$ rpki-client -vvf repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a323330303a3a2f34302d3430203d3e20313533303837.roa File: 323430343a393763303a323330303a3a2f34302d3430203d3e20313533303837.roa (raw, json) Hash identifier: hfVgYmT+s3T/gP2ZWIlWtZU/K6JQ3MvR1bPnXxp9XLc= Subject key identifier: 5F:22:D3:50:41:28:90:55:F2:71:6E:C0:40:B9:65:0D:4B:13:82:FC Certificate issuer: /CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Certificate serial: 36E2D7FD3F93417BB2C8249C3B3C97D3EC963BC0 Authority key identifier: 4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a323330303a3a2f34302d3430203d3e20313533303837.roa Signing time: Tue 10 Dec 2024 06:03:52 +0000 ROA not before: Tue 10 Dec 2024 05:58:52 +0000 ROA not after: Tue 09 Dec 2025 06:03:52 +0000 asID: 153087 IP address blocks: 2404:97c0:2300::/40 maxlen: 40 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 20:35:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:e2:d7:fd:3f:93:41:7b:b2:c8:24:9c:3b:3c:97:d3:ec:96:3b:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Validity Not Before: Dec 10 05:58:52 2024 GMT Not After : Dec 9 06:03:52 2025 GMT Subject: CN=5F22D35041289055F2716EC040B9650D4B1382FC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:43:db:d1:a5:41:f4:ef:ff:e0:55:6c:50:73: 47:8d:c3:ce:f0:6c:f8:24:7d:45:60:89:0a:43:ce: b8:4c:58:60:0f:a8:06:8d:f1:6e:f0:b2:25:9f:f7: ac:f8:1d:1b:54:2a:e4:36:64:04:97:7e:86:38:ca: 2e:76:5b:d7:8f:74:04:95:ca:39:2a:0e:09:68:b0: 7a:6f:b6:72:4d:ea:e4:63:6c:1f:39:c0:e7:2d:82: 43:df:73:8d:73:1c:30:61:52:04:6c:f4:ea:ac:9e: 67:ff:8c:e6:41:32:3c:1b:c3:eb:e5:db:6c:26:59: 8f:0f:1c:cd:1f:96:f3:78:b9:e7:0b:8a:83:83:ec: e3:a6:0b:05:fa:f7:e9:22:95:11:50:11:c0:ba:dd: ee:0d:ce:85:a1:5b:45:c5:07:6b:18:13:e1:63:e3: 04:26:cd:ce:ce:86:f0:2e:57:b3:ba:91:78:c6:d1: 29:c1:5a:9c:19:c8:0f:0b:75:3d:49:84:20:28:89: 30:a7:30:ca:bc:ff:30:49:a1:2c:e6:89:a6:d4:a6: ad:9f:58:54:54:26:20:1b:18:f4:b1:a4:3c:a4:cd: de:7c:3a:e9:b4:08:ea:fc:72:52:34:7a:69:03:4f: 00:d1:c2:20:08:06:71:9f:e0:ff:00:2e:5b:18:3a: 06:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:22:D3:50:41:28:90:55:F2:71:6E:C0:40:B9:65:0D:4B:13:82:FC X509v3 Authority Key Identifier: keyid:4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a323330303a3a2f34302d3430203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:2300::/40 Signature Algorithm: sha256WithRSAEncryption 1e:31:da:ea:17:4c:75:db:80:fb:24:09:a4:57:7d:9d:89:e3: db:dd:44:02:41:29:a9:6b:a5:64:cb:cd:18:03:3a:35:b0:8c: b4:bd:a3:7e:07:28:9f:17:c3:66:6e:44:d2:32:36:0a:5f:6b: bb:92:73:1d:01:52:db:60:5e:5a:93:76:a2:93:bd:ba:b6:ec: 6b:e2:04:df:c6:56:b4:03:26:25:9c:af:1e:bf:e2:e7:ae:dc: a7:c0:6a:84:0e:0c:b7:ea:44:ae:80:26:51:4a:79:ff:fa:44: 8d:a5:61:0d:2c:bc:6a:3b:ca:05:cb:55:18:4a:fa:b8:a3:52: e3:6b:de:4c:8a:14:01:39:21:c5:10:b5:d3:af:ee:d8:e5:56: 0f:91:2b:da:0a:59:fb:a2:24:f1:e7:eb:b4:f1:0c:ef:14:40: 04:0b:40:7f:84:ab:6b:94:f0:67:5a:dd:ee:24:e4:09:90:15: 20:69:dd:d6:86:46:45:2c:f5:dc:58:b3:4f:f0:76:c1:f8:57: b0:08:51:1d:43:da:f8:cd:c6:b7:be:8f:00:9d:a4:26:fd:b8: 4b:6e:a1:8d:8e:65:79:cf:71:4a:7e:75:73:cc:bf:30:8f:e8: ae:e1:61:e6:c1:7b:03:c7:7d:db:3e:b9:df:2d:11:25:cd:68: 60:a1:31:45 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUNuLX/T+TQXuyyCScOzyX0+yWO8AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4 QzFENTE1ODAeFw0yNDEyMTAwNTU4NTJaFw0yNTEyMDkwNjAzNTJaMDMxMTAvBgNV BAMTKDVGMjJEMzUwNDEyODkwNTVGMjcxNkVDMDQwQjk2NTBENEIxMzgyRkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKQ9vRpUH07//gVWxQc0eNw87w bPgkfUVgiQpDzrhMWGAPqAaN8W7wsiWf96z4HRtUKuQ2ZASXfoY4yi52W9ePdASV yjkqDglosHpvtnJN6uRjbB85wOctgkPfc41zHDBhUgRs9Oqsnmf/jOZBMjwbw+vl 22wmWY8PHM0flvN4uecLioOD7OOmCwX69+kilRFQEcC63e4NzoWhW0XFB2sYE+Fj 4wQmzc7OhvAuV7O6kXjG0SnBWpwZyA8LdT1JhCAoiTCnMMq8/zBJoSzmiabUpq2f WFRUJiAbGPSxpDykzd58Oum0COr8clI0emkDTwDRwiAIBnGf4P8ALlsYOgYBAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUXyLTUEEokFXycW7AQLllDUsTgvwwHwYDVR0j BBgwFoAUTfPbPaIdACIgITBzbkzLBIwdUVgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZGVkNTgxMS1iZTUwLTRjYWEtOWY5Ni02M2QzNzIwMzExZGUvMS80REYzREIzREEy MUQwMDIyMjAyMTMwNzM2RTRDQ0IwNDhDMUQ1MTU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4QzFE NTE1OC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzIzMzMwMzAz YTNhMmYzNDMwMmQzNDMwMjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgAk BJfAIzANBgkqhkiG9w0BAQsFAAOCAQEAHjHa6hdMdduA+yQJpFd9nYnj291EAkEp qWulZMvNGAM6NbCMtL2jfgconxfDZm5E0jI2Cl9ru5JzHQFS22BeWpN2opO9urbs a+IE38ZWtAMmJZyvHr/i567cp8BqhA4Mt+pEroAmUUp5//pEjaVhDSy8ajvKBctV GEr6uKNS42veTIoUATkhxRC106/u2OVWD5Er2gpZ+6Ik8efrtPEM7xRABAtAf4Sr a5TwZ1rd7iTkCZAVIGnd1oZGRSz13FizT/B2wfhXsAhRHUPa+M3Gt76PAJ2kJv24 S26hjY5lec9xSn51c8y/MI/oruFh5sF7A8d92z653y0RJc1oYKExRQ== -----END CERTIFICATE-----Generated at Sun Apr 6 07:53:55 2025 by rpki-client