$ rpki-client -vvf repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a323230303a3a2f34302d3430203d3e20313533303837.roa File: 323430343a393763303a323230303a3a2f34302d3430203d3e20313533303837.roa (raw, json) Hash identifier: Wdn8WLm/z70TbHCfvi7cPeFpinXRYOP3acHf9F2yoZI= Subject key identifier: E8:63:0D:4E:16:37:85:9C:23:C4:34:73:F5:84:E4:AA:E0:49:A4:9F Certificate issuer: /CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Certificate serial: 11FA5701F0F7FE0790ADFA1EBDDA36A11149C90D Authority key identifier: 4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a323230303a3a2f34302d3430203d3e20313533303837.roa Signing time: Tue 10 Dec 2024 06:03:33 +0000 ROA not before: Tue 10 Dec 2024 05:58:33 +0000 ROA not after: Tue 09 Dec 2025 06:03:33 +0000 asID: 153087 IP address blocks: 2404:97c0:2200::/40 maxlen: 40 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 20:35:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:fa:57:01:f0:f7:fe:07:90:ad:fa:1e:bd:da:36:a1:11:49:c9:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Validity Not Before: Dec 10 05:58:33 2024 GMT Not After : Dec 9 06:03:33 2025 GMT Subject: CN=E8630D4E1637859C23C43473F584E4AAE049A49F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:16:e9:fd:ca:b5:f8:ef:f4:9e:16:ee:73:79: 4d:74:1a:a6:b6:0f:bc:85:a4:36:e1:87:ae:f5:b2: 81:f1:f8:a5:03:cf:00:2b:55:9f:de:e6:d1:87:b3: 47:58:76:92:7e:cb:f4:3a:30:e0:f9:ca:1c:0b:29: 51:f7:b1:20:fe:57:b0:6e:7b:e3:28:8d:41:31:74: b4:1f:f8:18:d6:0c:12:79:e7:b8:2f:92:f1:69:a0: b0:f1:59:aa:e2:c0:48:b4:5b:bf:05:11:45:6c:37: 56:3f:5e:2a:86:ce:dd:2c:f5:40:44:49:03:9e:24: 45:9c:4e:2d:1e:ff:6a:cf:18:f1:b2:bf:a2:7f:61: de:3f:f7:c1:f3:4a:85:2d:1a:8e:72:2a:8e:9c:16: 4e:26:b0:14:04:85:71:18:39:3f:37:db:9a:01:86: 58:97:c1:e6:da:1e:75:c3:1e:e4:46:c6:58:15:2d: ec:27:a6:37:cf:d9:1e:18:6c:73:d3:2f:67:45:49: de:e8:80:d9:d9:34:0b:85:57:cd:ec:e6:ca:d1:fd: be:86:d5:0e:c6:5f:8d:ab:ae:63:ca:d0:9c:82:58: 84:04:b5:19:f7:e6:f7:d6:75:75:1c:1a:88:4c:eb: b6:de:6a:99:7a:d3:9d:19:eb:c7:9d:41:11:28:7a: c7:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:63:0D:4E:16:37:85:9C:23:C4:34:73:F5:84:E4:AA:E0:49:A4:9F X509v3 Authority Key Identifier: keyid:4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a323230303a3a2f34302d3430203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:2200::/40 Signature Algorithm: sha256WithRSAEncryption 8e:8a:07:04:a4:48:e8:be:0f:3b:80:81:6c:71:64:26:18:21: c5:e2:03:ff:ef:18:5f:24:45:91:68:dc:57:ae:fd:20:41:db: 52:ca:aa:ab:ec:88:5a:e8:b1:58:86:01:cf:97:7b:81:3a:fc: 20:20:86:ea:c6:57:a1:9f:d8:26:58:3d:ae:30:a7:7f:02:1c: b8:14:29:f1:cb:0e:c9:55:c8:b9:dc:e9:be:0f:6f:82:cb:37: b5:86:10:67:84:9d:fc:89:2c:22:45:2f:37:a0:e3:6e:27:51: 29:8f:35:1c:87:95:55:71:c8:03:62:29:59:17:c8:4a:6e:d8: 98:85:ac:4d:f1:f6:f9:a1:f9:f9:8b:50:37:5c:6a:87:c5:d0: 1c:75:56:59:a9:7e:0a:da:f4:1b:65:b9:3e:cf:1c:05:e5:67: 94:2f:59:7c:69:6a:6d:9e:8d:46:b9:f0:76:b3:4a:81:06:bf: 70:82:92:ac:61:af:a1:43:75:91:2a:ff:fb:5e:ef:9b:d0:89: 9d:b6:62:02:d7:c7:ce:d9:58:bd:56:1a:7e:54:f4:43:fe:9a: 03:d7:46:65:0e:25:a8:41:5d:d9:e4:37:d6:44:cb:35:1d:b1: cd:f1:e7:10:65:c7:f6:1a:f1:7a:8d:7e:c7:8d:c9:62:cb:4f: 4d:f7:a3:f5 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUEfpXAfD3/geQrfoevdo2oRFJyQ0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4 QzFENTE1ODAeFw0yNDEyMTAwNTU4MzNaFw0yNTEyMDkwNjAzMzNaMDMxMTAvBgNV BAMTKEU4NjMwRDRFMTYzNzg1OUMyM0M0MzQ3M0Y1ODRFNEFBRTA0OUE0OUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwFun9yrX47/SeFu5zeU10Gqa2 D7yFpDbhh671soHx+KUDzwArVZ/e5tGHs0dYdpJ+y/Q6MOD5yhwLKVH3sSD+V7Bu e+MojUExdLQf+BjWDBJ557gvkvFpoLDxWariwEi0W78FEUVsN1Y/XiqGzt0s9UBE SQOeJEWcTi0e/2rPGPGyv6J/Yd4/98HzSoUtGo5yKo6cFk4msBQEhXEYOT8325oB hliXwebaHnXDHuRGxlgVLewnpjfP2R4YbHPTL2dFSd7ogNnZNAuFV83s5srR/b6G 1Q7GX42rrmPK0JyCWIQEtRn35vfWdXUcGohM67beapl6050Z68edQREoeseFAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQU6GMNThY3hZwjxDRz9YTkquBJpJ8wHwYDVR0j BBgwFoAUTfPbPaIdACIgITBzbkzLBIwdUVgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZGVkNTgxMS1iZTUwLTRjYWEtOWY5Ni02M2QzNzIwMzExZGUvMS80REYzREIzREEy MUQwMDIyMjAyMTMwNzM2RTRDQ0IwNDhDMUQ1MTU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4QzFE NTE1OC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMjMwMzAz YTNhMmYzNDMwMmQzNDMwMjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgAk BJfAIjANBgkqhkiG9w0BAQsFAAOCAQEAjooHBKRI6L4PO4CBbHFkJhghxeID/+8Y XyRFkWjcV679IEHbUsqqq+yIWuixWIYBz5d7gTr8ICCG6sZXoZ/YJlg9rjCnfwIc uBQp8csOyVXIudzpvg9vgss3tYYQZ4Sd/IksIkUvN6DjbidRKY81HIeVVXHIA2Ip WRfISm7YmIWsTfH2+aH5+YtQN1xqh8XQHHVWWal+Ctr0G2W5Ps8cBeVnlC9ZfGlq bZ6NRrnwdrNKgQa/cIKSrGGvoUN1kSr/+17vm9CJnbZiAtfHztlYvVYaflT0Q/6a A9dGZQ4lqEFd2eQ31kTLNR2xzfHnEGXH9hrxeo1+x43JYstPTfej9Q== -----END CERTIFICATE-----Generated at Sun Apr 6 07:53:49 2025 by rpki-client