$ rpki-client -vvf repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a3a2f33332d3333203d3e20313331373439.roa File: 323430323a626538303a3a2f33332d3333203d3e20313331373439.roa (raw, json) Hash identifier: bYdJ74u/3uGNPygrk82DdhGJdVHp2fQPuwAhsR/UbOs= Subject key identifier: FD:42:5B:3C:47:C4:05:53:D2:FF:D1:B4:9A:E0:FC:F5:48:7D:F0:70 Certificate issuer: /CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Certificate serial: 56CF38318A3C6D1D23789C6380CF6820799E4BC0 Authority key identifier: 10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a3a2f33332d3333203d3e20313331373439.roa Signing time: Mon 01 Jul 2024 01:02:34 +0000 ROA not before: Mon 01 Jul 2024 00:57:34 +0000 ROA not after: Mon 30 Jun 2025 01:02:34 +0000 asID: 131749 IP address blocks: 2402:be80::/33 maxlen: 33 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:cf:38:31:8a:3c:6d:1d:23:78:9c:63:80:cf:68:20:79:9e:4b:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Validity Not Before: Jul 1 00:57:34 2024 GMT Not After : Jun 30 01:02:34 2025 GMT Subject: CN=FD425B3C47C40553D2FFD1B49AE0FCF5487DF070 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:b7:b3:92:87:9b:84:ce:41:ac:c4:d5:d8:4a: ae:d8:f2:25:58:a1:c3:3d:69:f5:bf:95:78:a3:8e: b4:7f:e1:3a:03:8d:37:6e:ec:56:41:b2:d9:06:a2: c2:67:b3:a4:b5:55:e4:5c:39:8d:6c:6c:12:e7:63: 87:da:d2:4c:cf:92:dc:65:37:25:d5:38:2f:bb:10: b5:56:98:9d:41:45:e6:e9:a6:09:fd:d9:2f:4f:0d: 95:29:a9:25:f0:10:66:56:e6:fe:05:66:0c:26:58: 34:5c:95:d5:e3:61:18:17:aa:51:9a:00:0f:3d:17: ab:fd:a3:e5:d8:7d:2b:26:bc:9a:cc:e6:1e:ee:82: ee:aa:1b:f4:a9:f6:a4:b7:c4:6f:4a:0a:29:59:17: d5:e7:5d:4b:ec:20:1b:65:42:f3:71:a8:c8:3a:79: d5:84:28:7f:9e:5f:17:50:d8:4a:7d:16:e9:50:33: 81:cb:cb:25:6a:f2:75:38:8c:a9:a6:88:0f:f3:23: 4a:47:79:09:21:1d:61:d7:b3:bf:9e:91:00:da:ab: a0:bd:5b:c7:9d:38:3f:73:78:5e:66:15:95:34:b4: 0a:c1:07:bb:77:44:2a:af:2d:82:71:65:dc:97:cd: 6a:c1:a2:23:d6:93:89:a7:4f:13:f4:30:12:18:1f: fe:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:42:5B:3C:47:C4:05:53:D2:FF:D1:B4:9A:E0:FC:F5:48:7D:F0:70 X509v3 Authority Key Identifier: keyid:10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a3a2f33332d3333203d3e20313331373439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:be80::/33 Signature Algorithm: sha256WithRSAEncryption 8d:d9:da:65:cb:51:a1:9c:e0:67:ff:8b:98:44:db:d7:a6:7b: 88:0c:2f:30:88:14:df:dc:e3:b0:28:b0:c1:9f:88:19:74:7f: 53:50:f2:c0:69:e0:cc:80:6d:bd:18:5d:ee:f6:ff:57:2d:90: 91:bf:ef:cc:0c:52:f4:35:b8:80:6a:10:76:a1:1a:31:75:d3: da:3f:11:7e:1f:f0:e0:23:d0:b8:4c:0a:32:42:27:1a:a2:9f: 8a:73:df:0a:b8:bf:bf:2c:21:d6:2a:f2:d7:cb:b5:f9:2e:ac: 70:4a:6c:20:f9:a5:fe:e8:ed:51:ef:d9:d1:5b:51:be:96:ad: ea:2d:3e:cc:9d:b2:6f:f2:da:32:9f:95:3d:62:9c:dd:6f:38: 00:6b:ca:b8:d3:a1:8f:02:83:35:d0:cc:b0:61:51:b6:f7:b8: f6:d8:00:b8:cb:c7:84:01:ef:28:36:b3:e1:d9:b8:b6:f1:c7: 60:31:5f:c7:1b:84:dd:1a:32:04:00:b8:27:5a:bd:5e:1c:41: 58:52:67:cf:d3:60:e0:ae:9f:0e:5d:7c:48:f2:07:ee:ab:68: d0:0e:3e:a2:41:d1:4f:c3:f0:ba:d0:88:b6:05:45:d7:d7:19: 84:f4:78:3f:93:a7:11:c9:fd:c2:b5:2e:52:98:f6:57:15:97: 83:28:5e:ed -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVs84MYo8bR0jeJxjgM9oIHmeS8AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5 NTIyNDZGRjAeFw0yNDA3MDEwMDU3MzRaFw0yNTA2MzAwMTAyMzRaMDMxMTAvBgNV BAMTKEZENDI1QjNDNDdDNDA1NTNEMkZGRDFCNDlBRTBGQ0Y1NDg3REYwNzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIt7OSh5uEzkGsxNXYSq7Y8iVY ocM9afW/lXijjrR/4ToDjTdu7FZBstkGosJns6S1VeRcOY1sbBLnY4fa0kzPktxl NyXVOC+7ELVWmJ1BRebppgn92S9PDZUpqSXwEGZW5v4FZgwmWDRcldXjYRgXqlGa AA89F6v9o+XYfSsmvJrM5h7ugu6qG/Sp9qS3xG9KCilZF9XnXUvsIBtlQvNxqMg6 edWEKH+eXxdQ2Ep9FulQM4HLyyVq8nU4jKmmiA/zI0pHeQkhHWHXs7+ekQDaq6C9 W8edOD9zeF5mFZU0tArBB7t3RCqvLYJxZdyXzWrBoiPWk4mnTxP0MBIYH/5lAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU/UJbPEfEBVPS/9G0muD89Uh98HAwHwYDVR0j BBgwFoAUEP41sEDoo9BeW+m+5PCmNpUiRv8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MDBmNGYzNy1jN2ZiLTQ3ZDAtOGE4NS1lY2ZkMTJiOTE1ZjUvMC8xMEZFMzVCMDQw RThBM0QwNUU1QkU5QkVFNEYwQTYzNjk1MjI0NkZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5NTIy NDZGRi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMwMGY0ZjM3LWM3ZmItNDdkMC04 YTg1LWVjZmQxMmI5MTVmNS8wLzMyMzQzMDMyM2E2MjY1MzgzMDNhM2EyZjMzMzMy ZDMzMzMyMDNkM2UyMDMxMzMzMTM3MzQzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGByQCvoAAMA0GCSqG SIb3DQEBCwUAA4IBAQCN2dply1GhnOBn/4uYRNvXpnuIDC8wiBTf3OOwKLDBn4gZ dH9TUPLAaeDMgG29GF3u9v9XLZCRv+/MDFL0NbiAahB2oRoxddPaPxF+H/DgI9C4 TAoyQicaop+Kc98KuL+/LCHWKvLXy7X5LqxwSmwg+aX+6O1R79nRW1G+lq3qLT7M nbJv8toyn5U9YpzdbzgAa8q406GPAoM10MywYVG297j22AC4y8eEAe8oNrPh2bi2 8cdgMV/HG4TdGjIEALgnWr1eHEFYUmfP02Dgrp8OXXxI8gfuq2jQDj6iQdFPw/C6 0Ii2BUXX1xmE9Hg/k6cRyf3CtS5SmPZXFZeDKF7t -----END CERTIFICATE-----Generated at Fri Nov 22 05:48:03 2024 by rpki-client on console-fra.rpki-client.org