$ rpki-client -vvf repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3a2f33362d3336203d3e20313533303837.roa File: 323430343a393763303a3a2f33362d3336203d3e20313533303837.roa (raw, json) Hash identifier: bZomEerwTckK0uovhCRCPeCKuhMrW+Qy9Lz5ot1+QLM= Subject key identifier: 73:21:CC:7D:0E:8A:D8:09:77:8C:17:38:AE:3D:DE:06:B3:D7:AA:96 Certificate issuer: /CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Certificate serial: 65E632102CFB32E411C1533FE3EC8C5604B6DB9C Authority key identifier: 4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3a2f33362d3336203d3e20313533303837.roa Signing time: Tue 10 Dec 2024 05:52:55 +0000 ROA not before: Tue 10 Dec 2024 05:47:55 +0000 ROA not after: Tue 09 Dec 2025 05:52:55 +0000 asID: 153087 IP address blocks: 2404:97c0::/36 maxlen: 36 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 20:35:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:e6:32:10:2c:fb:32:e4:11:c1:53:3f:e3:ec:8c:56:04:b6:db:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Validity Not Before: Dec 10 05:47:55 2024 GMT Not After : Dec 9 05:52:55 2025 GMT Subject: CN=7321CC7D0E8AD809778C1738AE3DDE06B3D7AA96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:3e:b8:7c:9c:3a:c2:4c:0c:8a:9b:df:15:dc: a5:df:4d:6a:9a:39:9a:7c:09:d5:db:b5:8a:2f:38: 97:85:e5:0e:ae:de:11:63:7c:e0:00:6d:73:50:e8: 98:f7:4d:c7:c1:a3:7c:79:47:97:d1:23:dd:b9:4d: ca:8d:51:eb:b5:b7:22:1a:32:23:7f:5c:8e:de:ac: 64:14:e4:0e:b0:e3:24:d4:70:1a:ce:d9:86:4c:05: f7:e7:26:47:ef:55:a6:83:68:cc:51:6d:cd:df:2f: 7b:aa:aa:f4:e8:a9:31:4b:be:df:d0:2f:b4:d1:72: 01:9a:e4:3c:e6:fc:01:cb:30:1e:13:08:18:db:25: b9:66:ce:ca:40:b0:90:11:eb:77:d1:49:8e:85:9b: dc:e9:52:e9:cf:09:38:bf:f9:f5:fe:66:e8:04:6b: af:66:09:77:6e:ea:2b:a0:66:81:45:ae:6d:30:b4: f7:50:87:65:8e:95:2f:d3:bb:f1:76:b3:a4:44:d1: 38:0b:ee:6a:ab:a1:81:c3:4b:73:f1:2c:21:20:77: a7:1d:55:f3:76:be:c6:e7:3b:99:ba:3e:72:56:b1: a1:b6:4c:cd:72:63:2d:0b:1e:64:66:d8:b4:e0:cf: ff:5f:ec:c0:73:7a:92:36:ea:f1:8f:aa:fb:22:12: d2:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:21:CC:7D:0E:8A:D8:09:77:8C:17:38:AE:3D:DE:06:B3:D7:AA:96 X509v3 Authority Key Identifier: keyid:4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3a2f33362d3336203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0::/36 Signature Algorithm: sha256WithRSAEncryption a0:4e:4e:84:26:44:66:c0:99:4b:a8:19:d7:ba:10:e7:2d:62: 8c:17:e5:cd:87:c1:6b:71:d8:79:bf:29:5a:f1:ad:70:83:8a: a9:de:2c:d6:e1:fc:9c:c5:be:43:4a:e6:05:f7:8f:63:8c:bd: 34:4f:57:d2:d9:82:8b:2e:45:ff:96:cf:63:c5:54:0b:64:7f: 4e:85:32:7b:49:9b:94:8e:dc:da:8f:b0:56:58:f1:20:17:ca: a6:ac:2b:f8:d4:90:6e:bf:7e:3d:92:13:37:7e:f5:91:b0:34: 5e:c3:5f:98:7e:c3:e9:f6:ee:d7:43:30:0f:f6:4b:39:d5:59: 91:77:c9:07:d6:35:b4:41:c4:01:e9:61:fb:54:c8:29:77:7e: 28:95:3b:62:9e:22:f1:0d:44:6b:d0:ce:49:47:4e:27:9d:07: 05:a8:c8:17:07:00:1e:1a:23:a6:43:0b:d9:33:40:dc:61:f8: b2:de:a3:9f:ee:33:36:35:5d:fb:67:64:c6:d6:6b:18:80:62: 40:be:11:95:55:f5:21:8b:67:a6:2c:be:8d:9e:32:33:70:0f: a0:8e:2e:7f:fe:61:70:17:ce:a0:65:c4:a3:4f:46:79:54:bf: fc:e9:5b:7e:28:73:13:77:3e:a3:95:08:61:80:dd:00:a9:97: 07:1a:cd:bf -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZeYyECz7MuQRwVM/4+yMVgS225wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4 QzFENTE1ODAeFw0yNDEyMTAwNTQ3NTVaFw0yNTEyMDkwNTUyNTVaMDMxMTAvBgNV BAMTKDczMjFDQzdEMEU4QUQ4MDk3NzhDMTczOEFFM0RERTA2QjNEN0FBOTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTPrh8nDrCTAyKm98V3KXfTWqa OZp8CdXbtYovOJeF5Q6u3hFjfOAAbXNQ6Jj3TcfBo3x5R5fRI925TcqNUeu1tyIa MiN/XI7erGQU5A6w4yTUcBrO2YZMBffnJkfvVaaDaMxRbc3fL3uqqvToqTFLvt/Q L7TRcgGa5Dzm/AHLMB4TCBjbJblmzspAsJAR63fRSY6Fm9zpUunPCTi/+fX+ZugE a69mCXdu6iugZoFFrm0wtPdQh2WOlS/Tu/F2s6RE0TgL7mqroYHDS3PxLCEgd6cd VfN2vsbnO5m6PnJWsaG2TM1yYy0LHmRm2LTgz/9f7MBzepI26vGPqvsiEtKtAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUcyHMfQ6K2Al3jBc4rj3eBrPXqpYwHwYDVR0j BBgwFoAUTfPbPaIdACIgITBzbkzLBIwdUVgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZGVkNTgxMS1iZTUwLTRjYWEtOWY5Ni02M2QzNzIwMzExZGUvMS80REYzREIzREEy MUQwMDIyMjAyMTMwNzM2RTRDQ0IwNDhDMUQ1MTU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4QzFE NTE1OC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhM2EyZjMzMzYy ZDMzMzYyMDNkM2UyMDMxMzUzMzMwMzgzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBCQEl8AAMA0GCSqG SIb3DQEBCwUAA4IBAQCgTk6EJkRmwJlLqBnXuhDnLWKMF+XNh8Frcdh5vyla8a1w g4qp3izW4fycxb5DSuYF949jjL00T1fS2YKLLkX/ls9jxVQLZH9OhTJ7SZuUjtza j7BWWPEgF8qmrCv41JBuv349khM3fvWRsDRew1+YfsPp9u7XQzAP9ks51VmRd8kH 1jW0QcQB6WH7VMgpd34olTtiniLxDURr0M5JR04nnQcFqMgXBwAeGiOmQwvZM0Dc Yfiy3qOf7jM2NV37Z2TG1msYgGJAvhGVVfUhi2emLL6NnjIzcA+gji5//mFwF86g ZcSjT0Z5VL/86Vt+KHMTdz6jlQhhgN0AqZcHGs2/ -----END CERTIFICATE-----Generated at Sun Apr 6 07:52:04 2025 by rpki-client