$ rpki-client -vvf repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a383030303a3a2f33352d3335203d3e20313331373439.roa File: 323430323a626538303a383030303a3a2f33352d3335203d3e20313331373439.roa (raw, json) Hash identifier: YP8qWCqgtKA6QmR4HsPMzdaYHYhbODNmdZRF+A4g1XI= Subject key identifier: A3:58:72:6A:D6:FF:3D:3E:9B:78:98:E2:8A:F1:BC:6E:5C:87:72:3A Certificate issuer: /CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Certificate serial: 4A4E98C7A1BAB1BD3942FBCA1C8550C3B34494F1 Authority key identifier: 10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a383030303a3a2f33352d3335203d3e20313331373439.roa Signing time: Mon 31 Jul 2023 00:03:04 +0000 ROA not before: Sun 30 Jul 2023 23:58:04 +0000 ROA not after: Mon 29 Jul 2024 00:03:04 +0000 asID: 131749 IP address blocks: 2402:be80:8000::/35 maxlen: 35 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 06:35:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:4e:98:c7:a1:ba:b1:bd:39:42:fb:ca:1c:85:50:c3:b3:44:94:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Validity Not Before: Jul 30 23:58:04 2023 GMT Not After : Jul 29 00:03:04 2024 GMT Subject: CN=A358726AD6FF3D3E9B7898E28AF1BC6E5C87723A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:3f:71:1f:3c:0d:9e:70:7e:52:c5:ad:4d:bf: 21:f5:fd:97:63:3e:ef:18:0f:c3:d5:2b:c4:b0:87: e2:6c:d8:74:1c:b2:f8:24:82:f9:96:61:5f:ef:69: 18:32:e4:ef:b8:f1:c3:ce:c9:2b:ed:59:ab:e4:19: 23:c7:5f:f5:80:7c:32:29:89:8e:1f:d9:99:89:1e: 3c:40:90:7d:29:9d:3b:03:39:39:a3:80:46:cf:5f: df:b0:19:91:cd:c4:52:0e:ca:40:1e:7d:74:55:0c: 0c:93:3c:b5:5f:1f:5b:c1:08:15:22:15:7b:de:c1: 4c:3b:e1:c7:d9:0b:f0:c2:80:8b:c4:6b:d0:f7:2b: 64:1a:c6:6d:4b:f4:15:e3:fd:5e:ed:5e:40:dc:81: b8:8e:c9:32:0a:85:c5:0a:60:00:f6:9d:f9:21:7f: 5d:ac:97:96:05:c1:00:a5:4d:ba:3b:c9:5f:d3:5c: 91:2a:78:b2:a4:14:73:0a:4f:fa:b5:dc:cc:2a:ad: 5d:38:d3:e1:c7:b3:49:85:33:42:c9:32:21:c4:00: 12:2c:78:a6:8b:f2:2e:4b:b2:bc:88:df:3d:f3:a3: 1e:9f:04:63:5d:2b:c4:a0:d0:d4:c5:c3:ea:74:08: c7:89:8f:cc:a4:8c:c9:9c:76:5f:55:98:53:83:a6: e6:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:58:72:6A:D6:FF:3D:3E:9B:78:98:E2:8A:F1:BC:6E:5C:87:72:3A X509v3 Authority Key Identifier: keyid:10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a383030303a3a2f33352d3335203d3e20313331373439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:be80:8000::/35 Signature Algorithm: sha256WithRSAEncryption 4a:98:3f:41:ed:da:3f:32:89:31:9d:c1:c2:14:b8:9b:63:e6: 3d:f0:54:f1:39:5e:8c:0c:2b:cb:72:fe:b0:f0:db:e5:86:02: e2:23:71:7d:93:b4:67:65:02:16:5b:d2:cd:e4:9e:97:98:05: b9:b7:78:7b:3c:3e:72:a3:8f:66:a3:cf:bd:fa:9f:0b:e6:54: dc:79:70:be:27:8f:d1:c8:df:b9:6d:15:bc:d3:13:80:34:46: 69:cd:78:e1:e6:67:a8:05:51:c4:f8:43:08:ce:9b:bf:3a:a7: 23:6f:64:d6:1b:00:25:89:25:0a:85:2e:31:f0:58:41:51:a4: 95:ba:75:b8:e1:99:81:97:05:69:a8:01:5c:6a:9e:aa:97:b9: 1a:a6:46:ba:ce:26:62:20:d8:eb:20:01:0d:5e:78:15:03:ee: 6d:ed:1a:6f:49:3d:0e:e5:c6:f0:ca:d0:b3:55:29:e2:89:44: 46:19:9a:74:e9:05:c6:7d:ad:07:77:58:45:01:70:dd:bd:5d: cb:16:4a:f3:1d:30:5d:07:14:32:ba:ea:d1:15:0f:60:bb:eb: bf:a0:e0:f8:af:2f:ed:12:89:c5:7c:bf:15:56:c7:20:96:b1: 59:a4:45:c8:36:99:2b:75:e9:3a:a5:04:20:c9:0b:33:7c:41: 8f:26:ac:66 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUSk6Yx6G6sb05QvvKHIVQw7NElPEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5 NTIyNDZGRjAeFw0yMzA3MzAyMzU4MDRaFw0yNDA3MjkwMDAzMDRaMDMxMTAvBgNV BAMTKEEzNTg3MjZBRDZGRjNEM0U5Qjc4OThFMjhBRjFCQzZFNUM4NzcyM0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFP3EfPA2ecH5Sxa1NvyH1/Zdj Pu8YD8PVK8Swh+Js2HQcsvgkgvmWYV/vaRgy5O+48cPOySvtWavkGSPHX/WAfDIp iY4f2ZmJHjxAkH0pnTsDOTmjgEbPX9+wGZHNxFIOykAefXRVDAyTPLVfH1vBCBUi FXvewUw74cfZC/DCgIvEa9D3K2Qaxm1L9BXj/V7tXkDcgbiOyTIKhcUKYAD2nfkh f12sl5YFwQClTbo7yV/TXJEqeLKkFHMKT/q13MwqrV040+HHs0mFM0LJMiHEABIs eKaL8i5LsryI3z3zox6fBGNdK8Sg0NTFw+p0CMeJj8ykjMmcdl9VmFODpublAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUo1hyatb/PT6beJjiivG8blyHcjowHwYDVR0j BBgwFoAUEP41sEDoo9BeW+m+5PCmNpUiRv8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MDBmNGYzNy1jN2ZiLTQ3ZDAtOGE4NS1lY2ZkMTJiOTE1ZjUvMC8xMEZFMzVCMDQw RThBM0QwNUU1QkU5QkVFNEYwQTYzNjk1MjI0NkZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5NTIy NDZGRi5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMwMGY0ZjM3LWM3ZmItNDdkMC04 YTg1LWVjZmQxMmI5MTVmNS8wLzMyMzQzMDMyM2E2MjY1MzgzMDNhMzgzMDMwMzAz YTNhMmYzMzM1MmQzMzM1MjAzZDNlMjAzMTMzMzEzNzM0Mzkucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgUk Ar6AgDANBgkqhkiG9w0BAQsFAAOCAQEASpg/Qe3aPzKJMZ3BwhS4m2PmPfBU8Tle jAwry3L+sPDb5YYC4iNxfZO0Z2UCFlvSzeSel5gFubd4ezw+cqOPZqPPvfqfC+ZU 3HlwvieP0cjfuW0VvNMTgDRGac144eZnqAVRxPhDCM6bvzqnI29k1hsAJYklCoUu MfBYQVGklbp1uOGZgZcFaagBXGqeqpe5GqZGus4mYiDY6yABDV54FQPube0ab0k9 DuXG8MrQs1Up4olERhmadOkFxn2tB3dYRQFw3b1dyxZK8x0wXQcUMrrq0RUPYLvr v6Dg+K8v7RKJxXy/FVbHIJaxWaRFyDaZK3XpOqUEIMkLM3xBjyasZg== -----END CERTIFICATE-----Generated at Wed Apr 24 06:08:03 2024 by rpki-client on console-fra.rpki-client.org