$ rpki-client -vvf repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a653030303a3a2f33352d3335203d3e20313331373439.roa File: 323430323a626538303a653030303a3a2f33352d3335203d3e20313331373439.roa (raw, json) Hash identifier: wPrR/CuGOoimfu2ESRqwKfIX+XXz6lk/Ile4WLcqwSQ= Subject key identifier: AD:89:D7:00:82:E1:4A:2D:F9:E6:CB:3A:C6:A8:7A:C8:5B:66:FA:F2 Certificate issuer: /CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Certificate serial: 04453DDE2E449B9784512E49BFE5A927D456BE74 Authority key identifier: 10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a653030303a3a2f33352d3335203d3e20313331373439.roa Signing time: Sun 29 Dec 2024 14:00:00 +0000 ROA not before: Sun 29 Dec 2024 13:55:00 +0000 ROA not after: Sun 28 Dec 2025 14:00:00 +0000 asID: 131749 IP address blocks: 2402:be80:e000::/35 maxlen: 35 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 19:36:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:45:3d:de:2e:44:9b:97:84:51:2e:49:bf:e5:a9:27:d4:56:be:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Validity Not Before: Dec 29 13:55:00 2024 GMT Not After : Dec 28 14:00:00 2025 GMT Subject: CN=AD89D70082E14A2DF9E6CB3AC6A87AC85B66FAF2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:ef:cd:b5:9a:20:a4:00:3b:54:70:c5:41:bb: 2d:d7:1b:7e:74:da:fe:4e:5c:20:b7:80:33:c7:bf: 15:34:cb:c6:ee:c6:c9:81:ef:a9:27:26:4e:b7:78: a1:ef:e0:80:65:3e:0e:a5:12:00:07:ad:02:42:21: f9:1d:5f:e4:9d:60:7b:f4:03:ce:cc:99:8a:c0:0d: cb:3c:69:9a:0d:e9:50:fb:8c:4f:6c:b3:d3:27:16: 23:10:7d:d7:77:e4:4a:88:da:c7:a8:7a:c8:fc:65: ce:7d:38:83:15:82:4a:b7:24:23:d7:c7:84:21:df: e7:2a:80:35:a5:14:27:ee:9e:5f:a1:0a:30:45:84: 8e:69:e3:d6:5b:20:0a:3c:d2:1c:b4:05:67:57:6b: 59:24:ec:e4:ac:68:89:8f:38:69:c0:73:ed:f4:0e: 36:6b:d9:bc:52:2c:49:97:04:58:15:d1:6e:f0:df: 5f:d1:d9:4c:5e:5e:9c:c3:ca:fc:8e:cb:24:f4:8a: 59:ba:42:c1:54:81:df:d9:9b:ef:b4:af:95:92:e0: ac:57:27:ed:f3:16:fa:00:0c:1b:01:bf:37:e5:7b: be:f9:02:89:e3:f4:32:6c:2d:7f:d3:23:77:c6:d0: 35:9e:76:43:14:11:1b:60:05:42:8f:85:fa:df:4a: 8b:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:89:D7:00:82:E1:4A:2D:F9:E6:CB:3A:C6:A8:7A:C8:5B:66:FA:F2 X509v3 Authority Key Identifier: keyid:10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a653030303a3a2f33352d3335203d3e20313331373439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:be80:e000::/35 Signature Algorithm: sha256WithRSAEncryption 0e:36:5a:1a:3e:3f:ef:68:9f:60:0c:79:fe:66:bf:d2:c2:ad: fa:15:a3:fa:bb:8e:11:f3:10:d9:82:cf:3f:9c:05:6f:84:27: 76:c7:22:e5:ba:7b:e2:e1:09:96:4b:76:f9:dc:2b:4e:45:c4: 43:06:58:40:9a:de:20:e7:7a:7a:32:f8:13:14:56:3e:1e:e7: 4d:a8:90:11:81:8a:5e:48:04:f8:b3:24:4f:e8:38:d3:2f:8c: 24:09:18:38:bb:0b:be:2e:2f:05:7b:df:49:47:99:0d:38:2a: 5a:4d:0b:16:7e:d6:e2:57:f2:b0:0f:12:d9:ae:6b:8e:ac:57: 23:c3:d8:a3:65:59:41:78:1c:1d:56:56:84:15:b7:7a:d5:4f: b7:15:8d:67:b1:7d:c0:ac:45:5f:1e:76:f1:0b:2f:21:47:d8: 16:41:44:ac:6d:cc:da:1a:fe:b6:f4:92:63:2d:31:08:44:03: fe:26:c5:d6:40:e0:bd:aa:65:95:07:04:87:81:08:4b:e2:44: cc:97:31:28:0f:c6:45:21:70:98:f4:2e:d2:a5:0a:f3:f8:33: da:2d:15:8f:56:10:fc:53:47:dc:68:e5:fd:d2:87:45:68:2b: 6b:6e:57:46:6e:7d:75:e3:d0:e9:e3:a4:73:de:5f:a5:c8:ca: fe:1d:b3:72 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUBEU93i5Em5eEUS5Jv+WpJ9RWvnQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5 NTIyNDZGRjAeFw0yNDEyMjkxMzU1MDBaFw0yNTEyMjgxNDAwMDBaMDMxMTAvBgNV BAMTKEFEODlENzAwODJFMTRBMkRGOUU2Q0IzQUM2QTg3QUM4NUI2NkZBRjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDX7821miCkADtUcMVBuy3XG350 2v5OXCC3gDPHvxU0y8buxsmB76knJk63eKHv4IBlPg6lEgAHrQJCIfkdX+SdYHv0 A87MmYrADcs8aZoN6VD7jE9ss9MnFiMQfdd35EqI2seoesj8Zc59OIMVgkq3JCPX x4Qh3+cqgDWlFCfunl+hCjBFhI5p49ZbIAo80hy0BWdXa1kk7OSsaImPOGnAc+30 DjZr2bxSLEmXBFgV0W7w31/R2UxeXpzDyvyOyyT0ilm6QsFUgd/Zm++0r5WS4KxX J+3zFvoADBsBvzfle775Aonj9DJsLX/TI3fG0DWedkMUERtgBUKPhfrfSosZAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUrYnXAILhSi355ss6xqh6yFtm+vIwHwYDVR0j BBgwFoAUEP41sEDoo9BeW+m+5PCmNpUiRv8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MDBmNGYzNy1jN2ZiLTQ3ZDAtOGE4NS1lY2ZkMTJiOTE1ZjUvMC8xMEZFMzVCMDQw RThBM0QwNUU1QkU5QkVFNEYwQTYzNjk1MjI0NkZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5NTIy NDZGRi5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMwMGY0ZjM3LWM3ZmItNDdkMC04 YTg1LWVjZmQxMmI5MTVmNS8wLzMyMzQzMDMyM2E2MjY1MzgzMDNhNjUzMDMwMzAz YTNhMmYzMzM1MmQzMzM1MjAzZDNlMjAzMTMzMzEzNzM0Mzkucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgUk Ar6A4DANBgkqhkiG9w0BAQsFAAOCAQEADjZaGj4/72ifYAx5/ma/0sKt+hWj+ruO EfMQ2YLPP5wFb4Qndsci5bp74uEJlkt2+dwrTkXEQwZYQJreIOd6ejL4ExRWPh7n TaiQEYGKXkgE+LMkT+g40y+MJAkYOLsLvi4vBXvfSUeZDTgqWk0LFn7W4lfysA8S 2a5rjqxXI8PYo2VZQXgcHVZWhBW3etVPtxWNZ7F9wKxFXx528QsvIUfYFkFErG3M 2hr+tvSSYy0xCEQD/ibF1kDgvapllQcEh4EIS+JEzJcxKA/GRSFwmPQu0qUK8/gz 2i0Vj1YQ/FNH3Gjl/dKHRWgra25XRm59dePQ6eOkc95fpcjK/h2zcg== -----END CERTIFICATE-----Generated at Sun Apr 6 17:45:39 2025 by rpki-client