$ rpki-client -vvf repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a313030303a3a2f33362d3438203d3e20313430343233.roa File: 323430363a323063303a313030303a3a2f33362d3438203d3e20313430343233.roa (raw, json) Hash identifier: A5KA40YZbi3YP36moNBti5doKdW/sxVa32eHdEtEMSc= Subject key identifier: EF:90:EC:DC:E9:6A:A7:74:FC:ED:BD:CE:48:B9:88:DE:ED:6D:E9:8D Certificate issuer: /CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Certificate serial: 4046009019C5FDF435C7799E8A73F8CF8B428688 Authority key identifier: 7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a313030303a3a2f33362d3438203d3e20313430343233.roa Signing time: Fri 10 Jan 2025 12:00:02 +0000 ROA not before: Fri 10 Jan 2025 11:55:02 +0000 ROA not after: Fri 09 Jan 2026 12:00:02 +0000 asID: 140423 IP address blocks: 2406:20c0:1000::/36 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 16:18:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:46:00:90:19:c5:fd:f4:35:c7:79:9e:8a:73:f8:cf:8b:42:86:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Validity Not Before: Jan 10 11:55:02 2025 GMT Not After : Jan 9 12:00:02 2026 GMT Subject: CN=EF90ECDCE96AA774FCEDBDCE48B988DEED6DE98D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:6b:07:04:f3:64:38:35:f3:3c:6b:6a:69:bb: d2:7c:c7:03:ee:7f:3b:46:a8:75:c0:f2:50:50:8b: 4b:c5:95:2e:5d:83:57:f4:bb:91:32:a6:e9:92:86: d2:82:11:02:bc:41:44:0f:4a:dc:a3:97:20:df:6b: 1c:14:77:5b:a2:7a:10:fa:b0:12:c6:33:c9:f7:0a: b7:2d:4d:76:8c:b3:11:38:e6:4d:c8:8a:f4:2e:de: a1:23:a4:3b:f7:aa:e4:b9:b0:e6:93:f6:f3:14:93: 64:d2:4e:2b:c9:74:7f:46:07:7b:32:ea:71:41:b5: 1f:b5:5e:95:8b:4e:22:75:4a:5b:01:40:d2:83:53: 5a:cd:f4:02:94:9a:91:e2:98:63:a0:c5:b4:d8:71: 1d:46:6e:73:25:81:bc:55:6b:85:48:2f:6d:c4:65: d6:d2:de:be:4b:37:9a:99:dc:8b:32:91:a1:a3:f1: 62:41:49:1b:d5:a9:1e:65:a9:9d:e8:21:67:14:bd: 0d:16:1a:23:59:f1:61:79:d7:8d:b4:4d:8f:75:ed: d2:5f:69:90:4c:0b:a2:9a:dc:34:32:3b:4f:7e:33: 58:65:13:59:97:e4:ac:1d:b9:93:a8:6d:2b:fe:38: b3:66:0a:c6:e8:bd:0e:56:8d:78:68:13:2a:e0:e3: 83:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:90:EC:DC:E9:6A:A7:74:FC:ED:BD:CE:48:B9:88:DE:ED:6D:E9:8D X509v3 Authority Key Identifier: keyid:7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a313030303a3a2f33362d3438203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:20c0:1000::/36 Signature Algorithm: sha256WithRSAEncryption 1b:9b:56:71:aa:1c:72:b0:8a:cd:1d:15:3d:a4:bd:65:21:b0: 4e:5b:28:0e:79:5f:79:1d:3e:5f:ba:b9:7b:52:4f:dc:e9:53: b1:26:21:9e:38:b4:e2:83:5c:e7:44:8a:84:2d:58:1d:2f:ba: 41:94:17:be:42:03:7d:15:06:dc:24:46:f5:bf:b4:48:b4:e5: 9d:1f:fc:cc:8a:bc:25:54:2c:35:5b:2f:50:f3:62:54:96:ce: 51:06:d3:0a:1a:fe:bf:dd:2b:e2:6e:38:7c:af:0c:c7:ad:6e: ee:ef:04:a7:31:d1:24:4f:7a:06:38:9f:21:63:4f:d9:34:a8: ee:26:f2:e8:be:ae:15:48:88:8d:8d:21:ce:98:d9:6c:c3:c6: 57:a2:15:4f:5d:de:69:67:ea:c9:42:ab:eb:84:1f:bb:eb:53: b0:f9:16:66:c9:06:47:48:ca:19:08:f9:6c:f3:be:10:3d:5f: cb:b0:c1:a7:23:3f:84:cb:3b:06:2a:6f:8b:d1:83:b7:60:26: b6:2d:d8:af:d7:d3:2d:14:24:52:25:26:5c:1b:3c:1b:c6:de: 3c:92:28:de:99:ed:57:0f:0f:80:ac:2f:9c:51:77:a0:98:c7: af:b2:ee:0b:71:26:ab:d0:2f:00:21:03:7d:ef:1c:e4:0b:71: 11:b6:29:0f -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUQEYAkBnF/fQ1x3meinP4z4tChogwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODcz NTJDQjg3NDAeFw0yNTAxMTAxMTU1MDJaFw0yNjAxMDkxMjAwMDJaMDMxMTAvBgNV BAMTKEVGOTBFQ0RDRTk2QUE3NzRGQ0VEQkRDRTQ4Qjk4OERFRUQ2REU5OEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBawcE82Q4NfM8a2ppu9J8xwPu fztGqHXA8lBQi0vFlS5dg1f0u5EypumShtKCEQK8QUQPStyjlyDfaxwUd1uiehD6 sBLGM8n3CrctTXaMsxE45k3IivQu3qEjpDv3quS5sOaT9vMUk2TSTivJdH9GB3sy 6nFBtR+1XpWLTiJ1SlsBQNKDU1rN9AKUmpHimGOgxbTYcR1GbnMlgbxVa4VIL23E ZdbS3r5LN5qZ3IsykaGj8WJBSRvVqR5lqZ3oIWcUvQ0WGiNZ8WF51420TY917dJf aZBMC6Ka3DQyO09+M1hlE1mX5KwduZOobSv+OLNmCsbovQ5WjXhoEyrg44MlAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQU75Ds3Olqp3T87b3OSLmI3u1t6Y0wHwYDVR0j BBgwFoAUfP0POf4ukOqLH10y1HbjhzUsuHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OWEwMDM2OS02ODQwLTRhOTUtODliMS1hNDg1MThmOThkYzcvMC83Q0ZEMEYzOUZF MkU5MEVBOEIxRjVEMzJENDc2RTM4NzM1MkNCODc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODczNTJD Qjg3NC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04 OWIxLWE0ODUxOGY5OGRjNy8wLzMyMzQzMDM2M2EzMjMwNjMzMDNhMzEzMDMwMzAz YTNhMmYzMzM2MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMyMzMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQk BiDAEDANBgkqhkiG9w0BAQsFAAOCAQEAG5tWcaoccrCKzR0VPaS9ZSGwTlsoDnlf eR0+X7q5e1JP3OlTsSYhnji04oNc50SKhC1YHS+6QZQXvkIDfRUG3CRG9b+0SLTl nR/8zIq8JVQsNVsvUPNiVJbOUQbTChr+v90r4m44fK8Mx61u7u8EpzHRJE96Bjif IWNP2TSo7iby6L6uFUiIjY0hzpjZbMPGV6IVT13eaWfqyUKr64Qfu+tTsPkWZskG R0jKGQj5bPO+ED1fy7DBpyM/hMs7Bipvi9GDt2Amti3Yr9fTLRQkUiUmXBs8G8be PJIo3pntVw8PgKwvnFF3oJjHr7LuC3Emq9AvACEDfe8c5AtxEbYpDw== -----END CERTIFICATE-----Generated at Thu Apr 10 00:31:37 2025 by rpki-client