$ rpki-client -vvf repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a3a2f33322d3332203d3e203338353234.roa File: 323430313a646538303a3a2f33322d3332203d3e203338353234.roa (raw, json) Hash identifier: WTRqdt3BD45JW1otgrSnnjqf2SqqTVgV/BsrwEKjF8c= Subject key identifier: 97:CB:CA:33:AC:E6:A3:27:AE:9F:20:62:9E:8C:FD:38:40:7F:D1:04 Certificate issuer: /CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Certificate serial: 02CCF427446043CAE6AEEC75F7247BF0218AA440 Authority key identifier: 6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a3a2f33322d3332203d3e203338353234.roa Signing time: Mon 01 Jul 2024 01:03:44 +0000 ROA not before: Mon 01 Jul 2024 00:58:44 +0000 ROA not after: Mon 30 Jun 2025 01:03:44 +0000 asID: 38524 IP address blocks: 2401:de80::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:cc:f4:27:44:60:43:ca:e6:ae:ec:75:f7:24:7b:f0:21:8a:a4:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Validity Not Before: Jul 1 00:58:44 2024 GMT Not After : Jun 30 01:03:44 2025 GMT Subject: CN=97CBCA33ACE6A327AE9F20629E8CFD38407FD104 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:36:76:b5:98:96:58:d7:ef:f2:86:b3:55:e3: c9:a5:9c:7b:03:b6:72:81:12:1f:47:25:20:fe:b3: 59:8e:7e:0f:3f:e3:50:e8:69:e4:aa:93:9b:b8:c9: e6:4d:e7:c6:5a:e7:eb:fc:36:dd:94:b9:7f:fb:3d: f9:9d:29:1d:ca:78:d0:f7:8c:a7:73:98:b5:70:14: 42:02:a4:54:fd:59:84:cb:fb:1d:4e:7e:16:09:0f: 44:1a:b4:68:cf:09:41:f0:fd:2e:c8:3f:56:16:2f: e5:aa:94:de:99:fa:b3:b5:a9:04:57:9d:f1:cd:63: e7:67:cb:8c:8c:b6:a8:a2:13:59:eb:8b:a1:06:e4: 74:7c:2b:ec:ba:21:e1:02:13:29:b6:08:a0:62:a3: f7:bc:62:e8:7d:3c:bb:2c:a8:4b:d6:cd:4e:81:72: 7e:28:20:59:03:12:7b:9d:4b:fa:bd:14:25:1b:de: bd:af:a1:fb:a5:9b:10:17:f5:a3:28:a1:34:39:25: f0:0f:87:c6:82:07:10:3f:73:4c:0b:7e:79:3f:67: 82:1b:eb:fb:54:cb:c2:ff:d4:00:86:02:60:c7:38: 30:da:7e:38:51:aa:d6:c4:fe:88:af:75:ae:a4:9e: 92:ea:6a:2b:e0:0d:b0:75:ea:68:a7:0b:65:ec:db: f2:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:CB:CA:33:AC:E6:A3:27:AE:9F:20:62:9E:8C:FD:38:40:7F:D1:04 X509v3 Authority Key Identifier: keyid:6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a3a2f33322d3332203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:de80::/32 Signature Algorithm: sha256WithRSAEncryption 65:ae:24:a0:10:dc:9e:58:c0:47:6e:28:db:89:c9:79:ab:82: 65:44:15:1b:2a:b8:be:05:83:00:08:4c:bd:62:11:f5:11:34: b2:f3:c7:06:a7:bb:84:40:dd:2f:ff:54:c9:e4:9a:1a:d6:57: 35:7b:1a:dc:c8:37:69:f5:db:d4:3c:d5:06:5c:6a:82:9d:3c: 55:ca:aa:60:12:87:83:ad:1e:e7:97:b1:d5:cb:ff:c7:b5:5f: 7e:be:4d:9f:78:02:b9:c7:48:aa:87:64:a5:8d:22:3f:40:22: 41:6c:30:cc:bc:e7:fa:7b:b5:2a:9c:ac:2b:d1:1e:4b:6d:a0: 0c:2d:d8:14:13:e3:8e:43:7b:0c:4c:e7:7f:31:c2:a7:36:da: 0a:8c:30:1f:4d:5c:b9:43:b9:7b:3c:e5:95:62:29:c6:af:68: 70:4d:1f:b5:05:1e:2f:40:35:c3:7b:e3:03:51:c4:c0:e5:b8: 3f:ed:fa:b1:25:46:5f:23:8a:92:41:9f:94:23:e2:6a:25:6a: 0f:23:63:3e:25:00:e8:2c:ec:cd:aa:9c:86:c7:5b:b9:1b:8b: 11:ce:14:6c:b2:3e:6a:ec:7a:6c:be:75:bb:f5:82:ec:bd:ff: 7f:03:b3:b6:fb:eb:25:bb:af:25:5c:45:3a:e4:38:9f:44:e4: fb:79:1d:91 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUAsz0J0RgQ8rmrux19yR78CGKpEAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBD RDI4M0U5QTAeFw0yNDA3MDEwMDU4NDRaFw0yNTA2MzAwMTAzNDRaMDMxMTAvBgNV BAMTKDk3Q0JDQTMzQUNFNkEzMjdBRTlGMjA2MjlFOENGRDM4NDA3RkQxMDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcNna1mJZY1+/yhrNV48mlnHsD tnKBEh9HJSD+s1mOfg8/41DoaeSqk5u4yeZN58Za5+v8Nt2UuX/7PfmdKR3KeND3 jKdzmLVwFEICpFT9WYTL+x1OfhYJD0QatGjPCUHw/S7IP1YWL+WqlN6Z+rO1qQRX nfHNY+dny4yMtqiiE1nri6EG5HR8K+y6IeECEym2CKBio/e8Yuh9PLssqEvWzU6B cn4oIFkDEnudS/q9FCUb3r2vofulmxAX9aMooTQ5JfAPh8aCBxA/c0wLfnk/Z4Ib 6/tUy8L/1ACGAmDHODDafjhRqtbE/oivda6knpLqaivgDbB16minC2Xs2/KfAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUl8vKM6zmoyeunyBinoz9OEB/0QQwHwYDVR0j BBgwFoAUazOgjWRSSS04/l/GVg33UM0oPpowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZmY5NjlmYy0zOWM3LTQ0Y2QtODcxNi05Y2U0YzZkNWFjOTEvMC82QjMzQTA4RDY0 NTI0OTJEMzhGRTVGQzY1NjBERjc1MENEMjgzRTlBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBDRDI4 M0U5QS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdmZjk2OWZjLTM5YzctNDRjZC04 NzE2LTljZTRjNmQ1YWM5MS8wLzMyMzQzMDMxM2E2NDY1MzgzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMzMzgzNTMyMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAd6AMA0GCSqGSIb3 DQEBCwUAA4IBAQBlriSgENyeWMBHbijbicl5q4JlRBUbKri+BYMACEy9YhH1ETSy 88cGp7uEQN0v/1TJ5Joa1lc1exrcyDdp9dvUPNUGXGqCnTxVyqpgEoeDrR7nl7HV y//HtV9+vk2feAK5x0iqh2SljSI/QCJBbDDMvOf6e7UqnKwr0R5LbaAMLdgUE+OO Q3sMTOd/McKnNtoKjDAfTVy5Q7l7POWVYinGr2hwTR+1BR4vQDXDe+MDUcTA5bg/ 7fqxJUZfI4qSQZ+UI+JqJWoPI2M+JQDoLOzNqpyGx1u5G4sRzhRssj5q7HpsvnW7 9YLsvf9/A7O2++slu68lXEU65DifROT7eR2R -----END CERTIFICATE-----Generated at Fri Nov 22 17:49:51 2024 by rpki-client on console-fra.rpki-client.org