$ rpki-client -vvf repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a363030303a3a2f33352d3335203d3e20313331373439.roa File: 323430323a626538303a363030303a3a2f33352d3335203d3e20313331373439.roa (raw, json) Hash identifier: Khe2nDYLkpwBHCG0WqukUTDY42ecqXWqwYq9Z8AO0ts= Subject key identifier: 4E:68:E9:B0:87:1B:8A:34:BC:42:94:54:06:A0:61:FD:A8:EC:43:23 Certificate issuer: /CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Certificate serial: 36CE85977A7969100D9493145E11E42FBC5D026B Authority key identifier: 10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a363030303a3a2f33352d3335203d3e20313331373439.roa Signing time: Mon 31 Jul 2023 00:03:03 +0000 ROA not before: Sun 30 Jul 2023 23:58:03 +0000 ROA not after: Mon 29 Jul 2024 00:03:03 +0000 asID: 131749 IP address blocks: 2402:be80:6000::/35 maxlen: 35 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Apr 2024 20:55:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:ce:85:97:7a:79:69:10:0d:94:93:14:5e:11:e4:2f:bc:5d:02:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Validity Not Before: Jul 30 23:58:03 2023 GMT Not After : Jul 29 00:03:03 2024 GMT Subject: CN=4E68E9B0871B8A34BC42945406A061FDA8EC4323 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:fe:12:08:99:b7:db:71:9c:03:dc:11:33:70: f3:b9:70:d5:61:26:43:f0:e2:24:a2:96:7a:82:ff: f2:0b:ad:61:ee:d2:9e:7a:53:48:3b:95:56:cf:f8: 1a:9d:90:48:43:88:33:ce:5a:ee:7b:1f:9f:a9:15: 56:66:ea:dc:02:d4:2f:62:3f:e6:e0:82:36:d8:1d: 22:76:ed:7b:aa:9a:e7:10:94:78:6a:bb:55:52:0a: 54:57:2f:ac:a6:b1:40:67:d9:ae:62:87:e1:4f:6e: 03:2f:f6:53:91:6f:4f:1b:52:86:50:a9:7a:22:f4: 15:cc:59:f7:cd:7f:9a:63:86:1b:d5:e8:ef:59:b3: a0:a9:89:b6:69:1a:b6:30:01:73:18:78:7c:60:14: 51:f0:4a:b8:40:87:f9:28:97:23:47:bb:c7:d7:5a: 8c:3b:41:d1:a4:37:58:55:94:78:eb:3f:91:39:6b: 88:2d:d6:75:a1:21:4f:d2:29:c2:5b:01:ab:7d:ad: 00:2a:69:f2:87:aa:69:e5:25:db:fe:1e:70:34:a4: ab:b6:a5:69:6f:22:3e:30:ab:84:b4:95:db:6c:b0: a3:e7:70:ad:c8:8a:94:67:16:f8:b2:27:d1:01:1e: b4:fa:98:94:30:38:7f:0f:02:9a:67:13:6c:cf:90: 3c:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:68:E9:B0:87:1B:8A:34:BC:42:94:54:06:A0:61:FD:A8:EC:43:23 X509v3 Authority Key Identifier: keyid:10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a363030303a3a2f33352d3335203d3e20313331373439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:be80:6000::/35 Signature Algorithm: sha256WithRSAEncryption 5e:49:db:ce:d5:c3:46:c1:c4:67:ea:3a:34:a0:93:d0:10:36: de:59:90:1d:9f:fb:e4:78:77:cf:3b:e5:aa:4c:02:56:6e:c3: 89:39:21:f0:e7:d8:f6:db:f1:fa:5f:58:f8:93:78:59:2a:e4: 5d:53:70:29:f2:fa:50:87:a1:11:5c:06:bf:4f:1b:9c:8f:0a: 98:ad:44:8a:5e:05:c8:e8:80:f6:d1:9b:23:06:30:a0:b7:2e: c6:27:68:13:03:db:fe:57:be:df:91:fc:44:6f:ff:e6:90:48: 42:a4:38:aa:d9:b8:56:76:80:58:51:a8:09:29:75:68:07:ab: 60:70:8f:3e:87:2b:cd:94:da:31:17:77:bf:c5:ab:ef:95:0f: e1:8a:32:cf:3f:22:49:90:46:32:f0:4e:8e:b3:86:e0:2d:d7: e7:17:8f:66:25:1b:2a:31:af:31:67:2f:de:64:d1:b5:ec:27: 85:ca:38:87:78:0c:fc:34:41:75:b8:cd:90:dd:e5:40:9a:61: 80:f9:16:57:cc:82:29:a6:6a:0c:2a:9c:6f:e6:19:c4:e9:69: 04:2b:88:7b:64:2d:2c:73:ce:fb:58:27:ff:77:22:29:bd:a3: 7e:9e:96:68:0c:f7:18:40:69:0b:83:30:91:46:9d:78:ad:53: 35:5f:e8:63 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUNs6Fl3p5aRANlJMUXhHkL7xdAmswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5 NTIyNDZGRjAeFw0yMzA3MzAyMzU4MDNaFw0yNDA3MjkwMDAzMDNaMDMxMTAvBgNV BAMTKDRFNjhFOUIwODcxQjhBMzRCQzQyOTQ1NDA2QTA2MUZEQThFQzQzMjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC//hIImbfbcZwD3BEzcPO5cNVh JkPw4iSilnqC//ILrWHu0p56U0g7lVbP+BqdkEhDiDPOWu57H5+pFVZm6twC1C9i P+bggjbYHSJ27XuqmucQlHhqu1VSClRXL6ymsUBn2a5ih+FPbgMv9lORb08bUoZQ qXoi9BXMWffNf5pjhhvV6O9Zs6CpibZpGrYwAXMYeHxgFFHwSrhAh/kolyNHu8fX Wow7QdGkN1hVlHjrP5E5a4gt1nWhIU/SKcJbAat9rQAqafKHqmnlJdv+HnA0pKu2 pWlvIj4wq4S0ldtssKPncK3IipRnFviyJ9EBHrT6mJQwOH8PAppnE2zPkDwtAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUTmjpsIcbijS8QpRUBqBh/ajsQyMwHwYDVR0j BBgwFoAUEP41sEDoo9BeW+m+5PCmNpUiRv8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MDBmNGYzNy1jN2ZiLTQ3ZDAtOGE4NS1lY2ZkMTJiOTE1ZjUvMC8xMEZFMzVCMDQw RThBM0QwNUU1QkU5QkVFNEYwQTYzNjk1MjI0NkZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5NTIy NDZGRi5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMwMGY0ZjM3LWM3ZmItNDdkMC04 YTg1LWVjZmQxMmI5MTVmNS8wLzMyMzQzMDMyM2E2MjY1MzgzMDNhMzYzMDMwMzAz YTNhMmYzMzM1MmQzMzM1MjAzZDNlMjAzMTMzMzEzNzM0Mzkucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgUk Ar6AYDANBgkqhkiG9w0BAQsFAAOCAQEAXknbztXDRsHEZ+o6NKCT0BA23lmQHZ/7 5Hh3zzvlqkwCVm7DiTkh8OfY9tvx+l9Y+JN4WSrkXVNwKfL6UIehEVwGv08bnI8K mK1Eil4FyOiA9tGbIwYwoLcuxidoEwPb/le+35H8RG//5pBIQqQ4qtm4VnaAWFGo CSl1aAerYHCPPocrzZTaMRd3v8Wr75UP4Yoyzz8iSZBGMvBOjrOG4C3X5xePZiUb KjGvMWcv3mTRtewnhco4h3gM/DRBdbjNkN3lQJphgPkWV8yCKaZqDCqcb+YZxOlp BCuIe2QtLHPO+1gn/3ciKb2jfp6WaAz3GEBpC4MwkUadeK1TNV/oYw== -----END CERTIFICATE-----Generated at Fri Apr 19 13:15:05 2024 by rpki-client on console-ams.rpki-client.org