$ rpki-client -vvf repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a353a3a2f34382d3438203d3e203338353234.roa File: 323430313a646538303a353a3a2f34382d3438203d3e203338353234.roa (raw, json) Hash identifier: sFOsaLNBn5R0dXjBAyLaAtZ6p4a55uGmbaZHuXe5moQ= Subject key identifier: D6:40:1F:4E:69:C5:E1:05:54:D3:B4:40:26:F8:2D:67:AA:EA:B8:62 Certificate issuer: /CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Certificate serial: 45FE1A61297404EFC7E9FE9263F2289E6BA4C6D1 Authority key identifier: 6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a353a3a2f34382d3438203d3e203338353234.roa Signing time: Wed 10 Jul 2024 00:00:01 +0000 ROA not before: Tue 09 Jul 2024 23:55:01 +0000 ROA not after: Wed 09 Jul 2025 00:00:01 +0000 asID: 38524 IP address blocks: 2401:de80:5::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:fe:1a:61:29:74:04:ef:c7:e9:fe:92:63:f2:28:9e:6b:a4:c6:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Validity Not Before: Jul 9 23:55:01 2024 GMT Not After : Jul 9 00:00:01 2025 GMT Subject: CN=D6401F4E69C5E10554D3B44026F82D67AAEAB862 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:2d:0f:b1:69:8c:92:70:a1:d3:33:1a:22:01: 10:58:b2:0a:21:f9:9c:b7:26:61:1a:8c:5f:9e:7c: c9:a6:7f:e8:23:bb:fe:8c:83:1b:71:78:68:33:3c: 55:ec:57:7b:f8:df:06:ef:2d:9b:df:5f:e3:33:be: 88:e0:ef:7b:96:75:d1:5f:6c:51:6c:2b:9a:08:97: d0:39:98:7b:86:b5:a5:78:de:fa:69:79:72:fb:06: 55:54:56:e9:ba:6d:37:30:58:55:8c:a0:cc:bc:9e: 15:e6:85:20:fe:2d:5f:6b:ab:83:d8:db:e8:21:90: 36:4a:d6:94:3c:f5:2c:d8:45:3e:20:a4:82:00:44: 97:46:db:a1:d6:f8:00:42:69:7b:a0:fd:da:32:92: 33:56:81:eb:3a:8d:67:92:85:e0:2d:36:61:a3:51: 69:8a:3f:4a:a7:8d:fc:df:85:95:5a:c4:a2:d0:c2: ce:e9:b4:38:4a:11:2e:08:81:4f:26:d6:85:72:93: 46:ae:54:5c:3b:e3:03:08:52:c1:b1:e6:9f:7d:e0: 98:10:91:09:34:8d:01:2a:b2:bf:65:50:da:66:ac: f0:2d:5e:67:6c:43:a4:18:76:e3:95:14:32:66:6d: 7c:ec:c9:6a:1c:6f:30:6c:bc:fa:c0:2a:a7:e9:2a: e7:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:40:1F:4E:69:C5:E1:05:54:D3:B4:40:26:F8:2D:67:AA:EA:B8:62 X509v3 Authority Key Identifier: keyid:6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a353a3a2f34382d3438203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:de80:5::/48 Signature Algorithm: sha256WithRSAEncryption 97:80:e4:d2:87:72:01:45:b6:e7:56:3b:7c:fc:68:88:d2:52: 45:7e:75:96:3c:f3:b3:09:87:98:9e:7e:87:b2:5f:3f:a3:66: 69:2e:a9:16:4d:3d:23:be:64:77:db:1e:67:5f:cb:20:3c:a6: 0e:50:df:bb:6f:da:46:df:5f:08:19:69:87:36:eb:c9:af:b1: 2d:74:fe:3e:5c:47:94:75:86:20:0f:1f:34:c3:5b:f6:47:a5: 21:5e:0a:44:04:63:cc:e9:77:85:d6:0c:8c:bb:4a:c0:83:14: 76:f0:40:4b:b1:53:b0:45:54:2c:c5:f0:0c:43:d7:ca:9a:54: f8:27:23:28:38:ca:12:3e:24:92:41:d9:cb:94:73:81:9c:c2: 16:ee:ed:01:1e:c3:d0:d0:d6:44:a5:56:8f:d0:4c:14:fd:5f: 60:a2:8e:16:dc:69:3a:ba:14:1d:fd:46:c6:d0:07:a5:cc:0e: 22:29:6f:39:ae:d7:9a:70:6b:32:80:b3:7f:e2:bb:e1:29:10: 15:7f:e8:5e:62:5b:80:bd:e1:7b:56:2d:7c:40:f3:55:d5:4c: 37:bc:c3:e5:7e:13:6e:a7:81:8a:ae:02:87:c6:af:ec:07:4b: e2:36:95:70:6b:32:04:07:5c:11:4d:29:3b:fd:48:1a:0d:d8: 4e:6e:d2:2d -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIURf4aYSl0BO/H6f6SY/IonmukxtEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBD RDI4M0U5QTAeFw0yNDA3MDkyMzU1MDFaFw0yNTA3MDkwMDAwMDFaMDMxMTAvBgNV BAMTKEQ2NDAxRjRFNjlDNUUxMDU1NEQzQjQ0MDI2RjgyRDY3QUFFQUI4NjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVLQ+xaYyScKHTMxoiARBYsgoh +Zy3JmEajF+efMmmf+gju/6MgxtxeGgzPFXsV3v43wbvLZvfX+Mzvojg73uWddFf bFFsK5oIl9A5mHuGtaV43vppeXL7BlVUVum6bTcwWFWMoMy8nhXmhSD+LV9rq4PY 2+ghkDZK1pQ89SzYRT4gpIIARJdG26HW+ABCaXug/doykjNWges6jWeSheAtNmGj UWmKP0qnjfzfhZVaxKLQws7ptDhKES4IgU8m1oVyk0auVFw74wMIUsGx5p994JgQ kQk0jQEqsr9lUNpmrPAtXmdsQ6QYduOVFDJmbXzsyWocbzBsvPrAKqfpKuebAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQU1kAfTmnF4QVU07RAJvgtZ6rquGIwHwYDVR0j BBgwFoAUazOgjWRSSS04/l/GVg33UM0oPpowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZmY5NjlmYy0zOWM3LTQ0Y2QtODcxNi05Y2U0YzZkNWFjOTEvMC82QjMzQTA4RDY0 NTI0OTJEMzhGRTVGQzY1NjBERjc1MENEMjgzRTlBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBDRDI4 M0U5QS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdmZjk2OWZjLTM5YzctNDRjZC04 NzE2LTljZTRjNmQ1YWM5MS8wLzMyMzQzMDMxM2E2NDY1MzgzMDNhMzUzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAHegAAFMA0G CSqGSIb3DQEBCwUAA4IBAQCXgOTSh3IBRbbnVjt8/GiI0lJFfnWWPPOzCYeYnn6H sl8/o2ZpLqkWTT0jvmR32x5nX8sgPKYOUN+7b9pG318IGWmHNuvJr7EtdP4+XEeU dYYgDx80w1v2R6UhXgpEBGPM6XeF1gyMu0rAgxR28EBLsVOwRVQsxfAMQ9fKmlT4 JyMoOMoSPiSSQdnLlHOBnMIW7u0BHsPQ0NZEpVaP0EwU/V9goo4W3Gk6uhQd/UbG 0AelzA4iKW85rteacGsygLN/4rvhKRAVf+heYluAveF7Vi18QPNV1Uw3vMPlfhNu p4GKrgKHxq/sB0viNpVwazIEB1wRTSk7/UgaDdhObtIt -----END CERTIFICATE-----Generated at Fri Nov 22 17:49:51 2024 by rpki-client on console-fra.rpki-client.org