$ rpki-client -vvf repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a393730303a3a2f34302d3430203d3e20313533303837.roa File: 323430343a393763303a393730303a3a2f34302d3430203d3e20313533303837.roa (raw, json) Hash identifier: 2kWw72G7y9+iu7Oj2LdzHrFFqPrgZYlByeJlEDz3xGE= Subject key identifier: F9:3A:6B:3E:D3:19:DB:5D:75:F1:AF:E0:07:8B:42:DB:6E:E8:90:2B Certificate issuer: /CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Certificate serial: 18DA765F7BEB08BC3841C24D69A0E26BF51C789E Authority key identifier: 4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a393730303a3a2f34302d3430203d3e20313533303837.roa Signing time: Tue 10 Dec 2024 06:08:45 +0000 ROA not before: Tue 10 Dec 2024 06:03:45 +0000 ROA not after: Tue 09 Dec 2025 06:08:45 +0000 asID: 153087 IP address blocks: 2404:97c0:9700::/40 maxlen: 40 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 20:35:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:da:76:5f:7b:eb:08:bc:38:41:c2:4d:69:a0:e2:6b:f5:1c:78:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Validity Not Before: Dec 10 06:03:45 2024 GMT Not After : Dec 9 06:08:45 2025 GMT Subject: CN=F93A6B3ED319DB5D75F1AFE0078B42DB6EE8902B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:dd:55:1a:f7:c3:3e:66:c3:f6:20:98:af:8d: cd:ce:40:cf:53:91:cc:27:d3:97:42:c4:fc:be:77: 4e:ed:45:48:2d:01:ed:8a:9b:a6:80:a2:38:2b:44: a6:fb:13:d7:e4:db:f2:c1:80:68:1a:0a:b1:7f:32: b6:f3:fb:8b:c0:71:79:82:99:26:99:b0:ec:af:9a: 57:8b:fb:5c:7f:8b:93:74:3b:c9:61:1b:f0:44:9a: 22:08:59:c4:0a:46:f2:c7:fd:3c:6e:6a:91:8d:09: 6d:23:3f:c4:62:91:8c:d9:3b:38:5d:f6:19:c2:50: 53:2c:f7:58:95:7c:33:b9:66:c2:84:f8:2b:f7:fd: 48:44:82:64:15:8b:36:6d:26:c6:df:44:d4:66:47: cb:a1:b1:e4:ee:f7:68:f0:99:4f:83:b7:83:58:52: ac:fb:03:f3:35:24:bc:fb:ee:71:65:5d:70:32:49: f6:96:3f:c6:35:80:30:0f:9f:c1:41:22:a8:7c:ca: 18:03:5f:23:f5:a5:bc:d9:a9:97:5c:46:71:6e:d2: cd:06:4c:94:b6:94:a8:2a:a0:b7:53:ce:ed:d4:2a: e1:3a:f3:1b:51:f6:ad:8d:5e:d4:79:f9:94:ec:53: 64:88:b8:53:e2:09:55:4b:21:ee:f7:02:1e:81:3a: 34:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:3A:6B:3E:D3:19:DB:5D:75:F1:AF:E0:07:8B:42:DB:6E:E8:90:2B X509v3 Authority Key Identifier: keyid:4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a393730303a3a2f34302d3430203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:9700::/40 Signature Algorithm: sha256WithRSAEncryption 70:9d:6a:7b:8c:ff:6c:26:94:36:eb:a6:19:70:4f:f1:df:9b: 6f:8b:b5:9c:cd:af:50:f3:03:18:ca:52:1b:4b:86:d3:12:fc: 3d:17:60:ae:21:1d:e0:11:5b:c9:85:f2:40:8e:b5:55:b1:7e: c6:75:be:a2:06:6c:ff:0a:94:db:b7:b2:a2:c9:14:16:c9:ac: 18:c2:9e:04:09:11:45:09:d7:df:53:d5:56:40:d1:3a:e1:41: 49:59:8d:e1:2d:43:ab:7c:22:09:ca:58:ca:37:e5:98:18:01: a3:a1:dc:41:3b:43:11:39:d2:0b:28:ca:d4:81:31:b9:66:8b: 5b:e8:6b:35:93:85:e4:6d:e1:2b:f4:f0:fb:64:95:8a:a5:cf: 56:07:08:8b:73:8d:5b:20:ea:fd:a9:b3:5c:fd:17:7e:4a:31: 76:45:5d:af:a4:6d:5f:14:72:f7:f3:6c:4b:ff:8f:3a:2d:73: 81:1c:48:8f:de:58:41:b2:11:51:29:39:3d:d9:68:0a:60:58: 2d:aa:d2:e2:4f:9e:b1:20:06:7f:5a:39:81:a7:5f:d0:1f:ce: 0b:ad:09:b0:04:bb:61:f9:fa:d7:8b:33:09:34:b5:35:73:1e: 76:67:2e:9b:be:1f:0c:7c:a1:33:15:1f:04:3d:e9:b0:28:35: 30:f4:83:a5 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUGNp2X3vrCLw4QcJNaaDia/UceJ4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4 QzFENTE1ODAeFw0yNDEyMTAwNjAzNDVaFw0yNTEyMDkwNjA4NDVaMDMxMTAvBgNV BAMTKEY5M0E2QjNFRDMxOURCNUQ3NUYxQUZFMDA3OEI0MkRCNkVFODkwMkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCt3VUa98M+ZsP2IJivjc3OQM9T kcwn05dCxPy+d07tRUgtAe2Km6aAojgrRKb7E9fk2/LBgGgaCrF/Mrbz+4vAcXmC mSaZsOyvmleL+1x/i5N0O8lhG/BEmiIIWcQKRvLH/TxuapGNCW0jP8RikYzZOzhd 9hnCUFMs91iVfDO5ZsKE+Cv3/UhEgmQVizZtJsbfRNRmR8uhseTu92jwmU+Dt4NY Uqz7A/M1JLz77nFlXXAySfaWP8Y1gDAPn8FBIqh8yhgDXyP1pbzZqZdcRnFu0s0G TJS2lKgqoLdTzu3UKuE68xtR9q2NXtR5+ZTsU2SIuFPiCVVLIe73Ah6BOjRHAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQU+TprPtMZ21118a/gB4tC227okCswHwYDVR0j BBgwFoAUTfPbPaIdACIgITBzbkzLBIwdUVgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZGVkNTgxMS1iZTUwLTRjYWEtOWY5Ni02M2QzNzIwMzExZGUvMS80REYzREIzREEy MUQwMDIyMjAyMTMwNzM2RTRDQ0IwNDhDMUQ1MTU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4QzFE NTE1OC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzkzNzMwMzAz YTNhMmYzNDMwMmQzNDMwMjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgAk BJfAlzANBgkqhkiG9w0BAQsFAAOCAQEAcJ1qe4z/bCaUNuumGXBP8d+bb4u1nM2v UPMDGMpSG0uG0xL8PRdgriEd4BFbyYXyQI61VbF+xnW+ogZs/wqU27eyoskUFsms GMKeBAkRRQnX31PVVkDROuFBSVmN4S1Dq3wiCcpYyjflmBgBo6HcQTtDETnSCyjK 1IExuWaLW+hrNZOF5G3hK/Tw+2SViqXPVgcIi3ONWyDq/amzXP0XfkoxdkVdr6Rt XxRy9/NsS/+POi1zgRxIj95YQbIRUSk5PdloCmBYLarS4k+esSAGf1o5gadf0B/O C60JsAS7Yfn614szCTS1NXMedmcum74fDHyhMxUfBD3psCg1MPSDpQ== -----END CERTIFICATE-----Generated at Sun Apr 6 07:54:50 2025 by rpki-client