$ rpki-client -vvf repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a613a3a2f34382d3438203d3e203338353234.roa File: 323430313a646538303a613a3a2f34382d3438203d3e203338353234.roa (raw, json) Hash identifier: S4gQe+7IyRflMWeKaITH46A/QFh0CA7TMbZ4mlwa3Xk= Subject key identifier: 66:10:13:64:4C:97:B2:AC:24:31:A2:26:E0:C0:F9:10:25:F8:0D:BA Certificate issuer: /CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Certificate serial: 53F9FFD638248296C2C43DC57F6A8F54119947BF Authority key identifier: 6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a613a3a2f34382d3438203d3e203338353234.roa Signing time: Wed 10 Jul 2024 01:00:01 +0000 ROA not before: Wed 10 Jul 2024 00:55:01 +0000 ROA not after: Wed 09 Jul 2025 01:00:01 +0000 asID: 38524 IP address blocks: 2401:de80:a::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:f9:ff:d6:38:24:82:96:c2:c4:3d:c5:7f:6a:8f:54:11:99:47:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Validity Not Before: Jul 10 00:55:01 2024 GMT Not After : Jul 9 01:00:01 2025 GMT Subject: CN=661013644C97B2AC2431A226E0C0F91025F80DBA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:03:56:9b:e0:43:fa:8a:6f:ad:bc:e2:ce:b2: 13:19:00:22:da:84:20:4b:1e:11:85:3e:6f:a0:ef: 67:76:eb:70:33:c6:1c:b4:c4:cb:65:9e:a8:f9:89: 2b:da:64:23:ff:36:37:96:f4:47:1e:6d:5b:87:bc: 51:94:40:d2:be:e2:24:2d:86:be:ea:7a:95:de:1b: e8:6a:9f:a8:28:af:94:5c:9f:69:d1:a7:eb:cf:4a: 62:d4:9e:b9:90:41:36:68:84:ff:82:a1:58:c7:a4: 7c:b6:84:a8:79:22:d7:12:72:b6:a7:7e:d7:be:ec: 3d:eb:62:5a:4b:31:81:ea:93:65:a7:65:24:98:d6: 18:05:ca:90:3b:60:23:78:b5:88:2d:ba:be:dc:c4: ec:11:45:41:ff:f5:64:38:fc:08:54:3e:31:58:ca: 77:51:c6:b0:ab:c2:48:70:f7:74:d6:a2:0b:f9:49: 99:7f:4e:52:0c:f6:65:f5:8d:a2:94:b1:f5:77:df: 9a:fb:0d:85:0b:64:64:00:c4:f7:74:2d:55:f8:ca: 4b:dd:54:fd:e9:99:5e:f5:94:88:16:f2:9f:fe:e2: e2:5e:75:6b:fb:ef:e6:30:a2:20:f8:90:d2:cb:ba: 0d:af:9e:55:ec:4d:52:b9:f9:e4:26:4c:b6:8d:ef: 6b:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:10:13:64:4C:97:B2:AC:24:31:A2:26:E0:C0:F9:10:25:F8:0D:BA X509v3 Authority Key Identifier: keyid:6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a613a3a2f34382d3438203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:de80:a::/48 Signature Algorithm: sha256WithRSAEncryption 4c:d9:69:b9:54:92:fb:77:e0:da:6f:ef:c8:95:47:5b:b1:9d: 85:a3:d6:dc:f5:8f:ca:81:21:1a:6e:64:a3:d6:46:78:aa:19: ca:a2:9f:07:92:b2:6c:9d:73:4f:85:1e:39:09:3f:23:a4:3c: 9f:cf:3f:f7:d7:8c:6c:fa:30:6e:f0:6a:62:e4:68:6a:aa:18: 24:cb:c5:69:f4:81:8d:61:b1:9b:4d:ca:e1:02:e6:81:70:6e: dc:01:03:98:c7:16:67:6e:67:50:8b:65:95:19:cd:00:4a:f5: 51:ef:01:98:fa:5d:41:80:80:b4:41:0c:4d:5b:93:b0:96:4d: db:dc:07:68:44:34:50:69:56:ba:94:d3:11:ad:1c:21:9a:ab: 5c:d1:39:2b:eb:e7:94:7c:cb:43:6a:90:38:59:e6:3c:1c:08: 16:64:33:ab:2c:d8:c0:b0:ed:ee:f6:00:ef:5b:9b:b7:d1:54: 3c:82:40:01:4a:cb:ad:c8:5a:12:df:95:09:5b:41:6d:40:1e: e4:cc:b3:8a:62:cf:78:b9:68:db:96:94:9e:62:af:33:02:8d: d7:7d:57:c7:0c:70:c8:a9:cb:e6:1a:3a:36:5e:8c:ed:07:98: 4b:b1:de:d5:1c:b9:0d:0a:b5:72:ab:49:66:e5:d2:ad:ac:46: 15:71:60:98 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUU/n/1jgkgpbCxD3Ff2qPVBGZR78wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBD RDI4M0U5QTAeFw0yNDA3MTAwMDU1MDFaFw0yNTA3MDkwMTAwMDFaMDMxMTAvBgNV BAMTKDY2MTAxMzY0NEM5N0IyQUMyNDMxQTIyNkUwQzBGOTEwMjVGODBEQkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3A1ab4EP6im+tvOLOshMZACLa hCBLHhGFPm+g72d263Azxhy0xMtlnqj5iSvaZCP/NjeW9EcebVuHvFGUQNK+4iQt hr7qepXeG+hqn6gor5Rcn2nRp+vPSmLUnrmQQTZohP+CoVjHpHy2hKh5ItcScran fte+7D3rYlpLMYHqk2WnZSSY1hgFypA7YCN4tYgtur7cxOwRRUH/9WQ4/AhUPjFY yndRxrCrwkhw93TWogv5SZl/TlIM9mX1jaKUsfV335r7DYULZGQAxPd0LVX4ykvd VP3pmV71lIgW8p/+4uJedWv77+YwoiD4kNLLug2vnlXsTVK5+eQmTLaN72stAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUZhATZEyXsqwkMaIm4MD5ECX4DbowHwYDVR0j BBgwFoAUazOgjWRSSS04/l/GVg33UM0oPpowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZmY5NjlmYy0zOWM3LTQ0Y2QtODcxNi05Y2U0YzZkNWFjOTEvMC82QjMzQTA4RDY0 NTI0OTJEMzhGRTVGQzY1NjBERjc1MENEMjgzRTlBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBDRDI4 M0U5QS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdmZjk2OWZjLTM5YzctNDRjZC04 NzE2LTljZTRjNmQ1YWM5MS8wLzMyMzQzMDMxM2E2NDY1MzgzMDNhNjEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAHegAAKMA0G CSqGSIb3DQEBCwUAA4IBAQBM2Wm5VJL7d+Dab+/IlUdbsZ2Fo9bc9Y/KgSEabmSj 1kZ4qhnKop8HkrJsnXNPhR45CT8jpDyfzz/314xs+jBu8Gpi5Ghqqhgky8Vp9IGN YbGbTcrhAuaBcG7cAQOYxxZnbmdQi2WVGc0ASvVR7wGY+l1BgIC0QQxNW5Owlk3b 3AdoRDRQaVa6lNMRrRwhmqtc0Tkr6+eUfMtDapA4WeY8HAgWZDOrLNjAsO3u9gDv W5u30VQ8gkABSsutyFoS35UJW0FtQB7kzLOKYs94uWjblpSeYq8zAo3XfVfHDHDI qcvmGjo2XoztB5hLsd7VHLkNCrVyq0lm5dKtrEYVcWCY -----END CERTIFICATE-----Generated at Fri Nov 22 17:49:51 2024 by rpki-client on console-fra.rpki-client.org