$ rpki-client -vvf repo-rpki.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/323430353a343663303a3a2f33322d3332203d3e20313339343331.roa File: 323430353a343663303a3a2f33322d3332203d3e20313339343331.roa (raw, json) Hash identifier: yq265ELsxp0oAlCM/3VQz9AgxchX8BpcvalzRZ4r8Rc= Subject key identifier: ED:23:8F:14:ED:DF:C5:93:7A:FC:0D:9A:8E:EF:4D:7C:2C:27:42:58 Certificate issuer: /CN=535D46F4044E2CC21293CC061A2783074BDF7AE7 Certificate serial: 46A36AF773CC740729FE751754C27E545DBDCC36 Authority key identifier: 53:5D:46:F4:04:4E:2C:C2:12:93:CC:06:1A:27:83:07:4B:DF:7A:E7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/535D46F4044E2CC21293CC061A2783074BDF7AE7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/323430353a343663303a3a2f33322d3332203d3e20313339343331.roa Signing time: Mon 16 Dec 2024 02:01:03 +0000 ROA not before: Mon 16 Dec 2024 01:56:03 +0000 ROA not after: Mon 15 Dec 2025 02:01:03 +0000 asID: 139431 IP address blocks: 2405:46c0::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/535D46F4044E2CC21293CC061A2783074BDF7AE7.crl rsync://repo-rpki.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/535D46F4044E2CC21293CC061A2783074BDF7AE7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/535D46F4044E2CC21293CC061A2783074BDF7AE7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 22 Feb 2025 10:52:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:a3:6a:f7:73:cc:74:07:29:fe:75:17:54:c2:7e:54:5d:bd:cc:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=535D46F4044E2CC21293CC061A2783074BDF7AE7 Validity Not Before: Dec 16 01:56:03 2024 GMT Not After : Dec 15 02:01:03 2025 GMT Subject: CN=ED238F14EDDFC5937AFC0D9A8EEF4D7C2C274258 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:63:5f:fd:61:74:9f:8c:8b:4b:30:a3:1f:8d: 43:c1:2d:46:32:64:ab:4a:e5:0b:ff:29:a4:43:ec: 9a:7b:b4:b9:de:4e:20:e4:9e:b1:79:3b:18:47:e6: 6a:33:de:db:70:51:f5:46:72:2b:4e:6c:ae:50:53: f0:b5:3e:d4:a9:d6:09:96:71:b9:1d:c7:62:0e:fd: ae:78:07:88:f7:a2:92:85:0a:a3:aa:9c:71:d1:8d: 14:a6:11:2c:23:93:63:46:19:c7:f0:ea:02:b6:7a: 31:93:09:97:ab:5b:b7:0d:e9:a6:33:8e:d1:ff:dc: 4f:2c:87:b7:b4:c5:0e:25:89:18:2c:35:92:5b:65: 1e:47:76:db:57:24:ca:28:b0:2b:bf:eb:95:c5:9f: 9f:66:21:c2:2c:ba:9f:ed:85:45:52:cf:82:90:3a: 59:5d:ec:dc:0d:9f:f5:d3:df:76:e6:44:f2:e7:97: 6e:3e:a2:c2:45:62:9c:70:8c:54:16:40:36:b5:11: 10:00:2b:37:14:a6:7e:ed:fd:9d:90:7b:c1:58:01: 57:34:98:fc:c7:49:ad:ab:84:ff:88:12:ff:40:03: 5f:0d:8b:d3:a6:55:94:73:ff:1f:f3:18:c3:3e:13: e3:eb:3a:07:b7:9c:1f:1e:41:8a:e5:98:d6:8c:29: 86:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:23:8F:14:ED:DF:C5:93:7A:FC:0D:9A:8E:EF:4D:7C:2C:27:42:58 X509v3 Authority Key Identifier: keyid:53:5D:46:F4:04:4E:2C:C2:12:93:CC:06:1A:27:83:07:4B:DF:7A:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/535D46F4044E2CC21293CC061A2783074BDF7AE7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/535D46F4044E2CC21293CC061A2783074BDF7AE7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/323430353a343663303a3a2f33322d3332203d3e20313339343331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:46c0::/32 Signature Algorithm: sha256WithRSAEncryption 96:e1:94:73:86:82:79:5f:ee:cd:95:ee:84:05:eb:66:73:92: b2:31:dc:54:58:0e:be:d4:ed:03:50:6a:43:0d:56:3b:26:a6: 13:8b:89:56:f3:4e:72:1a:94:25:37:4b:a7:67:f1:13:d5:cc: 2c:61:a5:f7:28:5b:fa:22:c3:1c:75:cd:af:81:39:6d:67:9c: 5a:d4:9a:4d:7d:49:9d:54:c0:e4:cc:20:f4:12:8f:01:51:ce: c3:ed:9e:1a:17:c4:ad:ea:83:f5:32:bf:8f:fa:73:39:17:63: da:ef:7c:9c:9c:e1:3c:98:91:e7:d7:63:1d:1d:d2:21:83:23: f1:db:0e:34:a9:5d:98:c0:30:1a:2a:9e:e6:f8:75:8d:1a:dd: 18:92:a6:94:bc:ba:94:13:19:7d:6d:60:1f:95:a3:e9:9d:07: 69:ae:2d:9f:9f:9b:f6:37:84:d5:72:91:e9:f3:a4:02:4c:11: 1b:6e:ae:c8:46:f3:67:7e:4a:19:7b:25:22:bc:13:4c:d2:e7: 3f:83:e6:f0:90:2c:42:27:6e:cc:37:94:f6:d1:0d:32:62:94: ba:ab:93:a4:48:ad:31:a8:7f:24:ca:59:82:d5:79:c8:fd:20: 58:aa:5b:33:24:00:67:ea:36:c2:b3:03:e9:02:8b:54:b9:a8: 23:33:c7:13 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIURqNq93PMdAcp/nUXVMJ+VF29zDYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTM1RDQ2RjQwNDRFMkNDMjEyOTNDQzA2MUEyNzgzMDc0 QkRGN0FFNzAeFw0yNDEyMTYwMTU2MDNaFw0yNTEyMTUwMjAxMDNaMDMxMTAvBgNV BAMTKEVEMjM4RjE0RURERkM1OTM3QUZDMEQ5QThFRUY0RDdDMkMyNzQyNTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqY1/9YXSfjItLMKMfjUPBLUYy ZKtK5Qv/KaRD7Jp7tLneTiDknrF5OxhH5moz3ttwUfVGcitObK5QU/C1PtSp1gmW cbkdx2IO/a54B4j3opKFCqOqnHHRjRSmESwjk2NGGcfw6gK2ejGTCZerW7cN6aYz jtH/3E8sh7e0xQ4liRgsNZJbZR5HdttXJMoosCu/65XFn59mIcIsup/thUVSz4KQ Olld7NwNn/XT33bmRPLnl24+osJFYpxwjFQWQDa1ERAAKzcUpn7t/Z2Qe8FYAVc0 mPzHSa2rhP+IEv9AA18Ni9OmVZRz/x/zGMM+E+PrOge3nB8eQYrlmNaMKYbJAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQU7SOPFO3fxZN6/A2aju9NfCwnQlgwHwYDVR0j BBgwFoAUU11G9AROLMISk8wGGieDB0vfeucwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NDZmMzNmMi1mMDZlLTRlYjYtYWU2MS01NTI5YmNhMWNkY2QvMC81MzVENDZGNDA0 NEUyQ0MyMTI5M0NDMDYxQTI3ODMwNzRCREY3QUU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTM1RDQ2RjQwNDRFMkNDMjEyOTNDQzA2MUEyNzgzMDc0QkRG N0FFNy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE0NmYzM2YyLWYwNmUtNGViNi1h ZTYxLTU1MjliY2ExY2RjZC8wLzMyMzQzMDM1M2EzNDM2NjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzOTM0MzMzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQFRsAwDQYJKoZI hvcNAQELBQADggEBAJbhlHOGgnlf7s2V7oQF62ZzkrIx3FRYDr7U7QNQakMNVjsm phOLiVbzTnIalCU3S6dn8RPVzCxhpfcoW/oiwxx1za+BOW1nnFrUmk19SZ1UwOTM IPQSjwFRzsPtnhoXxK3qg/Uyv4/6czkXY9rvfJyc4TyYkefXYx0d0iGDI/HbDjSp XZjAMBoqnub4dY0a3RiSppS8upQTGX1tYB+Vo+mdB2muLZ+fm/Y3hNVykenzpAJM ERturshG82d+Shl7JSK8E0zS5z+D5vCQLEInbsw3lPbRDTJilLqrk6RIrTGofyTK WYLVecj9IFiqWzMkAGfqNsKzA+kCi1S5qCMzxxM= -----END CERTIFICATE-----Generated at Fri Feb 21 11:16:11 2025 by rpki-client