$ rpki-client -vvf repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a343030303a3a2f33352d3335203d3e20313331373439.roa File: 323430323a626538303a343030303a3a2f33352d3335203d3e20313331373439.roa (raw, json) Hash identifier: kv4gHUJB2d9DdDBCo8qtak4t/uj/DrPz8kIid7pFc6M= Subject key identifier: 05:4B:22:38:63:20:08:3F:9C:E7:A6:57:B2:FA:FA:78:62:9E:C1:C8 Certificate issuer: /CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Certificate serial: 4926E79598F33EB0C36FA002C7489BFC52825C27 Authority key identifier: 10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a343030303a3a2f33352d3335203d3e20313331373439.roa Signing time: Mon 01 Jul 2024 01:02:33 +0000 ROA not before: Mon 01 Jul 2024 00:57:33 +0000 ROA not after: Mon 30 Jun 2025 01:02:33 +0000 asID: 131749 IP address blocks: 2402:be80:4000::/35 maxlen: 35 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:26:e7:95:98:f3:3e:b0:c3:6f:a0:02:c7:48:9b:fc:52:82:5c:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Validity Not Before: Jul 1 00:57:33 2024 GMT Not After : Jun 30 01:02:33 2025 GMT Subject: CN=054B22386320083F9CE7A657B2FAFA78629EC1C8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:d9:a0:c3:28:5e:64:b9:e1:19:29:51:da:56: 32:a6:56:bf:11:31:c1:f4:4c:53:11:e6:ff:21:5e: ef:bb:14:0d:05:2d:6e:01:53:5e:3b:99:92:c8:2f: 4a:a9:a7:86:34:a1:56:b9:46:24:50:db:bb:33:82: c8:b2:86:fb:86:46:0a:78:30:6f:a8:06:a5:d7:0a: d5:88:fe:22:45:b9:c2:5d:38:62:d0:f3:19:ff:ec: 5d:71:f8:c2:45:53:5e:f1:b2:af:1b:9f:c7:fd:a5: 8e:9f:89:4a:82:57:86:8a:33:c2:86:04:91:c3:33: 09:58:a2:c2:76:a1:0c:fb:73:3b:b4:8e:02:d1:fc: 0d:ca:f9:66:ea:65:49:89:d5:25:97:1d:a8:af:f3: 2e:55:9e:ca:0d:1a:8a:0b:c5:a1:48:1d:dc:4f:51: 8e:02:02:83:3c:75:9d:4e:d6:63:8a:02:4e:63:b4: 35:e6:74:71:4e:c1:4b:20:d8:df:fa:13:57:3d:f7: 77:58:64:75:b2:5a:85:ec:31:1b:53:31:64:db:35: 89:53:c4:0e:1f:56:e6:31:61:4d:f5:c3:b1:87:35: 9f:18:95:c2:46:3f:d4:1a:9f:72:be:1a:8b:a7:8d: ba:35:c5:63:be:c3:04:12:cb:d4:a6:dd:8d:f2:c6: f8:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:4B:22:38:63:20:08:3F:9C:E7:A6:57:B2:FA:FA:78:62:9E:C1:C8 X509v3 Authority Key Identifier: keyid:10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a343030303a3a2f33352d3335203d3e20313331373439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:be80:4000::/35 Signature Algorithm: sha256WithRSAEncryption 6b:3b:98:ad:c6:99:fb:e3:4b:6a:e2:53:cf:5c:d6:60:31:e6: e0:32:3f:cb:cd:df:41:45:7e:7a:dd:55:f7:58:f9:4c:d9:60: 5d:8b:52:3e:2a:41:8b:f6:51:e7:14:00:b7:b1:da:99:15:ba: 41:4c:8f:86:f5:c6:b6:ba:ad:f1:8f:62:53:46:a6:71:f3:6e: ac:ab:f3:a2:1e:b0:cd:50:b2:bc:4a:dc:df:a9:b3:1c:f0:95: 72:0a:c7:fc:9a:57:c7:98:8a:f5:2c:8b:1c:ae:dd:8d:b8:c9: 26:e2:7f:4e:e6:3b:ef:65:90:4f:af:5a:df:3f:2c:82:7c:a2: 76:49:bc:b1:d7:8a:d7:10:04:0b:e0:06:8c:a1:13:62:e6:73: 74:d3:3e:b7:34:c7:a7:17:7a:fe:09:3c:51:cf:56:d2:b6:9e: 0f:3a:14:b1:91:7a:59:ea:d1:e5:58:2e:2f:72:ab:87:6c:51: 50:3d:4f:c9:1e:78:49:2d:a4:5f:03:2e:6c:24:81:33:29:19: ec:e2:4e:e7:fc:f3:fb:6f:f1:19:28:6f:59:c3:4d:a3:da:77: 2e:44:39:9f:d1:52:76:e9:f8:6f:e2:43:c6:ab:0b:82:c6:d8: 1e:29:24:a9:00:1b:1b:10:83:fe:bf:fd:b3:73:86:52:b1:33: a6:aa:73:00 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUSSbnlZjzPrDDb6ACx0ib/FKCXCcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5 NTIyNDZGRjAeFw0yNDA3MDEwMDU3MzNaFw0yNTA2MzAwMTAyMzNaMDMxMTAvBgNV BAMTKDA1NEIyMjM4NjMyMDA4M0Y5Q0U3QTY1N0IyRkFGQTc4NjI5RUMxQzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC12aDDKF5kueEZKVHaVjKmVr8R McH0TFMR5v8hXu+7FA0FLW4BU147mZLIL0qpp4Y0oVa5RiRQ27szgsiyhvuGRgp4 MG+oBqXXCtWI/iJFucJdOGLQ8xn/7F1x+MJFU17xsq8bn8f9pY6fiUqCV4aKM8KG BJHDMwlYosJ2oQz7czu0jgLR/A3K+WbqZUmJ1SWXHaiv8y5VnsoNGooLxaFIHdxP UY4CAoM8dZ1O1mOKAk5jtDXmdHFOwUsg2N/6E1c993dYZHWyWoXsMRtTMWTbNYlT xA4fVuYxYU31w7GHNZ8YlcJGP9Qan3K+Gounjbo1xWO+wwQSy9Sm3Y3yxviBAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUBUsiOGMgCD+c56ZXsvr6eGKewcgwHwYDVR0j BBgwFoAUEP41sEDoo9BeW+m+5PCmNpUiRv8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MDBmNGYzNy1jN2ZiLTQ3ZDAtOGE4NS1lY2ZkMTJiOTE1ZjUvMC8xMEZFMzVCMDQw RThBM0QwNUU1QkU5QkVFNEYwQTYzNjk1MjI0NkZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5NTIy NDZGRi5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMwMGY0ZjM3LWM3ZmItNDdkMC04 YTg1LWVjZmQxMmI5MTVmNS8wLzMyMzQzMDMyM2E2MjY1MzgzMDNhMzQzMDMwMzAz YTNhMmYzMzM1MmQzMzM1MjAzZDNlMjAzMTMzMzEzNzM0Mzkucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgUk Ar6AQDANBgkqhkiG9w0BAQsFAAOCAQEAazuYrcaZ++NLauJTz1zWYDHm4DI/y83f QUV+et1V91j5TNlgXYtSPipBi/ZR5xQAt7HamRW6QUyPhvXGtrqt8Y9iU0amcfNu rKvzoh6wzVCyvErc36mzHPCVcgrH/JpXx5iK9SyLHK7djbjJJuJ/TuY772WQT69a 3z8sgnyidkm8sdeK1xAEC+AGjKETYuZzdNM+tzTHpxd6/gk8Uc9W0raeDzoUsZF6 WerR5VguL3Krh2xRUD1PyR54SS2kXwMubCSBMykZ7OJO5/zz+2/xGShvWcNNo9p3 LkQ5n9FSdun4b+JDxqsLgsbYHikkqQAbGxCD/r/9s3OGUrEzpqpzAA== -----END CERTIFICATE-----Generated at Fri Nov 22 06:33:23 2024 by rpki-client on console-ams.rpki-client.org