$ rpki-client -vvf repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a343030303a3a2f33362d3438203d3e20313430343233.roa File: 323430363a323063303a343030303a3a2f33362d3438203d3e20313430343233.roa (raw, json) Hash identifier: P+hdDyILCGlUJOLFVHomZ1mKRpA+XpKplI6XMNzA2MM= Subject key identifier: 03:69:B9:07:18:FA:9F:7E:0A:38:40:C0:B6:A5:B9:4D:E6:AD:26:94 Certificate issuer: /CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Certificate serial: 0CDE3FF0CC89CA756EDE13DFC95D345B74C3EC6F Authority key identifier: 7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a343030303a3a2f33362d3438203d3e20313430343233.roa Signing time: Fri 10 Jan 2025 12:00:00 +0000 ROA not before: Fri 10 Jan 2025 11:55:00 +0000 ROA not after: Fri 09 Jan 2026 12:00:00 +0000 asID: 140423 IP address blocks: 2406:20c0:4000::/36 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 04:45:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:de:3f:f0:cc:89:ca:75:6e:de:13:df:c9:5d:34:5b:74:c3:ec:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Validity Not Before: Jan 10 11:55:00 2025 GMT Not After : Jan 9 12:00:00 2026 GMT Subject: CN=0369B90718FA9F7E0A3840C0B6A5B94DE6AD2694 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:36:9a:2b:f5:f7:15:70:1f:fd:a5:ed:1a:ee: 2c:8a:14:6c:a5:ed:27:47:53:42:95:70:2f:ed:b3: dc:5b:7e:bd:98:14:de:62:9a:93:08:f7:2c:9e:3d: e7:54:e9:a1:7e:84:87:be:12:d1:be:4f:ec:2a:ce: 05:21:69:6d:7d:85:73:73:47:b9:3f:55:5b:2e:0e: 37:f9:b9:1b:a9:7d:f1:23:f7:c3:b7:ad:c1:fc:a2: 2f:5b:1a:1e:5b:5b:e9:59:91:f8:cd:ff:72:3d:d1: 8b:4b:2b:c3:9a:c1:10:c1:86:1a:0c:3b:f1:a5:69: 39:7d:77:f1:e7:3b:fb:a7:be:3f:a0:85:c3:7a:4e: 7d:13:7c:23:6d:8c:f4:bf:73:ad:74:14:7c:45:dc: 96:b0:19:c2:88:46:3b:92:0c:05:a0:44:a8:ba:d2: b4:9f:57:df:5e:a1:12:1c:86:98:13:0d:65:5e:b4: ef:2a:90:94:93:db:43:db:bd:0c:94:e7:a0:63:c2: ce:40:ad:5f:94:91:bd:68:47:88:1e:7b:8f:ab:83: 02:ef:93:d3:4a:b0:f8:1f:30:a3:b6:d0:e7:d0:9a: 48:08:5b:27:db:ee:f2:40:78:4e:0d:28:ba:86:db: a4:10:28:b9:84:0c:51:1b:a0:34:6f:07:b6:96:8e: 5a:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:69:B9:07:18:FA:9F:7E:0A:38:40:C0:B6:A5:B9:4D:E6:AD:26:94 X509v3 Authority Key Identifier: keyid:7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a343030303a3a2f33362d3438203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:20c0:4000::/36 Signature Algorithm: sha256WithRSAEncryption 9f:88:16:2c:6f:c0:4a:0b:b1:41:2f:79:26:16:7e:b5:5a:64: d4:77:e9:70:ec:83:ce:8f:8e:82:4d:95:65:b5:df:ab:e6:63: 93:4a:cf:bd:57:24:b1:5d:54:26:5b:5d:1f:d7:ae:4c:e1:63: 03:7a:0f:8c:e3:b9:7e:6a:8c:ea:27:52:d1:5b:84:10:c4:1a: 0b:51:b4:00:4b:1c:39:9e:4c:c5:91:20:0c:60:27:18:43:48: 6e:88:88:05:37:a8:28:76:e2:ff:9c:d0:3a:f2:38:c6:ca:de: 2e:83:36:70:ed:a2:68:a4:d1:d7:f8:16:42:32:90:27:42:f3: 1b:f2:d9:6f:ab:cc:1c:87:ce:18:2b:0e:af:5f:09:f1:96:e2: ce:e7:c9:d7:bd:cb:02:a0:ff:a3:ca:03:c0:11:b0:76:11:53: 44:52:d0:79:61:23:2c:f7:af:01:74:b4:c2:3e:fa:00:93:0b: 3d:b3:2d:2a:49:8d:fd:0b:7f:79:5b:89:46:7d:d7:75:1a:b8: d7:67:79:eb:4d:5b:75:84:93:69:c5:2d:6a:0f:7c:fa:b9:69: 3a:65:b2:ec:4d:4f:92:10:08:67:22:b1:6b:1a:d9:cc:8b:25: 8c:39:af:b8:0a:3d:f3:56:d3:9e:d3:f2:d1:9b:1a:2d:24:34: db:4b:ee:46 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUDN4/8MyJynVu3hPfyV00W3TD7G8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODcz NTJDQjg3NDAeFw0yNTAxMTAxMTU1MDBaFw0yNjAxMDkxMjAwMDBaMDMxMTAvBgNV BAMTKDAzNjlCOTA3MThGQTlGN0UwQTM4NDBDMEI2QTVCOTRERTZBRDI2OTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyNpor9fcVcB/9pe0a7iyKFGyl 7SdHU0KVcC/ts9xbfr2YFN5impMI9yyePedU6aF+hIe+EtG+T+wqzgUhaW19hXNz R7k/VVsuDjf5uRupffEj98O3rcH8oi9bGh5bW+lZkfjN/3I90YtLK8OawRDBhhoM O/GlaTl9d/HnO/unvj+ghcN6Tn0TfCNtjPS/c610FHxF3JawGcKIRjuSDAWgRKi6 0rSfV99eoRIchpgTDWVetO8qkJST20PbvQyU56Bjws5ArV+Ukb1oR4gee4+rgwLv k9NKsPgfMKO20OfQmkgIWyfb7vJAeE4NKLqG26QQKLmEDFEboDRvB7aWjloBAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUA2m5Bxj6n34KOEDAtqW5TeatJpQwHwYDVR0j BBgwFoAUfP0POf4ukOqLH10y1HbjhzUsuHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OWEwMDM2OS02ODQwLTRhOTUtODliMS1hNDg1MThmOThkYzcvMC83Q0ZEMEYzOUZF MkU5MEVBOEIxRjVEMzJENDc2RTM4NzM1MkNCODc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODczNTJD Qjg3NC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04 OWIxLWE0ODUxOGY5OGRjNy8wLzMyMzQzMDM2M2EzMjMwNjMzMDNhMzQzMDMwMzAz YTNhMmYzMzM2MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMyMzMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQk BiDAQDANBgkqhkiG9w0BAQsFAAOCAQEAn4gWLG/ASguxQS95JhZ+tVpk1HfpcOyD zo+Ogk2VZbXfq+Zjk0rPvVcksV1UJltdH9euTOFjA3oPjOO5fmqM6idS0VuEEMQa C1G0AEscOZ5MxZEgDGAnGENIboiIBTeoKHbi/5zQOvI4xsreLoM2cO2iaKTR1/gW QjKQJ0LzG/LZb6vMHIfOGCsOr18J8ZbizufJ173LAqD/o8oDwBGwdhFTRFLQeWEj LPevAXS0wj76AJMLPbMtKkmN/Qt/eVuJRn3XdRq412d5601bdYSTacUtag98+rlp OmWy7E1PkhAIZyKxaxrZzIsljDmvuAo981bTntPy0ZsaLSQ020vuRg== -----END CERTIFICATE-----Generated at Sun Apr 6 08:33:09 2025 by rpki-client