$ rpki-client -vvf repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/323430333a666438303a383030303a3a2f33362d3336203d3e203538333639.roa File: 323430333a666438303a383030303a3a2f33362d3336203d3e203538333639.roa (raw, json) Hash identifier: p7mQY+yLevQcKrSFnn4B0EFf00g0zI4bm6Ij6Frvud4= Subject key identifier: 42:E2:19:F9:23:97:F9:EA:5F:D8:7B:DC:70:19:3F:EF:6D:FB:E7:34 Certificate issuer: /CN=A095A9A71806956C905D5CF7CB797843D22D04B8 Certificate serial: 4CC8E042742D6AFDF067D946675BD11C0092EBCB Authority key identifier: A0:95:A9:A7:18:06:95:6C:90:5D:5C:F7:CB:79:78:43:D2:2D:04:B8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A095A9A71806956C905D5CF7CB797843D22D04B8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/323430333a666438303a383030303a3a2f33362d3336203d3e203538333639.roa Signing time: Fri 06 Dec 2024 12:00:02 +0000 ROA not before: Fri 06 Dec 2024 11:55:02 +0000 ROA not after: Fri 05 Dec 2025 12:00:02 +0000 asID: 58369 IP address blocks: 2403:fd80:8000::/36 maxlen: 36 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/A095A9A71806956C905D5CF7CB797843D22D04B8.crl rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/A095A9A71806956C905D5CF7CB797843D22D04B8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A095A9A71806956C905D5CF7CB797843D22D04B8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 01:44:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:c8:e0:42:74:2d:6a:fd:f0:67:d9:46:67:5b:d1:1c:00:92:eb:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A095A9A71806956C905D5CF7CB797843D22D04B8 Validity Not Before: Dec 6 11:55:02 2024 GMT Not After : Dec 5 12:00:02 2025 GMT Subject: CN=42E219F92397F9EA5FD87BDC70193FEF6DFBE734 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:a9:84:19:0b:b6:64:b5:25:e8:4b:fa:33:97: c0:37:eb:a1:3b:bb:61:d9:68:ca:a1:57:43:cb:23: 07:74:ef:aa:07:76:f8:a0:02:6d:af:22:1f:41:1a: 1c:95:f9:42:4a:9b:4e:8b:fe:61:d0:17:97:27:ce: bf:44:bf:86:48:eb:ae:d1:b4:ad:47:b4:f5:14:da: a9:e3:27:ff:1d:e8:e1:5c:cd:5d:ed:10:72:2c:62: 79:d5:8a:89:30:00:05:fe:83:5d:2c:4b:9e:b1:77: fe:0a:07:6e:b4:bf:84:01:39:4d:28:cc:01:6d:0a: 93:96:3d:15:93:01:f5:eb:a5:fb:23:bf:d4:5f:fa: 19:96:80:ca:3a:03:2a:01:38:f1:ff:6b:00:a9:60: ed:f8:4a:ec:75:67:8f:a9:53:ae:a7:be:c9:ce:6c: 93:c3:7e:83:1e:d7:86:f5:07:8d:3b:a2:fc:39:ee: df:58:08:b3:d1:35:14:fb:d5:ca:a6:a7:63:fc:cd: e0:ac:38:23:4f:35:0a:78:23:01:72:c6:8f:eb:af: 54:9e:04:26:61:47:98:aa:77:b7:a3:55:79:71:c5: 04:b8:36:a3:3b:19:53:e6:54:f2:cf:a6:d3:2c:ce: 56:4d:89:28:40:45:98:94:67:83:a9:7c:12:70:5f: 3a:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:E2:19:F9:23:97:F9:EA:5F:D8:7B:DC:70:19:3F:EF:6D:FB:E7:34 X509v3 Authority Key Identifier: keyid:A0:95:A9:A7:18:06:95:6C:90:5D:5C:F7:CB:79:78:43:D2:2D:04:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/A095A9A71806956C905D5CF7CB797843D22D04B8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A095A9A71806956C905D5CF7CB797843D22D04B8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/16a81182-7ceb-465c-a5b5-a14ec739bf99/0/323430333a666438303a383030303a3a2f33362d3336203d3e203538333639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:fd80:8000::/36 Signature Algorithm: sha256WithRSAEncryption 82:9c:74:55:53:f2:59:bc:32:46:e3:0d:17:76:37:a4:33:80: b7:c4:ca:01:c1:4e:65:3d:55:89:09:7c:2f:b9:e7:61:98:19: e4:a8:d7:f6:3a:42:3e:61:d9:fa:12:b2:43:36:74:f7:6a:25: 5e:be:74:0a:9b:c6:dd:b3:00:c8:f9:6b:1f:37:ac:3e:f8:07: 2e:46:79:34:14:c4:8d:a9:7c:6e:51:93:6b:4d:74:0f:09:53: ce:3c:a4:29:18:2e:cb:9b:6e:56:a2:23:25:6d:fb:96:15:cc: ec:ac:24:1e:7c:e5:c0:b7:17:cd:b3:a9:f3:6c:a0:65:d7:ae: 3c:48:0a:33:c5:c5:b0:b4:8d:cf:28:30:b2:74:ce:a8:08:7d: a1:ed:40:61:13:fa:e7:a6:66:53:83:9e:5a:94:12:0a:c4:19: b9:04:a8:3f:67:49:be:01:7c:d1:b0:5f:e1:57:44:e9:f9:d4: a1:5b:99:76:8a:c2:8d:8c:ca:bd:af:f1:09:d8:e7:0d:3a:14: 50:18:88:aa:7a:9d:40:8a:cf:b8:5a:f8:6f:cd:82:3a:0f:bd: c4:c9:e8:d9:37:b9:9f:ec:b2:1c:17:6c:49:c1:aa:5a:2d:e7: 6f:74:f7:12:4a:e4:60:84:a4:a6:85:81:28:a9:15:35:e4:a8: 94:5b:36:60 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUTMjgQnQtav3wZ9lGZ1vRHACS68swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTA5NUE5QTcxODA2OTU2QzkwNUQ1Q0Y3Q0I3OTc4NDNE MjJEMDRCODAeFw0yNDEyMDYxMTU1MDJaFw0yNTEyMDUxMjAwMDJaMDMxMTAvBgNV BAMTKDQyRTIxOUY5MjM5N0Y5RUE1RkQ4N0JEQzcwMTkzRkVGNkRGQkU3MzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzqYQZC7ZktSXoS/ozl8A366E7 u2HZaMqhV0PLIwd076oHdvigAm2vIh9BGhyV+UJKm06L/mHQF5cnzr9Ev4ZI667R tK1HtPUU2qnjJ/8d6OFczV3tEHIsYnnViokwAAX+g10sS56xd/4KB260v4QBOU0o zAFtCpOWPRWTAfXrpfsjv9Rf+hmWgMo6AyoBOPH/awCpYO34Sux1Z4+pU66nvsnO bJPDfoMe14b1B407ovw57t9YCLPRNRT71cqmp2P8zeCsOCNPNQp4IwFyxo/rr1Se BCZhR5iqd7ejVXlxxQS4NqM7GVPmVPLPptMszlZNiShARZiUZ4OpfBJwXzoFAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUQuIZ+SOX+epf2HvccBk/72375zQwHwYDVR0j BBgwFoAUoJWppxgGlWyQXVz3y3l4Q9ItBLgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NmE4MTE4Mi03Y2ViLTQ2NWMtYTViNS1hMTRlYzczOWJmOTkvMC9BMDk1QTlBNzE4 MDY5NTZDOTA1RDVDRjdDQjc5Nzg0M0QyMkQwNEI4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTA5NUE5QTcxODA2OTU2QzkwNUQ1Q0Y3Q0I3OTc4NDNEMjJE MDRCOC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE2YTgxMTgyLTdjZWItNDY1Yy1h NWI1LWExNGVjNzM5YmY5OS8wLzMyMzQzMDMzM2E2NjY0MzgzMDNhMzgzMDMwMzAz YTNhMmYzMzM2MmQzMzM2MjAzZDNlMjAzNTM4MzMzNjM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYEJAP9 gIAwDQYJKoZIhvcNAQELBQADggEBAIKcdFVT8lm8MkbjDRd2N6QzgLfEygHBTmU9 VYkJfC+552GYGeSo1/Y6Qj5h2foSskM2dPdqJV6+dAqbxt2zAMj5ax83rD74By5G eTQUxI2pfG5Rk2tNdA8JU848pCkYLsubblaiIyVt+5YVzOysJB585cC3F82zqfNs oGXXrjxICjPFxbC0jc8oMLJ0zqgIfaHtQGET+uemZlODnlqUEgrEGbkEqD9nSb4B fNGwX+FXROn51KFbmXaKwo2Myr2v8QnY5w06FFAYiKp6nUCKz7ha+G/NgjoPvcTJ 6Nk3uZ/sshwXbEnBqlot52909xJK5GCEpKaFgSipFTXkqJRbNmA= -----END CERTIFICATE-----Generated at Sun Apr 6 17:45:41 2025 by rpki-client