$ rpki-client -vvf repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a3a2f33352d3335203d3e20313331373439.roa File: 323430323a626538303a3a2f33352d3335203d3e20313331373439.roa (raw, json) Hash identifier: DYz+geixCut+kNzFdGgSPbbTBVse4eFHBKCC1KcuMMU= Subject key identifier: 27:C1:3B:C4:E8:F7:67:30:93:79:EB:A3:9D:9C:BA:85:1B:C7:B5:D3 Certificate issuer: /CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Certificate serial: 383B1F510C57FB0889BC33020983DC1FC55940C6 Authority key identifier: 10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a3a2f33352d3335203d3e20313331373439.roa Signing time: Mon 31 Jul 2023 00:03:04 +0000 ROA not before: Sun 30 Jul 2023 23:58:04 +0000 ROA not after: Mon 29 Jul 2024 00:03:04 +0000 asID: 131749 IP address blocks: 2402:be80::/35 maxlen: 35 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Apr 2024 11:04:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:3b:1f:51:0c:57:fb:08:89:bc:33:02:09:83:dc:1f:c5:59:40:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Validity Not Before: Jul 30 23:58:04 2023 GMT Not After : Jul 29 00:03:04 2024 GMT Subject: CN=27C13BC4E8F767309379EBA39D9CBA851BC7B5D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:33:fb:e7:fa:29:0b:9e:fb:46:c8:83:14:95: fb:16:b0:fa:35:b4:ff:6e:9d:05:0b:95:b7:28:7f: b0:b7:fb:c1:d5:1e:59:a8:53:2b:a7:7e:90:57:a8: 57:32:f3:28:b9:a2:a7:ce:42:f2:f2:18:cd:8b:cf: 6e:2b:25:66:c7:02:8d:45:4d:7b:8f:62:2b:01:e7: 48:c4:10:b2:dd:c9:04:d6:f5:8a:88:1c:2f:5b:07: 2e:80:2d:45:6c:05:33:9d:e8:4b:83:2f:f9:78:13: dd:e3:86:21:e3:17:1a:2e:b8:89:0a:dd:2d:c3:89: 2d:62:9b:ed:ef:84:5c:18:be:38:23:a8:6d:fd:78: 6d:ee:ce:fc:5c:1c:80:0b:26:99:f4:e0:6a:64:21: 7e:97:48:3e:65:8d:9c:91:b2:4a:0b:db:9f:0c:f0: 2d:37:30:9b:cb:79:2c:7f:35:a4:a5:63:7f:41:67: 86:63:b1:7c:23:c4:0d:8c:37:6a:23:28:27:14:54: 48:10:f6:3d:96:df:6a:a7:09:f3:b1:58:f5:15:34: 03:8f:f1:00:12:0b:14:6e:17:ad:97:d9:81:ba:6b: 13:92:66:08:dc:d4:d6:49:70:ec:cf:a4:82:c6:be: 1f:91:14:fd:fa:e5:72:f1:6c:fc:ab:fc:c7:8f:5b: 44:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:C1:3B:C4:E8:F7:67:30:93:79:EB:A3:9D:9C:BA:85:1B:C7:B5:D3 X509v3 Authority Key Identifier: keyid:10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a3a2f33352d3335203d3e20313331373439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:be80::/35 Signature Algorithm: sha256WithRSAEncryption 26:2b:6c:22:5c:dc:72:0b:f3:9d:54:5f:e3:27:7b:22:36:4b: f8:ee:0f:f0:d5:3e:b0:99:d9:39:5a:30:59:49:aa:ad:32:60: b6:dc:ac:f1:68:b5:e2:95:29:24:1d:f5:a8:3a:46:83:27:e9: e1:6c:a6:b5:12:73:8b:c8:cc:1a:0d:a6:a2:b4:b1:f4:7f:35: b1:57:36:98:48:03:30:e9:fa:3d:d5:5d:a2:82:16:fe:b4:9e: 2a:9e:cc:4f:87:db:1e:39:8d:72:8f:74:eb:3b:7e:b5:3e:1a: 09:d2:51:c5:a9:02:10:17:b0:51:b9:6a:23:af:0f:f0:8a:32: e6:b4:3b:ae:f5:04:f7:54:81:90:3a:cd:76:a3:1e:78:ef:74: 13:52:d1:9f:51:20:d1:c9:42:5f:25:5c:b8:9b:a6:fe:45:fd: 80:90:fb:af:96:8c:96:c4:3d:0d:6f:b4:94:52:d2:14:0c:28: b4:2b:72:fb:8a:d6:ec:85:ba:38:cd:4e:7f:01:b5:dc:7a:c4: 12:4a:66:a5:f6:16:42:f3:ce:86:08:e0:cb:16:8c:76:a9:e5: 61:0e:96:d3:fc:01:36:53:45:b2:00:9f:45:e4:af:f1:c1:96: 08:48:78:72:93:ed:a6:60:6a:41:c5:02:84:be:de:04:e2:15: b9:7c:84:51 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUODsfUQxX+wiJvDMCCYPcH8VZQMYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5 NTIyNDZGRjAeFw0yMzA3MzAyMzU4MDRaFw0yNDA3MjkwMDAzMDRaMDMxMTAvBgNV BAMTKDI3QzEzQkM0RThGNzY3MzA5Mzc5RUJBMzlEOUNCQTg1MUJDN0I1RDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdM/vn+ikLnvtGyIMUlfsWsPo1 tP9unQULlbcof7C3+8HVHlmoUyunfpBXqFcy8yi5oqfOQvLyGM2Lz24rJWbHAo1F TXuPYisB50jEELLdyQTW9YqIHC9bBy6ALUVsBTOd6EuDL/l4E93jhiHjFxouuIkK 3S3DiS1im+3vhFwYvjgjqG39eG3uzvxcHIALJpn04GpkIX6XSD5ljZyRskoL258M 8C03MJvLeSx/NaSlY39BZ4ZjsXwjxA2MN2ojKCcUVEgQ9j2W32qnCfOxWPUVNAOP 8QASCxRuF62X2YG6axOSZgjc1NZJcOzPpILGvh+RFP365XLxbPyr/MePW0RlAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUJ8E7xOj3ZzCTeeujnZy6hRvHtdMwHwYDVR0j BBgwFoAUEP41sEDoo9BeW+m+5PCmNpUiRv8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MDBmNGYzNy1jN2ZiLTQ3ZDAtOGE4NS1lY2ZkMTJiOTE1ZjUvMC8xMEZFMzVCMDQw RThBM0QwNUU1QkU5QkVFNEYwQTYzNjk1MjI0NkZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5NTIy NDZGRi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMwMGY0ZjM3LWM3ZmItNDdkMC04 YTg1LWVjZmQxMmI5MTVmNS8wLzMyMzQzMDMyM2E2MjY1MzgzMDNhM2EyZjMzMzUy ZDMzMzUyMDNkM2UyMDMxMzMzMTM3MzQzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBSQCvoAAMA0GCSqG SIb3DQEBCwUAA4IBAQAmK2wiXNxyC/OdVF/jJ3siNkv47g/w1T6wmdk5WjBZSaqt MmC23KzxaLXilSkkHfWoOkaDJ+nhbKa1EnOLyMwaDaaitLH0fzWxVzaYSAMw6fo9 1V2ighb+tJ4qnsxPh9seOY1yj3TrO361PhoJ0lHFqQIQF7BRuWojrw/wijLmtDuu 9QT3VIGQOs12ox5473QTUtGfUSDRyUJfJVy4m6b+Rf2AkPuvloyWxD0Nb7SUUtIU DCi0K3L7itbshbo4zU5/AbXcesQSSmal9hZC886GCODLFox2qeVhDpbT/AE2U0Wy AJ9F5K/xwZYISHhyk+2mYGpBxQKEvt4E4hW5fIRR -----END CERTIFICATE-----Generated at Sat Apr 27 10:12:42 2024 by rpki-client on console-ams.rpki-client.org