$ rpki-client -vvf repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a373030303a3a2f33362d3336203d3e20313533303837.roa File: 323430343a393763303a373030303a3a2f33362d3336203d3e20313533303837.roa (raw, json) Hash identifier: lc21YQEjyBtBR3cEzA2MpTAYh2Z++8zZog+Taujf5EA= Subject key identifier: 76:A4:88:5E:D0:0B:CA:3B:39:37:BE:FA:1A:B4:C6:76:DF:F8:B0:21 Certificate issuer: /CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Certificate serial: 6C7ED5CF594BEA5677B5DC43968152422FA6D98F Authority key identifier: 4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a373030303a3a2f33362d3336203d3e20313533303837.roa Signing time: Tue 10 Dec 2024 05:55:13 +0000 ROA not before: Tue 10 Dec 2024 05:50:13 +0000 ROA not after: Tue 09 Dec 2025 05:55:13 +0000 asID: 153087 IP address blocks: 2404:97c0:7000::/36 maxlen: 36 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 20:35:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:7e:d5:cf:59:4b:ea:56:77:b5:dc:43:96:81:52:42:2f:a6:d9:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Validity Not Before: Dec 10 05:50:13 2024 GMT Not After : Dec 9 05:55:13 2025 GMT Subject: CN=76A4885ED00BCA3B3937BEFA1AB4C676DFF8B021 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:16:85:63:13:5a:7f:1f:f2:dc:8d:7d:87:f8: 84:a4:1a:4d:12:8c:44:7d:26:3f:8a:7e:29:87:3b: bc:22:63:99:0f:f6:46:4f:2d:e0:de:cd:cd:88:64: 9e:a9:4d:34:30:75:5a:cc:12:79:d6:eb:d0:b9:b8: bf:a6:35:e1:1d:10:e5:28:69:bf:ec:f7:0a:a9:56: ec:8b:5e:8a:4f:ef:05:3c:94:a3:17:c4:e0:e5:77: 40:1b:80:8f:76:9b:3a:ed:53:d5:ef:8b:26:58:ca: 39:8f:03:2f:99:80:f4:46:5b:02:73:49:18:65:17: a4:84:dd:f1:ba:7e:b6:ad:07:5e:d8:c3:84:95:54: af:39:e7:4b:67:eb:37:e8:01:58:a9:3f:f7:e6:94: 50:ee:3d:86:25:bc:0d:51:38:64:93:ad:61:77:a3: 8e:e2:4c:72:bb:cf:d5:62:17:e7:cf:fe:a6:1e:30: f2:a2:86:a4:72:92:26:18:49:5c:e4:e5:14:ea:0f: 48:59:a6:8f:bb:00:21:b2:56:c2:c3:4b:bd:e8:44: 84:78:38:1e:df:a5:45:7e:54:31:08:08:68:e4:fe: 4e:b0:45:f2:88:d4:70:38:15:c8:34:4c:76:8b:3b: 57:d4:da:34:79:9d:3b:e6:ef:58:cd:82:1e:94:86: 7c:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:A4:88:5E:D0:0B:CA:3B:39:37:BE:FA:1A:B4:C6:76:DF:F8:B0:21 X509v3 Authority Key Identifier: keyid:4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a373030303a3a2f33362d3336203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:7000::/36 Signature Algorithm: sha256WithRSAEncryption b7:83:c3:cd:73:3f:a0:30:22:b0:3d:09:8a:05:de:3f:8c:d8: 84:5b:d4:c1:0f:a5:ab:80:39:7a:04:f7:e1:a2:5b:5c:89:5a: 8d:1a:dc:bc:f5:ca:34:4d:15:02:8f:30:af:62:80:d3:ad:f9: 67:16:76:ad:4d:99:f5:f0:97:2f:a4:f4:16:76:4c:3d:f0:a0: 30:1b:e7:05:8c:5b:ae:40:f1:c2:24:3a:bb:a6:a0:27:8d:ba: 7f:cb:43:28:9c:02:ad:b6:e3:f4:60:82:2f:3c:a8:04:24:88: e6:06:62:53:36:cf:f7:01:4f:f3:c1:d2:d4:d6:7b:df:16:e1: 2d:ac:3c:06:3a:20:ba:34:14:05:22:a4:b3:67:62:79:2c:f3: 5e:7a:90:87:76:1f:3b:39:46:43:88:a4:20:a5:f4:80:84:31: bf:fa:62:f9:14:7c:1e:57:f3:9f:1f:de:2a:18:82:0b:0c:79: f4:bd:f8:15:5b:74:82:8a:bf:ff:74:de:ce:b8:d1:6e:7c:78: e2:b8:ce:d2:91:a5:0c:f7:1a:ba:a0:d3:ce:83:79:5e:3a:a6: f4:41:f1:ed:6b:c5:55:0a:53:95:f0:71:c0:39:f9:54:25:31: 3b:88:42:42:ad:c1:83:eb:2a:91:86:4a:dc:f4:d4:2e:bc:4f: d1:73:fc:ea -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUbH7Vz1lL6lZ3tdxDloFSQi+m2Y8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4 QzFENTE1ODAeFw0yNDEyMTAwNTUwMTNaFw0yNTEyMDkwNTU1MTNaMDMxMTAvBgNV BAMTKDc2QTQ4ODVFRDAwQkNBM0IzOTM3QkVGQTFBQjRDNjc2REZGOEIwMjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD2FoVjE1p/H/LcjX2H+ISkGk0S jER9Jj+KfimHO7wiY5kP9kZPLeDezc2IZJ6pTTQwdVrMEnnW69C5uL+mNeEdEOUo ab/s9wqpVuyLXopP7wU8lKMXxODld0AbgI92mzrtU9XviyZYyjmPAy+ZgPRGWwJz SRhlF6SE3fG6fratB17Yw4SVVK8550tn6zfoAVipP/fmlFDuPYYlvA1ROGSTrWF3 o47iTHK7z9ViF+fP/qYeMPKihqRykiYYSVzk5RTqD0hZpo+7ACGyVsLDS73oRIR4 OB7fpUV+VDEICGjk/k6wRfKI1HA4Fcg0THaLO1fU2jR5nTvm71jNgh6UhnwzAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUdqSIXtALyjs5N776GrTGdt/4sCEwHwYDVR0j BBgwFoAUTfPbPaIdACIgITBzbkzLBIwdUVgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZGVkNTgxMS1iZTUwLTRjYWEtOWY5Ni02M2QzNzIwMzExZGUvMS80REYzREIzREEy MUQwMDIyMjAyMTMwNzM2RTRDQ0IwNDhDMUQ1MTU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4QzFE NTE1OC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzczMDMwMzAz YTNhMmYzMzM2MmQzMzM2MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQk BJfAcDANBgkqhkiG9w0BAQsFAAOCAQEAt4PDzXM/oDAisD0JigXeP4zYhFvUwQ+l q4A5egT34aJbXIlajRrcvPXKNE0VAo8wr2KA0635ZxZ2rU2Z9fCXL6T0FnZMPfCg MBvnBYxbrkDxwiQ6u6agJ426f8tDKJwCrbbj9GCCLzyoBCSI5gZiUzbP9wFP88HS 1NZ73xbhLaw8BjogujQUBSKks2dieSzzXnqQh3YfOzlGQ4ikIKX0gIQxv/pi+RR8 Hlfznx/eKhiCCwx59L34FVt0goq//3TezrjRbnx44rjO0pGlDPcauqDTzoN5Xjqm 9EHx7WvFVQpTlfBxwDn5VCUxO4hCQq3Bg+sqkYZK3PTULrxP0XP86g== -----END CERTIFICATE-----Generated at Sun Apr 6 07:55:03 2025 by rpki-client