35:57:ca:e9:44:68:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Validity Not Before: Aug 8 23:55:01 2023 GMT Not After : Aug 7 00:00:01 2024 GMT Subject: CN=5EC06F616185C14A6BA496B968AE8FA0B0B26A74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:40:d9:6f:fd:48:ee:94:5b:4a:25:40:9a:10: 83:31:0b:a7:42:e1:0d:7c:2e:5c:d7:e4:bf:23:9c: 4e:41:93:d5:89:d5:be:f8:c8:ea:19:3d:7d:96:c2: 6a:43:23:f2:57:7b:d7:4d:1e:61:40:69:f8:42:e3: d2:4e:28:71:f4:81:c1:e3:5b:58:8d:8e:4a:f4:6a: 41:36:72:ba:d8:93:ba:e3:66:98:1a:8c:04:ed:ab: 91:80:0e:fe:a8:91:c7:e9:62:43:d3:5f:2e:6f:79: b2:a1:ba:2b:7d:fa:89:60:d4:67:6d:12:c8:fe:27: f9:92:45:e4:38:5c:fd:75:da:af:0e:7f:77:70:f3: 30:03:06:e1:e5:aa:b0:11:fd:d0:8d:40:fb:d0:3e: 46:07:e1:c4:8d:cd:c2:49:e7:3b:f2:7b:87:89:26: 07:70:63:ba:39:84:07:28:a5:8b:c9:4f:72:b6:b8: 68:67:32:08:12:c2:b0:44:41:ae:98:6f:f3:3d:4c: 07:69:86:85:62:06:9c:69:b8:b8:ea:f2:5d:6c:70: 79:45:a4:02:ef:73:71:a5:e9:40:3b:5e:05:67:aa: 54:6d:55:5f:ef:54:93:e0:9b:16:fa:2c:70:0b:26: a9:97:10:63:a3:08:c5:21:ca:2c:4c:4d:cb:d0:7f: 1d:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:C0:6F:61:61:85:C1:4A:6B:A4:96:B9:68:AE:8F:A0:B0:B2:6A:74 X509v3 Authority Key Identifier: keyid:6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a613a3a2f34382d3438203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:de80:a::/48 Signature Algorithm: sha256WithRSAEncryption 3c:10:37:d7:ef:c4:e6:3b:d3:78:1a:fc:01:aa:4c:19:05:71: 8d:13:14:59:df:86:67:6a:2d:81:f4:cb:12:4f:4d:d5:ea:dd: e7:82:75:67:f5:7f:36:d0:aa:c4:25:95:87:c7:07:62:0b:16: e3:d7:58:3c:e9:ed:bf:5f:79:cd:d4:7e:79:18:45:d6:03:4a: 79:03:b4:66:87:a0:36:e3:93:c9:20:93:1c:48:b9:10:ad:af: f8:87:96:f1:d8:55:33:ab:bd:40:51:aa:a9:1b:ac:15:94:b4: 34:d7:62:fb:29:06:31:e0:1c:f6:2e:e2:53:59:46:a4:5e:9f: b2:23:a5:cf:f6:87:41:13:74:35:2c:be:8b:9f:a3:29:ff:00: a9:31:fd:82:3e:cf:d9:2f:9c:f9:c6:f4:ff:2b:aa:ea:ce:e7: 9a:d5:9c:5a:af:cb:cf:70:e1:c3:c9:1c:9c:14:f3:73:4c:b9: 81:1c:14:c6:5f:a0:a9:0a:bf:33:58:b0:a7:fb:5c:46:63:24: 8f:f1:b2:d1:4f:b9:4b:6b:ea:36:7d:21:4c:95:c4:4d:81:7d: f4:7b:40:f3:2a:2f:67:4f:f7:e0:04:00:12:a6:b2:fd:ce:f4: cf:1e:7f:b9:ba:a4:c8:9d:6c:f9:89:92:7e:79:03:2c:45:27: 8a:f5:6f:91 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUMMa78j5InOjNOKtZ5DVXyulEaD4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBD RDI4M0U5QTAeFw0yMzA4MDgyMzU1MDFaFw0yNDA4MDcwMDAwMDFaMDMxMTAvBgNV BAMTKDVFQzA2RjYxNjE4NUMxNEE2QkE0OTZCOTY4QUU4RkEwQjBCMjZBNzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGQNlv/UjulFtKJUCaEIMxC6dC 4Q18LlzX5L8jnE5Bk9WJ1b74yOoZPX2WwmpDI/JXe9dNHmFAafhC49JOKHH0gcHj W1iNjkr0akE2crrYk7rjZpgajATtq5GADv6okcfpYkPTXy5vebKhuit9+olg1Gdt Esj+J/mSReQ4XP112q8Of3dw8zADBuHlqrAR/dCNQPvQPkYH4cSNzcJJ5zvye4eJ JgdwY7o5hAcopYvJT3K2uGhnMggSwrBEQa6Yb/M9TAdphoViBpxpuLjq8l1scHlF pALvc3Gl6UA7XgVnqlRtVV/vVJPgmxb6LHALJqmXEGOjCMUhyixMTcvQfx0NAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUXsBvYWGFwUprpJa5aK6PoLCyanQwHwYDVR0j BBgwFoAUazOgjWRSSS04/l/GVg33UM0oPpowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZmY5NjlmYy0zOWM3LTQ0Y2QtODcxNi05Y2U0YzZkNWFjOTEvMC82QjMzQTA4RDY0 NTI0OTJEMzhGRTVGQzY1NjBERjc1MENEMjgzRTlBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBDRDI4 M0U5QS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdmZjk2OWZjLTM5YzctNDRjZC04 NzE2LTljZTRjNmQ1YWM5MS8wLzMyMzQzMDMxM2E2NDY1MzgzMDNhNjEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAHegAAKMA0G CSqGSIb3DQEBCwUAA4IBAQA8EDfX78TmO9N4GvwBqkwZBXGNExRZ34Znai2B9MsS T03V6t3ngnVn9X820KrEJZWHxwdiCxbj11g86e2/X3nN1H55GEXWA0p5A7Rmh6A2 45PJIJMcSLkQra/4h5bx2FUzq71AUaqpG6wVlLQ012L7KQYx4Bz2LuJTWUakXp+y I6XP9odBE3Q1LL6Ln6Mp/wCpMf2CPs/ZL5z5xvT/K6rqzuea1Zxar8vPcOHDyRyc FPNzTLmBHBTGX6CpCr8zWLCn+1xGYySP8bLRT7lLa+o2fSFMlcRNgX30e0DzKi9n T/fgBAASprL9zvTPHn+5uqTInWz5iZJ+eQMsRSeK9W+R -----END CERTIFICATE-----Generated at Tue Apr 23 18:27:44 2024 by rpki-client on console-fra.rpki-client.org