$ rpki-client -vvf repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a393763303a3a2f34342d3434203d3e20313533303837.roa File: 323430343a393763303a393763303a3a2f34342d3434203d3e20313533303837.roa (raw, json) Hash identifier: Rd+MYgkYtI8Em6b7VkPxEFn2gv60uz4eRZ5jfkklOME= Subject key identifier: E5:5D:46:45:F2:69:84:F2:B7:8F:91:9E:6A:6F:C4:93:EE:C9:45:CE Certificate issuer: /CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Certificate serial: 40749B5D378850FEFADECCC2D96323E4AC38F508 Authority key identifier: 4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a393763303a3a2f34342d3434203d3e20313533303837.roa Signing time: Tue 10 Dec 2024 06:09:32 +0000 ROA not before: Tue 10 Dec 2024 06:04:32 +0000 ROA not after: Tue 09 Dec 2025 06:09:32 +0000 asID: 153087 IP address blocks: 2404:97c0:97c0::/44 maxlen: 44 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 20:35:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:74:9b:5d:37:88:50:fe:fa:de:cc:c2:d9:63:23:e4:ac:38:f5:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Validity Not Before: Dec 10 06:04:32 2024 GMT Not After : Dec 9 06:09:32 2025 GMT Subject: CN=E55D4645F26984F2B78F919E6A6FC493EEC945CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:bc:76:18:97:91:2c:75:31:bb:ec:8d:2b:57: 4f:a5:57:4b:ed:32:88:fc:1d:46:5a:aa:df:aa:1e: 92:d9:56:dc:a7:f7:59:80:0f:99:ab:d7:d4:9c:43: 9c:bb:98:2e:dc:12:a0:7f:ab:37:34:ba:9c:0c:9b: 40:9f:b7:ec:fa:4e:0c:89:68:e0:d6:62:0c:29:17: 35:0d:4a:1b:7b:2f:3f:9e:d8:6d:fc:fd:93:ab:64: 1b:88:19:fc:2b:a9:4b:fa:b0:47:a7:8a:2c:9e:9f: 4c:3a:7c:db:65:b5:00:53:ec:1e:f8:1d:00:1c:c4: 45:76:5b:9c:91:44:46:e2:85:ac:68:71:50:86:75: ef:61:c2:48:7d:bc:af:ff:f0:d9:9c:c1:6a:91:be: 71:5e:d4:41:54:a0:5f:89:43:ce:01:b8:5e:bb:6d: 30:7a:50:26:4e:b1:95:c1:7b:2b:8c:89:f2:7c:4c: fb:ff:be:91:98:b7:80:3e:94:dc:ab:6a:ea:11:fc: 7b:2d:a5:b7:65:7d:84:49:95:96:3f:4d:d6:ec:2e: 61:a1:c9:28:84:6b:2e:de:6d:64:db:72:1d:8c:5b: f8:1b:88:6a:09:31:a1:cb:6c:af:67:68:32:eb:92: 4f:09:c7:af:ad:8d:65:12:82:13:16:a8:15:98:4c: 46:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:5D:46:45:F2:69:84:F2:B7:8F:91:9E:6A:6F:C4:93:EE:C9:45:CE X509v3 Authority Key Identifier: keyid:4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a393763303a3a2f34342d3434203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:97c0::/44 Signature Algorithm: sha256WithRSAEncryption 62:53:bd:1c:df:d5:84:e3:9a:13:eb:3b:ff:76:69:4b:54:44: 9a:4e:90:da:70:5e:cb:6f:6c:74:32:06:04:42:78:a8:94:fd: b3:4a:de:ba:70:92:16:b6:e3:5b:2a:8f:5f:0c:6d:c6:c3:2d: a1:ce:5b:33:f0:a8:30:20:c3:d2:52:f0:7a:5d:e5:7c:bc:bf: 52:74:2d:ac:e1:34:79:c9:2d:4d:57:13:16:20:27:c6:73:30: f1:55:9e:7c:c5:02:43:2a:4e:cb:41:5d:39:4d:d6:e3:f8:26: 39:5b:ea:03:ac:67:2d:95:c5:3a:16:bc:53:93:55:0f:79:a4: cf:0b:af:6d:d6:48:01:b1:88:fd:1b:44:88:b9:cb:5a:59:61: 10:30:17:7e:4a:6e:ce:9e:da:fb:1d:18:99:3c:44:d5:a7:31: d4:27:59:c8:10:55:af:4d:e5:ec:0e:87:14:b4:ef:38:8f:58: 15:83:26:82:95:97:c2:59:0a:f0:ac:0a:f3:b8:fc:33:13:f2: 01:4a:b2:37:e0:bf:a3:6e:68:10:b2:ec:0d:cd:74:74:3b:3f: 79:45:39:6c:2d:24:a7:dd:44:ec:02:19:d7:bd:aa:6c:5c:6f: aa:af:e5:e8:67:96:a6:09:e6:bc:e8:11:90:87:b8:4b:bf:2a: 6a:f6:99:c6 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUQHSbXTeIUP763szC2WMj5Kw49QgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4 QzFENTE1ODAeFw0yNDEyMTAwNjA0MzJaFw0yNTEyMDkwNjA5MzJaMDMxMTAvBgNV BAMTKEU1NUQ0NjQ1RjI2OTg0RjJCNzhGOTE5RTZBNkZDNDkzRUVDOTQ1Q0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzvHYYl5EsdTG77I0rV0+lV0vt Moj8HUZaqt+qHpLZVtyn91mAD5mr19ScQ5y7mC7cEqB/qzc0upwMm0Cft+z6TgyJ aODWYgwpFzUNSht7Lz+e2G38/ZOrZBuIGfwrqUv6sEeniiyen0w6fNtltQBT7B74 HQAcxEV2W5yRREbihaxocVCGde9hwkh9vK//8NmcwWqRvnFe1EFUoF+JQ84BuF67 bTB6UCZOsZXBeyuMifJ8TPv/vpGYt4A+lNyrauoR/HstpbdlfYRJlZY/TdbsLmGh ySiEay7ebWTbch2MW/gbiGoJMaHLbK9naDLrkk8Jx6+tjWUSghMWqBWYTEaNAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQU5V1GRfJphPK3j5Geam/Ek+7JRc4wHwYDVR0j BBgwFoAUTfPbPaIdACIgITBzbkzLBIwdUVgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZGVkNTgxMS1iZTUwLTRjYWEtOWY5Ni02M2QzNzIwMzExZGUvMS80REYzREIzREEy MUQwMDIyMjAyMTMwNzM2RTRDQ0IwNDhDMUQ1MTU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4QzFE NTE1OC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzkzNzYzMzAz YTNhMmYzNDM0MmQzNDM0MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQk BJfAl8AwDQYJKoZIhvcNAQELBQADggEBAGJTvRzf1YTjmhPrO/92aUtURJpOkNpw XstvbHQyBgRCeKiU/bNK3rpwkha241sqj18MbcbDLaHOWzPwqDAgw9JS8Hpd5Xy8 v1J0LazhNHnJLU1XExYgJ8ZzMPFVnnzFAkMqTstBXTlN1uP4Jjlb6gOsZy2VxToW vFOTVQ95pM8Lr23WSAGxiP0bRIi5y1pZYRAwF35Kbs6e2vsdGJk8RNWnMdQnWcgQ Va9N5ewOhxS07ziPWBWDJoKVl8JZCvCsCvO4/DMT8gFKsjfgv6NuaBCy7A3NdHQ7 P3lFOWwtJKfdROwCGde9qmxcb6qv5ehnlqYJ5rzoEZCHuEu/Kmr2mcY= -----END CERTIFICATE-----Generated at Sun Apr 6 07:54:26 2025 by rpki-client