$ rpki-client -vvf repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a393030303a3a2f33362d3438203d3e20313430343233.roa File: 323430363a323063303a393030303a3a2f33362d3438203d3e20313430343233.roa (raw, json) Hash identifier: CbEZrAwJ/jDeANSaozpZADsTWzEXcOtwWU/lRomxE5A= Subject key identifier: EA:C7:01:FB:63:B0:F6:8A:16:CA:B4:9D:08:B3:EC:DC:CE:5A:D3:BA Certificate issuer: /CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Certificate serial: 22ADAC4DB3383951EA0379E67F1ADB2FD5C38D79 Authority key identifier: 7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a393030303a3a2f33362d3438203d3e20313430343233.roa Signing time: Fri 10 Jan 2025 12:00:00 +0000 ROA not before: Fri 10 Jan 2025 11:55:00 +0000 ROA not after: Fri 09 Jan 2026 12:00:00 +0000 asID: 140423 IP address blocks: 2406:20c0:9000::/36 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 16:18:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:ad:ac:4d:b3:38:39:51:ea:03:79:e6:7f:1a:db:2f:d5:c3:8d:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Validity Not Before: Jan 10 11:55:00 2025 GMT Not After : Jan 9 12:00:00 2026 GMT Subject: CN=EAC701FB63B0F68A16CAB49D08B3ECDCCE5AD3BA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:4d:0d:0d:73:82:56:d8:27:05:b3:8f:f1:d6: c5:fa:43:9a:21:b7:3d:e0:c8:26:e7:0e:63:90:94: 75:02:82:96:ea:7f:c9:47:c8:46:ff:29:58:b2:fe: 8f:45:2b:17:6b:9b:7b:40:03:3e:ae:10:57:27:97: 8e:5a:44:67:ab:de:78:30:53:88:60:c4:99:bf:84: a4:98:25:61:81:59:8e:8b:f6:8f:e3:1e:f4:4a:b3: dc:02:23:1a:28:e1:45:77:bc:14:e0:f9:f3:5d:df: 50:7b:47:9d:ed:3e:29:0a:a1:68:b4:f0:0f:8b:09: e8:f8:87:70:8a:bc:79:43:3b:91:25:96:e2:dd:d8: 44:63:35:81:e9:ef:4b:0a:74:2c:4c:f4:8a:22:b3: 21:0a:2a:0a:6e:56:66:74:59:83:74:85:dc:79:29: 1a:7d:09:dd:2a:19:df:b8:c8:02:57:3f:70:b6:ea: 98:23:c5:92:11:a5:12:0d:9d:86:f1:66:17:28:88: 8b:5a:44:2e:48:93:65:cd:b0:6a:65:aa:39:2a:64: cd:a6:c1:77:37:3f:28:72:31:2f:ae:f3:03:88:1e: 05:e5:2b:cf:6d:04:3c:67:b8:ea:79:c1:46:15:69: 43:90:1e:b5:87:3d:7e:c3:33:99:8e:e6:45:0e:81: 24:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:C7:01:FB:63:B0:F6:8A:16:CA:B4:9D:08:B3:EC:DC:CE:5A:D3:BA X509v3 Authority Key Identifier: keyid:7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a393030303a3a2f33362d3438203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:20c0:9000::/36 Signature Algorithm: sha256WithRSAEncryption 21:89:ed:ea:ef:d9:5b:8e:48:e4:73:15:12:83:30:a6:e3:cc: 1a:68:14:a1:d2:8b:67:56:5a:e8:8c:ce:92:68:18:02:0a:02: 9d:88:58:ef:16:85:5e:7b:8b:33:ee:8f:5f:c2:3c:d0:c5:8a: 8b:24:87:a6:2b:ae:a0:b6:0b:6d:d0:6f:6b:39:7d:1d:e9:ad: 3d:14:5f:c8:7f:f9:ab:ed:06:72:92:fe:27:ef:ad:33:af:05: 99:08:07:4b:cf:01:80:87:01:89:c0:91:c6:89:40:cd:50:06: 52:58:c5:f7:b7:96:1e:66:31:ce:0a:30:97:91:4f:a0:30:31: 5c:5d:84:1b:ea:2a:46:9a:0f:00:82:58:af:30:ac:89:d4:45: 96:88:a7:fe:fd:5c:be:b1:ba:a7:b7:f6:da:11:09:17:4b:81: 64:25:a5:c0:99:8f:fe:26:54:2b:03:71:9c:6a:17:73:36:cb: 1e:89:db:0f:79:56:6e:59:82:08:f7:7c:d3:dd:b7:be:42:fe: 28:11:97:cb:41:a3:ce:fa:04:ff:57:e3:fa:a7:ca:b7:48:ca: 17:fd:ff:e6:fc:d7:57:ab:89:80:e7:f7:70:8f:20:dc:82:0d: 8c:39:bb:4f:c3:97:07:71:9a:f8:5f:5b:61:82:a9:63:b3:cc: 10:00:fe:e3 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUIq2sTbM4OVHqA3nmfxrbL9XDjXkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODcz NTJDQjg3NDAeFw0yNTAxMTAxMTU1MDBaFw0yNjAxMDkxMjAwMDBaMDMxMTAvBgNV BAMTKEVBQzcwMUZCNjNCMEY2OEExNkNBQjQ5RDA4QjNFQ0RDQ0U1QUQzQkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0TQ0Nc4JW2CcFs4/x1sX6Q5oh tz3gyCbnDmOQlHUCgpbqf8lHyEb/KViy/o9FKxdrm3tAAz6uEFcnl45aRGer3ngw U4hgxJm/hKSYJWGBWY6L9o/jHvRKs9wCIxoo4UV3vBTg+fNd31B7R53tPikKoWi0 8A+LCej4h3CKvHlDO5ElluLd2ERjNYHp70sKdCxM9IoisyEKKgpuVmZ0WYN0hdx5 KRp9Cd0qGd+4yAJXP3C26pgjxZIRpRINnYbxZhcoiItaRC5Ik2XNsGplqjkqZM2m wXc3PyhyMS+u8wOIHgXlK89tBDxnuOp5wUYVaUOQHrWHPX7DM5mO5kUOgSQVAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQU6scB+2Ow9ooWyrSdCLPs3M5a07owHwYDVR0j BBgwFoAUfP0POf4ukOqLH10y1HbjhzUsuHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OWEwMDM2OS02ODQwLTRhOTUtODliMS1hNDg1MThmOThkYzcvMC83Q0ZEMEYzOUZF MkU5MEVBOEIxRjVEMzJENDc2RTM4NzM1MkNCODc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODczNTJD Qjg3NC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04 OWIxLWE0ODUxOGY5OGRjNy8wLzMyMzQzMDM2M2EzMjMwNjMzMDNhMzkzMDMwMzAz YTNhMmYzMzM2MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMyMzMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQk BiDAkDANBgkqhkiG9w0BAQsFAAOCAQEAIYnt6u/ZW45I5HMVEoMwpuPMGmgUodKL Z1Za6IzOkmgYAgoCnYhY7xaFXnuLM+6PX8I80MWKiySHpiuuoLYLbdBvazl9Hemt PRRfyH/5q+0GcpL+J++tM68FmQgHS88BgIcBicCRxolAzVAGUljF97eWHmYxzgow l5FPoDAxXF2EG+oqRpoPAIJYrzCsidRFloin/v1cvrG6p7f22hEJF0uBZCWlwJmP /iZUKwNxnGoXczbLHonbD3lWblmCCPd80923vkL+KBGXy0GjzvoE/1fj+qfKt0jK F/3/5vzXV6uJgOf3cI8g3IINjDm7T8OXB3Ga+F9bYYKpY7PMEAD+4w== -----END CERTIFICATE-----Generated at Thu Apr 10 01:58:13 2025 by rpki-client