$ rpki-client -vvf repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a3a2f33362d3438203d3e20313430343233.roa File: 323430363a323063303a3a2f33362d3438203d3e20313430343233.roa (raw, json) Hash identifier: qq1Qkq8ySjnqdqv2vpAV+fQ6A+6jnQAZ564N9qccmog= Subject key identifier: 1F:C0:1D:A6:54:A0:AB:EA:2C:5F:EF:15:3D:68:26:5D:C5:55:8F:5C Certificate issuer: /CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Certificate serial: 1CD6021136DF598B2A473B1D8BFA7DC13F22DB5D Authority key identifier: 7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a3a2f33362d3438203d3e20313430343233.roa Signing time: Fri 10 Jan 2025 12:00:00 +0000 ROA not before: Fri 10 Jan 2025 11:55:00 +0000 ROA not after: Fri 09 Jan 2026 12:00:00 +0000 asID: 140423 IP address blocks: 2406:20c0::/36 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 04:45:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:d6:02:11:36:df:59:8b:2a:47:3b:1d:8b:fa:7d:c1:3f:22:db:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Validity Not Before: Jan 10 11:55:00 2025 GMT Not After : Jan 9 12:00:00 2026 GMT Subject: CN=1FC01DA654A0ABEA2C5FEF153D68265DC5558F5C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:c8:11:d1:3a:80:b3:36:36:d0:2e:0d:37:6a: d9:dc:73:70:08:7a:99:ca:5a:1b:d5:79:8d:69:1d: a3:be:45:c8:e2:ea:4f:de:7c:da:51:2d:ed:22:5b: d7:d0:3b:bc:61:00:bd:97:59:da:b0:78:0d:c6:54: 90:35:9b:b0:93:2f:2e:7c:ea:0d:a9:af:ae:84:54: b3:4a:d7:a5:a4:ae:f0:f3:da:d1:64:b0:1d:03:87: 0b:9a:b9:e6:40:62:5b:37:b1:fc:ce:97:53:a2:76: 14:88:82:6e:41:ba:d8:c9:6c:0c:82:8b:0f:f9:45: 52:da:08:ff:99:ca:a6:44:eb:a7:d6:d7:25:0a:0d: 10:8e:46:bc:d1:29:0b:4b:66:72:d1:b4:56:f2:74: d8:b3:6b:6c:40:94:25:f3:57:08:16:c7:bb:b3:2b: a6:30:f7:53:47:07:97:fe:8b:bc:18:ef:95:e3:ec: bc:ba:c0:f5:0a:53:e3:a1:08:c0:d5:45:71:40:3d: 0a:70:21:47:2e:1c:43:49:52:01:da:ae:6f:a7:84: 2f:e7:55:d3:58:a2:b4:bd:61:0c:d7:77:c1:d4:07: 4e:99:ff:5d:67:dc:40:e0:83:e7:6d:7d:d7:57:ec: f1:eb:a3:a4:7c:db:3b:8d:60:b0:9d:f4:ed:f7:90: b3:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:C0:1D:A6:54:A0:AB:EA:2C:5F:EF:15:3D:68:26:5D:C5:55:8F:5C X509v3 Authority Key Identifier: keyid:7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a3a2f33362d3438203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:20c0::/36 Signature Algorithm: sha256WithRSAEncryption 84:af:9f:d3:af:8d:ab:d5:1b:3f:67:eb:3a:36:63:2e:32:61: 81:b2:ef:f5:9f:f5:b5:ef:96:80:49:40:52:a8:10:e1:d9:49: fd:70:ed:45:5b:18:30:c1:86:08:50:c6:d8:36:1c:0a:92:3f: 14:db:3b:80:b0:67:7c:e9:bb:02:d0:8b:77:83:49:ce:56:e8: e2:1d:12:8c:95:92:51:00:1f:de:9a:70:01:42:a3:f7:ae:60: 73:78:81:21:5a:e9:87:a3:91:b7:dc:99:54:ec:6b:98:c2:c7: 17:db:48:10:7a:38:51:26:05:f4:b0:2f:03:67:56:27:b0:72: b1:1e:eb:e9:f3:84:ed:b8:5b:0d:0e:98:20:8c:04:cc:44:78: f9:ae:8a:40:79:7f:2f:f4:ec:1c:bd:4e:8c:93:67:92:08:9f: b4:ea:a5:4a:f9:b4:30:8e:2f:ef:8f:65:82:c2:60:a2:e9:dd: de:27:7d:ca:fd:22:f7:1f:77:01:53:06:41:45:1e:a0:00:2a: 71:41:f8:d4:84:0b:c5:52:70:cf:00:71:ea:0c:56:96:1d:f1: e1:c2:70:eb:6d:69:fd:59:4c:a8:ee:de:4d:74:bf:a0:df:0e: 6f:3d:15:ea:58:50:8b:78:fd:fb:6d:e2:3b:44:c6:2b:65:90: d2:b6:8c:24 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUHNYCETbfWYsqRzsdi/p9wT8i210wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODcz NTJDQjg3NDAeFw0yNTAxMTAxMTU1MDBaFw0yNjAxMDkxMjAwMDBaMDMxMTAvBgNV BAMTKDFGQzAxREE2NTRBMEFCRUEyQzVGRUYxNTNENjgyNjVEQzU1NThGNUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzyBHROoCzNjbQLg03atncc3AI epnKWhvVeY1pHaO+Rcji6k/efNpRLe0iW9fQO7xhAL2XWdqweA3GVJA1m7CTLy58 6g2pr66EVLNK16WkrvDz2tFksB0DhwuaueZAYls3sfzOl1OidhSIgm5ButjJbAyC iw/5RVLaCP+ZyqZE66fW1yUKDRCORrzRKQtLZnLRtFbydNiza2xAlCXzVwgWx7uz K6Yw91NHB5f+i7wY75Xj7Ly6wPUKU+OhCMDVRXFAPQpwIUcuHENJUgHarm+nhC/n VdNYorS9YQzXd8HUB06Z/11n3EDgg+dtfddX7PHro6R82zuNYLCd9O33kLNXAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUH8AdplSgq+osX+8VPWgmXcVVj1wwHwYDVR0j BBgwFoAUfP0POf4ukOqLH10y1HbjhzUsuHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OWEwMDM2OS02ODQwLTRhOTUtODliMS1hNDg1MThmOThkYzcvMC83Q0ZEMEYzOUZF MkU5MEVBOEIxRjVEMzJENDc2RTM4NzM1MkNCODc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODczNTJD Qjg3NC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04 OWIxLWE0ODUxOGY5OGRjNy8wLzMyMzQzMDM2M2EzMjMwNjMzMDNhM2EyZjMzMzYy ZDM0MzgyMDNkM2UyMDMxMzQzMDM0MzIzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBCQGIMAAMA0GCSqG SIb3DQEBCwUAA4IBAQCEr5/Tr42r1Rs/Z+s6NmMuMmGBsu/1n/W175aASUBSqBDh 2Un9cO1FWxgwwYYIUMbYNhwKkj8U2zuAsGd86bsC0It3g0nOVujiHRKMlZJRAB/e mnABQqP3rmBzeIEhWumHo5G33JlU7GuYwscX20gQejhRJgX0sC8DZ1YnsHKxHuvp 84TtuFsNDpggjATMRHj5ropAeX8v9OwcvU6Mk2eSCJ+06qVK+bQwji/vj2WCwmCi 6d3eJ33K/SL3H3cBUwZBRR6gACpxQfjUhAvFUnDPAHHqDFaWHfHhwnDrbWn9WUyo 7t5NdL+g3w5vPRXqWFCLeP37beI7RMYrZZDStowk -----END CERTIFICATE-----Generated at Sun Apr 6 08:27:52 2025 by rpki-client