$ rpki-client -vvf repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a393030303a3a2f33362d3336203d3e20313533303837.roa File: 323430343a393763303a393030303a3a2f33362d3336203d3e20313533303837.roa (raw, json) Hash identifier: vJHjXSNbN+nrHshiQZVlbnAzNovBDlJVOtnmhWeep78= Subject key identifier: 3D:5B:BA:B8:57:34:75:3B:AD:B1:79:19:D9:58:3F:DB:AA:0D:BD:DD Certificate issuer: /CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Certificate serial: 30139C2438294225D726D5AF960BEB9119754D1B Authority key identifier: 4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a393030303a3a2f33362d3336203d3e20313533303837.roa Signing time: Tue 10 Dec 2024 05:56:13 +0000 ROA not before: Tue 10 Dec 2024 05:51:13 +0000 ROA not after: Tue 09 Dec 2025 05:56:13 +0000 asID: 153087 IP address blocks: 2404:97c0:9000::/36 maxlen: 36 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 20:35:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:13:9c:24:38:29:42:25:d7:26:d5:af:96:0b:eb:91:19:75:4d:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Validity Not Before: Dec 10 05:51:13 2024 GMT Not After : Dec 9 05:56:13 2025 GMT Subject: CN=3D5BBAB85734753BADB17919D9583FDBAA0DBDDD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:93:d5:d2:42:02:97:fb:bc:4a:ac:4b:77:c2: 8a:e5:9f:cd:96:f8:95:a5:07:38:54:fe:49:8a:da: c4:ae:5d:9b:87:12:f9:03:d5:6b:2e:7e:d3:91:9f: af:6d:f1:49:f0:e2:61:12:ce:a3:3a:0a:3d:6a:64: 50:fd:f4:42:90:ea:75:60:d3:90:c5:bd:a9:bf:05: a0:a4:b3:ef:4d:86:83:c0:6a:7c:5f:a3:26:df:9d: cc:c4:83:ce:f1:c6:f2:c5:89:b0:55:88:cf:5c:2b: af:2d:f6:f7:6c:8c:39:d1:01:fd:ac:65:2f:dc:db: 82:2a:ec:19:af:86:b2:39:aa:0d:e3:a6:06:f4:71: 27:51:78:93:52:99:0b:ff:f3:aa:c4:7f:44:d5:88: 97:d5:20:65:74:50:b0:a3:51:ab:41:eb:71:ed:66: 1c:74:e4:53:83:69:49:68:9b:62:be:d1:4f:42:10: 9a:09:74:56:af:96:05:e9:6c:81:5b:03:a3:db:83: a8:38:1f:7a:93:6c:05:74:b7:06:0b:4e:bc:64:f2: 4f:0b:76:06:4f:18:70:b0:e6:24:4f:72:dc:57:c1: 9d:e0:13:80:a5:c2:af:78:33:34:7e:b7:b7:99:98: 7d:10:a0:c9:50:da:6b:2b:22:7b:29:4c:b2:ec:a2: e0:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:5B:BA:B8:57:34:75:3B:AD:B1:79:19:D9:58:3F:DB:AA:0D:BD:DD X509v3 Authority Key Identifier: keyid:4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a393030303a3a2f33362d3336203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:9000::/36 Signature Algorithm: sha256WithRSAEncryption 73:05:27:b4:9d:48:36:60:23:5c:f2:d9:26:36:a9:f6:13:74: 5f:43:f8:21:2c:85:a1:8a:22:2b:00:76:f7:3b:8a:68:e7:f3: ea:37:60:21:da:22:b5:39:10:97:8b:0a:df:1c:ac:e9:19:20: 6c:12:9c:df:78:d0:57:b0:b3:94:5e:a6:ec:ea:75:09:ec:84: d1:f1:b4:72:70:ec:aa:ce:35:66:1a:62:b4:ee:01:cc:d2:eb: f6:30:33:c1:2c:01:ac:33:83:e8:36:80:bb:e2:2e:e6:73:9b: e5:83:70:30:37:f6:ea:f2:0c:af:b7:34:46:2f:44:6c:b0:84: d8:86:4b:4b:5f:70:dd:fd:59:f8:bd:0f:3f:4d:54:52:e9:73: aa:45:66:37:39:b4:38:06:7d:38:eb:30:63:18:e6:d9:4d:05: f1:b3:46:35:d5:69:ea:14:a4:7b:cf:e1:5a:20:e8:31:52:8a: 68:89:4b:f1:12:1d:87:f8:7a:b4:fa:d1:77:ea:e0:01:9e:5a: 76:eb:6f:9f:11:87:9c:d6:ec:df:85:2b:0b:53:e7:4d:35:92: d5:93:25:6b:aa:ce:90:c6:43:ba:3b:23:68:92:93:e5:60:ab: 73:ab:95:7f:12:99:54:92:41:50:40:ff:a3:ca:27:61:f9:c6: 8c:19:ad:15 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUMBOcJDgpQiXXJtWvlgvrkRl1TRswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4 QzFENTE1ODAeFw0yNDEyMTAwNTUxMTNaFw0yNTEyMDkwNTU2MTNaMDMxMTAvBgNV BAMTKDNENUJCQUI4NTczNDc1M0JBREIxNzkxOUQ5NTgzRkRCQUEwREJEREQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJk9XSQgKX+7xKrEt3worln82W +JWlBzhU/kmK2sSuXZuHEvkD1WsuftORn69t8Unw4mESzqM6Cj1qZFD99EKQ6nVg 05DFvam/BaCks+9NhoPAanxfoybfnczEg87xxvLFibBViM9cK68t9vdsjDnRAf2s ZS/c24Iq7BmvhrI5qg3jpgb0cSdReJNSmQv/86rEf0TViJfVIGV0ULCjUatB63Ht Zhx05FODaUlom2K+0U9CEJoJdFavlgXpbIFbA6Pbg6g4H3qTbAV0twYLTrxk8k8L dgZPGHCw5iRPctxXwZ3gE4Clwq94MzR+t7eZmH0QoMlQ2msrInspTLLsouDHAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUPVu6uFc0dTutsXkZ2Vg/26oNvd0wHwYDVR0j BBgwFoAUTfPbPaIdACIgITBzbkzLBIwdUVgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZGVkNTgxMS1iZTUwLTRjYWEtOWY5Ni02M2QzNzIwMzExZGUvMS80REYzREIzREEy MUQwMDIyMjAyMTMwNzM2RTRDQ0IwNDhDMUQ1MTU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4QzFE NTE1OC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzkzMDMwMzAz YTNhMmYzMzM2MmQzMzM2MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQk BJfAkDANBgkqhkiG9w0BAQsFAAOCAQEAcwUntJ1INmAjXPLZJjap9hN0X0P4ISyF oYoiKwB29zuKaOfz6jdgIdoitTkQl4sK3xys6RkgbBKc33jQV7CzlF6m7Op1CeyE 0fG0cnDsqs41ZhpitO4BzNLr9jAzwSwBrDOD6DaAu+Iu5nOb5YNwMDf26vIMr7c0 Ri9EbLCE2IZLS19w3f1Z+L0PP01UUulzqkVmNzm0OAZ9OOswYxjm2U0F8bNGNdVp 6hSke8/hWiDoMVKKaIlL8RIdh/h6tPrRd+rgAZ5adutvnxGHnNbs34UrC1PnTTWS 1ZMla6rOkMZDujsjaJKT5WCrc6uVfxKZVJJBUED/o8onYfnGjBmtFQ== -----END CERTIFICATE-----Generated at Sun Apr 6 07:54:28 2025 by rpki-client