$ rpki-client -vvf repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a663a3a2f34382d3438203d3e203338353234.roa File: 323430313a646538303a663a3a2f34382d3438203d3e203338353234.roa (raw, json) Hash identifier: SbU/LBQhPM3a8lHQUgrKnyIn6Qy6uX0FiiHBT2tpw4k= Subject key identifier: 28:DF:01:94:C8:61:48:F5:03:31:DC:E0:EC:39:9B:A6:E5:88:C6:1B Certificate issuer: /CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Certificate serial: 0256E25CD095A22F46A1C66E4545DB6B85D21533 Authority key identifier: 6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a663a3a2f34382d3438203d3e203338353234.roa Signing time: Tue 09 Jul 2024 22:00:01 +0000 ROA not before: Tue 09 Jul 2024 21:55:01 +0000 ROA not after: Tue 08 Jul 2025 22:00:01 +0000 asID: 38524 IP address blocks: 2401:de80:f::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:56:e2:5c:d0:95:a2:2f:46:a1:c6:6e:45:45:db:6b:85:d2:15:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B33A08D6452492D38FE5FC6560DF750CD283E9A Validity Not Before: Jul 9 21:55:01 2024 GMT Not After : Jul 8 22:00:01 2025 GMT Subject: CN=28DF0194C86148F50331DCE0EC399BA6E588C61B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:2f:11:f1:f5:30:0e:5d:84:b6:9a:05:04:5d: 76:65:06:17:38:cd:e8:aa:00:35:50:3b:74:5e:75: 2e:e7:97:09:b3:77:f9:90:ae:13:38:f4:af:26:a5: e5:97:c7:1c:fa:f3:3c:f3:36:ba:4f:0a:db:32:9d: 7d:2b:83:00:ba:20:5a:41:2a:6d:76:5e:11:02:f1: b0:23:3e:9e:24:75:2e:fc:2e:18:37:3a:dc:99:f3: 1c:80:35:08:9a:e9:aa:c6:c7:ce:83:86:26:08:9f: b1:2f:47:09:e9:9e:87:cf:7d:30:6a:5b:8a:79:57: ae:b6:27:b1:6c:cb:d8:b6:49:66:b4:ec:f5:e4:e8: c7:ef:6f:19:5f:30:96:b6:fd:71:59:e6:17:25:6d: 4a:8c:82:03:4b:27:43:0c:84:02:62:95:d7:37:33: 47:a0:98:17:18:2b:54:0f:e2:70:a8:60:25:f6:8a: e5:da:a4:82:c7:83:53:0b:c4:d4:b5:a4:c8:74:1c: 8c:04:df:d6:06:0e:32:4d:c1:66:57:6d:f1:69:03: c2:3d:6b:05:13:8e:a3:e3:e2:2e:e6:bb:33:09:8f: c4:cf:17:f2:d3:08:9a:08:1d:f8:90:ee:e3:d5:f6: 50:f7:60:02:87:61:07:de:96:53:06:f5:3e:de:43: 62:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:DF:01:94:C8:61:48:F5:03:31:DC:E0:EC:39:9B:A6:E5:88:C6:1B X509v3 Authority Key Identifier: keyid:6B:33:A0:8D:64:52:49:2D:38:FE:5F:C6:56:0D:F7:50:CD:28:3E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/6B33A08D6452492D38FE5FC6560DF750CD283E9A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B33A08D6452492D38FE5FC6560DF750CD283E9A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/323430313a646538303a663a3a2f34382d3438203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:de80:f::/48 Signature Algorithm: sha256WithRSAEncryption ac:31:71:96:4e:6d:17:78:db:71:30:59:95:ba:7c:bd:05:12: 0b:df:77:ca:87:cf:53:02:a7:b9:80:46:07:42:e9:7b:60:c3: 18:df:2d:17:50:60:9f:12:1c:b3:20:eb:46:61:5d:e4:58:6c: 46:4a:07:1f:ee:8a:77:5b:14:e4:2b:b9:95:fa:11:90:9d:f5: b9:5f:18:e7:55:f3:e9:12:d6:3b:af:e1:76:a6:0c:9f:9e:7b: 7e:f9:e9:ea:4b:12:50:eb:81:69:9a:75:d3:d5:7b:07:df:5a: 7e:f4:e4:85:00:99:62:b2:64:4a:d9:22:6e:de:92:7a:39:06: 2e:20:ad:9f:88:ae:2e:e8:47:64:ff:fe:ae:2e:08:14:41:60: f5:6e:10:7a:a5:4a:b1:ad:5b:da:bf:28:7a:00:3c:6a:f8:f4: a2:ee:f1:3c:55:90:f1:c2:31:78:bb:61:53:67:e3:e9:b1:5c: 4e:ca:50:8c:16:fe:ee:c8:65:90:92:f3:da:e1:2d:ab:1f:10: d3:bc:fa:40:aa:26:00:61:29:5e:c6:95:c6:98:6a:d2:63:75: 10:f0:ee:1a:22:c3:b9:ac:9b:68:b9:d4:ec:f7:e0:f4:f9:f5: 97:87:eb:a8:08:c8:94:68:69:1c:51:7d:9a:69:d5:c2:49:1f: 97:59:8c:8d -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUAlbiXNCVoi9GocZuRUXba4XSFTMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBD RDI4M0U5QTAeFw0yNDA3MDkyMTU1MDFaFw0yNTA3MDgyMjAwMDFaMDMxMTAvBgNV BAMTKDI4REYwMTk0Qzg2MTQ4RjUwMzMxRENFMEVDMzk5QkE2RTU4OEM2MUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFLxHx9TAOXYS2mgUEXXZlBhc4 zeiqADVQO3RedS7nlwmzd/mQrhM49K8mpeWXxxz68zzzNrpPCtsynX0rgwC6IFpB Km12XhEC8bAjPp4kdS78Lhg3OtyZ8xyANQia6arGx86DhiYIn7EvRwnpnofPfTBq W4p5V662J7Fsy9i2SWa07PXk6MfvbxlfMJa2/XFZ5hclbUqMggNLJ0MMhAJildc3 M0egmBcYK1QP4nCoYCX2iuXapILHg1MLxNS1pMh0HIwE39YGDjJNwWZXbfFpA8I9 awUTjqPj4i7muzMJj8TPF/LTCJoIHfiQ7uPV9lD3YAKHYQfellMG9T7eQ2LzAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUKN8BlMhhSPUDMdzg7DmbpuWIxhswHwYDVR0j BBgwFoAUazOgjWRSSS04/l/GVg33UM0oPpowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZmY5NjlmYy0zOWM3LTQ0Y2QtODcxNi05Y2U0YzZkNWFjOTEvMC82QjMzQTA4RDY0 NTI0OTJEMzhGRTVGQzY1NjBERjc1MENEMjgzRTlBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkIzM0EwOEQ2NDUyNDkyRDM4RkU1RkM2NTYwREY3NTBDRDI4 M0U5QS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdmZjk2OWZjLTM5YzctNDRjZC04 NzE2LTljZTRjNmQ1YWM5MS8wLzMyMzQzMDMxM2E2NDY1MzgzMDNhNjYzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAHegAAPMA0G CSqGSIb3DQEBCwUAA4IBAQCsMXGWTm0XeNtxMFmVuny9BRIL33fKh89TAqe5gEYH Qul7YMMY3y0XUGCfEhyzIOtGYV3kWGxGSgcf7op3WxTkK7mV+hGQnfW5XxjnVfPp EtY7r+F2pgyfnnt++enqSxJQ64FpmnXT1XsH31p+9OSFAJlismRK2SJu3pJ6OQYu IK2fiK4u6Edk//6uLggUQWD1bhB6pUqxrVvavyh6ADxq+PSi7vE8VZDxwjF4u2FT Z+PpsVxOylCMFv7uyGWQkvPa4S2rHxDTvPpAqiYAYSlexpXGmGrSY3UQ8O4aIsO5 rJtoudTs9+D0+fWXh+uoCMiUaGkcUX2aadXCSR+XWYyN -----END CERTIFICATE-----Generated at Fri Nov 22 16:43:36 2024 by rpki-client on console-ams.rpki-client.org