$ rpki-client -vvf repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a613030303a3a2f33362d3438203d3e20313430343233.roa File: 323430363a323063303a613030303a3a2f33362d3438203d3e20313430343233.roa (raw, json) Hash identifier: 6aXyHhTj6WsX142hjjjRRO/8mdIReimTf6dTt573/YM= Subject key identifier: F8:48:F8:42:84:CD:42:14:81:AE:79:D1:BA:2E:9E:A4:8F:83:34:B7 Certificate issuer: /CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Certificate serial: 2A1D716215B14CA662B8CD8E23A1B8C2698BCFAD Authority key identifier: 7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a613030303a3a2f33362d3438203d3e20313430343233.roa Signing time: Fri 10 Jan 2025 12:00:02 +0000 ROA not before: Fri 10 Jan 2025 11:55:02 +0000 ROA not after: Fri 09 Jan 2026 12:00:02 +0000 asID: 140423 IP address blocks: 2406:20c0:a000::/36 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 04:45:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:1d:71:62:15:b1:4c:a6:62:b8:cd:8e:23:a1:b8:c2:69:8b:cf:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Validity Not Before: Jan 10 11:55:02 2025 GMT Not After : Jan 9 12:00:02 2026 GMT Subject: CN=F848F84284CD421481AE79D1BA2E9EA48F8334B7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:16:c4:c1:9b:7c:c0:c8:7e:8f:9a:50:fe:00: f9:3e:c8:bf:51:2a:f2:b5:88:b1:3c:46:ff:45:fd: 99:a3:46:49:5a:59:48:31:37:a0:c0:15:33:5e:95: 55:05:ac:c3:b2:ed:8f:6d:e5:87:f6:8f:d9:34:28: 98:7e:05:7a:be:12:2d:bb:1c:6a:26:74:0c:87:59: f4:d6:74:08:b1:d5:1a:c4:8c:15:b2:5e:f9:4c:ee: 8e:1e:8f:95:d6:16:13:e0:c4:22:3a:fa:c7:8b:e2: 10:7d:47:84:fd:8c:14:38:c0:e6:6f:81:e1:c5:cb: 62:c1:72:84:b8:72:f3:9b:b5:bf:a0:6e:84:4c:ba: fd:55:3c:5f:b1:64:07:78:ae:b8:2b:9c:c7:6a:35: 79:66:57:c9:4a:26:d3:8b:cd:ad:57:04:f5:39:0e: 4a:3c:5e:3b:b6:f1:6f:de:fd:86:e8:08:63:cb:b2: 05:52:82:cb:9d:17:b2:c6:f0:9a:da:0e:17:f3:20: c3:98:26:56:e7:9d:64:ce:0b:06:03:9d:ac:0d:68: b0:6a:08:45:2e:15:82:38:fe:5c:92:19:ac:6a:06: c0:f2:44:f8:e4:52:90:9e:71:82:46:80:2b:48:42: c2:f4:be:c7:91:e5:a7:e9:23:f5:d0:bd:fe:13:56: 76:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:48:F8:42:84:CD:42:14:81:AE:79:D1:BA:2E:9E:A4:8F:83:34:B7 X509v3 Authority Key Identifier: keyid:7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a613030303a3a2f33362d3438203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:20c0:a000::/36 Signature Algorithm: sha256WithRSAEncryption 88:62:4b:e2:45:24:e6:a5:68:57:ce:0e:23:d4:52:74:c5:fd: 39:42:51:52:8d:bb:db:01:d4:a2:a0:43:04:50:9a:02:dc:e4: 8a:44:05:c6:71:a6:65:f8:92:84:06:a1:68:6c:5c:73:48:b3: 4c:f5:39:9f:f0:e6:b5:52:42:62:1e:cc:d2:2b:22:54:43:eb: f9:1a:99:37:25:bd:7e:80:f7:9f:c1:b5:df:4d:38:28:47:f2: 0f:51:bc:7c:74:2c:1b:dd:94:55:10:6b:96:00:02:09:e9:8b: 7c:26:75:01:59:20:0c:6b:76:8c:4a:67:aa:4c:94:62:f6:03: e6:8e:65:49:f2:3d:67:1f:91:d8:23:e6:3f:f3:dd:8a:c2:74: d3:05:19:75:f2:c1:aa:48:75:26:1c:98:18:3f:9b:4e:80:fd: 39:80:ed:20:76:2b:70:95:c9:07:ca:35:8d:71:c1:ef:70:5a: 49:81:f7:60:ec:9e:5d:91:42:f3:0e:31:64:31:b5:ba:e0:21: 5b:1f:f7:c6:a3:bb:f8:13:00:ea:cf:22:c4:28:32:cd:ee:cd: d2:53:88:03:0d:f8:36:9f:60:a8:48:0a:03:1a:1c:a4:5d:24: 52:61:da:d0:1d:c7:8f:86:c1:38:fd:86:c3:3c:ec:4d:d8:41: 3f:00:81:7e -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUKh1xYhWxTKZiuM2OI6G4wmmLz60wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODcz NTJDQjg3NDAeFw0yNTAxMTAxMTU1MDJaFw0yNjAxMDkxMjAwMDJaMDMxMTAvBgNV BAMTKEY4NDhGODQyODRDRDQyMTQ4MUFFNzlEMUJBMkU5RUE0OEY4MzM0QjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5FsTBm3zAyH6PmlD+APk+yL9R KvK1iLE8Rv9F/ZmjRklaWUgxN6DAFTNelVUFrMOy7Y9t5Yf2j9k0KJh+BXq+Ei27 HGomdAyHWfTWdAix1RrEjBWyXvlM7o4ej5XWFhPgxCI6+seL4hB9R4T9jBQ4wOZv geHFy2LBcoS4cvObtb+gboRMuv1VPF+xZAd4rrgrnMdqNXlmV8lKJtOLza1XBPU5 Dko8Xju28W/e/YboCGPLsgVSgsudF7LG8JraDhfzIMOYJlbnnWTOCwYDnawNaLBq CEUuFYI4/lySGaxqBsDyRPjkUpCecYJGgCtIQsL0vseR5afpI/XQvf4TVnahAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQU+Ej4QoTNQhSBrnnRui6epI+DNLcwHwYDVR0j BBgwFoAUfP0POf4ukOqLH10y1HbjhzUsuHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OWEwMDM2OS02ODQwLTRhOTUtODliMS1hNDg1MThmOThkYzcvMC83Q0ZEMEYzOUZF MkU5MEVBOEIxRjVEMzJENDc2RTM4NzM1MkNCODc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODczNTJD Qjg3NC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04 OWIxLWE0ODUxOGY5OGRjNy8wLzMyMzQzMDM2M2EzMjMwNjMzMDNhNjEzMDMwMzAz YTNhMmYzMzM2MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMyMzMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQk BiDAoDANBgkqhkiG9w0BAQsFAAOCAQEAiGJL4kUk5qVoV84OI9RSdMX9OUJRUo27 2wHUoqBDBFCaAtzkikQFxnGmZfiShAahaGxcc0izTPU5n/DmtVJCYh7M0isiVEPr +RqZNyW9foD3n8G13004KEfyD1G8fHQsG92UVRBrlgACCemLfCZ1AVkgDGt2jEpn qkyUYvYD5o5lSfI9Zx+R2CPmP/PdisJ00wUZdfLBqkh1JhyYGD+bToD9OYDtIHYr cJXJB8o1jXHB73BaSYH3YOyeXZFC8w4xZDG1uuAhWx/3xqO7+BMA6s8ixCgyze7N 0lOIAw34Np9gqEgKAxocpF0kUmHa0B3Hj4bBOP2GwzzsTdhBPwCBfg== -----END CERTIFICATE-----Generated at Sun Apr 6 08:34:16 2025 by rpki-client