$ rpki-client -vvf repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a613030303a3a2f33352d3335203d3e20313331373439.roa File: 323430323a626538303a613030303a3a2f33352d3335203d3e20313331373439.roa (raw, json) Hash identifier: 968CzWonQYTJ7GgMUaFiS/1txipa9pjXVnTjFz8AMFo= Subject key identifier: 5E:93:6E:61:D1:5A:E7:4E:3B:B1:03:8F:F7:E6:6B:F2:5B:C4:6A:88 Certificate issuer: /CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Certificate serial: 71E7484968EF68488AEC8C6EA6013DFA87D72E88 Authority key identifier: 10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a613030303a3a2f33352d3335203d3e20313331373439.roa Signing time: Mon 31 Jul 2023 00:03:04 +0000 ROA not before: Sun 30 Jul 2023 23:58:04 +0000 ROA not after: Mon 29 Jul 2024 00:03:04 +0000 asID: 131749 IP address blocks: 2402:be80:a000::/35 maxlen: 35 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 06:35:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:e7:48:49:68:ef:68:48:8a:ec:8c:6e:a6:01:3d:fa:87:d7:2e:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Validity Not Before: Jul 30 23:58:04 2023 GMT Not After : Jul 29 00:03:04 2024 GMT Subject: CN=5E936E61D15AE74E3BB1038FF7E66BF25BC46A88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:59:5f:a0:1a:06:26:a9:6d:57:78:a3:bc:c0: c2:c2:e3:6b:7c:28:cf:91:9c:5a:ce:ad:38:99:7e: b1:95:12:cd:e9:5a:a6:2a:03:98:2d:f9:ed:c3:92: c1:f9:b4:10:cb:68:82:06:87:7f:20:51:ab:8e:0c: 44:9c:2e:5d:f8:3f:04:2a:e5:c8:6d:04:4b:a1:27: 16:1a:ec:48:76:6f:21:97:66:b4:24:26:bd:48:cb: c4:30:d9:69:e7:03:1b:13:11:24:5c:4a:b4:7e:39: 6b:63:a8:65:4d:24:e4:88:ba:c8:37:6c:76:28:c8: ba:c3:f3:48:84:fb:72:7a:ea:46:0a:b8:44:c0:35: 5a:aa:33:07:64:31:57:ff:0a:2b:a9:55:36:cd:44: 52:31:15:9b:43:65:3c:66:4a:b6:58:68:c0:9f:97: b1:3d:a4:0c:d8:4f:f4:40:d8:50:50:dd:ad:d9:68: a5:d5:6e:8c:de:85:54:84:17:6a:c4:97:bf:53:2d: 73:96:cd:7e:dc:32:e1:1c:10:68:8b:b6:1f:e1:b9: 02:58:eb:f1:1f:f1:ab:16:97:9d:b5:e5:b5:9a:00: bd:c8:f9:7a:ec:44:a3:3c:73:94:05:84:94:c6:26: 5f:c3:cd:84:66:b4:fd:ba:51:17:c1:82:a0:08:33: db:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:93:6E:61:D1:5A:E7:4E:3B:B1:03:8F:F7:E6:6B:F2:5B:C4:6A:88 X509v3 Authority Key Identifier: keyid:10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a613030303a3a2f33352d3335203d3e20313331373439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:be80:a000::/35 Signature Algorithm: sha256WithRSAEncryption 6f:63:8c:b0:e6:e0:64:b0:6e:10:cc:02:db:e4:ed:a3:9b:41: b8:97:dc:8d:a3:52:b1:cd:01:e5:13:3e:f9:ff:18:14:b0:95: c7:cb:b2:3f:81:a1:10:7c:77:9f:60:75:a6:d9:ab:a3:f3:f3: 6e:81:aa:b2:74:ab:17:bf:e9:45:dc:29:32:bc:59:aa:79:81: 24:2b:44:83:73:d6:ea:5f:37:37:27:2b:b4:22:ab:13:b2:83: 48:67:4f:6c:07:83:12:20:0b:84:a3:66:b8:21:3a:06:bd:91: 8f:93:90:19:63:b0:34:8c:13:3a:11:3f:62:83:b1:70:a4:8d: 3a:4c:ad:e8:51:66:08:a3:ef:4a:06:1b:a1:03:e1:50:b1:43: 5a:b5:fe:a2:a5:aa:c9:95:f8:7a:98:a7:a8:33:df:35:e5:1c: 30:a4:cc:c4:2d:17:ce:3b:4c:a9:23:fa:98:84:bd:b4:1f:84: d4:79:b2:cd:6f:71:bf:f3:7d:22:7b:07:25:fd:c2:41:18:79: d6:8f:68:21:d0:dd:d7:da:ff:86:61:f8:1c:99:96:15:0c:82: bd:70:87:d2:c3:5a:4a:9a:8a:c6:4e:85:30:ae:44:30:e6:73: 46:e3:e1:d6:b3:61:33:ad:04:70:3f:e9:b3:2e:bc:41:5a:5b: bb:86:70:ae -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUcedISWjvaEiK7IxupgE9+ofXLogwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5 NTIyNDZGRjAeFw0yMzA3MzAyMzU4MDRaFw0yNDA3MjkwMDAzMDRaMDMxMTAvBgNV BAMTKDVFOTM2RTYxRDE1QUU3NEUzQkIxMDM4RkY3RTY2QkYyNUJDNDZBODgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDuWV+gGgYmqW1XeKO8wMLC42t8 KM+RnFrOrTiZfrGVEs3pWqYqA5gt+e3DksH5tBDLaIIGh38gUauODEScLl34PwQq 5chtBEuhJxYa7Eh2byGXZrQkJr1Iy8Qw2WnnAxsTESRcSrR+OWtjqGVNJOSIusg3 bHYoyLrD80iE+3J66kYKuETANVqqMwdkMVf/CiupVTbNRFIxFZtDZTxmSrZYaMCf l7E9pAzYT/RA2FBQ3a3ZaKXVbozehVSEF2rEl79TLXOWzX7cMuEcEGiLth/huQJY 6/Ef8asWl5215bWaAL3I+XrsRKM8c5QFhJTGJl/DzYRmtP26URfBgqAIM9sNAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUXpNuYdFa5047sQOP9+Zr8lvEaogwHwYDVR0j BBgwFoAUEP41sEDoo9BeW+m+5PCmNpUiRv8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MDBmNGYzNy1jN2ZiLTQ3ZDAtOGE4NS1lY2ZkMTJiOTE1ZjUvMC8xMEZFMzVCMDQw RThBM0QwNUU1QkU5QkVFNEYwQTYzNjk1MjI0NkZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5NTIy NDZGRi5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMwMGY0ZjM3LWM3ZmItNDdkMC04 YTg1LWVjZmQxMmI5MTVmNS8wLzMyMzQzMDMyM2E2MjY1MzgzMDNhNjEzMDMwMzAz YTNhMmYzMzM1MmQzMzM1MjAzZDNlMjAzMTMzMzEzNzM0Mzkucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgUk Ar6AoDANBgkqhkiG9w0BAQsFAAOCAQEAb2OMsObgZLBuEMwC2+Tto5tBuJfcjaNS sc0B5RM++f8YFLCVx8uyP4GhEHx3n2B1ptmro/PzboGqsnSrF7/pRdwpMrxZqnmB JCtEg3PW6l83NycrtCKrE7KDSGdPbAeDEiALhKNmuCE6Br2Rj5OQGWOwNIwTOhE/ YoOxcKSNOkyt6FFmCKPvSgYboQPhULFDWrX+oqWqyZX4epinqDPfNeUcMKTMxC0X zjtMqSP6mIS9tB+E1HmyzW9xv/N9InsHJf3CQRh51o9oIdDd19r/hmH4HJmWFQyC vXCH0sNaSpqKxk6FMK5EMOZzRuPh1rNhM60EcD/psy68QVpbu4Zwrg== -----END CERTIFICATE-----Generated at Wed Apr 24 06:27:08 2024 by rpki-client on console-ams.rpki-client.org