$ rpki-client -vvf repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a383030303a3a2f33362d3336203d3e20313533303837.roa File: 323430343a393763303a383030303a3a2f33362d3336203d3e20313533303837.roa (raw, json) Hash identifier: VrqEqcYe4ew7uni6W9u41N7qHk2GgBXWkfjAlNiKflw= Subject key identifier: E3:5A:97:53:D7:45:7D:16:78:DA:D2:D6:64:D9:9D:DA:8C:65:35:0F Certificate issuer: /CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Certificate serial: 3904D0106BAFFAF1B9351B3F6421F3134EA77801 Authority key identifier: 4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a383030303a3a2f33362d3336203d3e20313533303837.roa Signing time: Tue 10 Dec 2024 05:55:57 +0000 ROA not before: Tue 10 Dec 2024 05:50:57 +0000 ROA not after: Tue 09 Dec 2025 05:55:57 +0000 asID: 153087 IP address blocks: 2404:97c0:8000::/36 maxlen: 36 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 20:35:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:04:d0:10:6b:af:fa:f1:b9:35:1b:3f:64:21:f3:13:4e:a7:78:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Validity Not Before: Dec 10 05:50:57 2024 GMT Not After : Dec 9 05:55:57 2025 GMT Subject: CN=E35A9753D7457D1678DAD2D664D99DDA8C65350F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:9e:f1:41:df:36:bc:43:81:cf:66:e8:78:ae: a1:f9:a8:98:62:c0:f7:34:eb:0c:c3:07:1f:25:23: 80:64:97:2b:34:b5:46:47:b5:97:f0:26:3b:36:58: 2f:0e:e8:57:3b:93:b1:4d:e0:fe:7c:f1:f0:a1:10: 00:b7:40:c2:af:fa:9c:40:af:39:62:02:a2:37:67: 1a:23:b6:8d:2c:38:6e:12:95:d8:27:13:6a:25:2d: 27:48:56:1b:fc:60:c9:e8:4c:dd:7c:7c:0e:be:53: 6b:7e:fa:5e:9f:3a:9a:b3:83:8c:15:7c:25:94:ad: 16:0d:6f:e7:24:3f:68:17:01:38:68:26:0d:e5:bb: 8e:42:7d:84:c9:fd:11:d7:bf:7c:22:65:11:87:e5: d5:ca:17:c9:52:88:e2:2f:5d:50:eb:96:2b:47:5d: 0b:8b:4c:83:fb:cc:f5:b8:60:c0:7e:13:f0:41:7e: b7:94:e5:f5:81:33:dc:4f:7b:6a:dc:56:cc:bf:f8: 55:d6:e4:84:cb:c9:e6:1c:f3:ba:c4:d9:cc:c4:56: 9c:dc:14:36:b1:92:1b:35:38:f3:0f:c9:46:0d:6c: fc:86:bb:c7:29:c2:8a:f9:69:24:58:d1:9f:9c:ad: f6:b5:af:df:6e:fa:0a:df:ac:50:48:75:86:92:b4: 3b:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:5A:97:53:D7:45:7D:16:78:DA:D2:D6:64:D9:9D:DA:8C:65:35:0F X509v3 Authority Key Identifier: keyid:4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a383030303a3a2f33362d3336203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:8000::/36 Signature Algorithm: sha256WithRSAEncryption 75:1f:ce:a0:9d:1a:f0:aa:b2:e0:f5:32:e4:49:54:15:d4:67: 94:68:d8:c9:c9:07:f8:28:38:a8:a0:e5:03:ea:1d:24:c4:54: c3:24:39:08:1c:72:93:b9:86:a5:dd:a5:c0:f4:72:e9:9e:d9: d1:2f:d3:2e:4e:34:68:b6:2a:74:db:dc:6e:0a:8d:2a:d6:71: 2b:a3:7c:f3:73:2f:bd:40:00:7e:f0:82:39:a1:f4:44:c0:9f: 62:7c:3e:ea:c8:ec:33:e3:fd:a5:59:3c:73:78:8b:7b:78:2e: 70:3d:03:6f:64:72:8a:af:69:1a:b2:d5:8f:63:a1:cb:f0:93: 9b:7d:88:8d:8b:27:a2:f1:f0:82:14:b1:19:e0:26:9a:67:83: 2f:86:8a:79:60:50:18:53:fd:15:58:75:ca:9a:87:06:f8:c1: 7c:4d:54:42:54:a8:9b:c6:f3:7c:ce:87:be:a9:b4:ca:27:b7: 06:77:bc:ad:b9:b9:67:eb:77:c0:8f:4f:ef:93:72:f8:8e:8e: c4:6a:82:cd:da:5f:32:69:90:80:59:00:88:18:4c:27:11:51: 2b:2f:8e:58:d4:f7:9e:12:ff:92:c3:09:54:c3:f9:10:4a:1c: 1c:b9:1a:eb:2b:94:6f:79:70:e9:48:f9:07:dc:31:c9:8f:4f: 7c:90:ff:8b -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUOQTQEGuv+vG5NRs/ZCHzE06neAEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4 QzFENTE1ODAeFw0yNDEyMTAwNTUwNTdaFw0yNTEyMDkwNTU1NTdaMDMxMTAvBgNV BAMTKEUzNUE5NzUzRDc0NTdEMTY3OERBRDJENjY0RDk5RERBOEM2NTM1MEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2nvFB3za8Q4HPZuh4rqH5qJhi wPc06wzDBx8lI4Bklys0tUZHtZfwJjs2WC8O6Fc7k7FN4P588fChEAC3QMKv+pxA rzliAqI3Zxojto0sOG4SldgnE2olLSdIVhv8YMnoTN18fA6+U2t++l6fOpqzg4wV fCWUrRYNb+ckP2gXAThoJg3lu45CfYTJ/RHXv3wiZRGH5dXKF8lSiOIvXVDrlitH XQuLTIP7zPW4YMB+E/BBfreU5fWBM9xPe2rcVsy/+FXW5ITLyeYc87rE2czEVpzc FDaxkhs1OPMPyUYNbPyGu8cpwor5aSRY0Z+crfa1r99u+grfrFBIdYaStDsTAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQU41qXU9dFfRZ42tLWZNmd2oxlNQ8wHwYDVR0j BBgwFoAUTfPbPaIdACIgITBzbkzLBIwdUVgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZGVkNTgxMS1iZTUwLTRjYWEtOWY5Ni02M2QzNzIwMzExZGUvMS80REYzREIzREEy MUQwMDIyMjAyMTMwNzM2RTRDQ0IwNDhDMUQ1MTU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4QzFE NTE1OC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzgzMDMwMzAz YTNhMmYzMzM2MmQzMzM2MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQk BJfAgDANBgkqhkiG9w0BAQsFAAOCAQEAdR/OoJ0a8Kqy4PUy5ElUFdRnlGjYyckH +Cg4qKDlA+odJMRUwyQ5CBxyk7mGpd2lwPRy6Z7Z0S/TLk40aLYqdNvcbgqNKtZx K6N883MvvUAAfvCCOaH0RMCfYnw+6sjsM+P9pVk8c3iLe3gucD0Db2Ryiq9pGrLV j2Ohy/CTm32IjYsnovHwghSxGeAmmmeDL4aKeWBQGFP9FVh1ypqHBvjBfE1UQlSo m8bzfM6Hvqm0yie3Bne8rbm5Z+t3wI9P75Ny+I6OxGqCzdpfMmmQgFkAiBhMJxFR Ky+OWNT3nhL/ksMJVMP5EEocHLka6yuUb3lw6Uj5B9wxyY9PfJD/iw== -----END CERTIFICATE-----Generated at Sun Apr 6 07:53:26 2025 by rpki-client