$ rpki-client -vvf repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/323430363a353463303a3a2f33332d3333203d3e20313430343739.roa File: 323430363a353463303a3a2f33332d3333203d3e20313430343739.roa (raw, json) Hash identifier: WKukFhTAk9Wfv4/OtDk/a2nJ3JcuJ/OWKwAPnS7JgvA= Subject key identifier: 74:4A:60:A3:B3:EC:7F:A8:CD:A6:5C:B8:66:90:33:D0:6C:C8:11:53 Certificate issuer: /CN=7470038419B67CD1743CE4D96953077ECE6928FE Certificate serial: 41D032AF3E9C233F4C29C0ED50B83D0FE4463B66 Authority key identifier: 74:70:03:84:19:B6:7C:D1:74:3C:E4:D9:69:53:07:7E:CE:69:28:FE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7470038419B67CD1743CE4D96953077ECE6928FE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/323430363a353463303a3a2f33332d3333203d3e20313430343739.roa Signing time: Tue 04 Feb 2025 10:22:39 +0000 ROA not before: Tue 04 Feb 2025 10:17:39 +0000 ROA not after: Tue 03 Feb 2026 10:22:39 +0000 asID: 140479 IP address blocks: 2406:54c0::/33 maxlen: 33 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/7470038419B67CD1743CE4D96953077ECE6928FE.crl rsync://repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/7470038419B67CD1743CE4D96953077ECE6928FE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7470038419B67CD1743CE4D96953077ECE6928FE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 06:42:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:d0:32:af:3e:9c:23:3f:4c:29:c0:ed:50:b8:3d:0f:e4:46:3b:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7470038419B67CD1743CE4D96953077ECE6928FE Validity Not Before: Feb 4 10:17:39 2025 GMT Not After : Feb 3 10:22:39 2026 GMT Subject: CN=744A60A3B3EC7FA8CDA65CB8669033D06CC81153 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:41:84:f5:d1:cf:b4:ee:9c:b2:64:78:03:50: f7:3b:22:ba:f7:e9:90:bd:01:91:df:11:49:59:08: 9c:8e:a7:73:cc:2e:f4:21:02:b3:b4:8e:a8:3b:28: 3b:53:5a:c4:7a:1d:1f:81:bf:d4:ba:7e:30:34:2c: c6:5a:3c:2d:49:cd:65:da:17:98:1c:e1:af:55:a3: 08:32:80:5b:1b:0c:20:aa:9d:b4:4b:cd:35:ec:b5: bc:52:c4:24:3c:b8:b9:79:c1:c6:61:bf:4b:96:c3: 45:e8:a8:84:10:ef:81:bb:17:3c:ee:44:24:d2:b3: aa:70:45:8f:92:cd:0a:6f:cf:c0:1d:33:94:e5:65: 31:19:6a:83:37:97:76:07:cc:69:49:57:9e:f4:6e: 19:d6:f2:ff:d8:a7:b2:76:64:09:03:88:ac:18:e6: f2:10:1e:8c:86:35:65:52:1c:5f:01:c6:3a:46:60: 70:e8:91:06:b5:41:1d:77:8e:23:1f:52:9c:34:c3: 84:92:31:e9:aa:46:e8:9a:e9:1e:0f:e2:a2:a3:4d: 78:20:0c:33:a6:9b:02:ba:75:72:b1:a1:5d:d0:84: db:df:ed:d6:c2:48:e1:0f:91:9f:30:88:9d:79:4a: 4f:be:00:5d:ac:40:f7:68:8a:71:6d:42:4a:b1:83: f4:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:4A:60:A3:B3:EC:7F:A8:CD:A6:5C:B8:66:90:33:D0:6C:C8:11:53 X509v3 Authority Key Identifier: keyid:74:70:03:84:19:B6:7C:D1:74:3C:E4:D9:69:53:07:7E:CE:69:28:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/7470038419B67CD1743CE4D96953077ECE6928FE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7470038419B67CD1743CE4D96953077ECE6928FE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/323430363a353463303a3a2f33332d3333203d3e20313430343739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:54c0::/33 Signature Algorithm: sha256WithRSAEncryption 75:0a:d3:5a:27:55:ed:96:79:6b:27:58:67:e7:b1:4a:a0:14: 02:17:3d:15:31:ac:32:99:77:52:74:47:cc:0e:7d:4e:4e:2a: dd:b6:d8:a3:e7:e2:41:f1:30:e4:ea:dc:56:6a:33:e8:ba:60: 12:ff:04:17:97:24:95:52:4f:64:20:76:9a:9f:73:fc:53:73: 5f:9c:8f:83:5d:11:70:69:c9:e4:ac:6d:d1:aa:cb:d1:a5:48: 9b:0a:5b:83:d6:7c:3c:bb:05:78:e8:4b:e4:fe:af:68:2b:08: e5:e6:1f:59:d4:41:96:16:de:d0:b8:97:96:f5:87:19:a3:ce: ce:9d:96:78:a5:a9:88:58:4e:09:17:c4:57:4e:d2:76:73:bb: 39:36:d7:9c:15:f7:43:33:6d:c7:a5:76:1d:88:31:03:37:e3: fb:da:ee:cb:f0:31:0f:c4:89:2e:42:0b:8c:4c:8b:2c:b3:e3: 09:88:18:e0:a5:f6:8e:ae:42:3e:4b:37:2b:c1:87:3e:7c:bc: ba:3c:35:7c:66:69:02:43:00:a9:c5:08:73:28:0f:00:03:01: 58:39:03:87:43:cb:21:26:4e:b4:1e:ce:44:c1:ba:d5:89:f2: 3c:41:2f:ff:b7:74:2a:00:03:3c:b5:ee:aa:07:75:ce:de:75: 8c:ae:c5:14 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQdAyrz6cIz9MKcDtULg9D+RGO2YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzQ3MDAzODQxOUI2N0NEMTc0M0NFNEQ5Njk1MzA3N0VD RTY5MjhGRTAeFw0yNTAyMDQxMDE3MzlaFw0yNjAyMDMxMDIyMzlaMDMxMTAvBgNV BAMTKDc0NEE2MEEzQjNFQzdGQThDREE2NUNCODY2OTAzM0QwNkNDODExNTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUQYT10c+07pyyZHgDUPc7Irr3 6ZC9AZHfEUlZCJyOp3PMLvQhArO0jqg7KDtTWsR6HR+Bv9S6fjA0LMZaPC1JzWXa F5gc4a9VowgygFsbDCCqnbRLzTXstbxSxCQ8uLl5wcZhv0uWw0XoqIQQ74G7Fzzu RCTSs6pwRY+SzQpvz8AdM5TlZTEZaoM3l3YHzGlJV570bhnW8v/Yp7J2ZAkDiKwY 5vIQHoyGNWVSHF8BxjpGYHDokQa1QR13jiMfUpw0w4SSMemqRuia6R4P4qKjTXgg DDOmmwK6dXKxoV3QhNvf7dbCSOEPkZ8wiJ15Sk++AF2sQPdoinFtQkqxg/RHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUdEpgo7Psf6jNply4ZpAz0GzIEVMwHwYDVR0j BBgwFoAUdHADhBm2fNF0POTZaVMHfs5pKP4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w Yzc2NWQ1MS1iMGIxLTQzNWQtYTY2Yi02MDRjNmU1ZDI5ZWYvMC83NDcwMDM4NDE5 QjY3Q0QxNzQzQ0U0RDk2OTUzMDc3RUNFNjkyOEZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzQ3MDAzODQxOUI2N0NEMTc0M0NFNEQ5Njk1MzA3N0VDRTY5 MjhGRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjNzY1ZDUxLWIwYjEtNDM1ZC1h NjZiLTYwNGM2ZTVkMjllZi8wLzMyMzQzMDM2M2EzNTM0NjMzMDNhM2EyZjMzMzMy ZDMzMzMyMDNkM2UyMDMxMzQzMDM0MzczOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGByQGVMAAMA0GCSqG SIb3DQEBCwUAA4IBAQB1CtNaJ1XtlnlrJ1hn57FKoBQCFz0VMawymXdSdEfMDn1O Tirdttij5+JB8TDk6txWajPoumAS/wQXlySVUk9kIHaan3P8U3NfnI+DXRFwacnk rG3RqsvRpUibCluD1nw8uwV46Evk/q9oKwjl5h9Z1EGWFt7QuJeW9YcZo87OnZZ4 pamIWE4JF8RXTtJ2c7s5NtecFfdDM23HpXYdiDEDN+P72u7L8DEPxIkuQguMTIss s+MJiBjgpfaOrkI+SzcrwYc+fLy6PDV8ZmkCQwCpxQhzKA8AAwFYOQOHQ8shJk60 Hs5EwbrVifI8QS//t3QqAAM8te6qB3XO3nWMrsUU -----END CERTIFICATE-----Generated at Fri Apr 18 06:43:40 2025 by rpki-client