$ rpki-client -vvf repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a393a3a2f34382d3438203d3e203338353234.roa File: 323430313a646538303a393a3a2f34382d3438203d3e203338353234.roa (raw, json) Hash identifier: FxR4vGTh6w79t5yRV6uP6fTcqaOpYSHwFdxZqSKjZ60= Subject key identifier: 85:B2:1C:53:F4:47:A5:A9:E2:BE:59:CD:3A:5F:EF:D5:4E:57:26:BA Certificate issuer: /CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Certificate serial: 2A7E95B58C031A18277D83AAA0086BE01FAC957C Authority key identifier: 6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a393a3a2f34382d3438203d3e203338353234.roa Signing time: Wed 10 Jul 2024 00:00:01 +0000 ROA not before: Tue 09 Jul 2024 23:55:01 +0000 ROA not after: Wed 09 Jul 2025 00:00:01 +0000 asID: 38524 IP address blocks: 2401:de80:9::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:7e:95:b5:8c:03:1a:18:27:7d:83:aa:a0:08:6b:e0:1f:ac:95:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Validity Not Before: Jul 9 23:55:01 2024 GMT Not After : Jul 9 00:00:01 2025 GMT Subject: CN=85B21C53F447A5A9E2BE59CD3A5FEFD54E5726BA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:e2:a3:77:b0:2a:b6:b2:1e:58:ad:6d:ec:af: 21:05:d6:d7:a5:ee:3c:b0:d3:e3:16:7b:b6:b1:53: ab:fe:32:58:fc:58:d3:90:7b:47:51:a7:7a:95:ed: aa:5c:29:27:e9:d9:1d:f1:2d:03:3f:eb:ea:74:76: ba:3b:5c:43:3f:66:1b:fc:a4:79:4c:65:90:ae:bd: fa:a6:e9:30:3e:21:88:9c:d2:bc:cd:fe:a7:83:0c: ee:c6:33:46:c0:62:4e:72:ad:bd:d3:70:73:aa:39: 54:f9:c0:e7:59:ec:21:f0:2e:5e:9a:21:8e:0e:8b: 19:5b:61:05:c8:06:c0:ea:09:7f:f9:4a:82:19:7a: 9e:e9:41:fe:11:57:3f:d7:0e:9a:fb:cf:fc:67:bf: 23:01:6b:25:02:ef:67:73:2b:03:37:07:45:3b:f9: 1d:b6:5c:b1:f9:a8:38:3d:dd:9a:db:98:b8:1b:c5: 59:49:d3:53:d9:04:a0:31:29:b8:7f:18:e9:02:07: b3:8d:ec:b2:4a:82:c0:2c:ac:71:c5:15:cb:c0:6f: 02:a8:0d:3e:15:02:c3:56:05:3e:92:2e:2d:c5:a6: c6:e4:2e:b4:d6:4e:fb:ff:01:b0:2e:c5:00:0a:bb: ea:70:e7:8e:3d:6b:7a:22:de:be:31:fa:4a:b1:22: 85:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:B2:1C:53:F4:47:A5:A9:E2:BE:59:CD:3A:5F:EF:D5:4E:57:26:BA X509v3 Authority Key Identifier: keyid:6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a393a3a2f34382d3438203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:de80:9::/48 Signature Algorithm: sha256WithRSAEncryption 9a:e4:8d:d3:3e:79:9a:e5:28:47:69:ad:34:59:ed:c9:1c:17: 91:a7:4f:aa:8d:27:75:0b:4c:ee:2a:d3:e4:9f:33:0e:20:b6: cc:63:2c:8e:cf:e4:e9:1f:8d:fb:8e:47:45:6b:c5:35:10:23: f9:d4:23:c1:83:88:4a:d1:53:28:21:c7:d9:6c:2b:10:70:89: b5:02:8d:be:78:95:69:a7:02:6e:da:b5:ba:34:f3:e2:36:a0: 08:be:c3:83:27:31:9c:9e:35:e8:d2:7b:ae:b6:0b:fe:c7:a0: 74:ed:39:04:cd:60:e7:57:7b:6d:a1:73:0b:f3:f1:b9:53:b5: 1e:a4:ac:e0:50:14:53:9c:18:4d:8f:05:db:d4:c6:99:83:c3: f7:ce:e9:60:b4:61:03:97:55:bb:e8:df:10:2c:a3:28:cf:91: fd:92:5f:99:5c:0b:fa:97:42:a6:f9:b6:25:c6:0a:cf:ab:b0: 5e:dd:4c:32:fa:04:40:c6:e5:ed:89:76:09:32:08:51:2f:47: 30:6a:85:86:f9:24:8b:eb:28:5e:d2:8c:50:e5:60:f0:69:2a: 0e:0e:0c:cd:68:fc:66:0c:90:8f:51:67:87:83:a6:b9:81:47: be:89:1a:59:5d:93:b4:0c:04:d6:ea:b0:97:ae:a3:1b:1c:6e: ff:c3:a4:77 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUKn6VtYwDGhgnfYOqoAhr4B+slXwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBD RDI4M0U5QTAeFw0yNDA3MDkyMzU1MDFaFw0yNTA3MDkwMDAwMDFaMDMxMTAvBgNV BAMTKDg1QjIxQzUzRjQ0N0E1QTlFMkJFNTlDRDNBNUZFRkQ1NEU1NzI2QkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDb4qN3sCq2sh5YrW3sryEF1tel 7jyw0+MWe7axU6v+Mlj8WNOQe0dRp3qV7apcKSfp2R3xLQM/6+p0dro7XEM/Zhv8 pHlMZZCuvfqm6TA+IYic0rzN/qeDDO7GM0bAYk5yrb3TcHOqOVT5wOdZ7CHwLl6a IY4OixlbYQXIBsDqCX/5SoIZep7pQf4RVz/XDpr7z/xnvyMBayUC72dzKwM3B0U7 +R22XLH5qDg93ZrbmLgbxVlJ01PZBKAxKbh/GOkCB7ON7LJKgsAsrHHFFcvAbwKo DT4VAsNWBT6SLi3FpsbkLrTWTvv/AbAuxQAKu+pw5449a3oi3r4x+kqxIoVvAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUhbIcU/RHpanivlnNOl/v1U5XJrowHwYDVR0j BBgwFoAUazOgjWRSSS04/l/GVg33UM0oPpowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZmY5NjlmYy0zOWM3LTQ0Y2QtODcxNi05Y2U0YzZkNWFjOTEvMC82QjMzQTA4RDY0 NTI0OTJEMzhGRTVGQzY1NjBERjc1MENEMjgzRTlBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBDRDI4 M0U5QS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdmZjk2OWZjLTM5YzctNDRjZC04 NzE2LTljZTRjNmQ1YWM5MS8wLzMyMzQzMDMxM2E2NDY1MzgzMDNhMzkzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAHegAAJMA0G CSqGSIb3DQEBCwUAA4IBAQCa5I3TPnma5ShHaa00We3JHBeRp0+qjSd1C0zuKtPk nzMOILbMYyyOz+TpH437jkdFa8U1ECP51CPBg4hK0VMoIcfZbCsQcIm1Ao2+eJVp pwJu2rW6NPPiNqAIvsODJzGcnjXo0nuutgv+x6B07TkEzWDnV3ttoXML8/G5U7Ue pKzgUBRTnBhNjwXb1MaZg8P3zulgtGEDl1W76N8QLKMoz5H9kl+ZXAv6l0Km+bYl xgrPq7Be3Uwy+gRAxuXtiXYJMghRL0cwaoWG+SSL6yhe0oxQ5WDwaSoODgzNaPxm DJCPUWeHg6a5gUe+iRpZXZO0DATW6rCXrqMbHG7/w6R3 -----END CERTIFICATE-----Generated at Fri Nov 22 16:43:36 2024 by rpki-client on console-ams.rpki-client.org