$ rpki-client -vvf repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a333030303a3a2f33362d3438203d3e20313430343233.roa File: 323430363a323063303a333030303a3a2f33362d3438203d3e20313430343233.roa (raw, json) Hash identifier: EKzg4f/tQv5kBz1f2ytTHODbXuVO6HzAG8S7tG5oplM= Subject key identifier: 8D:41:60:AF:11:98:D3:74:90:7E:47:45:A5:EB:35:32:87:4A:68:B8 Certificate issuer: /CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Certificate serial: 5A33A83B100F3CF990675A75EEA96B8736526C3C Authority key identifier: 7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a333030303a3a2f33362d3438203d3e20313430343233.roa Signing time: Fri 10 Jan 2025 12:00:01 +0000 ROA not before: Fri 10 Jan 2025 11:55:01 +0000 ROA not after: Fri 09 Jan 2026 12:00:01 +0000 asID: 140423 IP address blocks: 2406:20c0:3000::/36 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 04:45:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:33:a8:3b:10:0f:3c:f9:90:67:5a:75:ee:a9:6b:87:36:52:6c:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Validity Not Before: Jan 10 11:55:01 2025 GMT Not After : Jan 9 12:00:01 2026 GMT Subject: CN=8D4160AF1198D374907E4745A5EB3532874A68B8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:93:8e:7a:4d:d5:da:b6:1f:31:af:d1:2f:e8: b1:03:6c:e2:d8:f5:94:7d:84:d5:6a:51:11:dd:bb: 40:b2:ff:78:59:44:78:18:bd:ba:1b:8d:06:d5:5c: a2:a2:2a:e7:99:58:a3:73:e2:52:8e:1f:e8:63:d6: 8e:9f:8b:fa:db:59:df:d7:f6:cf:de:1a:9e:49:ee: e6:2d:de:3d:33:4b:b3:b5:46:26:af:f1:97:4d:42: cf:82:80:c8:4b:30:2e:00:76:ea:51:10:ee:8d:d6: 64:09:bc:ee:bf:8f:22:c8:ab:67:32:f3:91:4d:42: 4a:61:26:c5:c8:42:1f:d4:cf:05:5e:7a:5c:c8:5e: ea:5b:cd:53:39:d9:38:6c:d0:76:0f:c3:44:4e:17: e4:bf:57:ae:0e:3a:51:34:95:8d:56:e3:7e:4a:e3: 70:81:a6:31:f8:87:9e:2a:29:bc:a2:09:50:27:c1: 53:6f:e3:41:f3:72:74:10:a6:c2:bf:28:70:52:58: ab:7c:c0:e4:73:6f:db:81:7a:52:e3:b3:21:f1:e7: a0:d6:17:80:34:bc:ad:cc:ae:87:85:d7:90:d3:fd: 39:c5:79:dd:60:f2:e6:b7:4f:2d:50:cf:e8:74:fc: d1:bc:d5:23:60:a4:dd:d8:e9:9e:46:3d:77:00:c4: cf:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:41:60:AF:11:98:D3:74:90:7E:47:45:A5:EB:35:32:87:4A:68:B8 X509v3 Authority Key Identifier: keyid:7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a333030303a3a2f33362d3438203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:20c0:3000::/36 Signature Algorithm: sha256WithRSAEncryption a0:84:b4:e4:98:2c:af:ab:14:be:66:f3:f0:f0:11:eb:44:06: e5:bb:79:bd:42:37:6e:44:74:51:32:d3:78:d2:95:14:5a:57: df:ed:18:69:39:4e:e8:d4:4e:4a:3b:d0:66:ad:b1:e0:76:6a: 20:ab:b8:9a:8c:7d:9c:48:08:04:06:8e:01:45:11:5a:e6:c1: 6a:76:af:8b:d2:ee:44:48:e9:60:99:a7:d3:23:63:90:3d:67: f6:19:c0:04:22:98:02:d5:e3:3a:e7:75:a8:f2:24:1b:42:2f: 6c:95:ba:77:cc:a8:71:a2:d8:b9:f7:6b:a7:e5:17:2a:4d:ed: 7d:06:d7:a9:86:75:4e:62:27:c0:b1:63:f9:4a:8b:ca:21:04: 09:9b:51:65:e6:45:7c:8d:b3:8a:94:23:de:75:51:21:05:95: 8b:37:31:c4:49:6f:8c:a6:7c:33:bf:ef:6f:d7:3a:13:36:eb: 79:96:cf:7b:fb:8c:f4:32:a3:37:78:d7:71:b6:d2:7e:8e:e1: 84:92:42:6b:0a:93:ba:38:3b:ae:d9:66:ab:dc:12:2e:17:fc: 64:73:eb:0c:49:69:14:d3:41:f0:af:d8:95:5c:a7:91:9e:d7: 50:ac:19:dc:55:e0:e9:d7:d2:db:2d:71:75:c7:09:94:03:f9: fc:73:a9:28 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUWjOoOxAPPPmQZ1p17qlrhzZSbDwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODcz NTJDQjg3NDAeFw0yNTAxMTAxMTU1MDFaFw0yNjAxMDkxMjAwMDFaMDMxMTAvBgNV BAMTKDhENDE2MEFGMTE5OEQzNzQ5MDdFNDc0NUE1RUIzNTMyODc0QTY4QjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDck456TdXath8xr9Ev6LEDbOLY 9ZR9hNVqURHdu0Cy/3hZRHgYvbobjQbVXKKiKueZWKNz4lKOH+hj1o6fi/rbWd/X 9s/eGp5J7uYt3j0zS7O1Riav8ZdNQs+CgMhLMC4AdupREO6N1mQJvO6/jyLIq2cy 85FNQkphJsXIQh/UzwVeelzIXupbzVM52Ths0HYPw0ROF+S/V64OOlE0lY1W435K 43CBpjH4h54qKbyiCVAnwVNv40HzcnQQpsK/KHBSWKt8wORzb9uBelLjsyHx56DW F4A0vK3MroeF15DT/TnFed1g8ua3Ty1Qz+h0/NG81SNgpN3Y6Z5GPXcAxM8vAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUjUFgrxGY03SQfkdFpes1ModKaLgwHwYDVR0j BBgwFoAUfP0POf4ukOqLH10y1HbjhzUsuHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OWEwMDM2OS02ODQwLTRhOTUtODliMS1hNDg1MThmOThkYzcvMC83Q0ZEMEYzOUZF MkU5MEVBOEIxRjVEMzJENDc2RTM4NzM1MkNCODc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODczNTJD Qjg3NC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04 OWIxLWE0ODUxOGY5OGRjNy8wLzMyMzQzMDM2M2EzMjMwNjMzMDNhMzMzMDMwMzAz YTNhMmYzMzM2MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMyMzMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQk BiDAMDANBgkqhkiG9w0BAQsFAAOCAQEAoIS05Jgsr6sUvmbz8PAR60QG5bt5vUI3 bkR0UTLTeNKVFFpX3+0YaTlO6NROSjvQZq2x4HZqIKu4mox9nEgIBAaOAUURWubB anavi9LuREjpYJmn0yNjkD1n9hnABCKYAtXjOud1qPIkG0IvbJW6d8yocaLYufdr p+UXKk3tfQbXqYZ1TmInwLFj+UqLyiEECZtRZeZFfI2zipQj3nVRIQWVizcxxElv jKZ8M7/vb9c6EzbreZbPe/uM9DKjN3jXcbbSfo7hhJJCawqTujg7rtlmq9wSLhf8 ZHPrDElpFNNB8K/YlVynkZ7XUKwZ3FXg6dfS2y1xdccJlAP5/HOpKA== -----END CERTIFICATE-----Generated at Sun Apr 6 08:33:18 2025 by rpki-client