$ rpki-client -vvf repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a3130303a3a2f34372d3437203d3e203233363739.roa File: 323430313a323930303a3130303a3a2f34372d3437203d3e203233363739.roa (raw, json) Hash identifier: WTKzTbIjAyfb/ew3XimN2FGXlnYnNUhQg1gn5jqOWYY= Subject key identifier: 35:0D:82:64:8A:41:F2:F9:B8:DC:7C:00:ED:90:92:85:71:2A:5F:C5 Certificate issuer: /CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Certificate serial: 777F25513DE550C7424D255CFC35FCB72DA763ED Authority key identifier: 55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject info access: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a3130303a3a2f34372d3437203d3e203233363739.roa Signing time: Fri 10 Jan 2025 08:15:09 +0000 ROA not before: Fri 10 Jan 2025 08:10:09 +0000 ROA not after: Fri 09 Jan 2026 08:15:09 +0000 asID: 23679 IP address blocks: 2401:2900:100::/47 maxlen: 47 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 10:26:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:7f:25:51:3d:e5:50:c7:42:4d:25:5c:fc:35:fc:b7:2d:a7:63:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Validity Not Before: Jan 10 08:10:09 2025 GMT Not After : Jan 9 08:15:09 2026 GMT Subject: CN=350D82648A41F2F9B8DC7C00ED909285712A5FC5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:25:4c:39:72:a4:97:41:61:95:a6:cc:d7:0c: 51:ad:3f:17:cd:d9:57:7b:3e:f1:a6:91:ca:81:d3: 49:91:d7:85:22:e7:95:38:94:03:7a:73:6a:73:91: 7e:d8:b9:7c:71:05:29:f6:a8:c4:66:75:6b:d9:0a: c3:ca:db:1c:fa:3d:91:5e:b2:76:49:bc:5e:6d:63: 2a:60:7a:94:b4:61:b4:69:37:d9:81:a0:0a:d6:cb: 9a:bf:f1:20:86:77:39:15:13:42:d5:be:91:78:fc: de:99:f0:f3:4c:c8:49:4a:1c:d3:00:bc:28:63:56: fd:49:60:9c:b2:8f:12:04:2d:d9:e4:c3:dc:94:cf: b9:07:19:0a:e7:66:0c:33:b6:ee:1b:46:1e:49:5a: 97:56:07:e9:f9:15:c9:ce:85:63:c9:69:c8:c0:a4: bd:21:9c:e1:e4:2f:d1:d2:d1:ac:7c:86:27:63:6b: aa:f4:53:6d:b5:24:7c:92:0b:60:9d:23:2e:03:89: 16:3c:c5:ee:15:e4:bc:58:a7:a9:57:db:e5:3c:62: e2:e9:49:b6:39:10:0b:81:a3:d8:7c:ae:95:e8:a6: b9:ec:95:7a:7c:f7:cd:27:4a:f5:8f:c3:56:a4:c2: a5:c3:fb:54:17:e2:08:c3:18:4f:00:58:87:6f:57: 10:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:0D:82:64:8A:41:F2:F9:B8:DC:7C:00:ED:90:92:85:71:2A:5F:C5 X509v3 Authority Key Identifier: keyid:55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a3130303a3a2f34372d3437203d3e203233363739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:2900:100::/47 Signature Algorithm: sha256WithRSAEncryption 00:40:1a:64:cd:5d:f3:91:bb:df:42:57:2f:00:8f:1c:67:35: 13:2c:42:aa:2f:a7:a5:0a:63:32:84:5e:39:a1:5e:85:8b:5a: 9c:b8:0a:19:b5:c2:8b:a7:72:57:93:bc:2c:6a:ea:99:44:d6: 09:fa:2c:77:c7:bc:e8:f7:cf:a3:b4:c9:71:70:55:fb:39:41: 35:88:68:83:02:8e:fb:77:fd:2f:a6:d1:7d:2e:a8:66:92:3f: 26:af:fc:0d:40:89:d0:bf:8b:ef:ab:5a:27:67:89:a8:68:30: 19:b6:8b:26:47:72:0e:46:97:8a:fe:d6:66:53:25:4c:fe:49: 73:71:b9:6f:65:7f:69:b3:2e:7f:d0:0d:04:0f:d8:4b:42:ca: b7:c0:f9:d8:2f:57:22:0c:fa:64:1b:a7:77:95:42:44:cc:de: c0:9c:25:de:9e:b7:c4:a2:26:2e:f9:2a:0b:32:c4:fd:40:8e: 68:35:8b:8a:79:a8:ea:55:b3:f3:ed:25:80:30:2d:9f:31:b2: 1d:c8:93:ee:bc:1d:8b:9a:d9:dd:cc:25:89:61:2c:19:21:c3: ce:8e:dc:fd:56:f5:4b:78:cf:89:55:6b:f1:78:c8:6f:92:45: e1:99:53:7d:d8:b8:e9:e5:7d:33:79:f1:b3:05:63:af:17:79: ad:d7:c4:d0 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUd38lUT3lUMdCTSVc/DX8ty2nY+0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0 RkE2Njk4NDAeFw0yNTAxMTAwODEwMDlaFw0yNjAxMDkwODE1MDlaMDMxMTAvBgNV BAMTKDM1MEQ4MjY0OEE0MUYyRjlCOERDN0MwMEVEOTA5Mjg1NzEyQTVGQzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgJUw5cqSXQWGVpszXDFGtPxfN 2Vd7PvGmkcqB00mR14Ui55U4lAN6c2pzkX7YuXxxBSn2qMRmdWvZCsPK2xz6PZFe snZJvF5tYypgepS0YbRpN9mBoArWy5q/8SCGdzkVE0LVvpF4/N6Z8PNMyElKHNMA vChjVv1JYJyyjxIELdnkw9yUz7kHGQrnZgwztu4bRh5JWpdWB+n5FcnOhWPJacjA pL0hnOHkL9HS0ax8hidja6r0U221JHySC2CdIy4DiRY8xe4V5LxYp6lX2+U8YuLp SbY5EAuBo9h8rpXoprnslXp8980nSvWPw1akwqXD+1QX4gjDGE8AWIdvVxBPAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUNQ2CZIpB8vm43HwA7ZCShXEqX8UwHwYDVR0j BBgwFoAUVSsxom6Sqd1qWFuSN1t/yk+maYQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDE0MzJjYy0zYmM5LTQ4NTgtYjUwNi0yMThhYWIwYjA4OWMvMC81NTJCMzFBMjZF OTJBOURENkE1ODVCOTIzNzVCN0ZDQTRGQTY2OTg0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0RkE2 Njk4NC5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwMTQzMmNjLTNiYzktNDg1OC1i NTA2LTIxOGFhYjBiMDg5Yy8wLzMyMzQzMDMxM2EzMjM5MzAzMDNhMzEzMDMwM2Ez YTJmMzQzNzJkMzQzNzIwM2QzZTIwMzIzMzM2MzczOS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHASQBKQAB ADANBgkqhkiG9w0BAQsFAAOCAQEAAEAaZM1d85G730JXLwCPHGc1EyxCqi+npQpj MoReOaFehYtanLgKGbXCi6dyV5O8LGrqmUTWCfosd8e86PfPo7TJcXBV+zlBNYho gwKO+3f9L6bRfS6oZpI/Jq/8DUCJ0L+L76taJ2eJqGgwGbaLJkdyDkaXiv7WZlMl TP5Jc3G5b2V/abMuf9ANBA/YS0LKt8D52C9XIgz6ZBund5VCRMzewJwl3p63xKIm LvkqCzLE/UCOaDWLinmo6lWz8+0lgDAtnzGyHciT7rwdi5rZ3cwliWEsGSHDzo7c /Vb1S3jPiVVr8XjIb5JF4ZlTfdi46eV9M3nxswVjrxd5rdfE0A== -----END CERTIFICATE-----Generated at Sun Apr 6 08:34:30 2025 by rpki-client