$ rpki-client -vvf repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a3a2f33322d3332203d3e20313331373439.roa File: 323430323a626538303a3a2f33322d3332203d3e20313331373439.roa (raw, json) Hash identifier: TUeak5jHDtbvargpCDqZuQl+RjoYojBe2s7CTDzVmuA= Subject key identifier: 6A:FA:1C:98:7D:22:5B:8A:1D:E1:95:AD:7F:40:5C:18:67:F4:17:2B Certificate issuer: /CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Certificate serial: 22A9A2A2D79E444252C478F3D438A7F417823D75 Authority key identifier: 10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a3a2f33322d3332203d3e20313331373439.roa Signing time: Mon 01 Jul 2024 01:02:33 +0000 ROA not before: Mon 01 Jul 2024 00:57:33 +0000 ROA not after: Mon 30 Jun 2025 01:02:33 +0000 asID: 131749 IP address blocks: 2402:be80::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:a9:a2:a2:d7:9e:44:42:52:c4:78:f3:d4:38:a7:f4:17:82:3d:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Validity Not Before: Jul 1 00:57:33 2024 GMT Not After : Jun 30 01:02:33 2025 GMT Subject: CN=6AFA1C987D225B8A1DE195AD7F405C1867F4172B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:b4:6b:2c:54:7f:0e:09:f1:29:53:b4:51:c6: 4f:96:71:23:9b:4f:9b:82:be:6e:62:9a:fb:e9:cd: e3:4a:8b:09:48:bf:de:48:6f:5d:c7:26:6f:54:b7: fd:6f:9c:cc:df:60:6c:88:7f:bc:51:d6:33:dd:c5: 26:9f:19:12:c2:f2:c7:10:cf:e1:d3:64:52:d7:54: 3c:91:8c:0d:02:dd:b3:47:45:33:07:8d:d9:32:44: 54:ba:7d:c3:db:40:90:75:f4:70:e7:a0:ee:f6:29: 00:62:c9:a1:24:c1:db:df:8c:84:73:f4:cb:51:fd: 0f:71:1e:e0:89:e8:ac:9a:9a:7a:13:fe:59:96:22: b7:ef:2e:1d:41:38:b9:21:a7:7c:94:39:56:25:73: 8a:a1:6f:e0:36:e5:8a:8e:1d:f6:a3:b1:04:46:c7: 17:63:96:05:b5:87:3e:11:76:e2:c2:76:8e:e3:06: e3:50:60:9e:62:96:01:7b:fd:97:1c:81:6b:fa:f7: 90:5a:8b:58:de:1c:de:ba:42:c6:ba:7b:cc:46:d8: 46:55:3c:12:a5:58:a3:27:9e:02:ea:3f:e9:83:e8: 81:5b:2a:47:38:e9:a9:28:6a:12:58:40:77:05:a1: d0:62:76:3f:0c:e7:e6:3c:4d:e8:10:c6:42:db:f3: 46:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:FA:1C:98:7D:22:5B:8A:1D:E1:95:AD:7F:40:5C:18:67:F4:17:2B X509v3 Authority Key Identifier: keyid:10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a3a2f33322d3332203d3e20313331373439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:be80::/32 Signature Algorithm: sha256WithRSAEncryption 20:2a:e8:29:fb:d5:dd:47:88:f3:f7:e0:c8:a1:11:08:e1:1c: 5f:32:98:6b:94:0b:79:fe:2d:78:d6:ca:34:92:b2:55:47:b4: 0d:ae:2a:ac:13:68:7b:a5:bf:0f:8b:57:6a:cd:1d:cd:fc:98: d5:c2:5c:2d:ac:e6:c7:61:0e:7d:76:53:70:15:d4:09:a6:16: 5a:42:b7:9c:c5:ec:21:56:99:6f:cf:88:a8:e4:98:9a:57:57: 14:b6:51:11:65:87:31:51:c0:51:e5:2d:10:81:18:c5:6b:63: 9a:de:78:8b:94:63:00:64:3e:dc:1d:d5:24:55:7e:c6:69:49: d5:e0:ab:fe:9d:bb:4c:b1:47:47:42:da:c4:f0:ac:e7:69:e2: 0c:93:b9:aa:28:0d:ae:59:de:7b:ef:99:01:09:c6:e5:c9:31: 58:e5:2a:65:77:7b:d6:ef:52:6c:d2:de:a0:57:1f:c2:43:60: c5:72:fe:b8:0d:83:04:ca:6d:8c:c2:00:ab:b3:38:6a:1c:87: e2:7f:e5:11:33:ea:18:10:02:4c:52:f5:31:63:2d:17:9d:7f: fc:88:b7:22:55:b9:a1:a8:a9:82:e8:1b:36:12:fe:10:5b:a7: 42:b8:6b:4d:80:b2:ed:c0:a2:81:77:0a:ce:1e:2a:17:27:b1: 0a:d0:87:db -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUIqmioteeREJSxHjz1Din9BeCPXUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5 NTIyNDZGRjAeFw0yNDA3MDEwMDU3MzNaFw0yNTA2MzAwMTAyMzNaMDMxMTAvBgNV BAMTKDZBRkExQzk4N0QyMjVCOEExREUxOTVBRDdGNDA1QzE4NjdGNDE3MkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXtGssVH8OCfEpU7RRxk+WcSOb T5uCvm5imvvpzeNKiwlIv95Ib13HJm9Ut/1vnMzfYGyIf7xR1jPdxSafGRLC8scQ z+HTZFLXVDyRjA0C3bNHRTMHjdkyRFS6fcPbQJB19HDnoO72KQBiyaEkwdvfjIRz 9MtR/Q9xHuCJ6KyamnoT/lmWIrfvLh1BOLkhp3yUOVYlc4qhb+A25YqOHfajsQRG xxdjlgW1hz4RduLCdo7jBuNQYJ5ilgF7/ZccgWv695Bai1jeHN66Qsa6e8xG2EZV PBKlWKMnngLqP+mD6IFbKkc46akoahJYQHcFodBidj8M5+Y8TegQxkLb80azAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUavocmH0iW4od4ZWtf0BcGGf0FyswHwYDVR0j BBgwFoAUEP41sEDoo9BeW+m+5PCmNpUiRv8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MDBmNGYzNy1jN2ZiLTQ3ZDAtOGE4NS1lY2ZkMTJiOTE1ZjUvMC8xMEZFMzVCMDQw RThBM0QwNUU1QkU5QkVFNEYwQTYzNjk1MjI0NkZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5NTIy NDZGRi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMwMGY0ZjM3LWM3ZmItNDdkMC04 YTg1LWVjZmQxMmI5MTVmNS8wLzMyMzQzMDMyM2E2MjY1MzgzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzMTM3MzQzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQCvoAwDQYJKoZI hvcNAQELBQADggEBACAq6Cn71d1HiPP34MihEQjhHF8ymGuUC3n+LXjWyjSSslVH tA2uKqwTaHulvw+LV2rNHc38mNXCXC2s5sdhDn12U3AV1AmmFlpCt5zF7CFWmW/P iKjkmJpXVxS2URFlhzFRwFHlLRCBGMVrY5reeIuUYwBkPtwd1SRVfsZpSdXgq/6d u0yxR0dC2sTwrOdp4gyTuaooDa5Z3nvvmQEJxuXJMVjlKmV3e9bvUmzS3qBXH8JD YMVy/rgNgwTKbYzCAKuzOGoch+J/5REz6hgQAkxS9TFjLRedf/yItyJVuaGoqYLo GzYS/hBbp0K4a02Asu3AooF3Cs4eKhcnsQrQh9s= -----END CERTIFICATE-----Generated at Fri Nov 22 05:48:03 2024 by rpki-client on console-fra.rpki-client.org