$ rpki-client -vvf repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a343030303a3a2f33362d3336203d3e20313533303837.roa File: 323430343a393763303a343030303a3a2f33362d3336203d3e20313533303837.roa (raw, json) Hash identifier: CswFvDupWqQkmZpyiNQV19oxsV8YOajNmUapEbDiz6Q= Subject key identifier: 86:8F:0F:8A:0F:EC:8E:83:70:26:88:F4:7B:B3:A7:1B:21:E9:59:D7 Certificate issuer: /CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Certificate serial: 02932B360CFEAA5EA46FA23B386128A6D6155884 Authority key identifier: 4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a343030303a3a2f33362d3336203d3e20313533303837.roa Signing time: Tue 10 Dec 2024 05:54:18 +0000 ROA not before: Tue 10 Dec 2024 05:49:18 +0000 ROA not after: Tue 09 Dec 2025 05:54:18 +0000 asID: 153087 IP address blocks: 2404:97c0:4000::/36 maxlen: 36 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 20:35:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:93:2b:36:0c:fe:aa:5e:a4:6f:a2:3b:38:61:28:a6:d6:15:58:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Validity Not Before: Dec 10 05:49:18 2024 GMT Not After : Dec 9 05:54:18 2025 GMT Subject: CN=868F0F8A0FEC8E83702688F47BB3A71B21E959D7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:52:58:76:0a:b2:dd:ce:55:92:c3:00:3d:67: ff:12:89:61:b8:64:7c:aa:e1:c9:42:5b:f6:17:aa: 64:c9:77:73:08:a0:ec:19:df:29:1d:89:b9:fd:a2: d7:a1:25:72:34:bf:d3:c3:c4:9a:04:0b:c3:d2:a7: ff:bf:db:45:c8:fe:96:0f:cc:00:53:76:a8:b7:9c: 94:c0:bb:78:f4:c0:e4:c8:c4:5d:85:9d:01:8f:9d: 65:d3:a4:60:36:fa:0a:1d:6f:0e:16:4f:4a:be:a7: b3:7e:83:2d:a3:d9:89:9e:36:c4:f3:26:6c:9d:bf: 9e:c4:f6:1a:76:8c:45:9d:1b:77:65:1c:e6:f8:fe: cf:98:f5:66:a7:3e:92:b8:9a:34:3b:2a:94:94:4f: a3:7e:43:45:e0:27:a4:8e:42:e6:94:36:be:0e:82: 81:44:8a:af:38:f5:c6:24:5f:42:25:2e:c8:53:5b: d3:9c:58:0c:9a:27:f7:85:99:45:6e:52:b7:32:67: b4:88:c4:d1:25:74:f0:15:96:0f:db:1a:3a:90:54: 40:70:a3:e8:9e:be:af:bf:f8:47:a5:a9:05:61:60: 5b:96:59:c2:59:33:17:7d:0d:19:47:32:c1:8a:f5: 59:9a:81:e1:63:47:23:42:e0:f8:d3:fa:72:4d:94: 89:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:8F:0F:8A:0F:EC:8E:83:70:26:88:F4:7B:B3:A7:1B:21:E9:59:D7 X509v3 Authority Key Identifier: keyid:4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a343030303a3a2f33362d3336203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:4000::/36 Signature Algorithm: sha256WithRSAEncryption 40:63:c4:88:df:e2:a7:99:2e:28:70:2d:47:28:87:a6:9e:64: 75:6a:6e:9d:ab:1b:de:c9:c8:dd:3b:95:74:52:40:84:39:6e: 77:53:78:9e:54:f2:c1:f9:dc:d8:59:e2:d9:a9:12:a6:43:8b: d5:67:fb:6d:08:49:1f:b8:55:45:d8:cc:e6:28:e5:1c:77:df: e7:26:57:cd:cd:92:f8:72:52:8c:74:85:a2:66:c6:34:d5:41: 95:bf:13:84:f6:26:5f:2e:26:44:98:b4:72:0f:94:ed:fa:9a: 6e:1e:54:c1:89:1e:80:64:82:e3:6f:87:69:de:aa:09:b9:bd: 98:51:02:df:8b:9f:e4:7c:74:4f:50:0c:dc:77:4e:df:c8:61: 6d:65:db:df:a2:02:6c:0d:43:4f:0f:bc:3d:1d:62:91:04:1c: 75:d9:f2:94:34:c5:df:84:e3:52:26:81:36:fd:88:53:8a:8e: 8f:8a:20:f1:2c:99:82:6c:a2:16:e7:5e:a4:92:71:d2:fd:14: 23:23:f4:28:83:17:ec:cf:08:1a:9a:2c:86:61:37:9e:5e:ad: 79:78:10:6a:bd:9e:99:eb:76:e4:e1:1a:df:99:45:80:23:73: 9c:7e:91:3b:16:24:da:ec:49:f6:ee:d2:71:da:46:58:ba:73: 22:2a:16:ae -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUApMrNgz+ql6kb6I7OGEoptYVWIQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4 QzFENTE1ODAeFw0yNDEyMTAwNTQ5MThaFw0yNTEyMDkwNTU0MThaMDMxMTAvBgNV BAMTKDg2OEYwRjhBMEZFQzhFODM3MDI2ODhGNDdCQjNBNzFCMjFFOTU5RDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrUlh2CrLdzlWSwwA9Z/8SiWG4 ZHyq4clCW/YXqmTJd3MIoOwZ3ykdibn9otehJXI0v9PDxJoEC8PSp/+/20XI/pYP zABTdqi3nJTAu3j0wOTIxF2FnQGPnWXTpGA2+godbw4WT0q+p7N+gy2j2YmeNsTz Jmydv57E9hp2jEWdG3dlHOb4/s+Y9WanPpK4mjQ7KpSUT6N+Q0XgJ6SOQuaUNr4O goFEiq849cYkX0IlLshTW9OcWAyaJ/eFmUVuUrcyZ7SIxNEldPAVlg/bGjqQVEBw o+ievq+/+EelqQVhYFuWWcJZMxd9DRlHMsGK9VmageFjRyNC4PjT+nJNlInXAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUho8Pig/sjoNwJoj0e7OnGyHpWdcwHwYDVR0j BBgwFoAUTfPbPaIdACIgITBzbkzLBIwdUVgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZGVkNTgxMS1iZTUwLTRjYWEtOWY5Ni02M2QzNzIwMzExZGUvMS80REYzREIzREEy MUQwMDIyMjAyMTMwNzM2RTRDQ0IwNDhDMUQ1MTU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4QzFE NTE1OC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzQzMDMwMzAz YTNhMmYzMzM2MmQzMzM2MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQk BJfAQDANBgkqhkiG9w0BAQsFAAOCAQEAQGPEiN/ip5kuKHAtRyiHpp5kdWpunasb 3snI3TuVdFJAhDlud1N4nlTywfnc2Fni2akSpkOL1Wf7bQhJH7hVRdjM5ijlHHff 5yZXzc2S+HJSjHSFombGNNVBlb8ThPYmXy4mRJi0cg+U7fqabh5UwYkegGSC42+H ad6qCbm9mFEC34uf5Hx0T1AM3HdO38hhbWXb36ICbA1DTw+8PR1ikQQcddnylDTF 34TjUiaBNv2IU4qOj4og8SyZgmyiFudepJJx0v0UIyP0KIMX7M8IGposhmE3nl6t eXgQar2emet25OEa35lFgCNznH6ROxYk2uxJ9u7ScdpGWLpzIioWrg== -----END CERTIFICATE-----Generated at Sun Apr 6 14:09:02 2025 by rpki-client