$ rpki-client -vvf repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/323430363a353463303a383030303a3a2f33332d3333203d3e20313430343739.roa File: 323430363a353463303a383030303a3a2f33332d3333203d3e20313430343739.roa (raw, json) Hash identifier: 3w+VK+tvKAA1AfC4liESzr0B7Kk6JlTbtXB9BTFuOGs= Subject key identifier: 6C:D3:0E:79:41:0C:A0:12:9D:7F:7A:E6:0D:E4:37:82:59:95:73:C3 Certificate issuer: /CN=7470038419B67CD1743CE4D96953077ECE6928FE Certificate serial: 273A15848B4EFAA8A350A62F328CE5742F356B76 Authority key identifier: 74:70:03:84:19:B6:7C:D1:74:3C:E4:D9:69:53:07:7E:CE:69:28:FE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7470038419B67CD1743CE4D96953077ECE6928FE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/323430363a353463303a383030303a3a2f33332d3333203d3e20313430343739.roa Signing time: Tue 04 Feb 2025 09:47:38 +0000 ROA not before: Tue 04 Feb 2025 09:42:38 +0000 ROA not after: Tue 03 Feb 2026 09:47:38 +0000 asID: 140479 IP address blocks: 2406:54c0:8000::/33 maxlen: 33 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/7470038419B67CD1743CE4D96953077ECE6928FE.crl rsync://repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/7470038419B67CD1743CE4D96953077ECE6928FE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7470038419B67CD1743CE4D96953077ECE6928FE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 06:42:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:3a:15:84:8b:4e:fa:a8:a3:50:a6:2f:32:8c:e5:74:2f:35:6b:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7470038419B67CD1743CE4D96953077ECE6928FE Validity Not Before: Feb 4 09:42:38 2025 GMT Not After : Feb 3 09:47:38 2026 GMT Subject: CN=6CD30E79410CA0129D7F7AE60DE43782599573C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:18:2b:9c:a2:14:06:41:c2:ab:bf:6d:fe:82: d1:bf:66:b8:58:50:f7:d5:24:99:91:a6:4e:3e:c5: dd:78:3c:b2:37:ce:d1:ab:36:e8:b5:11:1b:2b:35: 6e:08:71:54:32:5d:35:dc:36:ac:f5:e0:bb:47:b0: fb:fe:05:c4:ce:ee:25:fd:91:ce:d1:a9:5d:c9:da: 5a:20:28:58:e5:7e:97:50:2c:44:f7:f8:84:41:c9: bd:ad:28:a9:35:d5:c4:8c:45:5f:ba:71:da:24:c6: 44:40:e2:4a:dc:a6:01:ea:f9:7d:b5:88:76:52:70: 26:b7:75:32:38:bb:25:32:a1:3b:aa:00:9b:4b:0c: 32:f4:34:28:f9:95:45:2e:6a:f8:b2:7a:8c:7c:1b: 7e:2c:a7:10:a4:a8:41:48:a1:76:fb:c9:ef:10:ac: 88:99:97:b3:a7:85:85:b5:78:a2:39:00:c7:e9:1d: 9b:65:48:b0:6f:3d:8a:b6:bd:2a:68:2c:df:2b:71: c0:17:78:e8:3c:ac:06:c7:84:cd:48:b6:5e:3b:9d: 85:27:9b:79:82:bb:3c:8b:01:f7:e6:72:d4:6e:fb: c7:2e:a0:4b:49:3b:fe:10:9a:50:d2:1a:de:4d:82: 62:c1:1c:63:15:a4:b5:8f:82:30:ae:79:52:34:83: 0f:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:D3:0E:79:41:0C:A0:12:9D:7F:7A:E6:0D:E4:37:82:59:95:73:C3 X509v3 Authority Key Identifier: keyid:74:70:03:84:19:B6:7C:D1:74:3C:E4:D9:69:53:07:7E:CE:69:28:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/7470038419B67CD1743CE4D96953077ECE6928FE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7470038419B67CD1743CE4D96953077ECE6928FE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/323430363a353463303a383030303a3a2f33332d3333203d3e20313430343739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:54c0:8000::/33 Signature Algorithm: sha256WithRSAEncryption 74:05:0a:0a:a0:aa:27:a1:94:b1:7b:49:fc:6c:bf:d3:4d:6c: 58:1e:34:de:5d:26:16:0e:4c:68:f3:62:ae:7a:a5:9d:12:97: 9c:ed:11:ad:0f:35:ad:24:f8:2e:d8:24:4d:15:1b:36:16:12: d5:e5:b2:ec:77:3a:4b:32:bb:f8:27:68:79:a0:5e:61:23:25: c6:27:f2:f2:4d:46:9e:92:76:1e:12:da:85:0f:af:42:07:73: 3d:b4:82:fb:bf:1d:f5:6f:10:e2:be:af:84:40:be:f5:3e:51: 35:2c:61:03:99:a9:47:1b:c6:e6:be:fa:2f:2f:69:ef:25:47: 51:8f:57:00:68:f3:80:8b:f6:0c:63:2c:d9:bd:1f:e7:64:cd: 4b:0a:73:4d:88:4f:a3:5b:9f:ff:14:3d:31:7e:1d:e1:ea:b6: 83:0a:98:d0:23:9c:29:96:e9:00:c8:95:a0:ba:40:86:ef:46: 76:cc:58:8c:f5:cd:5e:02:62:8c:d4:6f:90:ba:f6:67:50:f9: d5:4e:40:70:32:b6:7e:18:af:c5:26:38:c4:66:db:01:b6:91: 94:2b:6c:0b:81:3c:f5:ad:e2:85:50:e1:f5:f1:11:5f:1b:aa: 88:97:4e:d9:9c:85:63:c2:16:8c:28:08:04:a5:68:a8:bd:9c: b4:67:97:82 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUJzoVhItO+qijUKYvMozldC81a3YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzQ3MDAzODQxOUI2N0NEMTc0M0NFNEQ5Njk1MzA3N0VD RTY5MjhGRTAeFw0yNTAyMDQwOTQyMzhaFw0yNjAyMDMwOTQ3MzhaMDMxMTAvBgNV BAMTKDZDRDMwRTc5NDEwQ0EwMTI5RDdGN0FFNjBERTQzNzgyNTk5NTczQzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyGCucohQGQcKrv23+gtG/ZrhY UPfVJJmRpk4+xd14PLI3ztGrNui1ERsrNW4IcVQyXTXcNqz14LtHsPv+BcTO7iX9 kc7RqV3J2logKFjlfpdQLET3+IRByb2tKKk11cSMRV+6cdokxkRA4krcpgHq+X21 iHZScCa3dTI4uyUyoTuqAJtLDDL0NCj5lUUuaviyeox8G34spxCkqEFIoXb7ye8Q rIiZl7OnhYW1eKI5AMfpHZtlSLBvPYq2vSpoLN8rccAXeOg8rAbHhM1Itl47nYUn m3mCuzyLAffmctRu+8cuoEtJO/4QmlDSGt5NgmLBHGMVpLWPgjCueVI0gw+/AgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUbNMOeUEMoBKdf3rmDeQ3glmVc8MwHwYDVR0j BBgwFoAUdHADhBm2fNF0POTZaVMHfs5pKP4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w Yzc2NWQ1MS1iMGIxLTQzNWQtYTY2Yi02MDRjNmU1ZDI5ZWYvMC83NDcwMDM4NDE5 QjY3Q0QxNzQzQ0U0RDk2OTUzMDc3RUNFNjkyOEZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzQ3MDAzODQxOUI2N0NEMTc0M0NFNEQ5Njk1MzA3N0VDRTY5 MjhGRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjNzY1ZDUxLWIwYjEtNDM1ZC1h NjZiLTYwNGM2ZTVkMjllZi8wLzMyMzQzMDM2M2EzNTM0NjMzMDNhMzgzMDMwMzAz YTNhMmYzMzMzMmQzMzMzMjAzZDNlMjAzMTM0MzAzNDM3Mzkucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgck BlTAgDANBgkqhkiG9w0BAQsFAAOCAQEAdAUKCqCqJ6GUsXtJ/Gy/001sWB403l0m Fg5MaPNirnqlnRKXnO0RrQ81rST4LtgkTRUbNhYS1eWy7Hc6SzK7+CdoeaBeYSMl xify8k1GnpJ2HhLahQ+vQgdzPbSC+78d9W8Q4r6vhEC+9T5RNSxhA5mpRxvG5r76 Ly9p7yVHUY9XAGjzgIv2DGMs2b0f52TNSwpzTYhPo1uf/xQ9MX4d4eq2gwqY0COc KZbpAMiVoLpAhu9GdsxYjPXNXgJijNRvkLr2Z1D51U5AcDK2fhivxSY4xGbbAbaR lCtsC4E89a3ihVDh9fERXxuqiJdO2ZyFY8IWjCgIBKVoqL2ctGeXgg== -----END CERTIFICATE-----Generated at Fri Apr 18 06:50:12 2025 by rpki-client