$ rpki-client -vvf repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a663a3a2f34382d3438203d3e203338353234.roa File: 323430313a646538303a663a3a2f34382d3438203d3e203338353234.roa (raw, json) Hash identifier: 7T/h8j8yAv1JQ/lm2peONAshNhuq77c/nZkaLjWGnqo= Subject key identifier: F1:DB:73:BB:F4:0E:E8:E9:A4:76:A8:6C:75:4E:59:8C:E8:98:5B:57 Certificate issuer: /CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Certificate serial: 2202502E571CA361A8684A84A67A2D12502ACBC9 Authority key identifier: 6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a663a3a2f34382d3438203d3e203338353234.roa Signing time: Tue 08 Aug 2023 22:00:00 +0000 ROA not before: Tue 08 Aug 2023 21:55:00 +0000 ROA not after: Tue 06 Aug 2024 22:00:00 +0000 asID: 38524 IP address blocks: 2401:de80:f::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 09:07:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:02:50:2e:57:1c:a3:61:a8:68:4a:84:a6:7a:2d:12:50:2a:cb:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Validity Not Before: Aug 8 21:55:00 2023 GMT Not After : Aug 6 22:00:00 2024 GMT Subject: CN=F1DB73BBF40EE8E9A476A86C754E598CE8985B57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:36:3b:81:a1:51:09:0e:5c:ba:35:05:0b:11: b6:ea:da:99:77:83:88:31:31:44:6b:8e:fe:71:83: 81:b3:75:4e:85:0a:3f:7c:6c:d0:5e:15:8e:42:8c: 06:f3:57:bf:8d:5f:1e:f3:a4:ca:f0:6b:0a:b8:04: 56:74:60:a8:24:43:24:6e:cf:a1:d9:4d:b3:1c:c0: 3f:f9:e2:78:81:e8:44:e0:cf:42:f3:6c:b0:db:3e: d0:61:61:4a:4d:b7:86:db:8b:02:7f:a9:52:87:b4: 54:11:25:0b:94:54:dc:7c:f8:c5:1b:7f:b5:4a:31: 6d:85:33:61:5b:27:2e:66:36:7a:bf:00:49:7c:66: fb:fe:08:09:5e:83:8d:30:f0:7b:57:8c:bd:44:c3: 7a:05:e9:72:2e:71:63:44:c3:2d:68:88:d4:53:e2: c0:03:d3:00:d5:75:74:42:0c:9d:00:74:c5:a3:2f: f1:82:36:68:c7:96:46:7d:bd:7b:45:0f:02:a3:c0: 8f:fb:d7:5a:b4:38:45:b3:d8:02:60:ca:6c:6c:c2: 97:6f:1f:6b:29:d7:b4:2d:64:eb:2b:72:47:4f:23: 41:a2:fc:1f:ad:9d:09:a7:0a:ab:3a:70:1f:4a:5f: cb:90:64:41:ad:6f:15:04:12:68:04:0d:87:a6:1e: eb:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:DB:73:BB:F4:0E:E8:E9:A4:76:A8:6C:75:4E:59:8C:E8:98:5B:57 X509v3 Authority Key Identifier: keyid:6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a663a3a2f34382d3438203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:de80:f::/48 Signature Algorithm: sha256WithRSAEncryption a8:f1:58:88:a1:1b:af:17:2c:50:a5:65:39:86:eb:39:14:5a: 87:1c:97:c2:0b:db:ae:0d:b7:b8:bd:6b:52:b1:c2:66:d3:b7: 2a:f8:7b:05:dd:ee:a1:55:99:aa:e7:a1:23:36:ca:16:05:8e: d7:af:16:c4:5d:da:88:4c:85:00:45:57:bb:17:da:f2:e3:76: 82:60:c4:76:70:62:db:cc:29:e4:8a:0e:6a:08:9e:0d:61:75: ee:57:86:76:79:2c:0e:51:91:8f:4c:79:5e:cf:9c:7d:77:54: b5:76:1b:79:87:58:ea:75:46:0f:65:4f:27:21:12:59:45:e5: e7:e8:95:cf:95:89:c1:5e:3e:46:28:b8:1b:26:26:d4:85:c2: b1:ea:e0:74:46:52:71:ef:1a:b7:35:9e:dd:29:eb:ee:4c:43: d7:1a:3b:f0:50:46:69:6d:83:6b:4e:e1:40:e5:08:9e:fa:60: 27:8c:72:cb:ac:74:0d:3f:64:36:cf:e4:de:5a:a4:ac:38:93: 94:5e:2f:0e:dc:bf:d1:cf:65:e0:3d:41:1d:fe:51:e5:3c:4c: 11:1b:69:90:1e:8d:93:c1:ad:5f:a5:d1:73:e9:78:7f:e1:4e: 57:76:5b:5a:9e:c4:ac:6a:ed:96:98:96:03:ea:ce:a7:4f:f0: 93:b6:26:f1 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUIgJQLlcco2GoaEqEpnotElAqy8kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBD RDI4M0U5QTAeFw0yMzA4MDgyMTU1MDBaFw0yNDA4MDYyMjAwMDBaMDMxMTAvBgNV BAMTKEYxREI3M0JCRjQwRUU4RTlBNDc2QTg2Qzc1NEU1OThDRTg5ODVCNTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDyNjuBoVEJDly6NQULEbbq2pl3 g4gxMURrjv5xg4GzdU6FCj98bNBeFY5CjAbzV7+NXx7zpMrwawq4BFZ0YKgkQyRu z6HZTbMcwD/54niB6ETgz0LzbLDbPtBhYUpNt4bbiwJ/qVKHtFQRJQuUVNx8+MUb f7VKMW2FM2FbJy5mNnq/AEl8Zvv+CAleg40w8HtXjL1Ew3oF6XIucWNEwy1oiNRT 4sAD0wDVdXRCDJ0AdMWjL/GCNmjHlkZ9vXtFDwKjwI/711q0OEWz2AJgymxswpdv H2sp17QtZOsrckdPI0Gi/B+tnQmnCqs6cB9KX8uQZEGtbxUEEmgEDYemHuuhAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQU8dtzu/QO6OmkdqhsdU5ZjOiYW1cwHwYDVR0j BBgwFoAUazOgjWRSSS04/l/GVg33UM0oPpowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZmY5NjlmYy0zOWM3LTQ0Y2QtODcxNi05Y2U0YzZkNWFjOTEvMC82QjMzQTA4RDY0 NTI0OTJEMzhGRTVGQzY1NjBERjc1MENEMjgzRTlBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBDRDI4 M0U5QS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdmZjk2OWZjLTM5YzctNDRjZC04 NzE2LTljZTRjNmQ1YWM5MS8wLzMyMzQzMDMxM2E2NDY1MzgzMDNhNjYzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAHegAAPMA0G CSqGSIb3DQEBCwUAA4IBAQCo8ViIoRuvFyxQpWU5hus5FFqHHJfCC9uuDbe4vWtS scJm07cq+HsF3e6hVZmq56EjNsoWBY7XrxbEXdqITIUARVe7F9ry43aCYMR2cGLb zCnkig5qCJ4NYXXuV4Z2eSwOUZGPTHlez5x9d1S1dht5h1jqdUYPZU8nIRJZReXn 6JXPlYnBXj5GKLgbJibUhcKx6uB0RlJx7xq3NZ7dKevuTEPXGjvwUEZpbYNrTuFA 5Qie+mAnjHLLrHQNP2Q2z+TeWqSsOJOUXi8O3L/Rz2XgPUEd/lHlPEwRG2mQHo2T wa1fpdFz6Xh/4U5XdltansSsau2WmJYD6s6nT/CTtibx -----END CERTIFICATE-----Generated at Thu Apr 25 09:16:52 2024 by rpki-client on console-ams.rpki-client.org