$ rpki-client -vvf repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a3230303a3a2f34302d3430203d3e203233363739.roa File: 323430313a323930303a3230303a3a2f34302d3430203d3e203233363739.roa (raw, json) Hash identifier: 5D4ztfrqAV2hpUn/PBaHMX1Mg1h/mhRh4cEhpbCEdWQ= Subject key identifier: 21:4E:70:EA:71:EE:FD:EC:17:7A:BF:3D:46:A3:81:65:1C:F8:CB:32 Certificate issuer: /CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Certificate serial: 7F8290934EA7A440DF725F72822D5BB720EAC0E9 Authority key identifier: 55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject info access: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a3230303a3a2f34302d3430203d3e203233363739.roa Signing time: Thu 02 Jan 2025 01:00:02 +0000 ROA not before: Thu 02 Jan 2025 00:55:02 +0000 ROA not after: Thu 01 Jan 2026 01:00:02 +0000 asID: 23679 IP address blocks: 2401:2900:200::/40 maxlen: 40 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 10:26:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:82:90:93:4e:a7:a4:40:df:72:5f:72:82:2d:5b:b7:20:ea:c0:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Validity Not Before: Jan 2 00:55:02 2025 GMT Not After : Jan 1 01:00:02 2026 GMT Subject: CN=214E70EA71EEFDEC177ABF3D46A381651CF8CB32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:82:73:f7:56:aa:3e:43:ed:04:a3:da:e3:08: c8:8b:50:08:68:d1:cd:ce:b5:c5:aa:0c:dc:bb:5b: 61:a8:2c:5d:81:7f:a1:e7:b0:fd:2d:8a:af:11:47: e8:f3:d1:11:c2:d3:de:6f:2c:f9:a4:4c:e2:e1:9d: 27:e3:38:e2:e5:7a:58:51:f1:0f:61:31:e8:02:e5: dd:8c:b3:2c:f4:23:b7:ad:02:45:09:17:2d:aa:84: 6b:1e:4d:cc:81:9b:54:91:10:05:bb:8b:82:79:79: e2:72:25:24:36:6f:26:7c:b6:02:0a:71:65:f5:83: 88:f2:d8:49:5f:4d:e7:94:fc:ef:77:47:ed:4e:34: f2:2c:03:6d:2b:a8:9a:8e:ea:73:a2:72:6f:41:0f: d7:66:45:7a:aa:2c:83:a0:e8:b8:eb:c6:94:8f:51: f2:67:15:db:b9:b2:91:b4:56:77:1a:c4:47:f4:fe: 42:86:dd:a6:f7:16:95:3f:bb:56:4f:52:65:d3:54: cd:51:2c:f0:0a:15:ca:ed:ca:61:2c:e8:ac:58:38: d5:5b:0e:a5:e7:34:7e:7a:d0:4c:dd:16:73:4e:fd: 71:ad:73:49:1d:fe:97:e0:ad:d9:b8:2d:56:74:57: d4:63:22:a8:a1:6f:fc:36:53:12:b4:95:a8:2e:dd: 97:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:4E:70:EA:71:EE:FD:EC:17:7A:BF:3D:46:A3:81:65:1C:F8:CB:32 X509v3 Authority Key Identifier: keyid:55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a3230303a3a2f34302d3430203d3e203233363739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:2900:200::/40 Signature Algorithm: sha256WithRSAEncryption 8d:89:67:71:f6:06:6d:20:ec:99:ed:d4:05:73:80:ec:37:41: fb:68:7d:30:7a:b0:76:f1:f6:d3:b1:37:ba:d9:ca:97:b1:af: 4a:6b:a0:c2:19:a1:2b:4a:a6:40:d7:1e:37:a9:4f:d1:e4:d5: 6b:3b:c9:a9:2f:28:92:80:0c:8b:36:cb:cc:6b:35:af:39:ae: 91:3c:22:08:57:e2:9a:e5:38:8e:01:b1:b5:e8:79:4f:3d:e4: 9f:d6:75:45:e5:af:02:01:33:60:ca:18:64:a4:8f:4a:f8:95: 64:bd:b8:f3:6b:f9:dd:7f:14:f7:47:60:cb:bf:d3:bd:81:aa: f7:a6:85:4d:35:87:04:c3:4d:fb:96:a7:88:d4:aa:94:98:6c: 9d:b1:66:10:c1:3f:54:bb:2d:f1:db:56:94:78:1b:74:fc:81: 37:90:dd:83:b4:d9:52:00:5e:e7:e1:44:73:6d:f0:71:a4:5c: 50:ea:c4:0c:66:8c:ab:9d:a1:90:fd:80:e9:4f:86:e3:b7:3c: d8:aa:07:ce:97:6c:c1:43:e0:b6:45:71:d5:3f:35:37:e3:0c: 1b:b1:db:85:2b:3c:1e:5c:c9:35:ed:f2:ca:34:7f:4c:9f:61: 9a:ff:fe:33:db:48:4d:bb:5c:b0:da:e2:b5:a5:99:bb:ca:3e: 5f:e8:f3:86 -----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgIUf4KQk06npEDfcl9ygi1btyDqwOkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0 RkE2Njk4NDAeFw0yNTAxMDIwMDU1MDJaFw0yNjAxMDEwMTAwMDJaMDMxMTAvBgNV BAMTKDIxNEU3MEVBNzFFRUZERUMxNzdBQkYzRDQ2QTM4MTY1MUNGOENCMzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqgnP3Vqo+Q+0Eo9rjCMiLUAho 0c3OtcWqDNy7W2GoLF2Bf6HnsP0tiq8RR+jz0RHC095vLPmkTOLhnSfjOOLlelhR 8Q9hMegC5d2Msyz0I7etAkUJFy2qhGseTcyBm1SREAW7i4J5eeJyJSQ2byZ8tgIK cWX1g4jy2ElfTeeU/O93R+1ONPIsA20rqJqO6nOicm9BD9dmRXqqLIOg6LjrxpSP UfJnFdu5spG0VncaxEf0/kKG3ab3FpU/u1ZPUmXTVM1RLPAKFcrtymEs6KxYONVb DqXnNH560EzdFnNO/XGtc0kd/pfgrdm4LVZ0V9RjIqihb/w2UxK0lagu3ZdXAgMB AAGjggI6MIICNjAdBgNVHQ4EFgQUIU5w6nHu/ewXer89RqOBZRz4yzIwHwYDVR0j BBgwFoAUVSsxom6Sqd1qWFuSN1t/yk+maYQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDE0MzJjYy0zYmM5LTQ4NTgtYjUwNi0yMThhYWIwYjA4OWMvMC81NTJCMzFBMjZF OTJBOURENkE1ODVCOTIzNzVCN0ZDQTRGQTY2OTg0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0RkE2 Njk4NC5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwMTQzMmNjLTNiYzktNDg1OC1i NTA2LTIxOGFhYjBiMDg5Yy8wLzMyMzQzMDMxM2EzMjM5MzAzMDNhMzIzMDMwM2Ez YTJmMzQzMDJkMzQzMDIwM2QzZTIwMzIzMzM2MzczOS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACQBKQAC MA0GCSqGSIb3DQEBCwUAA4IBAQCNiWdx9gZtIOyZ7dQFc4DsN0H7aH0werB28fbT sTe62cqXsa9Ka6DCGaErSqZA1x43qU/R5NVrO8mpLyiSgAyLNsvMazWvOa6RPCII V+Ka5TiOAbG16HlPPeSf1nVF5a8CATNgyhhkpI9K+JVkvbjza/ndfxT3R2DLv9O9 gar3poVNNYcEw037lqeI1KqUmGydsWYQwT9Uuy3x21aUeBt0/IE3kN2DtNlSAF7n 4URzbfBxpFxQ6sQMZoyrnaGQ/YDpT4bjtzzYqgfOl2zBQ+C2RXHVPzU34wwbsduF KzweXMk17fLKNH9Mn2Ga//4z20hNu1yw2uK1pZm7yj5f6POG -----END CERTIFICATE-----Generated at Sun Apr 6 11:01:34 2025 by rpki-client