$ rpki-client -vvf repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a653030303a3a2f33352d3335203d3e20313331373439.roa File: 323430323a626538303a653030303a3a2f33352d3335203d3e20313331373439.roa (raw, json) Hash identifier: +TSMRwKz+lRFAMLOklh3r7iuDySdx2+lKRRr89+Jt0s= Subject key identifier: FD:7E:E1:BB:F6:ED:09:4B:8D:AB:EA:0F:28:09:A6:41:28:CA:D9:AD Certificate issuer: /CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Certificate serial: 2222E6C2DC02E226521D0F09508748379281080C Authority key identifier: 10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a653030303a3a2f33352d3335203d3e20313331373439.roa Signing time: Sun 28 Jan 2024 14:00:00 +0000 ROA not before: Sun 28 Jan 2024 13:55:00 +0000 ROA not after: Sun 26 Jan 2025 14:00:00 +0000 asID: 131749 IP address blocks: 2402:be80:e000::/35 maxlen: 35 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:22:e6:c2:dc:02:e2:26:52:1d:0f:09:50:87:48:37:92:81:08:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Validity Not Before: Jan 28 13:55:00 2024 GMT Not After : Jan 26 14:00:00 2025 GMT Subject: CN=FD7EE1BBF6ED094B8DABEA0F2809A64128CAD9AD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:de:c1:ea:41:8b:2e:dd:2f:fd:ef:23:7a:23: b4:0a:02:e4:84:19:63:ca:1b:2c:e8:57:88:c4:a9: d9:db:c3:c1:95:90:16:7b:e6:a7:6c:c5:27:9a:0d: bc:eb:75:9e:f2:40:98:74:f9:a6:66:77:95:1c:c4: 1c:22:c0:9e:b7:d3:7e:ca:3f:a0:c6:b0:a0:85:07: 03:cc:f3:20:55:c3:ea:40:02:c7:f4:4a:ae:c0:90: b3:66:05:d4:77:a5:df:7c:29:e1:b7:fd:3c:05:41: 81:cb:52:73:68:da:ce:da:1f:4d:c8:c6:d5:24:0c: d9:68:90:e2:99:52:2e:e9:13:24:fd:8d:d1:02:fc: 8f:4c:5d:43:0c:ee:04:02:c7:2f:bf:57:03:cf:99: ce:6f:33:be:28:a6:14:b5:f1:a7:ec:e9:fd:4e:1b: 40:e1:ab:bc:c0:11:f2:07:72:8c:cc:ba:8a:19:0d: 8d:f8:13:59:98:7a:d9:66:79:ab:e1:ff:da:9e:07: d5:ec:44:68:67:d5:e1:54:02:a7:c2:e8:a7:ec:8e: 16:ad:0d:33:fd:f4:f6:84:14:27:d4:65:4e:55:21: 58:53:bc:53:11:57:6a:71:d1:eb:85:bd:3b:a9:34: d3:cd:a3:36:e4:5f:da:b8:3c:5e:fa:d0:0b:bb:11: fd:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:7E:E1:BB:F6:ED:09:4B:8D:AB:EA:0F:28:09:A6:41:28:CA:D9:AD X509v3 Authority Key Identifier: keyid:10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a653030303a3a2f33352d3335203d3e20313331373439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:be80:e000::/35 Signature Algorithm: sha256WithRSAEncryption 01:7b:e9:3b:87:16:4c:a9:10:00:d4:7e:28:c4:3f:d4:b0:d2: ee:c6:39:92:42:5e:4d:95:ac:92:5e:d9:fb:65:f6:1e:b1:e0: 12:71:c5:e4:44:db:6e:d2:ad:8f:3c:4e:c5:bc:e4:12:4b:f2: 56:d9:71:27:29:f9:bf:2a:71:a1:9d:cf:dd:09:88:a4:20:92: 1e:f5:3e:d7:e6:ad:c4:26:7d:e0:2f:cd:d5:bb:99:11:c7:0d: 12:c0:63:e4:e7:46:07:63:35:7d:ba:d6:c0:a1:ea:41:f1:5a: b4:20:e1:70:20:e4:29:f2:27:76:17:e2:11:e1:99:66:b8:90: df:e5:34:f8:ab:e6:3a:0d:e4:4c:ca:be:f5:62:0e:63:1c:12: 1f:2c:e0:00:80:d4:67:2d:36:41:1a:e2:67:b8:13:19:0d:75: 1c:63:ac:a3:34:c7:7e:0e:ed:08:4f:a3:e7:8d:30:09:4d:da: 46:1a:76:51:d3:43:db:90:29:9d:31:82:db:f9:2e:48:ec:01: 64:f4:7f:ae:11:34:d6:f3:8d:02:40:43:be:b9:3f:65:5b:80: f8:5b:68:e3:ee:0f:a8:5c:37:f8:67:61:25:46:08:16:f7:cc: cb:4d:dd:38:13:3c:df:f1:91:aa:61:e8:e8:bc:34:a0:50:af: 81:17:ef:e2 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUIiLmwtwC4iZSHQ8JUIdIN5KBCAwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5 NTIyNDZGRjAeFw0yNDAxMjgxMzU1MDBaFw0yNTAxMjYxNDAwMDBaMDMxMTAvBgNV BAMTKEZEN0VFMUJCRjZFRDA5NEI4REFCRUEwRjI4MDlBNjQxMjhDQUQ5QUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDf3sHqQYsu3S/97yN6I7QKAuSE GWPKGyzoV4jEqdnbw8GVkBZ75qdsxSeaDbzrdZ7yQJh0+aZmd5UcxBwiwJ63037K P6DGsKCFBwPM8yBVw+pAAsf0Sq7AkLNmBdR3pd98KeG3/TwFQYHLUnNo2s7aH03I xtUkDNlokOKZUi7pEyT9jdEC/I9MXUMM7gQCxy+/VwPPmc5vM74ophS18afs6f1O G0Dhq7zAEfIHcozMuooZDY34E1mYetlmeavh/9qeB9XsRGhn1eFUAqfC6Kfsjhat DTP99PaEFCfUZU5VIVhTvFMRV2px0euFvTupNNPNozbkX9q4PF760Au7Ef0lAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQU/X7hu/btCUuNq+oPKAmmQSjK2a0wHwYDVR0j BBgwFoAUEP41sEDoo9BeW+m+5PCmNpUiRv8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MDBmNGYzNy1jN2ZiLTQ3ZDAtOGE4NS1lY2ZkMTJiOTE1ZjUvMC8xMEZFMzVCMDQw RThBM0QwNUU1QkU5QkVFNEYwQTYzNjk1MjI0NkZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5NTIy NDZGRi5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMwMGY0ZjM3LWM3ZmItNDdkMC04 YTg1LWVjZmQxMmI5MTVmNS8wLzMyMzQzMDMyM2E2MjY1MzgzMDNhNjUzMDMwMzAz YTNhMmYzMzM1MmQzMzM1MjAzZDNlMjAzMTMzMzEzNzM0Mzkucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgUk Ar6A4DANBgkqhkiG9w0BAQsFAAOCAQEAAXvpO4cWTKkQANR+KMQ/1LDS7sY5kkJe TZWskl7Z+2X2HrHgEnHF5ETbbtKtjzxOxbzkEkvyVtlxJyn5vypxoZ3P3QmIpCCS HvU+1+atxCZ94C/N1buZEccNEsBj5OdGB2M1fbrWwKHqQfFatCDhcCDkKfIndhfi EeGZZriQ3+U0+KvmOg3kTMq+9WIOYxwSHyzgAIDUZy02QRriZ7gTGQ11HGOsozTH fg7tCE+j540wCU3aRhp2UdND25ApnTGC2/kuSOwBZPR/rhE01vONAkBDvrk/ZVuA +Fto4+4PqFw3+GdhJUYIFvfMy03dOBM83/GRqmHo6Lw0oFCvgRfv4g== -----END CERTIFICATE-----Generated at Fri Nov 22 05:48:03 2024 by rpki-client on console-fra.rpki-client.org