$ rpki-client -vvf repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a343a3a2f34382d3438203d3e203338353234.roa File: 323430313a646538303a343a3a2f34382d3438203d3e203338353234.roa (raw, json) Hash identifier: MbAuPoQlvnUqlN1dEeSgWH2z7f8kXuSUz631TNQ52sk= Subject key identifier: EA:81:C1:A2:BE:AF:74:3A:DD:FB:16:73:D9:DA:7F:6D:79:8F:33:8C Certificate issuer: /CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Certificate serial: 05D381B9B2953C915FB5177CAB273A034D8E53F2 Authority key identifier: 6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a343a3a2f34382d3438203d3e203338353234.roa Signing time: Tue 09 Jul 2024 22:00:01 +0000 ROA not before: Tue 09 Jul 2024 21:55:01 +0000 ROA not after: Tue 08 Jul 2025 22:00:01 +0000 asID: 38524 IP address blocks: 2401:de80:4::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:d3:81:b9:b2:95:3c:91:5f:b5:17:7c:ab:27:3a:03:4d:8e:53:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Validity Not Before: Jul 9 21:55:01 2024 GMT Not After : Jul 8 22:00:01 2025 GMT Subject: CN=EA81C1A2BEAF743ADDFB1673D9DA7F6D798F338C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:73:89:f4:94:7a:05:3e:9a:36:d6:52:37:bb: 96:8f:37:75:ce:62:14:e5:d6:6a:09:48:9c:d5:39: 1e:9a:00:6e:e0:c3:d0:f8:b9:2e:64:e9:9c:a9:ea: bb:ad:6b:98:f7:25:e0:e5:4c:81:65:8c:b6:40:77: 94:96:70:cf:cb:e4:e7:05:92:53:99:e9:0a:2b:21: 86:ba:ab:8e:53:3b:bf:e6:ca:57:60:3f:25:dd:e2: b3:d2:3a:d8:b1:f4:cf:58:31:d3:37:5e:8c:b2:79: 41:3e:12:34:3c:ac:dd:02:42:85:12:d5:81:19:b1: 09:4c:d1:6f:ca:60:f6:18:f3:f2:8b:32:3f:c6:17: 9a:1e:46:7e:8d:94:92:68:c1:ff:74:a0:ef:15:e5: 59:81:18:92:00:a6:42:06:fa:ab:83:db:7c:57:fd: 6b:9c:38:c5:37:e9:29:99:5b:ea:3d:bc:b8:05:24: 96:ce:33:34:69:11:a7:30:93:91:49:8c:92:9d:3e: 55:5c:a8:d2:63:df:25:a6:ca:6b:2e:6a:f4:8e:5e: ef:09:a0:cf:20:d9:ab:3b:28:db:3c:7f:99:97:0d: ff:8b:b7:7e:f1:2e:00:a9:74:0b:c9:13:2a:fb:72: a5:00:57:4a:78:87:cf:76:1a:c5:8c:86:67:87:31: 91:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:81:C1:A2:BE:AF:74:3A:DD:FB:16:73:D9:DA:7F:6D:79:8F:33:8C X509v3 Authority Key Identifier: keyid:6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a343a3a2f34382d3438203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:de80:4::/48 Signature Algorithm: sha256WithRSAEncryption 98:1c:43:2e:e7:b6:34:1b:f2:22:41:dd:d0:2b:4a:73:1e:10: 46:11:ce:55:59:d7:76:26:e8:df:8f:e1:a1:fa:c3:4f:73:55: 6d:69:50:18:4e:51:9e:36:a8:e6:f8:d7:e0:de:f9:61:41:92: 0b:a0:f2:11:f2:bf:4b:01:92:07:d8:c4:05:ae:68:09:2b:90: 18:93:3d:a5:72:dd:99:52:7d:fc:c8:ca:8f:66:89:e4:2d:05: e8:cb:bd:32:d3:0c:66:ee:e1:38:f8:00:e6:01:ae:5b:89:1e: c8:db:77:96:c9:d6:8f:9e:82:55:59:a6:ed:01:70:80:12:ad: 10:eb:ba:0c:48:c2:10:57:ef:32:69:5d:ed:40:29:6a:47:dc: 2f:d7:91:b5:46:9d:7d:a8:c4:3d:1d:f2:2f:1e:58:e5:6f:2d: 67:a4:8f:88:19:b7:f2:84:20:3e:53:76:a9:14:4a:54:9f:ef: b9:65:1d:cc:57:71:d3:b1:e1:22:aa:b1:73:3a:5d:38:f3:0e: 08:1c:eb:56:5b:56:27:37:f0:b1:22:76:90:e7:f3:d3:16:25: 54:2c:e4:5e:0d:24:50:2f:4a:98:04:6e:c2:30:5f:67:4e:bd: fb:d8:a8:44:74:b7:02:d5:d7:e5:12:6e:78:d6:b5:14:f2:95: 2a:15:cb:84 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUBdOBubKVPJFftRd8qyc6A02OU/IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBD RDI4M0U5QTAeFw0yNDA3MDkyMTU1MDFaFw0yNTA3MDgyMjAwMDFaMDMxMTAvBgNV BAMTKEVBODFDMUEyQkVBRjc0M0FEREZCMTY3M0Q5REE3RjZENzk4RjMzOEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAc4n0lHoFPpo21lI3u5aPN3XO YhTl1moJSJzVOR6aAG7gw9D4uS5k6Zyp6ruta5j3JeDlTIFljLZAd5SWcM/L5OcF klOZ6QorIYa6q45TO7/myldgPyXd4rPSOtix9M9YMdM3XoyyeUE+EjQ8rN0CQoUS 1YEZsQlM0W/KYPYY8/KLMj/GF5oeRn6NlJJowf90oO8V5VmBGJIApkIG+quD23xX /WucOMU36SmZW+o9vLgFJJbOMzRpEacwk5FJjJKdPlVcqNJj3yWmymsuavSOXu8J oM8g2as7KNs8f5mXDf+Lt37xLgCpdAvJEyr7cqUAV0p4h892GsWMhmeHMZGdAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQU6oHBor6vdDrd+xZz2dp/bXmPM4wwHwYDVR0j BBgwFoAUazOgjWRSSS04/l/GVg33UM0oPpowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZmY5NjlmYy0zOWM3LTQ0Y2QtODcxNi05Y2U0YzZkNWFjOTEvMC82QjMzQTA4RDY0 NTI0OTJEMzhGRTVGQzY1NjBERjc1MENEMjgzRTlBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBDRDI4 M0U5QS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdmZjk2OWZjLTM5YzctNDRjZC04 NzE2LTljZTRjNmQ1YWM5MS8wLzMyMzQzMDMxM2E2NDY1MzgzMDNhMzQzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAHegAAEMA0G CSqGSIb3DQEBCwUAA4IBAQCYHEMu57Y0G/IiQd3QK0pzHhBGEc5VWdd2Jujfj+Gh +sNPc1VtaVAYTlGeNqjm+Nfg3vlhQZILoPIR8r9LAZIH2MQFrmgJK5AYkz2lct2Z Un38yMqPZonkLQXoy70y0wxm7uE4+ADmAa5biR7I23eWydaPnoJVWabtAXCAEq0Q 67oMSMIQV+8yaV3tQClqR9wv15G1Rp19qMQ9HfIvHljlby1npI+IGbfyhCA+U3ap FEpUn++5ZR3MV3HTseEiqrFzOl048w4IHOtWW1YnN/CxInaQ5/PTFiVULOReDSRQ L0qYBG7CMF9nTr372KhEdLcC1dflEm541rUU8pUqFcuE -----END CERTIFICATE-----Generated at Fri Nov 22 16:43:36 2024 by rpki-client on console-ams.rpki-client.org