$ rpki-client -vvf repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a313630303a3a2f34302d3430203d3e20313533303837.roa File: 323430343a393763303a313630303a3a2f34302d3430203d3e20313533303837.roa (raw, json) Hash identifier: mdadZ+r3nk3ljg8TD8Qk3FJTWop4VzOG0q1+8q98qdQ= Subject key identifier: E2:DB:0B:38:AC:8F:A6:DC:0B:64:C4:4B:B9:9B:B4:1A:B9:B8:7D:AB Certificate issuer: /CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Certificate serial: 30254784F5914445A636C78985AEC96A345FE429 Authority key identifier: 4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a313630303a3a2f34302d3430203d3e20313533303837.roa Signing time: Tue 10 Dec 2024 06:02:08 +0000 ROA not before: Tue 10 Dec 2024 05:57:08 +0000 ROA not after: Tue 09 Dec 2025 06:02:08 +0000 asID: 153087 IP address blocks: 2404:97c0:1600::/40 maxlen: 40 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 20:35:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:25:47:84:f5:91:44:45:a6:36:c7:89:85:ae:c9:6a:34:5f:e4:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Validity Not Before: Dec 10 05:57:08 2024 GMT Not After : Dec 9 06:02:08 2025 GMT Subject: CN=E2DB0B38AC8FA6DC0B64C44BB99BB41AB9B87DAB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:68:55:cf:16:ea:a5:b9:ea:8e:48:8c:16:06: b3:5d:10:a3:5f:5b:5f:a6:29:25:fe:50:97:fe:ff: 54:4b:db:b1:93:59:74:77:87:26:d1:c7:f8:aa:49: 02:e0:77:4c:31:f4:57:52:06:7e:42:0a:2a:d7:ed: ed:3b:aa:ff:18:bd:e7:a1:72:60:d4:20:fd:e7:7a: 73:54:1e:dd:d4:b6:4c:5b:18:7f:10:81:cc:e4:9e: 69:a6:c2:da:b7:46:6a:71:44:26:1c:68:1d:36:bc: ae:b4:e2:60:03:7f:ac:35:a2:c1:3c:2e:eb:b6:28: ba:4f:74:1c:42:16:20:d8:aa:ca:41:a7:4f:a8:57: 9d:5f:61:55:5e:46:76:1d:23:09:59:08:24:bb:98: c4:88:f9:b4:e7:b3:02:60:23:26:e1:47:2a:b3:4d: cb:58:f2:b4:a3:b6:db:74:3c:40:d3:2c:77:d2:50: ba:84:79:ec:61:77:7a:ff:a3:01:2b:ec:49:42:9f: a3:91:9e:a0:9f:59:3c:f2:09:86:54:41:4a:48:75: 80:a5:4b:12:a7:22:1b:9d:91:0a:13:76:06:b7:8b: 1a:d5:72:52:6a:e6:63:5c:40:86:90:13:2c:29:38: ac:0d:19:41:56:ee:8b:b1:25:59:45:21:3d:86:bf: 58:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:DB:0B:38:AC:8F:A6:DC:0B:64:C4:4B:B9:9B:B4:1A:B9:B8:7D:AB X509v3 Authority Key Identifier: keyid:4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a313630303a3a2f34302d3430203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:1600::/40 Signature Algorithm: sha256WithRSAEncryption 77:db:0a:47:e1:6c:85:74:5e:84:c0:98:67:15:d0:5a:cd:42: a6:4f:58:98:42:76:01:5a:02:54:60:50:94:34:93:a7:77:da: e8:fc:ef:ed:32:9d:0c:97:f6:fc:c1:9a:5b:a1:5e:7c:fc:4a: 96:27:a3:10:9f:c7:cf:a3:b4:40:e7:36:24:c5:10:b7:72:90: 18:82:13:86:9b:7d:8e:f1:bf:0f:cd:f9:3e:6d:01:a2:97:7a: a2:9c:0d:33:69:a0:3f:1e:b0:ab:d2:9a:31:f1:96:9c:ac:09: f9:2d:9a:d0:15:19:13:5c:f1:36:01:47:47:8b:75:94:f3:87: f5:86:23:33:4c:b9:ed:aa:be:4f:b9:ee:bd:52:0c:c9:fa:39: b0:10:72:9f:b9:f7:02:80:b9:57:bf:15:c7:bc:0f:cd:37:4d: 6d:85:5c:bb:2b:ef:ec:49:3d:3c:63:9a:05:dc:0c:53:82:35: 39:e7:d9:cf:41:50:28:b7:d1:c7:21:f6:ce:77:2e:ad:43:a8: e0:5b:79:bb:45:6d:3f:b5:d0:0a:df:68:7b:72:5d:9e:c1:78: a4:ca:5b:d5:27:e2:10:ab:85:70:6e:a4:75:66:09:f5:8e:81: 7d:92:f7:0c:92:e0:b1:16:12:4e:ae:2a:f4:ad:38:cd:32:91: 08:7c:84:00 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUMCVHhPWRREWmNseJha7JajRf5CkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4 QzFENTE1ODAeFw0yNDEyMTAwNTU3MDhaFw0yNTEyMDkwNjAyMDhaMDMxMTAvBgNV BAMTKEUyREIwQjM4QUM4RkE2REMwQjY0QzQ0QkI5OUJCNDFBQjlCODdEQUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcaFXPFuqlueqOSIwWBrNdEKNf W1+mKSX+UJf+/1RL27GTWXR3hybRx/iqSQLgd0wx9FdSBn5CCirX7e07qv8Yveeh cmDUIP3nenNUHt3UtkxbGH8Qgczknmmmwtq3RmpxRCYcaB02vK604mADf6w1osE8 Luu2KLpPdBxCFiDYqspBp0+oV51fYVVeRnYdIwlZCCS7mMSI+bTnswJgIybhRyqz TctY8rSjttt0PEDTLHfSULqEeexhd3r/owEr7ElCn6ORnqCfWTzyCYZUQUpIdYCl SxKnIhudkQoTdga3ixrVclJq5mNcQIaQEywpOKwNGUFW7ouxJVlFIT2Gv1jTAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQU4tsLOKyPptwLZMRLuZu0Grm4faswHwYDVR0j BBgwFoAUTfPbPaIdACIgITBzbkzLBIwdUVgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZGVkNTgxMS1iZTUwLTRjYWEtOWY5Ni02M2QzNzIwMzExZGUvMS80REYzREIzREEy MUQwMDIyMjAyMTMwNzM2RTRDQ0IwNDhDMUQ1MTU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4QzFE NTE1OC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzEzNjMwMzAz YTNhMmYzNDMwMmQzNDMwMjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgAk BJfAFjANBgkqhkiG9w0BAQsFAAOCAQEAd9sKR+FshXRehMCYZxXQWs1Cpk9YmEJ2 AVoCVGBQlDSTp3fa6Pzv7TKdDJf2/MGaW6FefPxKliejEJ/Hz6O0QOc2JMUQt3KQ GIIThpt9jvG/D835Pm0Bopd6opwNM2mgPx6wq9KaMfGWnKwJ+S2a0BUZE1zxNgFH R4t1lPOH9YYjM0y57aq+T7nuvVIMyfo5sBByn7n3AoC5V78Vx7wPzTdNbYVcuyvv 7Ek9PGOaBdwMU4I1OefZz0FQKLfRxyH2zncurUOo4Ft5u0VtP7XQCt9oe3JdnsF4 pMpb1SfiEKuFcG6kdWYJ9Y6BfZL3DJLgsRYSTq4q9K04zTKRCHyEAA== -----END CERTIFICATE-----Generated at Sun Apr 6 21:35:58 2025 by rpki-client