$ rpki-client -vvf repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a383030303a3a2f33342d3334203d3e20313331373439.roa File: 323430323a626538303a383030303a3a2f33342d3334203d3e20313331373439.roa (raw, json) Hash identifier: i8BpctBtDR1cL+NnxkziOtf21/F0kdql2uvKW16NHeU= Subject key identifier: EF:5A:8B:34:BF:00:1F:40:2E:4C:73:84:37:D0:3E:0E:DF:82:FD:5B Certificate issuer: /CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Certificate serial: 5AACDD82BDB3FE5CF95B5676EA94588CE522D740 Authority key identifier: 10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a383030303a3a2f33342d3334203d3e20313331373439.roa Signing time: Wed 21 Aug 2024 02:00:00 +0000 ROA not before: Wed 21 Aug 2024 01:55:00 +0000 ROA not after: Wed 20 Aug 2025 02:00:00 +0000 asID: 131749 IP address blocks: 2402:be80:8000::/34 maxlen: 34 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:ac:dd:82:bd:b3:fe:5c:f9:5b:56:76:ea:94:58:8c:e5:22:d7:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Validity Not Before: Aug 21 01:55:00 2024 GMT Not After : Aug 20 02:00:00 2025 GMT Subject: CN=EF5A8B34BF001F402E4C738437D03E0EDF82FD5B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:f6:db:35:91:91:83:c7:88:65:bb:65:ef:6e: c7:49:d9:19:1b:17:b7:26:0f:33:30:c6:b7:96:28: 1a:d2:4c:53:e7:a1:bb:45:6d:e2:ee:cc:22:21:2e: db:99:4d:77:17:bc:42:ca:14:62:8a:5f:3d:e3:33: c1:81:96:7f:99:e6:0a:7f:b5:a2:eb:e4:d4:0d:f2: 7d:79:34:20:1d:44:e6:da:eb:29:75:a3:35:b6:de: 34:81:b3:aa:eb:9f:9e:09:3d:d3:69:59:41:a8:ae: fa:ce:c0:1c:2f:e1:19:3d:a0:df:00:86:be:dc:15: 89:eb:25:a1:0d:8e:80:bc:d8:aa:28:38:9f:23:85: f7:8a:4b:10:ef:61:5c:7b:e4:97:cd:fc:d9:9e:15: f4:51:7f:fa:d6:df:b3:0a:4b:95:66:03:6e:bf:06: 9d:54:d8:e5:d1:cb:4e:2d:ad:10:d5:51:ec:64:69: e6:d3:e6:30:33:3a:37:93:b8:e1:87:8e:d8:7f:b4: 07:a3:5a:36:92:e7:9f:9f:1f:a2:17:cb:9b:bf:4a: 29:c7:a8:5b:a0:fd:5d:13:97:16:db:f3:4e:75:50: 21:e2:39:79:88:11:43:dc:73:b2:8d:df:5f:da:3e: 43:47:51:9c:e8:ca:af:7f:aa:b4:9e:c7:9a:6b:e4: d3:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:5A:8B:34:BF:00:1F:40:2E:4C:73:84:37:D0:3E:0E:DF:82:FD:5B X509v3 Authority Key Identifier: keyid:10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a383030303a3a2f33342d3334203d3e20313331373439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:be80:8000::/34 Signature Algorithm: sha256WithRSAEncryption 20:1c:8b:93:6d:72:2e:cd:f1:d0:df:68:7e:33:24:9b:cd:5c: 8e:87:47:8a:10:33:04:d4:5b:16:cf:e8:72:0c:e1:e4:aa:b3: e1:b3:e5:76:b6:8a:91:63:fc:ca:15:e2:b1:96:20:2a:46:2e: 64:d3:6e:1b:7f:83:a2:67:4d:17:6e:50:2e:ad:3a:f7:e7:ba: b4:6e:5c:65:83:7b:20:9d:e9:14:a0:dd:eb:f5:65:d0:61:d6: 73:66:7b:64:91:60:dc:45:4e:21:73:c0:42:39:88:eb:21:0a: 58:48:e7:a4:fe:77:fe:1e:0d:7d:db:2d:cb:95:cb:ef:16:ff: d3:8b:d5:88:98:28:f7:59:24:17:83:60:11:2e:32:03:96:0d: 9e:49:d9:72:a0:de:b4:55:d4:61:10:41:ae:4b:61:c8:ee:e1: 2d:f1:09:a3:a5:0a:ad:25:21:1d:0e:99:e4:df:da:8d:d2:18: f6:96:fd:a8:0c:19:97:dc:a9:e6:5f:82:45:71:40:02:3d:d4: 1e:5b:5e:1b:d3:88:d7:f7:97:3d:7a:4c:5e:6f:90:30:9e:c1: b2:45:02:24:af:f3:4a:37:13:24:6a:12:93:21:41:0d:6c:b1: 47:5e:fe:c7:e1:ee:ab:84:ca:71:53:7a:b7:17:7a:53:56:9b: 24:42:fb:aa -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUWqzdgr2z/lz5W1Z26pRYjOUi10AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5 NTIyNDZGRjAeFw0yNDA4MjEwMTU1MDBaFw0yNTA4MjAwMjAwMDBaMDMxMTAvBgNV BAMTKEVGNUE4QjM0QkYwMDFGNDAyRTRDNzM4NDM3RDAzRTBFREY4MkZENUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB9ts1kZGDx4hlu2XvbsdJ2Rkb F7cmDzMwxreWKBrSTFPnobtFbeLuzCIhLtuZTXcXvELKFGKKXz3jM8GBln+Z5gp/ taLr5NQN8n15NCAdROba6yl1ozW23jSBs6rrn54JPdNpWUGorvrOwBwv4Rk9oN8A hr7cFYnrJaENjoC82KooOJ8jhfeKSxDvYVx75JfN/NmeFfRRf/rW37MKS5VmA26/ Bp1U2OXRy04trRDVUexkaebT5jAzOjeTuOGHjth/tAejWjaS55+fH6IXy5u/SinH qFug/V0Tlxbb8051UCHiOXmIEUPcc7KN31/aPkNHUZzoyq9/qrSex5pr5NOfAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQU71qLNL8AH0AuTHOEN9A+Dt+C/VswHwYDVR0j BBgwFoAUEP41sEDoo9BeW+m+5PCmNpUiRv8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MDBmNGYzNy1jN2ZiLTQ3ZDAtOGE4NS1lY2ZkMTJiOTE1ZjUvMC8xMEZFMzVCMDQw RThBM0QwNUU1QkU5QkVFNEYwQTYzNjk1MjI0NkZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5NTIy NDZGRi5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMwMGY0ZjM3LWM3ZmItNDdkMC04 YTg1LWVjZmQxMmI5MTVmNS8wLzMyMzQzMDMyM2E2MjY1MzgzMDNhMzgzMDMwMzAz YTNhMmYzMzM0MmQzMzM0MjAzZDNlMjAzMTMzMzEzNzM0Mzkucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgYk Ar6AgDANBgkqhkiG9w0BAQsFAAOCAQEAIByLk21yLs3x0N9ofjMkm81cjodHihAz BNRbFs/ocgzh5Kqz4bPldraKkWP8yhXisZYgKkYuZNNuG3+DomdNF25QLq069+e6 tG5cZYN7IJ3pFKDd6/Vl0GHWc2Z7ZJFg3EVOIXPAQjmI6yEKWEjnpP53/h4Nfdst y5XL7xb/04vViJgo91kkF4NgES4yA5YNnknZcqDetFXUYRBBrkthyO7hLfEJo6UK rSUhHQ6Z5N/ajdIY9pb9qAwZl9yp5l+CRXFAAj3UHlteG9OI1/eXPXpMXm+QMJ7B skUCJK/zSjcTJGoSkyFBDWyxR17+x+Huq4TKcVN6txd6U1abJEL7qg== -----END CERTIFICATE-----Generated at Fri Nov 22 06:33:23 2024 by rpki-client on console-ams.rpki-client.org