$ rpki-client -vvf repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a653030303a3a2f33362d3438203d3e20313430343233.roa File: 323430363a323063303a653030303a3a2f33362d3438203d3e20313430343233.roa (raw, json) Hash identifier: +qsIRAa8gtsbnEKBlt6t55pQ97Bf89zlcfMWoICtuYc= Subject key identifier: E9:21:78:56:B7:D3:05:84:D7:B7:75:64:29:7E:F7:F0:F3:81:3E:D3 Certificate issuer: /CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Certificate serial: 509CE5E2FAD29140DA8869BAC1C32CBE74BCD998 Authority key identifier: 7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a653030303a3a2f33362d3438203d3e20313430343233.roa Signing time: Fri 10 Jan 2025 12:00:01 +0000 ROA not before: Fri 10 Jan 2025 11:55:01 +0000 ROA not after: Fri 09 Jan 2026 12:00:01 +0000 asID: 140423 IP address blocks: 2406:20c0:e000::/36 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 04:45:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:9c:e5:e2:fa:d2:91:40:da:88:69:ba:c1:c3:2c:be:74:bc:d9:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Validity Not Before: Jan 10 11:55:01 2025 GMT Not After : Jan 9 12:00:01 2026 GMT Subject: CN=E9217856B7D30584D7B77564297EF7F0F3813ED3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:72:96:c0:ff:1f:a5:ee:42:20:a4:05:23:86: d0:5f:b7:97:77:02:96:b1:5a:2e:a1:ef:1c:5d:ef: 29:17:cf:8e:73:8b:9b:66:31:c8:8e:bf:b2:6d:c3: 42:a7:48:52:11:17:a4:6a:57:fc:f7:18:21:4d:30: 84:44:66:3e:d9:37:08:6c:db:46:99:bc:88:08:ea: d3:45:ee:8a:07:24:6d:c3:01:8f:c0:fe:33:72:a9: f8:a7:44:fc:43:c5:7f:31:52:5d:a0:c9:72:1a:ef: cb:d1:e0:e9:1c:a1:b1:75:6d:3e:39:c0:2e:93:7b: f4:62:46:3a:5b:5d:79:27:01:0d:d4:bc:ea:7b:0b: e6:d5:0c:07:68:50:ac:1a:5c:5c:1d:c3:93:e9:6e: d8:66:32:b1:17:da:d6:63:36:a4:a3:e5:2f:26:c4: 26:00:70:bc:62:85:60:6f:88:32:ce:6e:e1:9b:5f: ba:01:e6:0b:99:80:e8:8f:64:33:97:1d:5d:ea:5e: 15:5c:96:0e:c9:b9:57:2e:56:5a:60:94:ab:bb:e2: 77:45:18:a6:0f:a3:c2:88:19:73:fc:42:4f:54:7e: 78:2b:d2:8b:c0:e7:07:9e:2c:56:4c:99:90:81:bc: 2a:64:eb:58:60:51:ce:5d:ec:c8:ae:ef:2e:bb:f7: a7:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:21:78:56:B7:D3:05:84:D7:B7:75:64:29:7E:F7:F0:F3:81:3E:D3 X509v3 Authority Key Identifier: keyid:7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a653030303a3a2f33362d3438203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:20c0:e000::/36 Signature Algorithm: sha256WithRSAEncryption a4:93:84:a3:b0:0d:8e:75:b7:fb:f4:8d:7c:0d:0c:9e:17:38: c8:e0:99:77:e9:95:39:c4:f1:a5:c6:09:26:1c:27:a5:f7:02: 3b:fd:34:77:04:9d:7a:33:18:3f:39:77:5e:b4:6c:e8:6a:d0: 88:17:3e:67:3f:01:a9:be:3f:5a:41:1d:f9:fe:95:db:48:c9: a6:de:af:0d:35:dc:48:e6:bf:7a:94:17:9e:28:cd:85:6d:82: 1d:a6:e8:cc:f3:d9:82:3d:9e:e8:6e:a1:9a:b4:5a:89:f3:45: 40:b8:9c:2e:55:e1:4f:f2:10:4d:37:23:29:4c:9c:5d:66:f7: ba:7d:c6:af:46:25:44:3c:79:32:54:ef:d3:a6:8b:59:f7:9f: 2e:27:4d:d6:02:68:9f:59:b3:36:3b:25:b3:2c:1c:30:ee:af: 8e:68:71:ea:0f:14:1f:5a:28:47:e3:7e:02:fc:af:6d:85:92: 38:cd:70:55:fb:27:14:cf:66:4e:68:7f:97:bc:41:9c:4f:01: 55:9c:96:1c:e5:b3:ee:30:38:12:68:05:0e:42:5b:98:0e:b9: 5b:f2:e9:bd:53:65:40:b1:f0:c4:c6:67:d3:75:37:d7:f5:e9: 1b:a2:ba:30:bf:45:ea:50:1a:62:4b:5c:d7:2c:8c:8c:38:9b: ee:b8:d1:e2 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUUJzl4vrSkUDaiGm6wcMsvnS82ZgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODcz NTJDQjg3NDAeFw0yNTAxMTAxMTU1MDFaFw0yNjAxMDkxMjAwMDFaMDMxMTAvBgNV BAMTKEU5MjE3ODU2QjdEMzA1ODREN0I3NzU2NDI5N0VGN0YwRjM4MTNFRDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgcpbA/x+l7kIgpAUjhtBft5d3 ApaxWi6h7xxd7ykXz45zi5tmMciOv7Jtw0KnSFIRF6RqV/z3GCFNMIREZj7ZNwhs 20aZvIgI6tNF7ooHJG3DAY/A/jNyqfinRPxDxX8xUl2gyXIa78vR4OkcobF1bT45 wC6Te/RiRjpbXXknAQ3UvOp7C+bVDAdoUKwaXFwdw5PpbthmMrEX2tZjNqSj5S8m xCYAcLxihWBviDLObuGbX7oB5guZgOiPZDOXHV3qXhVclg7JuVcuVlpglKu74ndF GKYPo8KIGXP8Qk9Ufngr0ovA5weeLFZMmZCBvCpk61hgUc5d7Miu7y6796drAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQU6SF4VrfTBYTXt3VkKX738POBPtMwHwYDVR0j BBgwFoAUfP0POf4ukOqLH10y1HbjhzUsuHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OWEwMDM2OS02ODQwLTRhOTUtODliMS1hNDg1MThmOThkYzcvMC83Q0ZEMEYzOUZF MkU5MEVBOEIxRjVEMzJENDc2RTM4NzM1MkNCODc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODczNTJD Qjg3NC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04 OWIxLWE0ODUxOGY5OGRjNy8wLzMyMzQzMDM2M2EzMjMwNjMzMDNhNjUzMDMwMzAz YTNhMmYzMzM2MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMyMzMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQk BiDA4DANBgkqhkiG9w0BAQsFAAOCAQEApJOEo7ANjnW3+/SNfA0Mnhc4yOCZd+mV OcTxpcYJJhwnpfcCO/00dwSdejMYPzl3XrRs6GrQiBc+Zz8Bqb4/WkEd+f6V20jJ pt6vDTXcSOa/epQXnijNhW2CHabozPPZgj2e6G6hmrRaifNFQLicLlXhT/IQTTcj KUycXWb3un3Gr0YlRDx5MlTv06aLWfefLidN1gJon1mzNjslsywcMO6vjmhx6g8U H1ooR+N+AvyvbYWSOM1wVfsnFM9mTmh/l7xBnE8BVZyWHOWz7jA4EmgFDkJbmA65 W/LpvVNlQLHwxMZn03U31/XpG6K6ML9F6lAaYktc1yyMjDib7rjR4g== -----END CERTIFICATE-----Generated at Sun Apr 6 10:57:35 2025 by rpki-client