$ rpki-client -vvf repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a653a3a2f34382d3438203d3e203338353234.roa File: 323430313a646538303a653a3a2f34382d3438203d3e203338353234.roa (raw, json) Hash identifier: bnNfuycSuZ4y48uKkb7ub0cZP+mDc/Z75OlA5q6RJ8g= Subject key identifier: 35:E0:A8:7B:F7:2F:F0:E6:17:78:71:AE:F8:AA:D7:81:AC:8B:95:E4 Certificate issuer: /CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Certificate serial: 7ACE05222AEBAB2498B039FCE9D4B33BABABE6C6 Authority key identifier: 6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a653a3a2f34382d3438203d3e203338353234.roa Signing time: Tue 08 Aug 2023 23:00:01 +0000 ROA not before: Tue 08 Aug 2023 22:55:01 +0000 ROA not after: Tue 06 Aug 2024 23:00:01 +0000 asID: 38524 IP address blocks: 2401:de80:e::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Apr 2024 08:08:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:ce:05:22:2a:eb:ab:24:98:b0:39:fc:e9:d4:b3:3b:ab:ab:e6:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Validity Not Before: Aug 8 22:55:01 2023 GMT Not After : Aug 6 23:00:01 2024 GMT Subject: CN=35E0A87BF72FF0E6177871AEF8AAD781AC8B95E4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:1f:ad:96:c8:84:95:e8:9e:af:c8:d6:3f:a0: f2:42:3e:db:cf:ff:4b:60:68:2c:4a:53:f4:de:ed: 65:ab:c4:6d:2c:01:54:e5:99:a2:0e:fa:0d:cb:41: 06:68:9b:83:be:ba:0e:ad:91:c1:a2:fa:18:b4:27: 31:70:25:e4:39:16:e3:a8:0a:65:b6:e5:3c:c0:2c: 68:a9:ad:d9:ff:15:e6:72:a8:7b:54:ee:6f:8a:7b: 95:21:73:de:55:6e:08:3b:5d:92:4a:83:c8:ce:18: fe:c5:aa:9a:f6:17:4f:ad:db:87:84:de:f8:fb:27: bd:64:f6:46:7f:c3:24:d1:8e:76:6a:49:2e:ab:20: a9:24:6a:4b:9e:1d:f2:17:48:cf:3d:bf:56:4e:01: ef:9f:9e:6c:89:f6:7a:b9:3b:d3:91:f6:aa:e5:0a: 05:b2:65:c0:f1:6a:ef:95:e6:56:a1:b2:48:22:b6: 9c:34:1b:6f:d5:8f:4a:b9:21:78:26:71:7d:91:0e: 78:6c:64:1b:e8:1d:d9:2b:e7:2d:d6:a1:cc:d3:f1: cd:1b:db:3c:9f:8e:5a:96:5b:32:ea:ad:50:90:c7: 72:28:11:ae:b9:a2:01:11:6c:b5:9c:03:01:b3:d3: b3:7b:b6:22:7f:90:4e:7d:a0:cf:59:ee:ad:f0:0c: df:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:E0:A8:7B:F7:2F:F0:E6:17:78:71:AE:F8:AA:D7:81:AC:8B:95:E4 X509v3 Authority Key Identifier: keyid:6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a653a3a2f34382d3438203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:de80:e::/48 Signature Algorithm: sha256WithRSAEncryption 24:69:97:2c:a7:83:d6:c2:db:e7:2a:a7:9f:87:f5:71:df:7c: bc:0b:a3:0d:5b:43:41:07:a2:4b:12:54:ee:61:85:3c:c5:5a: c6:94:bf:e6:c0:ce:c7:5d:54:78:79:70:92:40:2b:d9:61:92: 5c:09:4d:7b:48:03:45:21:ba:7c:fb:a2:69:f7:45:65:3f:c3: 18:09:88:19:05:a4:66:2a:8c:1d:37:d9:d3:a6:03:00:3a:93: 76:03:cb:77:23:2b:33:c5:e3:59:65:5f:96:e0:3e:e1:97:f8: 28:02:34:9e:d4:85:fe:1a:d4:ab:a7:a0:88:c5:0a:13:48:4d: b7:7a:27:80:ff:78:7d:b5:25:fc:72:3a:38:0b:5d:a8:52:89: 1c:fd:10:e8:ad:80:71:3a:86:ea:4f:b4:19:24:fa:89:e0:d7: 11:ab:1c:ad:22:ea:90:cf:7e:eb:13:8a:8c:9b:47:c3:71:ed: f3:82:7f:1b:09:21:d3:a0:40:16:3e:01:15:05:18:7a:d0:3a: 81:8b:bc:c3:56:d3:78:03:90:ac:cb:f6:be:f3:9e:09:3f:44: b9:ca:0e:5e:03:a8:30:2f:4c:dd:37:b7:93:f8:52:82:17:90: 32:4e:2c:ab:1d:03:17:5b:0c:54:ae:8b:74:d8:14:b7:ab:ab: 4d:84:fa:21 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUes4FIirrqySYsDn86dSzO6ur5sYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBD RDI4M0U5QTAeFw0yMzA4MDgyMjU1MDFaFw0yNDA4MDYyMzAwMDFaMDMxMTAvBgNV BAMTKDM1RTBBODdCRjcyRkYwRTYxNzc4NzFBRUY4QUFENzgxQUM4Qjk1RTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnH62WyISV6J6vyNY/oPJCPtvP /0tgaCxKU/Te7WWrxG0sAVTlmaIO+g3LQQZom4O+ug6tkcGi+hi0JzFwJeQ5FuOo CmW25TzALGiprdn/FeZyqHtU7m+Ke5Uhc95Vbgg7XZJKg8jOGP7Fqpr2F0+t24eE 3vj7J71k9kZ/wyTRjnZqSS6rIKkkakueHfIXSM89v1ZOAe+fnmyJ9nq5O9OR9qrl CgWyZcDxau+V5lahskgitpw0G2/Vj0q5IXgmcX2RDnhsZBvoHdkr5y3WoczT8c0b 2zyfjlqWWzLqrVCQx3IoEa65ogERbLWcAwGz07N7tiJ/kE59oM9Z7q3wDN/1AgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUNeCoe/cv8OYXeHGu+KrXgayLleQwHwYDVR0j BBgwFoAUazOgjWRSSS04/l/GVg33UM0oPpowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZmY5NjlmYy0zOWM3LTQ0Y2QtODcxNi05Y2U0YzZkNWFjOTEvMC82QjMzQTA4RDY0 NTI0OTJEMzhGRTVGQzY1NjBERjc1MENEMjgzRTlBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBDRDI4 M0U5QS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdmZjk2OWZjLTM5YzctNDRjZC04 NzE2LTljZTRjNmQ1YWM5MS8wLzMyMzQzMDMxM2E2NDY1MzgzMDNhNjUzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAHegAAOMA0G CSqGSIb3DQEBCwUAA4IBAQAkaZcsp4PWwtvnKqefh/Vx33y8C6MNW0NBB6JLElTu YYU8xVrGlL/mwM7HXVR4eXCSQCvZYZJcCU17SANFIbp8+6Jp90VlP8MYCYgZBaRm KowdN9nTpgMAOpN2A8t3IyszxeNZZV+W4D7hl/goAjSe1IX+GtSrp6CIxQoTSE23 eieA/3h9tSX8cjo4C12oUokc/RDorYBxOobqT7QZJPqJ4NcRqxytIuqQz37rE4qM m0fDce3zgn8bCSHToEAWPgEVBRh60DqBi7zDVtN4A5Csy/a+854JP0S5yg5eA6gw L0zdN7eT+FKCF5AyTiyrHQMXWwxUrot02BS3q6tNhPoh -----END CERTIFICATE-----Generated at Tue Apr 23 18:27:44 2024 by rpki-client on console-fra.rpki-client.org