$ rpki-client -vvf repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a333132363a3a2f34382d3438203d3e20313533303837.roa File: 323430343a393763303a333132363a3a2f34382d3438203d3e20313533303837.roa (raw, json) Hash identifier: Z2kUGl4d2/nWr+hivZqHD1txvHpg/IJVAL0dy1bjHtc= Subject key identifier: E4:91:BF:79:14:BD:D3:B7:6F:C6:EE:E8:DC:86:1E:B3:26:0F:A6:B2 Certificate issuer: /CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Certificate serial: 47E16DAD95A3F3F68754E32579B728B8D21D3A42 Authority key identifier: 4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a333132363a3a2f34382d3438203d3e20313533303837.roa Signing time: Wed 22 Jan 2025 10:09:43 +0000 ROA not before: Wed 22 Jan 2025 10:04:43 +0000 ROA not after: Wed 21 Jan 2026 10:09:43 +0000 asID: 153087 IP address blocks: 2404:97c0:3126::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 20:35:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:e1:6d:ad:95:a3:f3:f6:87:54:e3:25:79:b7:28:b8:d2:1d:3a:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Validity Not Before: Jan 22 10:04:43 2025 GMT Not After : Jan 21 10:09:43 2026 GMT Subject: CN=E491BF7914BDD3B76FC6EEE8DC861EB3260FA6B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:e6:ff:f8:cc:55:70:77:fc:c0:a1:23:39:72: 1f:cd:7d:54:2c:e4:d2:30:00:6c:68:a7:2f:19:03: 70:44:fe:ed:ff:53:40:c0:1b:a4:6e:2c:5a:50:13: 7b:fc:4a:c1:fb:5c:52:60:de:db:41:72:0b:27:27: 72:13:9d:5b:f7:3d:26:63:5f:43:82:ba:1f:28:33: 16:23:dd:27:cb:86:08:4b:e1:48:83:d1:c9:f6:76: 3b:5e:14:20:b6:5f:3f:8c:02:ff:4f:42:7c:bc:41: f2:3e:26:39:47:27:55:fc:6b:8d:08:e3:3e:b7:ec: 16:32:7f:00:a8:9d:c3:5e:f3:f8:48:b4:40:97:55: e3:91:ee:a3:4b:3e:b2:c1:78:22:2f:fe:3b:05:43: 86:8a:3d:c3:84:54:f7:f4:31:b5:c4:6c:f1:4a:12: d2:54:2c:b0:62:31:f4:6c:37:65:78:0c:4b:f1:bc: 9a:43:f6:a7:3d:57:36:80:2a:a7:1e:93:be:7c:e2: f5:83:a4:e0:77:c7:12:29:e0:af:62:e4:ae:c9:43: 2e:49:78:e9:91:0d:16:67:f3:28:b9:d9:6c:dc:36: d9:73:92:a4:8e:dc:4b:06:6a:cc:df:72:17:e4:76: 45:42:7e:9d:db:b2:73:c4:5e:30:9c:85:42:56:6f: bb:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:91:BF:79:14:BD:D3:B7:6F:C6:EE:E8:DC:86:1E:B3:26:0F:A6:B2 X509v3 Authority Key Identifier: keyid:4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a333132363a3a2f34382d3438203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:3126::/48 Signature Algorithm: sha256WithRSAEncryption c8:62:fb:d7:40:5c:d3:b4:a7:df:3b:f5:87:da:5e:96:a8:f8: 55:9d:45:55:0d:b6:b2:d5:f0:c2:47:48:08:ce:a4:e6:4e:35: eb:14:54:0a:d5:d6:73:37:e5:97:ab:40:a0:98:15:b8:81:46: c8:d2:e6:65:e1:2b:63:79:2b:b8:e4:03:2d:82:1f:18:01:58: e4:75:b5:56:14:8b:da:e1:7c:d6:d4:44:91:8f:79:6b:c4:a4: 7f:76:be:05:9d:38:cc:28:b8:d0:4e:2f:17:85:b3:ab:47:8a: 4a:cd:55:b2:1b:30:f7:c6:75:f5:01:21:cb:8d:e4:b1:e7:3e: 1d:65:72:28:e4:f3:e7:e0:ff:35:6b:24:59:87:26:50:21:55: ba:04:42:8d:84:90:dd:ee:04:ad:3a:06:64:5e:5c:a5:0b:46: 7b:9d:91:8e:a3:9d:c0:a3:7f:6c:a2:3d:a6:a1:56:2e:fc:38: ac:d7:af:27:01:f5:a2:85:65:ea:84:0f:a5:51:67:df:da:69: 73:c6:84:98:b8:55:70:71:35:6f:08:6c:c2:c8:b2:99:92:f7: c2:75:af:93:f3:1f:f2:eb:07:aa:55:70:25:2a:5c:0a:f6:3f: 9c:b6:cb:29:51:3b:ad:b5:8a:4a:99:42:c2:79:de:aa:3f:88: 19:6f:07:97 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUR+FtrZWj8/aHVOMlebcouNIdOkIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4 QzFENTE1ODAeFw0yNTAxMjIxMDA0NDNaFw0yNjAxMjExMDA5NDNaMDMxMTAvBgNV BAMTKEU0OTFCRjc5MTRCREQzQjc2RkM2RUVFOERDODYxRUIzMjYwRkE2QjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC45v/4zFVwd/zAoSM5ch/NfVQs 5NIwAGxopy8ZA3BE/u3/U0DAG6RuLFpQE3v8SsH7XFJg3ttBcgsnJ3ITnVv3PSZj X0OCuh8oMxYj3SfLhghL4UiD0cn2djteFCC2Xz+MAv9PQny8QfI+JjlHJ1X8a40I 4z637BYyfwConcNe8/hItECXVeOR7qNLPrLBeCIv/jsFQ4aKPcOEVPf0MbXEbPFK EtJULLBiMfRsN2V4DEvxvJpD9qc9VzaAKqcek7584vWDpOB3xxIp4K9i5K7JQy5J eOmRDRZn8yi52WzcNtlzkqSO3EsGaszfchfkdkVCfp3bsnPEXjCchUJWb7spAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQU5JG/eRS907dvxu7o3IYesyYPprIwHwYDVR0j BBgwFoAUTfPbPaIdACIgITBzbkzLBIwdUVgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZGVkNTgxMS1iZTUwLTRjYWEtOWY5Ni02M2QzNzIwMzExZGUvMS80REYzREIzREEy MUQwMDIyMjAyMTMwNzM2RTRDQ0IwNDhDMUQ1MTU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4QzFE NTE1OC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzMzMTMyMzYz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BJfAMSYwDQYJKoZIhvcNAQELBQADggEBAMhi+9dAXNO0p9879YfaXpao+FWdRVUN trLV8MJHSAjOpOZONesUVArV1nM35ZerQKCYFbiBRsjS5mXhK2N5K7jkAy2CHxgB WOR1tVYUi9rhfNbURJGPeWvEpH92vgWdOMwouNBOLxeFs6tHikrNVbIbMPfGdfUB IcuN5LHnPh1lcijk8+fg/zVrJFmHJlAhVboEQo2EkN3uBK06BmReXKULRnudkY6j ncCjf2yiPaahVi78OKzXrycB9aKFZeqED6VRZ9/aaXPGhJi4VXBxNW8IbMLIspmS 98J1r5PzH/LrB6pVcCUqXAr2P5y2yylRO621ikqZQsJ53qo/iBlvB5c= -----END CERTIFICATE-----Generated at Sun Apr 6 11:21:27 2025 by rpki-client