$ rpki-client -vvf repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a653a3a2f34382d3438203d3e203338353234.roa File: 323430313a646538303a653a3a2f34382d3438203d3e203338353234.roa (raw, json) Hash identifier: ltU+Jvx6B8gD32Czu33c35kEDJZL0WMqFoWxiQ/5mNI= Subject key identifier: CB:AE:EE:C5:12:01:9F:E8:F0:0E:35:D7:1A:87:78:0E:F4:07:F4:73 Certificate issuer: /CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Certificate serial: 3B6E345AF82BB661DDB471007C256B0A0DA0DEDC Authority key identifier: 6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a653a3a2f34382d3438203d3e203338353234.roa Signing time: Wed 10 Jul 2024 00:00:01 +0000 ROA not before: Tue 09 Jul 2024 23:55:01 +0000 ROA not after: Wed 09 Jul 2025 00:00:01 +0000 asID: 38524 IP address blocks: 2401:de80:e::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:6e:34:5a:f8:2b:b6:61:dd:b4:71:00:7c:25:6b:0a:0d:a0:de:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Validity Not Before: Jul 9 23:55:01 2024 GMT Not After : Jul 9 00:00:01 2025 GMT Subject: CN=CBAEEEC512019FE8F00E35D71A87780EF407F473 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:40:09:65:a0:8b:6c:db:57:24:2b:7c:8e:df: 0c:0d:2e:bc:67:23:98:01:7a:c7:91:a2:60:30:44: 94:45:21:44:7a:dd:7e:01:41:11:31:fd:32:0c:24: ef:67:7a:78:d4:f8:f9:3f:60:df:d8:de:08:68:fb: 65:97:3a:fb:5a:e0:b6:29:f9:64:8b:fb:72:91:0d: eb:29:6b:9c:46:7f:be:6b:05:a3:6c:28:72:88:f8: 60:97:66:8a:6f:bb:b4:24:4f:4b:7d:49:d1:e9:5f: ea:f0:85:70:e6:18:0a:cd:0e:75:55:d6:91:a0:2d: 05:37:9e:42:55:f7:31:fc:20:67:7a:44:16:90:6a: 87:c8:54:e4:21:3b:87:bf:51:ee:4e:5b:71:75:4d: 0e:07:08:08:65:45:7c:14:23:97:83:be:90:70:c2: d8:1e:07:da:28:ac:bc:65:b7:79:69:35:53:f3:ee: be:a5:5b:f3:5b:ff:f8:c2:14:0d:1f:55:2a:53:79: 7f:d6:79:48:d2:3c:82:eb:ea:99:07:50:eb:3b:7d: 7e:4f:73:c1:68:33:aa:7b:8f:47:c9:3c:1a:e6:54: 8d:15:7e:96:b8:2f:a7:97:55:73:20:fb:49:d0:7c: ef:5d:59:9c:e9:f5:f7:7d:78:c1:4c:00:86:ad:aa: 05:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:AE:EE:C5:12:01:9F:E8:F0:0E:35:D7:1A:87:78:0E:F4:07:F4:73 X509v3 Authority Key Identifier: keyid:6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a653a3a2f34382d3438203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:de80:e::/48 Signature Algorithm: sha256WithRSAEncryption 1d:ad:69:f9:c1:ae:ab:1f:a1:78:26:10:a4:42:10:6b:28:c0: 64:29:6f:5c:94:4a:38:b8:4d:1d:cb:74:62:32:5f:4e:e5:08: cd:41:bb:78:0d:df:70:aa:a7:27:72:23:5b:19:9f:74:7e:34: 37:96:61:e7:92:a0:87:48:f0:f0:98:20:04:68:4f:41:a7:1c: be:38:a4:54:1f:ed:15:71:f3:61:56:ea:85:75:56:b4:9a:af: 98:dc:6e:55:38:f5:97:83:36:13:f4:ec:6f:be:31:2c:f9:0f: 12:46:3c:20:a1:28:c8:78:89:2d:ec:2b:68:d9:1c:00:ee:a3: 0b:86:38:b8:1f:f1:ea:d2:64:d8:c8:2e:3e:e2:fe:ae:84:a8: 08:70:d9:06:43:01:74:e6:db:d3:96:67:90:ce:7f:52:b7:e5: 18:6b:03:4a:a0:01:11:44:8c:65:c4:46:ec:29:8e:29:a3:ac: 29:d3:03:ed:20:13:4b:81:82:1a:2a:70:07:41:d0:95:bc:21: 50:3a:53:21:0e:69:e4:24:aa:0a:5f:fb:41:7a:fc:c1:92:04: 19:4c:8d:70:00:66:a0:9a:c8:47:d1:f8:c4:08:ee:ed:9b:c0: 2b:d9:2a:42:b6:11:64:88:24:cf:ab:11:f7:36:c5:f0:74:0d: 79:4b:20:57 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUO240WvgrtmHdtHEAfCVrCg2g3twwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBD RDI4M0U5QTAeFw0yNDA3MDkyMzU1MDFaFw0yNTA3MDkwMDAwMDFaMDMxMTAvBgNV BAMTKENCQUVFRUM1MTIwMTlGRThGMDBFMzVENzFBODc3ODBFRjQwN0Y0NzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvQAlloIts21ckK3yO3wwNLrxn I5gBeseRomAwRJRFIUR63X4BQREx/TIMJO9nenjU+Pk/YN/Y3gho+2WXOvta4LYp +WSL+3KRDespa5xGf75rBaNsKHKI+GCXZopvu7QkT0t9SdHpX+rwhXDmGArNDnVV 1pGgLQU3nkJV9zH8IGd6RBaQaofIVOQhO4e/Ue5OW3F1TQ4HCAhlRXwUI5eDvpBw wtgeB9oorLxlt3lpNVPz7r6lW/Nb//jCFA0fVSpTeX/WeUjSPILr6pkHUOs7fX5P c8FoM6p7j0fJPBrmVI0Vfpa4L6eXVXMg+0nQfO9dWZzp9fd9eMFMAIatqgUfAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUy67uxRIBn+jwDjXXGod4DvQH9HMwHwYDVR0j BBgwFoAUazOgjWRSSS04/l/GVg33UM0oPpowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZmY5NjlmYy0zOWM3LTQ0Y2QtODcxNi05Y2U0YzZkNWFjOTEvMC82QjMzQTA4RDY0 NTI0OTJEMzhGRTVGQzY1NjBERjc1MENEMjgzRTlBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBDRDI4 M0U5QS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdmZjk2OWZjLTM5YzctNDRjZC04 NzE2LTljZTRjNmQ1YWM5MS8wLzMyMzQzMDMxM2E2NDY1MzgzMDNhNjUzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAHegAAOMA0G CSqGSIb3DQEBCwUAA4IBAQAdrWn5wa6rH6F4JhCkQhBrKMBkKW9clEo4uE0dy3Ri Ml9O5QjNQbt4Dd9wqqcnciNbGZ90fjQ3lmHnkqCHSPDwmCAEaE9Bpxy+OKRUH+0V cfNhVuqFdVa0mq+Y3G5VOPWXgzYT9OxvvjEs+Q8SRjwgoSjIeIkt7Cto2RwA7qML hji4H/Hq0mTYyC4+4v6uhKgIcNkGQwF05tvTlmeQzn9St+UYawNKoAERRIxlxEbs KY4po6wp0wPtIBNLgYIaKnAHQdCVvCFQOlMhDmnkJKoKX/tBevzBkgQZTI1wAGag mshH0fjECO7tm8Ar2SpCthFkiCTPqxH3NsXwdA15SyBX -----END CERTIFICATE-----Generated at Fri Nov 22 17:49:51 2024 by rpki-client on console-fra.rpki-client.org