$ rpki-client -vvf repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a323030303a3a2f33362d3336203d3e20313533303837.roa File: 323430343a393763303a323030303a3a2f33362d3336203d3e20313533303837.roa (raw, json) Hash identifier: 2dvpZD7SkLIO8Bb1a+NTuA+XOzdWGBmc4e1hLBWS+aY= Subject key identifier: 4F:3C:D8:9A:58:9D:26:15:E5:3C:A1:9A:94:17:6A:B6:98:9A:E8:B9 Certificate issuer: /CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Certificate serial: 5E6B29131E36038EA1EF8FC99CFB7A5F89461007 Authority key identifier: 4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a323030303a3a2f33362d3336203d3e20313533303837.roa Signing time: Tue 10 Dec 2024 05:53:37 +0000 ROA not before: Tue 10 Dec 2024 05:48:37 +0000 ROA not after: Tue 09 Dec 2025 05:53:37 +0000 asID: 153087 IP address blocks: 2404:97c0:2000::/36 maxlen: 36 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 20:35:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:6b:29:13:1e:36:03:8e:a1:ef:8f:c9:9c:fb:7a:5f:89:46:10:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Validity Not Before: Dec 10 05:48:37 2024 GMT Not After : Dec 9 05:53:37 2025 GMT Subject: CN=4F3CD89A589D2615E53CA19A94176AB6989AE8B9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:6d:b0:aa:89:44:1d:65:ef:d4:74:7b:d6:86: 5e:a6:d6:64:d1:b3:7b:7b:67:fb:77:34:ca:48:e8: e4:96:5f:4d:da:fe:06:24:32:04:6d:21:f8:7d:6a: e4:12:69:71:35:a9:88:91:0b:04:c7:39:6a:1d:c5: d0:1c:b8:f2:eb:4c:d3:8e:e8:3e:c7:44:cf:ad:a8: 72:e5:42:45:d6:a9:72:9b:f8:61:0e:41:b0:c7:53: a3:ea:d7:b1:cd:ea:4e:c9:47:e1:91:12:30:52:b0: 02:75:10:d5:03:ab:9a:7f:51:46:9f:4b:8a:8a:19: 9a:08:d5:cc:cc:92:8e:02:9d:72:af:bf:b9:9d:dc: 35:00:d0:58:44:b0:db:ec:56:59:c9:c8:f8:68:41: ae:ad:de:8d:aa:13:8e:52:7b:b1:a6:bd:83:b9:8f: a3:03:0e:02:91:e7:f1:a4:a6:ec:90:46:b1:2d:cf: a5:f5:6d:44:53:05:6a:d1:16:60:c9:7a:b3:1f:28: 59:b4:8d:7c:0d:ea:71:d2:84:4e:7e:1f:7e:a0:ea: fb:9b:ab:e8:66:7b:82:be:66:c2:dd:70:8f:9a:1b: f4:39:95:d3:3a:fc:48:41:57:c7:48:ae:10:48:9b: a8:21:7c:33:c7:53:45:df:a1:1c:c4:7a:64:ae:fe: 68:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:3C:D8:9A:58:9D:26:15:E5:3C:A1:9A:94:17:6A:B6:98:9A:E8:B9 X509v3 Authority Key Identifier: keyid:4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a323030303a3a2f33362d3336203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:2000::/36 Signature Algorithm: sha256WithRSAEncryption 8d:75:5c:6c:4f:66:48:f5:ea:57:7b:06:5f:d0:b3:d7:37:d4: 64:f3:c3:5f:81:4d:18:7a:37:16:f9:63:b1:05:62:6e:cc:92: 67:5d:3f:78:d4:eb:b2:0e:21:c0:80:99:2c:c2:a6:1d:ec:ee: 7a:67:6c:0d:48:22:9a:60:d5:65:e1:91:7a:6b:af:ec:2b:12: 32:17:93:f1:b4:c8:be:83:e5:f0:f4:44:ae:d4:dd:48:68:06: ad:2b:01:e0:06:23:7a:f6:e5:f7:75:d5:89:a5:85:b2:a3:2d: 39:96:8f:4e:fd:c1:ad:d4:90:fd:4d:b0:98:de:e8:15:f9:0b: 67:ac:15:be:7a:27:03:4d:0d:25:43:d7:e1:62:3c:5b:e6:b1: a5:57:8e:d3:8c:e8:8c:04:5c:b9:f0:8a:eb:74:8a:60:fa:3f: d6:cc:29:31:2f:67:a7:29:2f:25:73:b0:4a:79:ea:83:a1:ca: ba:4e:7c:94:4f:29:f1:1f:36:ef:00:7a:1c:da:e4:22:71:78: 63:42:4c:c9:76:57:f6:8e:21:50:48:fa:16:b4:d8:da:1c:40: 6c:1e:5a:00:b7:bc:98:43:84:e1:aa:a6:76:c7:f4:df:96:fc: c5:f5:b2:1b:1b:39:36:2d:dc:3e:cd:58:61:b7:24:c6:38:54: 04:b9:38:62 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUXmspEx42A46h74/JnPt6X4lGEAcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4 QzFENTE1ODAeFw0yNDEyMTAwNTQ4MzdaFw0yNTEyMDkwNTUzMzdaMDMxMTAvBgNV BAMTKDRGM0NEODlBNTg5RDI2MTVFNTNDQTE5QTk0MTc2QUI2OTg5QUU4QjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAbbCqiUQdZe/UdHvWhl6m1mTR s3t7Z/t3NMpI6OSWX03a/gYkMgRtIfh9auQSaXE1qYiRCwTHOWodxdAcuPLrTNOO 6D7HRM+tqHLlQkXWqXKb+GEOQbDHU6Pq17HN6k7JR+GREjBSsAJ1ENUDq5p/UUaf S4qKGZoI1czMko4CnXKvv7md3DUA0FhEsNvsVlnJyPhoQa6t3o2qE45Se7GmvYO5 j6MDDgKR5/GkpuyQRrEtz6X1bURTBWrRFmDJerMfKFm0jXwN6nHShE5+H36g6vub q+hme4K+ZsLdcI+aG/Q5ldM6/EhBV8dIrhBIm6ghfDPHU0XfoRzEemSu/miNAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUTzzYmlidJhXlPKGalBdqtpia6LkwHwYDVR0j BBgwFoAUTfPbPaIdACIgITBzbkzLBIwdUVgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZGVkNTgxMS1iZTUwLTRjYWEtOWY5Ni02M2QzNzIwMzExZGUvMS80REYzREIzREEy MUQwMDIyMjAyMTMwNzM2RTRDQ0IwNDhDMUQ1MTU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4QzFE NTE1OC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMDMwMzAz YTNhMmYzMzM2MmQzMzM2MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQk BJfAIDANBgkqhkiG9w0BAQsFAAOCAQEAjXVcbE9mSPXqV3sGX9Cz1zfUZPPDX4FN GHo3FvljsQVibsySZ10/eNTrsg4hwICZLMKmHezuemdsDUgimmDVZeGRemuv7CsS MheT8bTIvoPl8PRErtTdSGgGrSsB4AYjevbl93XViaWFsqMtOZaPTv3BrdSQ/U2w mN7oFfkLZ6wVvnonA00NJUPX4WI8W+axpVeO04zojARcufCK63SKYPo/1swpMS9n pykvJXOwSnnqg6HKuk58lE8p8R827wB6HNrkInF4Y0JMyXZX9o4hUEj6FrTY2hxA bB5aALe8mEOE4aqmdsf035b8xfWyGxs5Ni3cPs1YYbckxjhUBLk4Yg== -----END CERTIFICATE-----Generated at Sun Apr 6 07:53:28 2025 by rpki-client