$ rpki-client -vvf repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a643030303a3a2f33362d3438203d3e20313430343233.roa File: 323430363a323063303a643030303a3a2f33362d3438203d3e20313430343233.roa (raw, json) Hash identifier: sGlkxVemcMCn2WHZTe6Apb/MI95/pRyFXnVh+OuLCaA= Subject key identifier: 15:5B:A8:43:86:5B:0B:FA:0F:D9:87:58:42:AA:8B:DF:F9:72:50:58 Certificate issuer: /CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Certificate serial: 6073DCE50F7B82DEE4AE814D3794491D82DBC72D Authority key identifier: 7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a643030303a3a2f33362d3438203d3e20313430343233.roa Signing time: Fri 10 Jan 2025 12:00:01 +0000 ROA not before: Fri 10 Jan 2025 11:55:01 +0000 ROA not after: Fri 09 Jan 2026 12:00:01 +0000 asID: 140423 IP address blocks: 2406:20c0:d000::/36 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 04:45:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:73:dc:e5:0f:7b:82:de:e4:ae:81:4d:37:94:49:1d:82:db:c7:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Validity Not Before: Jan 10 11:55:01 2025 GMT Not After : Jan 9 12:00:01 2026 GMT Subject: CN=155BA843865B0BFA0FD9875842AA8BDFF9725058 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:9f:98:fb:09:8d:55:a9:7d:94:1c:d8:4c:7a: 9c:ea:2d:7b:c4:e3:ae:8a:d9:42:ee:57:c3:76:f6: 04:f0:28:05:2e:3a:50:4f:79:a5:74:66:18:1f:4a: 99:60:ba:0c:f7:36:27:43:21:fb:f0:ff:5c:7a:5e: 6b:02:8c:3c:68:8f:c2:78:55:1c:7c:ff:ef:fd:95: 02:94:71:6c:3e:7c:03:c1:a0:08:cc:c8:39:31:51: e7:1e:46:12:cc:89:cf:bc:fe:e0:5f:75:fa:ea:9b: 83:66:10:1f:df:88:15:27:c3:f6:ce:fb:4f:18:43: 81:76:28:f6:6a:b3:56:fc:c3:90:88:ee:be:eb:f7: bd:9f:7f:1f:5a:98:8d:fb:2c:ed:59:79:d3:dd:65: d8:4d:47:e1:e4:0a:2d:73:59:82:e9:a9:53:19:86: b5:0a:02:f9:03:1a:1d:f8:79:62:cc:66:b9:2d:f5: 0e:43:d7:4c:8a:55:3d:95:e8:46:e7:d1:1f:e2:dd: 8b:c9:94:10:96:c6:82:72:c3:a8:d2:75:83:a5:d6: f7:c1:9e:15:ab:37:7d:67:82:1f:46:1d:ed:f2:03: b4:e9:47:98:04:64:52:08:8b:c7:48:8e:b0:c6:67: e9:35:65:f0:36:5d:8f:d8:7b:78:3b:04:51:a4:f5: 1d:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:5B:A8:43:86:5B:0B:FA:0F:D9:87:58:42:AA:8B:DF:F9:72:50:58 X509v3 Authority Key Identifier: keyid:7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a643030303a3a2f33362d3438203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:20c0:d000::/36 Signature Algorithm: sha256WithRSAEncryption 1c:b5:74:aa:f8:73:88:67:bd:e2:2e:61:da:cd:bd:2b:db:f8: ec:d8:70:fc:9b:59:98:de:8f:53:7d:53:5c:3e:ca:f0:07:9c: ea:2f:20:37:87:40:68:6b:17:5f:76:33:f3:ba:60:09:ca:a3: d9:9f:70:82:b0:83:33:6f:3d:1c:0d:5b:2c:73:c7:10:15:f6: cc:d5:df:3b:cf:ab:36:17:8b:2e:5c:12:b5:2c:d8:06:ff:b5: fe:71:20:08:ce:14:74:d1:8a:3f:8d:8f:ef:42:20:d7:1d:a8: 22:86:29:f4:1e:53:4d:4c:be:5b:24:3c:c3:60:83:2b:bb:a0: 65:05:68:ed:e2:f5:f7:23:28:b7:7d:10:7a:d3:df:8f:8b:2e: aa:b0:72:fa:9f:0a:95:ff:3c:8d:0b:30:86:48:8a:29:07:f0: ee:5a:ac:70:5b:66:ce:d8:d5:da:8e:68:e8:db:81:04:52:81: 62:5c:5f:51:70:2f:de:f1:a8:b1:fa:2d:cd:1e:81:fc:3f:a6: 5b:be:70:3a:23:49:2a:a2:ed:57:4b:2a:85:06:42:41:f4:8a: 68:4b:59:69:34:ed:7d:8d:39:1d:a8:55:06:9d:10:e8:ef:31: 2f:5c:a8:6d:71:4d:a2:5d:29:ac:d5:4f:2e:55:ae:11:19:f5: 94:5f:62:29 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUYHPc5Q97gt7kroFNN5RJHYLbxy0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODcz NTJDQjg3NDAeFw0yNTAxMTAxMTU1MDFaFw0yNjAxMDkxMjAwMDFaMDMxMTAvBgNV BAMTKDE1NUJBODQzODY1QjBCRkEwRkQ5ODc1ODQyQUE4QkRGRjk3MjUwNTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsn5j7CY1VqX2UHNhMepzqLXvE 466K2ULuV8N29gTwKAUuOlBPeaV0ZhgfSplgugz3NidDIfvw/1x6XmsCjDxoj8J4 VRx8/+/9lQKUcWw+fAPBoAjMyDkxUeceRhLMic+8/uBfdfrqm4NmEB/fiBUnw/bO +08YQ4F2KPZqs1b8w5CI7r7r972ffx9amI37LO1ZedPdZdhNR+HkCi1zWYLpqVMZ hrUKAvkDGh34eWLMZrkt9Q5D10yKVT2V6Ebn0R/i3YvJlBCWxoJyw6jSdYOl1vfB nhWrN31ngh9GHe3yA7TpR5gEZFIIi8dIjrDGZ+k1ZfA2XY/Ye3g7BFGk9R07AgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUFVuoQ4ZbC/oP2YdYQqqL3/lyUFgwHwYDVR0j BBgwFoAUfP0POf4ukOqLH10y1HbjhzUsuHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OWEwMDM2OS02ODQwLTRhOTUtODliMS1hNDg1MThmOThkYzcvMC83Q0ZEMEYzOUZF MkU5MEVBOEIxRjVEMzJENDc2RTM4NzM1MkNCODc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODczNTJD Qjg3NC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04 OWIxLWE0ODUxOGY5OGRjNy8wLzMyMzQzMDM2M2EzMjMwNjMzMDNhNjQzMDMwMzAz YTNhMmYzMzM2MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMyMzMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQk BiDA0DANBgkqhkiG9w0BAQsFAAOCAQEAHLV0qvhziGe94i5h2s29K9v47Nhw/JtZ mN6PU31TXD7K8Aec6i8gN4dAaGsXX3Yz87pgCcqj2Z9wgrCDM289HA1bLHPHEBX2 zNXfO8+rNheLLlwStSzYBv+1/nEgCM4UdNGKP42P70Ig1x2oIoYp9B5TTUy+WyQ8 w2CDK7ugZQVo7eL19yMot30QetPfj4suqrBy+p8Klf88jQswhkiKKQfw7lqscFtm ztjV2o5o6NuBBFKBYlxfUXAv3vGosfotzR6B/D+mW75wOiNJKqLtV0sqhQZCQfSK aEtZaTTtfY05HahVBp0Q6O8xL1yobXFNol0prNVPLlWuERn1lF9iKQ== -----END CERTIFICATE-----Generated at Sun Apr 6 08:33:16 2025 by rpki-client