$ rpki-client -vvf repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a333a3a2f34382d3438203d3e203338353234.roa File: 323430313a646538303a333a3a2f34382d3438203d3e203338353234.roa (raw, json) Hash identifier: ld6M+Jnqy0iLBOGK2VkzhTkZL66jeqN3JuNiY33cgDo= Subject key identifier: 06:E6:2C:58:BB:7F:24:96:47:8B:33:92:4D:0D:B7:A7:FE:0C:FE:BB Certificate issuer: /CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Certificate serial: 04BEF228916AABC3F1CD9D0E6227C5AA991E05F3 Authority key identifier: 6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a333a3a2f34382d3438203d3e203338353234.roa Signing time: Tue 09 Jul 2024 23:00:01 +0000 ROA not before: Tue 09 Jul 2024 22:55:01 +0000 ROA not after: Tue 08 Jul 2025 23:00:01 +0000 asID: 38524 IP address blocks: 2401:de80:3::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:be:f2:28:91:6a:ab:c3:f1:cd:9d:0e:62:27:c5:aa:99:1e:05:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Validity Not Before: Jul 9 22:55:01 2024 GMT Not After : Jul 8 23:00:01 2025 GMT Subject: CN=06E62C58BB7F2496478B33924D0DB7A7FE0CFEBB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:9f:4b:c0:30:d9:28:73:f3:e6:c8:21:e6:dc: 6d:af:06:c2:89:de:d5:ae:17:61:44:e6:a8:a4:fc: 00:a1:5a:ad:40:ce:b8:b8:f0:60:66:17:01:ba:7a: 21:cf:a3:d1:d9:c7:b4:c5:5c:da:07:60:47:e4:93: 67:50:3d:41:13:50:17:84:44:16:47:e6:12:70:b2: c6:6f:3d:cb:27:68:36:a1:59:67:44:53:c3:a1:22: fd:d3:79:af:ab:ed:d1:90:99:f4:20:e8:15:f2:a9: fd:0e:6c:e5:46:db:cb:70:a9:48:8f:e2:52:78:d9: ee:61:38:f2:ce:05:64:a1:8e:ac:84:41:5c:01:61: d3:89:dd:fb:b2:b0:d3:eb:4b:f6:84:1a:9e:a8:a6: b8:c2:6f:91:02:d8:bc:35:75:63:72:2f:64:98:5b: c5:0a:2c:b2:fd:e9:cc:84:b6:a8:ae:aa:ed:57:84: 9c:83:c6:c7:72:a1:57:fe:7e:6f:79:fb:49:d6:69: 74:19:cf:1f:df:36:9f:e6:f6:23:a2:a3:25:e9:49: 65:1c:82:6e:8b:91:a4:36:d1:ef:05:8f:57:03:39: f6:e0:d9:ba:d3:23:b5:49:64:75:d5:39:77:b3:6c: 71:fe:a3:71:7e:12:ac:db:b5:f8:d0:ac:db:b0:9d: 30:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:E6:2C:58:BB:7F:24:96:47:8B:33:92:4D:0D:B7:A7:FE:0C:FE:BB X509v3 Authority Key Identifier: keyid:6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a333a3a2f34382d3438203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:de80:3::/48 Signature Algorithm: sha256WithRSAEncryption 92:db:34:0f:fc:f0:e3:62:55:da:35:78:ab:b6:91:55:96:99: 2d:27:46:51:7e:b2:17:4b:90:b4:98:c0:7f:dd:89:c5:28:a2: 15:cc:78:f2:52:78:6b:2b:d5:dd:12:a0:18:7a:90:48:ca:33: 0a:9d:64:f3:21:8e:61:09:c7:cb:0a:ab:c2:14:1e:fa:3b:cb: 68:00:92:dd:56:a7:5f:b9:6b:68:05:92:bf:5b:d8:ff:45:b9: 9f:b5:a2:5e:d7:84:91:ca:07:33:12:78:df:e8:7c:eb:c1:4b: 91:fe:6a:6f:eb:9a:f5:5e:26:ed:8f:00:7d:b4:91:7b:c5:bb: ed:34:3b:b0:95:5f:a9:2f:ed:97:c2:b5:74:fe:79:d9:5d:4c: 41:4a:63:e8:9f:10:5f:f8:85:68:c9:8e:34:2c:b9:3f:69:cf: 06:71:5c:25:eb:bf:74:9a:2a:6f:43:4c:6b:e2:53:7d:9a:25: ac:fd:20:84:03:f1:cb:98:02:f6:7a:60:de:72:71:c3:b9:7c: 3b:7e:eb:36:1e:70:3d:bc:b5:1d:f3:fd:5d:75:4f:b4:80:df: aa:ad:3b:00:74:25:b1:b4:24:5f:57:e3:76:47:be:73:03:83: f7:32:3d:da:ff:4d:1b:c8:96:89:31:8f:6e:5f:16:eb:25:6e: 67:7c:d7:c6 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUBL7yKJFqq8PxzZ0OYifFqpkeBfMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBD RDI4M0U5QTAeFw0yNDA3MDkyMjU1MDFaFw0yNTA3MDgyMzAwMDFaMDMxMTAvBgNV BAMTKDA2RTYyQzU4QkI3RjI0OTY0NzhCMzM5MjREMERCN0E3RkUwQ0ZFQkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCn0vAMNkoc/PmyCHm3G2vBsKJ 3tWuF2FE5qik/AChWq1Azri48GBmFwG6eiHPo9HZx7TFXNoHYEfkk2dQPUETUBeE RBZH5hJwssZvPcsnaDahWWdEU8OhIv3Tea+r7dGQmfQg6BXyqf0ObOVG28twqUiP 4lJ42e5hOPLOBWShjqyEQVwBYdOJ3fuysNPrS/aEGp6oprjCb5EC2Lw1dWNyL2SY W8UKLLL96cyEtqiuqu1XhJyDxsdyoVf+fm95+0nWaXQZzx/fNp/m9iOioyXpSWUc gm6LkaQ20e8Fj1cDOfbg2brTI7VJZHXVOXezbHH+o3F+EqzbtfjQrNuwnTCHAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUBuYsWLt/JJZHizOSTQ23p/4M/rswHwYDVR0j BBgwFoAUazOgjWRSSS04/l/GVg33UM0oPpowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZmY5NjlmYy0zOWM3LTQ0Y2QtODcxNi05Y2U0YzZkNWFjOTEvMC82QjMzQTA4RDY0 NTI0OTJEMzhGRTVGQzY1NjBERjc1MENEMjgzRTlBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBDRDI4 M0U5QS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdmZjk2OWZjLTM5YzctNDRjZC04 NzE2LTljZTRjNmQ1YWM5MS8wLzMyMzQzMDMxM2E2NDY1MzgzMDNhMzMzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAHegAADMA0G CSqGSIb3DQEBCwUAA4IBAQCS2zQP/PDjYlXaNXirtpFVlpktJ0ZRfrIXS5C0mMB/ 3YnFKKIVzHjyUnhrK9XdEqAYepBIyjMKnWTzIY5hCcfLCqvCFB76O8toAJLdVqdf uWtoBZK/W9j/RbmftaJe14SRygczEnjf6HzrwUuR/mpv65r1XibtjwB9tJF7xbvt NDuwlV+pL+2XwrV0/nnZXUxBSmPonxBf+IVoyY40LLk/ac8GcVwl6790mipvQ0xr 4lN9miWs/SCEA/HLmAL2emDecnHDuXw7fus2HnA9vLUd8/1ddU+0gN+qrTsAdCWx tCRfV+N2R75zA4P3Mj3a/00byJaJMY9uXxbrJW5nfNfG -----END CERTIFICATE-----Generated at Fri Nov 22 17:49:51 2024 by rpki-client on console-fra.rpki-client.org