$ rpki-client -vvf repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a643a3a2f34382d3438203d3e203338353234.roa File: 323430313a646538303a643a3a2f34382d3438203d3e203338353234.roa (raw, json) Hash identifier: +keSWamBm/FZ4+nkVb1xDa+SiV3g0FY94fDJY9FmGOs= Subject key identifier: 1C:DE:CB:FB:6E:D0:D2:9F:92:0A:5B:A4:44:4A:D9:51:7D:9C:92:93 Certificate issuer: /CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Certificate serial: 1CC0C28EE0939FDF7B5B1FA406092AA37C982E1E Authority key identifier: 6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a643a3a2f34382d3438203d3e203338353234.roa Signing time: Wed 10 Jul 2024 00:00:01 +0000 ROA not before: Tue 09 Jul 2024 23:55:01 +0000 ROA not after: Wed 09 Jul 2025 00:00:01 +0000 asID: 38524 IP address blocks: 2401:de80:d::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:c0:c2:8e:e0:93:9f:df:7b:5b:1f:a4:06:09:2a:a3:7c:98:2e:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Validity Not Before: Jul 9 23:55:01 2024 GMT Not After : Jul 9 00:00:01 2025 GMT Subject: CN=1CDECBFB6ED0D29F920A5BA4444AD9517D9C9293 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:4a:40:fa:72:ab:3f:47:43:b8:c0:2f:ea:01: a6:ef:a6:25:b8:f5:11:39:30:b0:6e:4f:15:03:b9: 82:1b:a4:06:48:0f:eb:50:dc:c5:6a:1e:c0:3a:fa: eb:43:2b:5c:a0:2a:92:27:77:6c:e0:cc:84:a6:e3: 89:63:bd:db:70:3e:5f:88:2c:98:4f:d4:e3:37:5a: a5:0b:ad:a5:e5:d8:e6:b1:1c:ea:88:19:29:fb:b8: c8:44:ae:df:7e:8d:b2:de:63:06:8b:69:9c:45:c5: 47:97:ef:f4:5e:08:61:c5:4c:f0:56:82:21:06:b5: a2:9b:05:7d:85:de:3c:02:6a:1e:89:1b:40:ef:43: 34:3f:88:a8:84:d2:35:93:c7:d5:f5:5b:0b:2e:16: 78:78:49:b9:ed:5b:17:ae:f4:4f:11:80:49:fd:73: 19:c6:ed:d5:f9:08:0f:54:48:20:52:dd:c6:52:68: c2:fc:cb:51:33:70:97:e8:dc:b2:91:7b:59:b4:d7: 59:63:26:ba:62:6d:f7:a8:a0:59:28:6f:5f:27:2e: 66:a3:fc:fd:d7:61:72:31:68:d0:05:57:71:72:23: 4d:db:80:df:02:7f:a1:c0:96:45:fc:ab:a4:61:6a: b1:a4:53:16:0d:c1:f9:ba:77:c0:26:31:f0:20:ff: ac:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:DE:CB:FB:6E:D0:D2:9F:92:0A:5B:A4:44:4A:D9:51:7D:9C:92:93 X509v3 Authority Key Identifier: keyid:6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a643a3a2f34382d3438203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:de80:d::/48 Signature Algorithm: sha256WithRSAEncryption 63:c8:00:1b:3e:11:4b:c0:b7:21:d5:f4:41:60:95:1a:fd:85: 4c:16:6f:6d:c8:15:45:0f:7a:f5:c8:69:70:73:6b:2d:c1:17: 82:f7:4e:30:06:f0:17:33:e3:1d:e3:43:78:1e:64:5e:9d:57: 5b:1f:95:ff:7f:22:10:0e:d3:40:b3:af:7f:df:a7:2d:db:87: 89:32:18:1c:cb:bf:61:ba:77:ad:5e:3f:7d:5e:4b:06:a4:0e: 76:73:bc:ae:88:c0:ec:51:db:96:91:91:14:44:cc:48:4d:9c: f9:d6:31:1e:2a:51:e7:75:a3:a9:be:26:31:32:ad:07:33:48: 10:8d:7b:61:c6:75:ad:5e:04:1e:7a:b4:e9:4d:9c:96:68:04: 98:dc:c4:42:6c:d0:f2:ca:45:4a:3b:17:ca:01:c4:0c:ab:28: 44:ec:6c:bb:77:89:3d:1e:c9:0c:c4:63:1c:bf:34:ca:d5:19: 33:db:c9:80:b6:ba:2c:7b:34:1d:7e:44:4e:18:02:70:7f:13: 83:7d:ae:f9:dd:e3:d1:2d:83:1b:31:47:4a:94:8c:f2:a8:9d: 02:12:d6:d7:a7:a1:dd:31:b3:8c:dd:94:0e:2b:72:19:08:30: 63:ab:bc:a7:7a:9a:cd:5f:6d:54:07:51:0f:e0:af:29:54:1c: d9:19:c8:97 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUHMDCjuCTn997Wx+kBgkqo3yYLh4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBD RDI4M0U5QTAeFw0yNDA3MDkyMzU1MDFaFw0yNTA3MDkwMDAwMDFaMDMxMTAvBgNV BAMTKDFDREVDQkZCNkVEMEQyOUY5MjBBNUJBNDQ0NEFEOTUxN0Q5QzkyOTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChSkD6cqs/R0O4wC/qAabvpiW4 9RE5MLBuTxUDuYIbpAZID+tQ3MVqHsA6+utDK1ygKpInd2zgzISm44ljvdtwPl+I LJhP1OM3WqULraXl2OaxHOqIGSn7uMhErt9+jbLeYwaLaZxFxUeX7/ReCGHFTPBW giEGtaKbBX2F3jwCah6JG0DvQzQ/iKiE0jWTx9X1WwsuFnh4SbntWxeu9E8RgEn9 cxnG7dX5CA9USCBS3cZSaML8y1EzcJfo3LKRe1m011ljJrpibfeooFkob18nLmaj /P3XYXIxaNAFV3FyI03bgN8Cf6HAlkX8q6RharGkUxYNwfm6d8AmMfAg/6xPAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUHN7L+27Q0p+SClukRErZUX2ckpMwHwYDVR0j BBgwFoAUazOgjWRSSS04/l/GVg33UM0oPpowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZmY5NjlmYy0zOWM3LTQ0Y2QtODcxNi05Y2U0YzZkNWFjOTEvMC82QjMzQTA4RDY0 NTI0OTJEMzhGRTVGQzY1NjBERjc1MENEMjgzRTlBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBDRDI4 M0U5QS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdmZjk2OWZjLTM5YzctNDRjZC04 NzE2LTljZTRjNmQ1YWM5MS8wLzMyMzQzMDMxM2E2NDY1MzgzMDNhNjQzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAHegAANMA0G CSqGSIb3DQEBCwUAA4IBAQBjyAAbPhFLwLch1fRBYJUa/YVMFm9tyBVFD3r1yGlw c2stwReC904wBvAXM+Md40N4HmRenVdbH5X/fyIQDtNAs69/36ct24eJMhgcy79h unetXj99XksGpA52c7yuiMDsUduWkZEURMxITZz51jEeKlHndaOpviYxMq0HM0gQ jXthxnWtXgQeerTpTZyWaASY3MRCbNDyykVKOxfKAcQMqyhE7Gy7d4k9HskMxGMc vzTK1Rkz28mAtrosezQdfkROGAJwfxODfa753ePRLYMbMUdKlIzyqJ0CEtbXp6Hd MbOM3ZQOK3IZCDBjq7yneprNX21UB1EP4K8pVBzZGciX -----END CERTIFICATE-----Generated at Fri Nov 22 17:49:51 2024 by rpki-client on console-fra.rpki-client.org