$ rpki-client -vvf repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a383030303a3a2f33342d3334203d3e20313331373439.roa File: 323430323a626538303a383030303a3a2f33342d3334203d3e20313331373439.roa (raw, json) Hash identifier: 2uWWgMBXaetm1C12aXnRO25Ah7wdcRWFqlAFeewighE= Subject key identifier: BD:F0:2A:7E:09:BA:06:4F:9D:55:E7:21:30:3B:6C:95:3D:AA:4F:7C Certificate issuer: /CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Certificate serial: 1A271C8D84C143904767E53C1F61ADA531C718E3 Authority key identifier: 10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a383030303a3a2f33342d3334203d3e20313331373439.roa Signing time: Wed 20 Sep 2023 02:00:00 +0000 ROA not before: Wed 20 Sep 2023 01:55:00 +0000 ROA not after: Wed 18 Sep 2024 02:00:00 +0000 asID: 131749 IP address blocks: 2402:be80:8000::/34 maxlen: 34 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Apr 2024 20:55:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:27:1c:8d:84:c1:43:90:47:67:e5:3c:1f:61:ad:a5:31:c7:18:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Validity Not Before: Sep 20 01:55:00 2023 GMT Not After : Sep 18 02:00:00 2024 GMT Subject: CN=BDF02A7E09BA064F9D55E721303B6C953DAA4F7C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:86:06:05:b0:66:b5:4b:42:ed:f0:ae:69:b6: 15:2b:c4:e8:74:60:57:0b:9f:4e:a9:7a:3f:68:b1: 80:54:7d:0f:15:cd:6b:3c:0e:c7:c2:ce:49:58:81: 63:48:55:22:0f:75:76:51:86:f2:ab:55:9b:23:17: c1:4e:52:f9:e3:cc:a7:40:9e:ec:36:e2:9f:e2:15: 9e:e2:de:1c:00:f7:bb:43:05:6a:56:e7:dc:9b:48: df:1c:52:0a:89:93:c3:8b:6c:1a:46:68:1e:64:18: fe:25:88:e0:58:18:af:32:2d:2e:18:59:3f:be:44: a4:c6:23:54:64:4b:92:6d:85:e0:a5:aa:96:e5:85: 68:2f:a3:ca:3b:90:18:84:6b:c9:d6:7a:52:d1:a1: 5a:a9:2f:a6:60:23:8c:83:b0:0b:67:40:fd:43:63: 75:b8:d1:7a:08:b8:43:0a:ab:1e:9a:bc:ce:70:ad: 84:e0:ac:c9:4b:00:25:f7:e9:88:63:18:39:28:2f: d5:52:27:43:54:27:f4:3a:cf:77:9a:bf:bf:ba:a8: 5a:89:8c:b7:0a:cc:fd:de:33:25:33:fd:cc:1d:b5: f2:ad:d1:cd:16:42:4f:7c:28:b8:76:a3:f0:32:0f: 04:c2:f4:00:fc:6c:3b:a9:19:d1:c8:37:13:c4:59: e8:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:F0:2A:7E:09:BA:06:4F:9D:55:E7:21:30:3B:6C:95:3D:AA:4F:7C X509v3 Authority Key Identifier: keyid:10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a383030303a3a2f33342d3334203d3e20313331373439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:be80:8000::/34 Signature Algorithm: sha256WithRSAEncryption 3e:53:de:fa:51:a6:fd:b8:83:a6:42:a9:b1:36:31:f3:8e:42: e1:51:22:7d:ba:5e:2f:ef:ee:e9:34:e4:54:12:b4:62:ce:90: c9:7f:3c:81:64:f5:a5:0c:7b:7e:58:02:72:78:63:f2:49:5b: f0:b1:68:62:6e:5f:84:b2:d2:cf:6f:10:20:de:d5:62:a9:b6: bc:9e:20:38:30:67:90:e8:fa:c5:61:b5:42:bf:ea:e9:c7:06: 71:56:87:e4:b3:a8:de:b4:0b:50:47:e1:9b:d2:b0:46:0d:8d: 50:fa:e4:35:1b:5f:1a:d3:35:ed:b4:98:1f:08:ea:d0:dc:c9: e9:74:4b:a3:19:b5:59:ec:ed:01:f4:b7:5b:9d:4f:38:cd:e0: bc:13:12:4a:18:d6:df:f1:5c:f5:09:bb:fa:3b:0a:85:60:7c: 96:6d:82:b4:86:0d:b1:fa:0b:c8:a7:e3:70:a9:a5:3c:cc:4e: da:d8:4c:30:8f:9e:52:71:6e:70:cb:65:b1:2e:81:d9:98:d7: ff:b8:d6:34:b1:76:75:0e:3b:da:c3:1e:b0:10:88:37:9e:3d: a4:b9:70:8c:bc:a1:6b:02:1b:bb:11:11:c5:f2:06:2c:e3:0e: a6:4a:06:85:54:00:9d:81:71:b5:92:1f:6f:a9:75:02:3d:af: 78:7f:fc:c0 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUGiccjYTBQ5BHZ+U8H2GtpTHHGOMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5 NTIyNDZGRjAeFw0yMzA5MjAwMTU1MDBaFw0yNDA5MTgwMjAwMDBaMDMxMTAvBgNV BAMTKEJERjAyQTdFMDlCQTA2NEY5RDU1RTcyMTMwM0I2Qzk1M0RBQTRGN0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAhgYFsGa1S0Lt8K5pthUrxOh0 YFcLn06pej9osYBUfQ8VzWs8DsfCzklYgWNIVSIPdXZRhvKrVZsjF8FOUvnjzKdA nuw24p/iFZ7i3hwA97tDBWpW59ybSN8cUgqJk8OLbBpGaB5kGP4liOBYGK8yLS4Y WT++RKTGI1RkS5JtheClqpblhWgvo8o7kBiEa8nWelLRoVqpL6ZgI4yDsAtnQP1D Y3W40XoIuEMKqx6avM5wrYTgrMlLACX36YhjGDkoL9VSJ0NUJ/Q6z3eav7+6qFqJ jLcKzP3eMyUz/cwdtfKt0c0WQk98KLh2o/AyDwTC9AD8bDupGdHINxPEWej/AgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUvfAqfgm6Bk+dVechMDtslT2qT3wwHwYDVR0j BBgwFoAUEP41sEDoo9BeW+m+5PCmNpUiRv8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MDBmNGYzNy1jN2ZiLTQ3ZDAtOGE4NS1lY2ZkMTJiOTE1ZjUvMC8xMEZFMzVCMDQw RThBM0QwNUU1QkU5QkVFNEYwQTYzNjk1MjI0NkZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5NTIy NDZGRi5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMwMGY0ZjM3LWM3ZmItNDdkMC04 YTg1LWVjZmQxMmI5MTVmNS8wLzMyMzQzMDMyM2E2MjY1MzgzMDNhMzgzMDMwMzAz YTNhMmYzMzM0MmQzMzM0MjAzZDNlMjAzMTMzMzEzNzM0Mzkucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgYk Ar6AgDANBgkqhkiG9w0BAQsFAAOCAQEAPlPe+lGm/biDpkKpsTYx845C4VEifbpe L+/u6TTkVBK0Ys6QyX88gWT1pQx7flgCcnhj8klb8LFoYm5fhLLSz28QIN7VYqm2 vJ4gODBnkOj6xWG1Qr/q6ccGcVaH5LOo3rQLUEfhm9KwRg2NUPrkNRtfGtM17bSY Hwjq0NzJ6XRLoxm1WeztAfS3W51POM3gvBMSShjW3/Fc9Qm7+jsKhWB8lm2CtIYN sfoLyKfjcKmlPMxO2thMMI+eUnFucMtlsS6B2ZjX/7jWNLF2dQ472sMesBCIN549 pLlwjLyhawIbuxERxfIGLOMOpkoGhVQAnYFxtZIfb6l1Aj2veH/8wA== -----END CERTIFICATE-----Generated at Fri Apr 19 11:24:28 2024 by rpki-client on console-fra.rpki-client.org