$ rpki-client -vvf repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a3a2f33342d3334203d3e20313331373439.roa File: 323430323a626538303a3a2f33342d3334203d3e20313331373439.roa (raw, json) Hash identifier: vIkS+hIX4IxNmvOgKkkj3qx5Ih09iglE6aze9cxFQcQ= Subject key identifier: 2C:3D:B9:45:56:03:45:21:34:F9:8B:D9:B0:1F:47:69:D3:54:7D:AD Certificate issuer: /CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Certificate serial: 44DC9B2C0A883C96B568CB5A1A971A9CBACE543A Authority key identifier: 10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a3a2f33342d3334203d3e20313331373439.roa Signing time: Wed 20 Sep 2023 02:00:00 +0000 ROA not before: Wed 20 Sep 2023 01:55:00 +0000 ROA not after: Wed 18 Sep 2024 02:00:00 +0000 asID: 131749 IP address blocks: 2402:be80::/34 maxlen: 34 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Apr 2024 20:55:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:dc:9b:2c:0a:88:3c:96:b5:68:cb:5a:1a:97:1a:9c:ba:ce:54:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Validity Not Before: Sep 20 01:55:00 2023 GMT Not After : Sep 18 02:00:00 2024 GMT Subject: CN=2C3DB9455603452134F98BD9B01F4769D3547DAD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:f2:32:af:3a:f7:15:7a:89:d1:28:fb:d4:a3: d8:1f:76:00:40:b1:5c:03:5a:db:4f:da:11:93:c8: a1:e2:d2:eb:2b:8f:db:a2:19:00:15:ac:9a:55:f5: 23:59:1e:85:86:1b:e0:9f:73:aa:22:bb:c4:60:cb: 3e:24:b3:dd:49:fe:f4:31:02:df:d1:a1:8f:0d:24: 20:92:46:9c:38:8e:a1:8f:9a:c9:03:b2:7f:e5:92: 2d:f0:a8:53:e7:77:09:03:af:db:97:5d:d2:ed:78: d7:4e:bf:86:a7:83:fc:55:10:7e:52:e3:ba:50:8b: 1f:f7:e2:09:47:93:ae:c9:10:5d:55:55:29:85:be: cb:3b:64:f7:9b:50:c3:ff:4b:cc:3d:ba:96:ac:ed: eb:dc:d8:a8:3a:a1:88:1f:c2:91:61:10:03:9c:61: cd:ac:54:cb:bb:18:a7:f8:e4:cb:fb:d8:0a:cb:25: f2:9b:0e:1d:40:6d:f1:03:61:ba:cb:00:74:86:c1: 30:56:07:fd:90:2c:49:1f:ef:16:f5:52:7e:99:88: 87:9e:94:bf:cb:d9:a6:f2:53:20:75:4b:ea:22:15: 9e:ba:8d:a6:b4:83:52:fa:08:84:33:23:c1:28:ba: 21:4d:ec:4b:36:1c:4a:44:08:20:72:fe:e0:26:e9: 3c:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:3D:B9:45:56:03:45:21:34:F9:8B:D9:B0:1F:47:69:D3:54:7D:AD X509v3 Authority Key Identifier: keyid:10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a3a2f33342d3334203d3e20313331373439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:be80::/34 Signature Algorithm: sha256WithRSAEncryption 35:0d:2d:d3:76:df:b4:c9:60:96:ed:10:20:26:e7:f2:9e:48: ac:27:f1:cd:12:ab:bc:e8:e2:0e:ea:27:05:9b:82:b2:40:52: d1:36:6a:fe:6b:ac:ff:60:f7:a6:d7:d0:d8:c9:54:5a:75:e9: 8f:7e:8e:e2:39:3a:22:95:fe:97:f6:0d:09:ed:e3:a6:ad:0f: 71:58:14:2d:51:7a:5d:b8:76:ee:ff:6d:36:ad:41:6f:72:c4: 59:4e:fc:b8:02:e1:7b:34:f9:54:5c:f4:9a:90:8d:6c:60:ae: c9:43:1f:97:6c:47:01:2e:a2:5d:9e:a3:d5:82:49:8d:b2:43: dc:05:61:7b:ff:d9:bf:81:ea:11:ff:cd:5c:e0:d6:2a:83:f7: 0c:e8:d0:86:34:7d:cf:e4:20:0f:89:06:83:29:e9:dd:ab:b9: 29:45:66:58:cd:f3:d3:00:34:37:a5:e2:12:c3:91:df:ca:30: 2e:1e:44:35:81:76:0b:80:86:8e:a2:ba:68:f0:f2:b1:2b:b4: 75:e5:09:ad:f0:55:07:a9:de:fc:83:14:ec:a2:da:0e:65:3d: f9:46:7d:04:81:9c:a6:aa:44:4c:77:26:f2:43:24:4b:2a:ce: 6e:3e:2b:e5:aa:5d:84:cb:d0:7b:fa:8f:2a:e6:f0:f4:61:9f: a7:9f:20:84 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIURNybLAqIPJa1aMtaGpcanLrOVDowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5 NTIyNDZGRjAeFw0yMzA5MjAwMTU1MDBaFw0yNDA5MTgwMjAwMDBaMDMxMTAvBgNV BAMTKDJDM0RCOTQ1NTYwMzQ1MjEzNEY5OEJEOUIwMUY0NzY5RDM1NDdEQUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC58jKvOvcVeonRKPvUo9gfdgBA sVwDWttP2hGTyKHi0usrj9uiGQAVrJpV9SNZHoWGG+Cfc6oiu8Rgyz4ks91J/vQx At/RoY8NJCCSRpw4jqGPmskDsn/lki3wqFPndwkDr9uXXdLteNdOv4ang/xVEH5S 47pQix/34glHk67JEF1VVSmFvss7ZPebUMP/S8w9upas7evc2Kg6oYgfwpFhEAOc Yc2sVMu7GKf45Mv72ArLJfKbDh1AbfEDYbrLAHSGwTBWB/2QLEkf7xb1Un6ZiIee lL/L2abyUyB1S+oiFZ66jaa0g1L6CIQzI8EouiFN7Es2HEpECCBy/uAm6TzNAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQULD25RVYDRSE0+YvZsB9HadNUfa0wHwYDVR0j BBgwFoAUEP41sEDoo9BeW+m+5PCmNpUiRv8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MDBmNGYzNy1jN2ZiLTQ3ZDAtOGE4NS1lY2ZkMTJiOTE1ZjUvMC8xMEZFMzVCMDQw RThBM0QwNUU1QkU5QkVFNEYwQTYzNjk1MjI0NkZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5NTIy NDZGRi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMwMGY0ZjM3LWM3ZmItNDdkMC04 YTg1LWVjZmQxMmI5MTVmNS8wLzMyMzQzMDMyM2E2MjY1MzgzMDNhM2EyZjMzMzQy ZDMzMzQyMDNkM2UyMDMxMzMzMTM3MzQzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBiQCvoAAMA0GCSqG SIb3DQEBCwUAA4IBAQA1DS3Tdt+0yWCW7RAgJufynkisJ/HNEqu86OIO6icFm4Ky QFLRNmr+a6z/YPem19DYyVRademPfo7iOToilf6X9g0J7eOmrQ9xWBQtUXpduHbu /202rUFvcsRZTvy4AuF7NPlUXPSakI1sYK7JQx+XbEcBLqJdnqPVgkmNskPcBWF7 /9m/geoR/81c4NYqg/cM6NCGNH3P5CAPiQaDKendq7kpRWZYzfPTADQ3peISw5Hf yjAuHkQ1gXYLgIaOorpo8PKxK7R15Qmt8FUHqd78gxTsotoOZT35Rn0EgZymqkRM dybyQyRLKs5uPivlql2Ey9B7+o8q5vD0YZ+nnyCE -----END CERTIFICATE-----Generated at Fri Apr 19 13:15:05 2024 by rpki-client on console-ams.rpki-client.org