$ rpki-client -vvf repo-rpki.idnic.net/repo/0221ad67-d35c-4559-9a73-7c74f50dcffa/0/323030313a6466313a653430303a3a2f34382d3438203d3e20313333383034.roa File: 323030313a6466313a653430303a3a2f34382d3438203d3e20313333383034.roa (raw, json) Hash identifier: bKELrvkygew/puVSCxFVERwd18KUv2pchNnSXhErods= Subject key identifier: 88:DD:36:CC:F4:03:5D:3E:CF:B5:5C:FB:E8:03:4B:D9:C9:E5:E6:5A Certificate issuer: /CN=56369FDBBCDE685B4440429A22B7967BBC3C5E36 Certificate serial: 4E5CD1C5E538E290FC9727BE42EBEA513087B3BA Authority key identifier: 56:36:9F:DB:BC:DE:68:5B:44:40:42:9A:22:B7:96:7B:BC:3C:5E:36 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/56369FDBBCDE685B4440429A22B7967BBC3C5E36.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0221ad67-d35c-4559-9a73-7c74f50dcffa/0/323030313a6466313a653430303a3a2f34382d3438203d3e20313333383034.roa Signing time: Sat 05 Apr 2025 05:00:00 +0000 ROA not before: Sat 05 Apr 2025 04:55:00 +0000 ROA not after: Sat 04 Apr 2026 05:00:00 +0000 asID: 133804 IP address blocks: 2001:df1:e400::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0221ad67-d35c-4559-9a73-7c74f50dcffa/0/56369FDBBCDE685B4440429A22B7967BBC3C5E36.crl rsync://repo-rpki.idnic.net/repo/0221ad67-d35c-4559-9a73-7c74f50dcffa/0/56369FDBBCDE685B4440429A22B7967BBC3C5E36.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/56369FDBBCDE685B4440429A22B7967BBC3C5E36.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 10:07:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:5c:d1:c5:e5:38:e2:90:fc:97:27:be:42:eb:ea:51:30:87:b3:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=56369FDBBCDE685B4440429A22B7967BBC3C5E36 Validity Not Before: Apr 5 04:55:00 2025 GMT Not After : Apr 4 05:00:00 2026 GMT Subject: CN=88DD36CCF4035D3ECFB55CFBE8034BD9C9E5E65A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:63:34:b4:b5:0f:6c:d6:96:1a:f2:f1:cd:d7: 0a:bf:f5:b3:d8:06:94:5f:bc:3f:28:ad:83:25:dd: e8:38:db:13:aa:bc:8f:2f:07:3a:9e:45:ce:a2:96: b6:e3:90:09:66:8b:94:9c:f6:62:6c:73:1e:ae:ee: 66:59:27:22:8c:4a:5e:d2:70:d6:1e:42:35:42:54: 7b:da:95:a8:b5:df:19:d9:af:1e:31:da:b7:e5:4f: d2:18:6c:80:c8:f0:a8:52:91:f5:8a:27:71:78:e1: 5a:3e:f2:a6:11:db:e7:aa:00:64:a4:b3:75:2a:a9: 82:c9:c4:04:97:a7:8e:8e:0c:ab:68:bb:a0:14:c1: d1:7d:ea:60:91:6e:b6:7c:22:02:e8:a8:16:4c:bb: 26:07:43:28:d0:9c:1a:df:2d:ed:74:10:85:f2:7b: 15:13:a1:f0:84:47:ee:56:63:7c:23:a0:0d:0c:92: 65:eb:58:08:a8:e1:0c:e4:c6:89:44:48:8b:c7:09: 0c:a8:ef:27:7a:52:03:0c:68:82:5b:fd:2e:b0:92: ab:b1:33:fc:d7:09:cf:4c:b5:f4:25:1e:1f:72:4e: cb:bd:91:51:33:10:0b:dd:59:82:09:ac:be:75:8c: 8c:4a:8f:78:30:8d:09:a7:3e:74:54:66:19:91:fa: 44:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:DD:36:CC:F4:03:5D:3E:CF:B5:5C:FB:E8:03:4B:D9:C9:E5:E6:5A X509v3 Authority Key Identifier: keyid:56:36:9F:DB:BC:DE:68:5B:44:40:42:9A:22:B7:96:7B:BC:3C:5E:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0221ad67-d35c-4559-9a73-7c74f50dcffa/0/56369FDBBCDE685B4440429A22B7967BBC3C5E36.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/56369FDBBCDE685B4440429A22B7967BBC3C5E36.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0221ad67-d35c-4559-9a73-7c74f50dcffa/0/323030313a6466313a653430303a3a2f34382d3438203d3e20313333383034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:e400::/48 Signature Algorithm: sha256WithRSAEncryption 95:d3:fc:df:f3:0d:6a:48:69:72:ad:cf:f2:32:ce:b8:a2:97: e7:6e:d9:db:8f:de:f0:08:26:24:0f:51:9b:3e:4a:1e:db:95: 7d:f5:b7:b3:e7:c2:a4:fd:7a:9e:92:41:a5:47:c9:60:77:ec: ff:17:f8:57:6a:56:7c:ba:3e:af:07:b7:b4:4e:99:64:3e:c5: 30:9d:17:d6:f4:04:5a:5f:81:aa:d3:a7:9b:37:7a:e2:20:01: 21:c2:ff:0f:3d:a5:0e:72:15:a1:fc:52:35:b2:18:c8:68:bd: ab:55:7f:95:dd:c7:fd:28:e7:6d:ac:e9:01:bb:1b:80:36:9b: 81:3b:e0:e1:d5:84:27:41:10:c7:c0:2a:e7:83:43:ec:6a:f6: ee:be:76:b8:a8:76:fd:99:d6:e8:d0:b0:99:1f:49:ef:04:0c: f1:85:c2:aa:e0:47:4e:3e:cb:0e:4a:b9:d3:99:bc:af:ba:00: 39:a6:72:60:b2:64:2c:db:89:3e:bb:52:24:9a:30:33:43:c2: ac:d3:ed:15:04:47:e9:7a:86:73:c8:20:e0:15:10:8d:bb:d9: 3b:5d:76:9a:36:af:ff:b7:95:ff:ef:10:2a:5b:e0:44:ed:1e: d4:d9:28:84:1e:e4:43:09:f3:98:6f:cc:c6:ed:eb:51:b5:e4: f2:18:5e:e6 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUTlzRxeU44pD8lye+QuvqUTCHs7owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTYzNjlGREJCQ0RFNjg1QjQ0NDA0MjlBMjJCNzk2N0JC QzNDNUUzNjAeFw0yNTA0MDUwNDU1MDBaFw0yNjA0MDQwNTAwMDBaMDMxMTAvBgNV BAMTKDg4REQzNkNDRjQwMzVEM0VDRkI1NUNGQkU4MDM0QkQ5QzlFNUU2NUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxYzS0tQ9s1pYa8vHN1wq/9bPY BpRfvD8orYMl3eg42xOqvI8vBzqeRc6ilrbjkAlmi5Sc9mJscx6u7mZZJyKMSl7S cNYeQjVCVHvalai13xnZrx4x2rflT9IYbIDI8KhSkfWKJ3F44Vo+8qYR2+eqAGSk s3UqqYLJxASXp46ODKtou6AUwdF96mCRbrZ8IgLoqBZMuyYHQyjQnBrfLe10EIXy exUTofCER+5WY3wjoA0MkmXrWAio4QzkxolESIvHCQyo7yd6UgMMaIJb/S6wkqux M/zXCc9MtfQlHh9yTsu9kVEzEAvdWYIJrL51jIxKj3gwjQmnPnRUZhmR+kTDAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUiN02zPQDXT7PtVz76ANL2cnl5lowHwYDVR0j BBgwFoAUVjaf27zeaFtEQEKaIreWe7w8XjYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MjIxYWQ2Ny1kMzVjLTQ1NTktOWE3My03Yzc0ZjUwZGNmZmEvMC81NjM2OUZEQkJD REU2ODVCNDQ0MDQyOUEyMkI3OTY3QkJDM0M1RTM2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTYzNjlGREJCQ0RFNjg1QjQ0NDA0MjlBMjJCNzk2N0JCQzND NUUzNi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAyMjFhZDY3LWQzNWMtNDU1OS05 YTczLTdjNzRmNTBkY2ZmYS8wLzMyMzAzMDMxM2E2NDY2MzEzYTY1MzQzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzMzMzgzMDM0LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8eQAMA0GCSqGSIb3DQEBCwUAA4IBAQCV0/zf8w1qSGlyrc/yMs64opfnbtnbj97w CCYkD1GbPkoe25V99bez58Kk/XqekkGlR8lgd+z/F/hXalZ8uj6vB7e0TplkPsUw nRfW9ARaX4Gq06ebN3riIAEhwv8PPaUOchWh/FI1shjIaL2rVX+V3cf9KOdtrOkB uxuANpuBO+Dh1YQnQRDHwCrng0Psavbuvna4qHb9mdbo0LCZH0nvBAzxhcKq4EdO PssOSrnTmbyvugA5pnJgsmQs24k+u1IkmjAzQ8Ks0+0VBEfpeoZzyCDgFRCNu9k7 XXaaNq//t5X/7xAqW+BE7R7U2SiEHuRDCfOYb8zG7etRteTyGF7m -----END CERTIFICATE-----Generated at Sun Apr 6 05:57:19 2025 by rpki-client