$ rpki-client -vvf repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/323430343a393538303a33323a3a2f34382d3438203d3e203234353334.roa File: 323430343a393538303a33323a3a2f34382d3438203d3e203234353334.roa (raw, json) Hash identifier: w6bNOjpU0I0jjnq/DeAF5pAdWd2fSBGqPyk3RRIO0Ys= Subject key identifier: B9:14:7C:F8:80:D8:7F:E0:95:BE:C0:43:CD:57:74:D2:1D:26:A7:61 Certificate issuer: /CN=DD29F5E4CE561760A0212F0448987AFBE75263D7 Certificate serial: 256C01376A9A39597CD74468A423DF2BF2BA3704 Authority key identifier: DD:29:F5:E4:CE:56:17:60:A0:21:2F:04:48:98:7A:FB:E7:52:63:D7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/323430343a393538303a33323a3a2f34382d3438203d3e203234353334.roa Signing time: Thu 05 Dec 2024 11:00:00 +0000 ROA not before: Thu 05 Dec 2024 10:55:00 +0000 ROA not after: Thu 04 Dec 2025 11:00:00 +0000 asID: 24534 IP address blocks: 2404:9580:32::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.crl rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 12:53:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:6c:01:37:6a:9a:39:59:7c:d7:44:68:a4:23:df:2b:f2:ba:37:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DD29F5E4CE561760A0212F0448987AFBE75263D7 Validity Not Before: Dec 5 10:55:00 2024 GMT Not After : Dec 4 11:00:00 2025 GMT Subject: CN=B9147CF880D87FE095BEC043CD5774D21D26A761 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:09:96:cd:de:d1:5a:ee:f1:13:9a:88:7a:e6: 78:41:9f:64:79:02:40:0a:e7:09:dc:86:46:88:30: 8c:92:67:57:34:16:1e:4e:41:72:7d:8c:3d:14:e6: a4:9c:cb:31:8b:4b:f8:c7:bb:84:74:35:29:a8:bc: d8:45:22:ba:b1:70:f6:88:5e:0b:63:5a:a6:5a:68: a8:b5:f6:f2:8e:10:ca:3f:8c:fa:43:ad:15:37:a8: 90:15:dc:2e:9a:11:0c:ad:dc:44:4f:f6:4c:02:e0: 3e:74:c1:1f:a7:a0:1b:d7:16:6f:4e:95:48:8e:b7: 3f:77:0d:5e:e6:6b:1e:80:dc:b3:61:f2:41:e6:c6: 16:a8:09:ab:d1:5b:3e:34:b1:d1:60:87:fe:c8:ac: 98:ff:c1:73:fe:d4:0e:e7:06:1a:34:4e:6f:58:07: 59:3e:e3:fd:f5:c5:47:a5:bb:27:64:11:7f:2d:63: a9:2a:4a:49:25:c6:2a:29:ae:3f:b8:40:8e:28:02: 8d:a9:90:3c:e5:72:8c:b3:92:6d:dd:cb:ec:f5:36: 03:31:18:88:6e:22:eb:9e:5d:81:0d:eb:e5:63:b4: 96:58:3d:90:76:df:00:c5:8e:a6:ff:b1:1c:c1:37: c4:74:5d:cb:f0:bc:20:7a:d2:35:80:4c:b1:9d:99: d2:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:14:7C:F8:80:D8:7F:E0:95:BE:C0:43:CD:57:74:D2:1D:26:A7:61 X509v3 Authority Key Identifier: keyid:DD:29:F5:E4:CE:56:17:60:A0:21:2F:04:48:98:7A:FB:E7:52:63:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/323430343a393538303a33323a3a2f34382d3438203d3e203234353334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:9580:32::/48 Signature Algorithm: sha256WithRSAEncryption 52:8f:d4:b2:98:3a:c4:2f:15:c7:06:3a:33:6c:65:53:40:cd: 81:18:d7:b8:73:1f:6d:14:a8:42:21:21:c4:4a:59:fc:8b:12: 20:fa:98:2b:d2:dc:6b:69:fb:c8:32:e1:9c:dc:6a:23:34:3f: c2:e0:d4:9f:9c:79:8f:47:6a:f8:1d:3a:be:0d:ed:c3:b9:b5: 96:61:c4:ea:8c:d2:f8:cf:73:a6:d2:ab:fc:18:1e:1e:b8:09: 0e:72:4a:89:5d:72:c8:24:ee:18:13:43:e6:c7:f5:33:15:70: f6:5b:8c:1f:a6:be:59:77:28:1f:7d:d9:68:4c:ad:33:d7:57: 15:5f:39:57:11:21:27:c8:76:95:36:68:4e:61:52:81:c3:85: b5:0e:b0:c7:28:45:f9:0d:dc:4a:66:8a:67:59:11:96:bf:c5: b9:4f:89:f2:57:23:df:ec:72:4d:8e:d5:8c:da:7a:04:7d:e5: fe:a5:21:6a:b7:36:3f:a4:9a:77:78:6b:20:6e:e7:40:e0:cd: 89:f6:93:0f:f1:f6:12:cc:ca:14:e0:df:0c:f7:43:ef:7b:d8: a2:a5:e3:07:d8:80:14:2f:2e:cc:d8:a1:86:9b:27:16:b3:c5: 54:fc:56:b6:f8:c2:d4:42:f8:aa:20:fa:cb:82:c8:7b:7b:2d: ed:25:cc:72 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUJWwBN2qaOVl810RopCPfK/K6NwQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREQyOUY1RTRDRTU2MTc2MEEwMjEyRjA0NDg5ODdBRkJF NzUyNjNENzAeFw0yNDEyMDUxMDU1MDBaFw0yNTEyMDQxMTAwMDBaMDMxMTAvBgNV BAMTKEI5MTQ3Q0Y4ODBEODdGRTA5NUJFQzA0M0NENTc3NEQyMUQyNkE3NjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCWCZbN3tFa7vETmoh65nhBn2R5 AkAK5wnchkaIMIySZ1c0Fh5OQXJ9jD0U5qScyzGLS/jHu4R0NSmovNhFIrqxcPaI XgtjWqZaaKi19vKOEMo/jPpDrRU3qJAV3C6aEQyt3ERP9kwC4D50wR+noBvXFm9O lUiOtz93DV7max6A3LNh8kHmxhaoCavRWz40sdFgh/7IrJj/wXP+1A7nBho0Tm9Y B1k+4/31xUeluydkEX8tY6kqSkklxioprj+4QI4oAo2pkDzlcoyzkm3dy+z1NgMx GIhuIuueXYEN6+VjtJZYPZB23wDFjqb/sRzBN8R0XcvwvCB60jWATLGdmdKlAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUuRR8+IDYf+CVvsBDzVd00h0mp2EwHwYDVR0j BBgwFoAU3Sn15M5WF2CgIS8ESJh6++dSY9cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjI0MDUyZS0yMjA1LTQ4ZjMtYTNjYi1jZThiMzI2YjhmNzEvMC9ERDI5RjVFNENF NTYxNzYwQTAyMTJGMDQ0ODk4N0FGQkU3NTI2M0Q3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREQyOUY1RTRDRTU2MTc2MEEwMjEyRjA0NDg5ODdBRkJFNzUy NjNENy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2MjQwNTJlLTIyMDUtNDhmMy1h M2NiLWNlOGIzMjZiOGY3MS8wLzMyMzQzMDM0M2EzOTM1MzgzMDNhMzMzMjNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzQzNTMzMzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBJWAADIw DQYJKoZIhvcNAQELBQADggEBAFKP1LKYOsQvFccGOjNsZVNAzYEY17hzH20UqEIh IcRKWfyLEiD6mCvS3Gtp+8gy4ZzcaiM0P8Lg1J+ceY9HavgdOr4N7cO5tZZhxOqM 0vjPc6bSq/wYHh64CQ5ySoldcsgk7hgTQ+bH9TMVcPZbjB+mvll3KB992WhMrTPX VxVfOVcRISfIdpU2aE5hUoHDhbUOsMcoRfkN3EpmimdZEZa/xblPifJXI9/sck2O 1YzaegR95f6lIWq3Nj+kmnd4ayBu50DgzYn2kw/x9hLMyhTg3wz3Q+972KKl4wfY gBQvLszYoYabJxazxVT8Vrb4wtRC+Kog+suCyHt7Le0lzHI= -----END CERTIFICATE-----Generated at Sun Apr 6 11:03:29 2025 by rpki-client