$ rpki-client -vvf repo-rpki.idnic.net/repo/018e2e74-f6c7-49f4-ad58-f00cde3eda60/0/323030313a6466373a626230303a3a2f34382d3438203d3e20313338303531.roa File: 323030313a6466373a626230303a3a2f34382d3438203d3e20313338303531.roa (raw, json) Hash identifier: cb2aylHiHSC4fi9/lMSvkqhTCdu9b24WuShT1wCqpZM= Subject key identifier: 0C:22:5E:9D:EB:F7:BF:DF:9A:8E:F3:6D:FF:AA:57:A5:57:1F:1E:0E Certificate issuer: /CN=9B123580240DE1580D07828D18D711FDE8163C25 Certificate serial: 2DD206F0D5ADEB13988316FFE638F499648DF256 Authority key identifier: 9B:12:35:80:24:0D:E1:58:0D:07:82:8D:18:D7:11:FD:E8:16:3C:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9B123580240DE1580D07828D18D711FDE8163C25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/018e2e74-f6c7-49f4-ad58-f00cde3eda60/0/323030313a6466373a626230303a3a2f34382d3438203d3e20313338303531.roa Signing time: Fri 31 Jan 2025 02:00:00 +0000 ROA not before: Fri 31 Jan 2025 01:55:00 +0000 ROA not after: Fri 30 Jan 2026 02:00:00 +0000 asID: 138051 IP address blocks: 2001:df7:bb00::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/018e2e74-f6c7-49f4-ad58-f00cde3eda60/0/9B123580240DE1580D07828D18D711FDE8163C25.crl rsync://repo-rpki.idnic.net/repo/018e2e74-f6c7-49f4-ad58-f00cde3eda60/0/9B123580240DE1580D07828D18D711FDE8163C25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9B123580240DE1580D07828D18D711FDE8163C25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 15:40:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:d2:06:f0:d5:ad:eb:13:98:83:16:ff:e6:38:f4:99:64:8d:f2:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9B123580240DE1580D07828D18D711FDE8163C25 Validity Not Before: Jan 31 01:55:00 2025 GMT Not After : Jan 30 02:00:00 2026 GMT Subject: CN=0C225E9DEBF7BFDF9A8EF36DFFAA57A5571F1E0E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:19:c7:dc:17:d0:c6:0f:06:2c:2f:f5:23:da: 9a:27:f2:5b:85:b5:b2:e8:3e:81:5b:ac:24:3c:51: a5:80:b6:51:20:6a:2c:47:90:a3:c7:14:cc:05:31: d6:6d:19:5f:ac:88:5b:83:32:56:11:2a:83:9c:b8: 5a:f3:8f:d8:58:59:40:c1:7b:d5:de:78:e9:ce:c2: 36:a8:d1:b4:aa:20:6b:28:c2:a1:9d:e5:64:c6:31: 56:ca:86:8a:5e:70:a2:aa:b3:c9:b8:25:98:2e:5e: dd:9d:fe:4d:e4:cf:61:05:6c:66:ba:65:64:90:1b: 60:ae:a5:48:ae:c2:36:73:33:91:34:6f:06:ad:1d: 8c:3a:bf:75:0a:82:34:ba:4a:a4:3c:9b:3b:82:76: d9:78:b4:9c:7b:06:d4:6a:c5:b7:8a:b8:8a:5e:01: b3:f4:e9:8d:64:33:ee:f4:b1:e5:19:f7:42:f0:35: 56:f4:34:d3:77:14:b5:c6:6c:68:9a:eb:94:f7:b6: 09:45:57:3f:7e:3e:09:60:72:dc:5c:f7:9c:e9:2e: 70:f9:a9:60:d9:d0:f4:da:1a:32:ba:62:21:6d:d5: ef:8c:64:8d:ee:1d:67:f8:36:c7:c5:54:21:47:8d: 14:8c:3e:b6:36:af:43:bf:92:26:37:5d:5c:6e:c7: e6:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:22:5E:9D:EB:F7:BF:DF:9A:8E:F3:6D:FF:AA:57:A5:57:1F:1E:0E X509v3 Authority Key Identifier: keyid:9B:12:35:80:24:0D:E1:58:0D:07:82:8D:18:D7:11:FD:E8:16:3C:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/018e2e74-f6c7-49f4-ad58-f00cde3eda60/0/9B123580240DE1580D07828D18D711FDE8163C25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9B123580240DE1580D07828D18D711FDE8163C25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/018e2e74-f6c7-49f4-ad58-f00cde3eda60/0/323030313a6466373a626230303a3a2f34382d3438203d3e20313338303531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df7:bb00::/48 Signature Algorithm: sha256WithRSAEncryption 09:c1:79:bf:db:64:a1:ac:07:ca:9d:a5:03:72:74:2a:f2:bd: ee:bd:d1:bf:b8:55:5f:50:4d:17:26:c7:49:88:ec:80:4a:0a: 3e:af:65:d5:a6:8e:23:7b:72:fa:0f:88:85:c1:b8:50:ac:0a: 30:f6:9d:28:9e:8d:7e:b1:34:e4:1b:1a:ef:4b:81:0c:a6:75: 54:1b:f8:5d:69:1c:82:62:c4:95:29:dd:e7:d4:17:b1:77:95: a3:fb:7b:5f:10:48:0c:e0:b6:4b:55:9e:58:ab:3d:ae:bc:5d: 93:5d:96:0f:6c:ff:39:30:9a:e3:25:fd:9f:47:df:10:ea:69: b9:9f:b0:24:eb:d1:e2:e9:b5:1e:60:65:ec:5c:b7:28:16:e2: bc:00:97:ed:34:28:c9:01:40:68:8d:b8:49:a5:ba:31:a8:b9: d4:01:c3:d4:86:39:ca:ed:ee:63:4d:f5:e7:d0:d8:6a:3f:c9: e7:d0:ac:b2:ae:c3:e1:4d:34:ff:53:16:81:4a:31:b3:0b:6c: f8:9e:9c:e7:52:e7:3f:53:db:40:01:5a:57:d4:13:bd:fc:02: 81:4d:5c:62:65:6c:3e:1c:95:80:ad:7a:72:63:cd:96:9b:79: 7e:54:3c:2d:29:40:b3:c3:fd:5e:41:47:20:49:3a:c5:84:ce: 0a:f4:d0:93 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIULdIG8NWt6xOYgxb/5jj0mWSN8lYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUIxMjM1ODAyNDBERTE1ODBEMDc4MjhEMThENzExRkRF ODE2M0MyNTAeFw0yNTAxMzEwMTU1MDBaFw0yNjAxMzAwMjAwMDBaMDMxMTAvBgNV BAMTKDBDMjI1RTlERUJGN0JGREY5QThFRjM2REZGQUE1N0E1NTcxRjFFMEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeGcfcF9DGDwYsL/Uj2pon8luF tbLoPoFbrCQ8UaWAtlEgaixHkKPHFMwFMdZtGV+siFuDMlYRKoOcuFrzj9hYWUDB e9XeeOnOwjao0bSqIGsowqGd5WTGMVbKhopecKKqs8m4JZguXt2d/k3kz2EFbGa6 ZWSQG2CupUiuwjZzM5E0bwatHYw6v3UKgjS6SqQ8mzuCdtl4tJx7BtRqxbeKuIpe AbP06Y1kM+70seUZ90LwNVb0NNN3FLXGbGia65T3tglFVz9+Pglgctxc95zpLnD5 qWDZ0PTaGjK6YiFt1e+MZI3uHWf4NsfFVCFHjRSMPrY2r0O/kiY3XVxux+avAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUDCJenev3v9+ajvNt/6pXpVcfHg4wHwYDVR0j BBgwFoAUmxI1gCQN4VgNB4KNGNcR/egWPCUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MThlMmU3NC1mNmM3LTQ5ZjQtYWQ1OC1mMDBjZGUzZWRhNjAvMC85QjEyMzU4MDI0 MERFMTU4MEQwNzgyOEQxOEQ3MTFGREU4MTYzQzI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUIxMjM1ODAyNDBERTE1ODBEMDc4MjhEMThENzExRkRFODE2 M0MyNS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAxOGUyZTc0LWY2YzctNDlmNC1h ZDU4LWYwMGNkZTNlZGE2MC8wLzMyMzAzMDMxM2E2NDY2MzczYTYyNjIzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM4MzAzNTMxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 97sAMA0GCSqGSIb3DQEBCwUAA4IBAQAJwXm/22ShrAfKnaUDcnQq8r3uvdG/uFVf UE0XJsdJiOyASgo+r2XVpo4je3L6D4iFwbhQrAow9p0ono1+sTTkGxrvS4EMpnVU G/hdaRyCYsSVKd3n1Bexd5Wj+3tfEEgM4LZLVZ5Yqz2uvF2TXZYPbP85MJrjJf2f R98Q6mm5n7Ak69Hi6bUeYGXsXLcoFuK8AJftNCjJAUBojbhJpboxqLnUAcPUhjnK 7e5jTfXn0NhqP8nn0KyyrsPhTTT/UxaBSjGzC2z4npznUuc/U9tAAVpX1BO9/AKB TVxiZWw+HJWArXpyY82Wm3l+VDwtKUCzw/1eQUcgSTrFhM4K9NCT -----END CERTIFICATE-----Generated at Sun Apr 6 09:40:46 2025 by rpki-client