$ rpki-client -vvf repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a3a2f33352d3335203d3e20313331373439.roa File: 323430323a626538303a3a2f33352d3335203d3e20313331373439.roa (raw, json) Hash identifier: coDrWqzbyq2BQseK5NrvbOtXAj1+xnAkREKfl4Q2n4g= Subject key identifier: 3C:27:BA:F9:9C:53:CA:1B:08:32:B9:35:54:17:51:04:23:11:28:72 Certificate issuer: /CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Certificate serial: 5102157B21086137C8B29D8F23E55434CD928ACD Authority key identifier: 10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a3a2f33352d3335203d3e20313331373439.roa Signing time: Mon 01 Jul 2024 01:02:32 +0000 ROA not before: Mon 01 Jul 2024 00:57:32 +0000 ROA not after: Mon 30 Jun 2025 01:02:32 +0000 asID: 131749 IP address blocks: 2402:be80::/35 maxlen: 35 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:02:15:7b:21:08:61:37:c8:b2:9d:8f:23:e5:54:34:cd:92:8a:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Validity Not Before: Jul 1 00:57:32 2024 GMT Not After : Jun 30 01:02:32 2025 GMT Subject: CN=3C27BAF99C53CA1B0832B9355417510423112872 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:8e:49:0f:a7:cd:8d:7d:52:dd:97:62:c0:f9: 98:6b:64:1b:65:b3:92:5b:b4:d3:70:ee:29:ae:81: 50:6b:9f:0c:cc:64:d1:03:13:61:56:32:b5:70:ed: b1:03:08:61:70:58:48:6e:6f:1b:fc:f0:b4:a3:d7: 2f:5c:60:58:57:85:c2:73:07:d4:4c:7b:c6:47:c0: 81:3a:47:77:0c:df:98:71:c7:4e:b4:27:9c:36:87: 54:f8:b3:13:22:8b:f3:5f:e5:c2:30:0e:43:ae:d5: a9:2f:40:69:43:ad:fe:da:22:ad:82:85:bf:47:f4: 77:3a:d1:b2:84:ea:b8:46:f7:ea:1b:5d:e9:e6:6f: f7:2a:68:bd:b3:d0:07:6d:ab:87:03:e6:c0:fc:79: 39:14:cb:a4:38:bc:3b:f6:de:9d:15:f9:59:71:62: bd:76:be:c8:e5:cd:7b:0a:f2:81:7e:e0:eb:2d:c2: f0:b4:d9:36:d2:2a:88:b3:08:39:05:82:76:aa:a0: fc:32:8f:70:eb:a2:20:6c:de:96:94:2d:97:6f:8f: 25:af:4b:c9:f8:ec:1a:de:1c:e5:d5:b0:ba:9b:30: 12:4b:bc:9e:d1:50:8a:b0:2c:9a:f3:a5:67:6a:63: f2:9b:26:39:c9:7c:ce:ac:1e:49:6c:46:00:71:95: 50:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:27:BA:F9:9C:53:CA:1B:08:32:B9:35:54:17:51:04:23:11:28:72 X509v3 Authority Key Identifier: keyid:10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a3a2f33352d3335203d3e20313331373439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:be80::/35 Signature Algorithm: sha256WithRSAEncryption 37:18:30:cc:7e:3f:fd:c9:0c:f1:a1:2e:d4:94:c9:87:cc:7c: 33:2d:3b:b2:76:5b:52:fd:85:f2:81:c9:97:c8:fc:23:bd:d5: 85:d4:31:24:4b:9c:93:d7:de:f1:65:9f:c7:c4:c9:15:d7:32: e9:6a:5e:95:8b:54:66:0a:36:69:a1:c3:bd:34:85:b8:e3:bc: 4b:5b:92:04:e5:3f:3b:83:d5:a8:15:a4:dc:2e:23:2f:1c:f5: 6b:d8:a6:a0:e6:67:e6:5e:46:90:fc:41:84:d3:e3:45:39:66: c6:4b:b6:97:2b:da:6d:8e:95:25:1a:e4:02:73:5c:45:34:45: 90:19:e3:7b:be:c4:cb:b5:e6:d6:cb:49:39:06:f0:96:70:00: 49:6a:05:c6:08:85:fa:72:82:47:c6:c4:13:9a:36:b7:40:64: e5:a7:61:01:d1:5f:0a:30:c3:11:aa:9a:40:bf:97:fa:e9:35: 13:1a:36:9a:80:4e:d5:ab:d7:19:ef:13:6f:62:49:77:e1:24: 7b:dc:5f:fa:e3:60:a2:90:ec:8b:d1:3b:89:5f:43:16:82:9b: 56:67:0e:18:d5:2b:ea:bb:f9:29:b4:15:c6:6b:7a:04:da:1b: 21:3b:cc:0e:51:cb:af:40:7c:84:29:e9:30:2b:44:7c:8d:4b: f1:1a:7b:84 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUQIVeyEIYTfIsp2PI+VUNM2Sis0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5 NTIyNDZGRjAeFw0yNDA3MDEwMDU3MzJaFw0yNTA2MzAwMTAyMzJaMDMxMTAvBgNV BAMTKDNDMjdCQUY5OUM1M0NBMUIwODMyQjkzNTU0MTc1MTA0MjMxMTI4NzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcjkkPp82NfVLdl2LA+ZhrZBtl s5JbtNNw7imugVBrnwzMZNEDE2FWMrVw7bEDCGFwWEhubxv88LSj1y9cYFhXhcJz B9RMe8ZHwIE6R3cM35hxx060J5w2h1T4sxMii/Nf5cIwDkOu1akvQGlDrf7aIq2C hb9H9Hc60bKE6rhG9+obXenmb/cqaL2z0Adtq4cD5sD8eTkUy6Q4vDv23p0V+Vlx Yr12vsjlzXsK8oF+4OstwvC02TbSKoizCDkFgnaqoPwyj3DroiBs3paULZdvjyWv S8n47BreHOXVsLqbMBJLvJ7RUIqwLJrzpWdqY/KbJjnJfM6sHklsRgBxlVCdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUPCe6+ZxTyhsIMrk1VBdRBCMRKHIwHwYDVR0j BBgwFoAUEP41sEDoo9BeW+m+5PCmNpUiRv8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MDBmNGYzNy1jN2ZiLTQ3ZDAtOGE4NS1lY2ZkMTJiOTE1ZjUvMC8xMEZFMzVCMDQw RThBM0QwNUU1QkU5QkVFNEYwQTYzNjk1MjI0NkZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5NTIy NDZGRi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMwMGY0ZjM3LWM3ZmItNDdkMC04 YTg1LWVjZmQxMmI5MTVmNS8wLzMyMzQzMDMyM2E2MjY1MzgzMDNhM2EyZjMzMzUy ZDMzMzUyMDNkM2UyMDMxMzMzMTM3MzQzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBSQCvoAAMA0GCSqG SIb3DQEBCwUAA4IBAQA3GDDMfj/9yQzxoS7UlMmHzHwzLTuydltS/YXygcmXyPwj vdWF1DEkS5yT197xZZ/HxMkV1zLpal6Vi1RmCjZpocO9NIW447xLW5IE5T87g9Wo FaTcLiMvHPVr2Kag5mfmXkaQ/EGE0+NFOWbGS7aXK9ptjpUlGuQCc1xFNEWQGeN7 vsTLtebWy0k5BvCWcABJagXGCIX6coJHxsQTmja3QGTlp2EB0V8KMMMRqppAv5f6 6TUTGjaagE7Vq9cZ7xNvYkl34SR73F/642CikOyL0TuJX0MWgptWZw4Y1Svqu/kp tBXGa3oE2hshO8wOUcuvQHyEKekwK0R8jUvxGnuE -----END CERTIFICATE-----Generated at Fri Nov 22 05:48:03 2024 by rpki-client on console-fra.rpki-client.org