$ rpki-client -vvf repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a633030303a3a2f33352d3335203d3e20313331373439.roa File: 323430323a626538303a633030303a3a2f33352d3335203d3e20313331373439.roa (raw, json) Hash identifier: yD3+h/70LNRy7k+grqlLvUiRpTBwDIrPcXy82xCrK1k= Subject key identifier: DD:98:BB:0A:59:1C:DC:20:D5:2F:AB:94:EC:1E:0C:01:0A:69:AB:67 Certificate issuer: /CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Certificate serial: 040C6709AFC339C7D0908A3268BDE2E343E37D36 Authority key identifier: 10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a633030303a3a2f33352d3335203d3e20313331373439.roa Signing time: Mon 01 Jul 2024 01:02:33 +0000 ROA not before: Mon 01 Jul 2024 00:57:33 +0000 ROA not after: Mon 30 Jun 2025 01:02:33 +0000 asID: 131749 IP address blocks: 2402:be80:c000::/35 maxlen: 35 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:0c:67:09:af:c3:39:c7:d0:90:8a:32:68:bd:e2:e3:43:e3:7d:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Validity Not Before: Jul 1 00:57:33 2024 GMT Not After : Jun 30 01:02:33 2025 GMT Subject: CN=DD98BB0A591CDC20D52FAB94EC1E0C010A69AB67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:64:df:b4:90:37:a3:86:f2:9d:07:c9:67:04: 9c:3a:ba:8c:ca:2e:f2:39:82:43:0a:3c:9a:98:18: 7f:56:61:c6:77:94:a0:56:46:9b:ae:1e:dd:b3:44: 47:60:41:f1:97:fd:a2:28:21:3a:d1:65:4b:c3:f1: 0e:43:9c:cd:4c:96:b2:c0:a7:fe:56:be:26:62:63: 6e:28:09:1d:38:1d:e5:c5:84:b9:5c:46:bf:f3:a8: 1a:c2:73:00:29:f8:0b:9d:f9:0a:62:90:5c:12:b5: 07:97:79:41:e2:e3:45:72:85:d4:66:f7:f9:ee:66: 70:de:61:6e:dc:a1:83:ff:52:53:33:c7:85:d8:9a: 53:d6:88:fb:ea:a6:fd:c8:fa:39:c4:71:aa:8c:72: 68:86:d0:b0:ac:1d:1e:72:a8:fd:aa:56:e0:5c:86: 14:b3:d0:89:e7:bc:0a:21:96:a0:39:1e:b5:35:3e: 4a:21:08:6f:ea:8b:f0:a3:91:01:21:30:c4:16:3e: 4f:47:8e:ed:4b:3b:74:eb:e4:e8:04:91:b4:40:13: 89:88:67:45:d0:23:2a:6b:ed:42:e9:77:be:8e:84: 4f:f8:e8:62:a3:9c:4d:7b:22:1d:5a:57:77:a3:bc: c7:66:d7:64:61:b4:c3:de:cb:28:03:24:29:b2:59: 5b:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:98:BB:0A:59:1C:DC:20:D5:2F:AB:94:EC:1E:0C:01:0A:69:AB:67 X509v3 Authority Key Identifier: keyid:10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a633030303a3a2f33352d3335203d3e20313331373439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:be80:c000::/35 Signature Algorithm: sha256WithRSAEncryption 39:c3:44:7c:fb:41:70:5b:c7:ca:44:9f:e2:d6:9b:76:f6:38: e4:4d:2f:54:11:5f:ca:b6:a7:f4:ed:f2:3b:ab:31:f5:d9:69: 18:79:fb:76:a9:67:cc:ef:69:8b:a0:f1:b6:08:62:c7:f2:32: 78:80:30:34:d4:bc:23:4d:1f:9e:26:52:ec:45:d2:ad:ef:67: 7d:ee:82:64:8d:68:be:df:33:3f:77:24:62:d0:07:ea:b5:fc: 67:81:98:d4:2c:69:25:27:a6:85:75:76:31:ad:01:ac:6c:ab: 4a:dd:24:e8:8f:db:ac:99:0d:64:57:ee:79:09:3c:65:01:c7: 9c:97:aa:bb:07:17:3e:fa:eb:6f:93:06:a5:54:29:c3:3d:12: 9f:9a:c2:e0:eb:07:e1:f4:75:eb:53:2a:c5:aa:68:bd:76:d1: 97:53:4f:d2:7c:ea:93:b4:d0:3b:b1:01:d2:84:8f:c3:04:cf: 40:8c:13:26:7a:39:9b:e5:95:e6:bd:1d:91:3b:9e:51:83:ef: 99:2f:2c:ca:f9:53:1a:d5:84:66:60:35:77:11:93:54:50:07: e2:95:8e:df:e2:0c:2f:fe:42:90:c8:5e:de:11:ab:39:23:bb: 57:21:03:fd:0b:36:3f:17:d1:5a:e4:bd:e2:20:d3:c7:de:d1: cb:25:09:88 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUBAxnCa/DOcfQkIoyaL3i40PjfTYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5 NTIyNDZGRjAeFw0yNDA3MDEwMDU3MzNaFw0yNTA2MzAwMTAyMzNaMDMxMTAvBgNV BAMTKEREOThCQjBBNTkxQ0RDMjBENTJGQUI5NEVDMUUwQzAxMEE2OUFCNjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD3ZN+0kDejhvKdB8lnBJw6uozK LvI5gkMKPJqYGH9WYcZ3lKBWRpuuHt2zREdgQfGX/aIoITrRZUvD8Q5DnM1MlrLA p/5WviZiY24oCR04HeXFhLlcRr/zqBrCcwAp+Aud+QpikFwStQeXeUHi40VyhdRm 9/nuZnDeYW7coYP/UlMzx4XYmlPWiPvqpv3I+jnEcaqMcmiG0LCsHR5yqP2qVuBc hhSz0InnvAohlqA5HrU1PkohCG/qi/CjkQEhMMQWPk9Hju1LO3Tr5OgEkbRAE4mI Z0XQIypr7ULpd76OhE/46GKjnE17Ih1aV3ejvMdm12RhtMPeyygDJCmyWVt1AgMB AAGjggI+MIICOjAdBgNVHQ4EFgQU3Zi7Clkc3CDVL6uU7B4MAQppq2cwHwYDVR0j BBgwFoAUEP41sEDoo9BeW+m+5PCmNpUiRv8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MDBmNGYzNy1jN2ZiLTQ3ZDAtOGE4NS1lY2ZkMTJiOTE1ZjUvMC8xMEZFMzVCMDQw RThBM0QwNUU1QkU5QkVFNEYwQTYzNjk1MjI0NkZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5NTIy NDZGRi5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMwMGY0ZjM3LWM3ZmItNDdkMC04 YTg1LWVjZmQxMmI5MTVmNS8wLzMyMzQzMDMyM2E2MjY1MzgzMDNhNjMzMDMwMzAz YTNhMmYzMzM1MmQzMzM1MjAzZDNlMjAzMTMzMzEzNzM0Mzkucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgUk Ar6AwDANBgkqhkiG9w0BAQsFAAOCAQEAOcNEfPtBcFvHykSf4tabdvY45E0vVBFf yran9O3yO6sx9dlpGHn7dqlnzO9pi6Dxtghix/IyeIAwNNS8I00fniZS7EXSre9n fe6CZI1ovt8zP3ckYtAH6rX8Z4GY1CxpJSemhXV2Ma0BrGyrSt0k6I/brJkNZFfu eQk8ZQHHnJequwcXPvrrb5MGpVQpwz0Sn5rC4OsH4fR161MqxapovXbRl1NP0nzq k7TQO7EB0oSPwwTPQIwTJno5m+WV5r0dkTueUYPvmS8syvlTGtWEZmA1dxGTVFAH 4pWO3+IML/5CkMhe3hGrOSO7VyED/Qs2PxfRWuS94iDTx97RyyUJiA== -----END CERTIFICATE-----Generated at Fri Nov 22 06:33:23 2024 by rpki-client on console-ams.rpki-client.org