$ rpki-client -vvf repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/323430343a393538303a34383a3a2f34382d3438203d3e203234353334.roa File: 323430343a393538303a34383a3a2f34382d3438203d3e203234353334.roa (raw, json) Hash identifier: ORf8MBvb0cc1Hlu83aqDGCB77dQwtn/c/kHba/c2HYo= Subject key identifier: 15:79:A5:52:C0:67:A2:86:C0:01:34:CC:86:A3:A5:0F:D3:1D:51:BF Certificate issuer: /CN=DD29F5E4CE561760A0212F0448987AFBE75263D7 Certificate serial: 1F7251D0B7989E0C5E363AB33E599EB90C7683FD Authority key identifier: DD:29:F5:E4:CE:56:17:60:A0:21:2F:04:48:98:7A:FB:E7:52:63:D7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/323430343a393538303a34383a3a2f34382d3438203d3e203234353334.roa Signing time: Thu 05 Dec 2024 11:00:01 +0000 ROA not before: Thu 05 Dec 2024 10:55:01 +0000 ROA not after: Thu 04 Dec 2025 11:00:01 +0000 asID: 24534 IP address blocks: 2404:9580:48::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.crl rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 12:53:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:72:51:d0:b7:98:9e:0c:5e:36:3a:b3:3e:59:9e:b9:0c:76:83:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DD29F5E4CE561760A0212F0448987AFBE75263D7 Validity Not Before: Dec 5 10:55:01 2024 GMT Not After : Dec 4 11:00:01 2025 GMT Subject: CN=1579A552C067A286C00134CC86A3A50FD31D51BF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:f3:3e:3c:8f:6f:53:1a:f3:1c:8a:24:07:a2: b9:e8:e9:30:8c:37:17:78:dc:75:6b:d9:d7:78:03: d7:36:80:cf:98:21:00:96:63:5e:71:6b:44:1d:7f: 42:ff:99:f7:5f:55:fe:8c:13:02:6f:8e:8a:af:18: 7a:0e:87:d5:e1:03:b1:f9:4e:08:a6:09:42:cc:a6: 82:77:e6:05:3f:f9:19:44:45:ea:4b:18:4b:62:60: 7b:1e:77:25:e2:ec:4b:66:cd:92:1a:12:be:4c:ea: 31:eb:f8:ce:3d:30:c5:a4:af:d5:28:a0:7d:34:ce: c6:51:eb:8d:c0:a7:97:f5:2f:bc:16:95:d4:e5:0d: 7b:26:b7:16:80:84:dc:88:bc:40:b8:85:c8:f6:e3: 0f:5e:7b:16:ff:58:d3:d6:63:24:66:ff:4b:25:6c: 1c:90:56:a6:79:18:cc:7c:52:89:a3:57:bd:e0:72: b1:57:ce:c3:fd:9c:bc:03:1e:92:8f:ba:0b:b7:22: c6:95:1a:67:f0:65:31:83:cb:89:93:f8:c5:0a:ba: 27:39:ef:7b:64:f4:93:4c:4d:cf:e0:e5:a9:2e:00: 86:2a:d8:26:cc:a2:6b:23:ea:ef:d0:63:99:50:58: 3a:3f:84:e9:99:db:91:e2:dd:15:93:08:0f:82:e6: 95:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:79:A5:52:C0:67:A2:86:C0:01:34:CC:86:A3:A5:0F:D3:1D:51:BF X509v3 Authority Key Identifier: keyid:DD:29:F5:E4:CE:56:17:60:A0:21:2F:04:48:98:7A:FB:E7:52:63:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/323430343a393538303a34383a3a2f34382d3438203d3e203234353334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:9580:48::/48 Signature Algorithm: sha256WithRSAEncryption 40:40:b2:e2:2c:72:ff:77:73:61:3d:11:33:07:13:45:92:2e: 7a:6e:b3:ab:e2:e2:4f:a8:40:7f:9e:66:49:64:69:0b:4d:a5: ad:3a:b5:b6:c8:39:6a:4f:7c:d1:18:27:fb:4f:cf:0e:e4:7e: 9a:54:ed:ad:07:92:07:9a:f2:d3:12:df:e6:1c:16:79:c9:59: 90:2b:e4:8f:89:de:e7:0b:f6:ea:87:33:72:cc:ef:91:c6:34: fd:11:4f:01:37:d3:af:aa:ab:a3:fd:52:a2:88:07:13:ce:ec: 04:ae:61:03:60:64:31:51:97:cb:9a:29:d2:6b:3e:11:9d:dc: a6:9b:23:f5:2e:d5:c8:30:18:38:1e:f1:77:55:bd:8b:a6:00: e7:0c:5d:3d:07:a5:5e:e3:5c:bd:31:13:fa:ba:a3:0d:cc:bd: 12:26:f9:60:bb:3e:1b:fb:85:1a:0f:92:60:a6:1e:b1:ef:64: f1:d2:03:26:cc:b5:dd:67:45:34:ad:b4:dc:d4:3c:53:cb:69: 57:a6:75:23:13:64:48:1c:cf:cd:6e:8f:79:99:27:07:f8:b5: f2:23:54:98:d6:30:e3:12:f7:df:54:84:16:be:77:62:4b:66: dd:d9:cd:3d:a4:53:26:56:fa:f0:fc:2c:4d:c3:e8:58:7d:c4: e6:b0:29:95 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUH3JR0LeYngxeNjqzPlmeuQx2g/0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREQyOUY1RTRDRTU2MTc2MEEwMjEyRjA0NDg5ODdBRkJF NzUyNjNENzAeFw0yNDEyMDUxMDU1MDFaFw0yNTEyMDQxMTAwMDFaMDMxMTAvBgNV BAMTKDE1NzlBNTUyQzA2N0EyODZDMDAxMzRDQzg2QTNBNTBGRDMxRDUxQkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCx8z48j29TGvMciiQHorno6TCM Nxd43HVr2dd4A9c2gM+YIQCWY15xa0Qdf0L/mfdfVf6MEwJvjoqvGHoOh9XhA7H5 TgimCULMpoJ35gU/+RlERepLGEtiYHsedyXi7EtmzZIaEr5M6jHr+M49MMWkr9Uo oH00zsZR643Ap5f1L7wWldTlDXsmtxaAhNyIvEC4hcj24w9eexb/WNPWYyRm/0sl bByQVqZ5GMx8UomjV73gcrFXzsP9nLwDHpKPugu3IsaVGmfwZTGDy4mT+MUKuic5 73tk9JNMTc/g5akuAIYq2CbMomsj6u/QY5lQWDo/hOmZ25Hi3RWTCA+C5pUhAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUFXmlUsBnoobAATTMhqOlD9MdUb8wHwYDVR0j BBgwFoAU3Sn15M5WF2CgIS8ESJh6++dSY9cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjI0MDUyZS0yMjA1LTQ4ZjMtYTNjYi1jZThiMzI2YjhmNzEvMC9ERDI5RjVFNENF NTYxNzYwQTAyMTJGMDQ0ODk4N0FGQkU3NTI2M0Q3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREQyOUY1RTRDRTU2MTc2MEEwMjEyRjA0NDg5ODdBRkJFNzUy NjNENy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2MjQwNTJlLTIyMDUtNDhmMy1h M2NiLWNlOGIzMjZiOGY3MS8wLzMyMzQzMDM0M2EzOTM1MzgzMDNhMzQzODNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzQzNTMzMzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBJWAAEgw DQYJKoZIhvcNAQELBQADggEBAEBAsuIscv93c2E9ETMHE0WSLnpus6vi4k+oQH+e ZklkaQtNpa06tbbIOWpPfNEYJ/tPzw7kfppU7a0Hkgea8tMS3+YcFnnJWZAr5I+J 3ucL9uqHM3LM75HGNP0RTwE306+qq6P9UqKIBxPO7ASuYQNgZDFRl8uaKdJrPhGd 3KabI/Uu1cgwGDge8XdVvYumAOcMXT0HpV7jXL0xE/q6ow3MvRIm+WC7Phv7hRoP kmCmHrHvZPHSAybMtd1nRTSttNzUPFPLaVemdSMTZEgcz81uj3mZJwf4tfIjVJjW MOMS999UhBa+d2JLZt3ZzT2kUyZW+vD8LE3D6Fh9xOawKZU= -----END CERTIFICATE-----Generated at Sun Apr 6 11:16:19 2025 by rpki-client