$ rpki-client -vvf repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a336630303a3a2f34302d3430203d3e203233363739.roa File: 323430313a323930303a336630303a3a2f34302d3430203d3e203233363739.roa (raw, json) Hash identifier: q/BFXuY2nfXSfCuu7Y6yKhZ4RuBSujpCKUaqAsNbZIA= Subject key identifier: F4:7F:47:9B:6E:B5:B2:7D:7A:C5:6B:AF:C0:F6:A2:BD:86:0E:79:FA Certificate issuer: /CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Certificate serial: 4A1363E504615843FDFD98765A9E0DBA0A7E2892 Authority key identifier: 55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject info access: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a336630303a3a2f34302d3430203d3e203233363739.roa Signing time: Wed 01 Jan 2025 04:00:38 +0000 ROA not before: Wed 01 Jan 2025 03:55:38 +0000 ROA not after: Wed 31 Dec 2025 04:00:38 +0000 asID: 23679 IP address blocks: 2401:2900:3f00::/40 maxlen: 40 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 10:26:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:13:63:e5:04:61:58:43:fd:fd:98:76:5a:9e:0d:ba:0a:7e:28:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Validity Not Before: Jan 1 03:55:38 2025 GMT Not After : Dec 31 04:00:38 2025 GMT Subject: CN=F47F479B6EB5B27D7AC56BAFC0F6A2BD860E79FA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:cd:47:ee:ae:03:1a:5c:60:19:f3:15:06:62: c6:48:9a:fc:bf:0c:fe:ad:a7:d1:e1:94:f4:19:98: 9a:0b:1c:e8:53:6e:16:c7:9e:9e:15:a4:12:56:b0: 7b:43:80:16:fd:ad:84:84:a0:b2:6f:5c:25:0e:53: 30:ac:9e:2d:25:11:3a:68:9d:db:af:e1:26:de:d9: 28:42:59:9a:8e:9a:a5:e4:90:45:93:5e:fd:fd:ac: aa:5b:9d:c0:4a:64:d0:3e:12:72:ca:d8:c3:0f:30: 5f:20:67:d3:ac:a0:90:bc:25:fc:0f:ea:0a:8c:f8: f8:cc:c9:79:44:32:b8:45:83:e1:c6:75:98:75:5b: 31:17:44:fb:3d:63:70:7d:53:ac:09:c5:24:29:08: ae:9b:43:41:b7:09:3a:1c:af:93:01:d6:12:f4:e5: d4:19:07:09:49:3d:0d:7a:39:8d:dd:a9:b9:b1:6a: 5d:d2:aa:16:85:5a:14:4d:b5:ce:74:e6:28:af:ba: f1:10:0d:e0:ef:94:7a:2f:dc:66:31:a9:a3:7e:3f: 5d:d0:ce:37:f8:f8:fe:3a:a7:37:05:78:49:0f:d1: 2c:62:11:53:7c:5f:47:81:78:66:b5:74:86:ed:85: 4e:51:7c:cf:c5:93:98:a5:09:3b:18:b6:53:87:5d: b0:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:7F:47:9B:6E:B5:B2:7D:7A:C5:6B:AF:C0:F6:A2:BD:86:0E:79:FA X509v3 Authority Key Identifier: keyid:55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a336630303a3a2f34302d3430203d3e203233363739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:2900:3f00::/40 Signature Algorithm: sha256WithRSAEncryption cb:16:8a:87:36:25:eb:17:8a:bf:a1:23:b6:04:2b:b5:b9:da: 09:92:58:4e:92:f9:78:bd:f6:14:79:31:f8:12:3a:7b:fa:e9: ba:a0:18:e5:81:ff:0f:f4:a3:c0:5b:8e:97:13:fe:af:84:21: f1:dd:a9:ce:d9:35:47:09:61:60:5b:f7:bc:d9:55:11:22:6d: fc:39:12:54:03:f5:fc:58:72:80:7d:20:f5:4e:0b:f4:bf:13: ef:72:a0:38:77:6f:22:db:14:0e:64:65:a3:85:b7:51:81:9c: 62:73:69:f8:30:1f:8e:4f:e5:dd:48:a5:be:fb:f9:29:04:95: 14:2e:4d:d7:b0:97:fd:9a:f7:b1:71:4c:2f:ff:ba:a7:21:ad: 57:c7:d1:52:a4:56:a9:83:5e:bc:98:2c:f6:4d:f7:ab:31:45: ff:1a:87:89:b3:01:7a:d5:be:fc:ab:1c:80:5e:88:9a:75:c0: 88:1a:cb:38:82:94:1a:b4:f6:1c:0d:d6:97:86:e0:01:96:98: d8:7c:df:48:54:c2:2d:be:b2:14:ed:f2:49:01:7f:7e:6d:48: d7:84:6d:c9:d4:92:f8:06:53:42:b5:40:2f:60:26:c0:2f:11: 8d:4a:48:7a:eb:78:ba:3e:4b:68:a1:8d:26:53:8c:1a:e7:d5: e1:2f:ab:df -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUShNj5QRhWEP9/Zh2Wp4Nugp+KJIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0 RkE2Njk4NDAeFw0yNTAxMDEwMzU1MzhaFw0yNTEyMzEwNDAwMzhaMDMxMTAvBgNV BAMTKEY0N0Y0NzlCNkVCNUIyN0Q3QUM1NkJBRkMwRjZBMkJEODYwRTc5RkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1zUfurgMaXGAZ8xUGYsZImvy/ DP6tp9HhlPQZmJoLHOhTbhbHnp4VpBJWsHtDgBb9rYSEoLJvXCUOUzCsni0lETpo nduv4Sbe2ShCWZqOmqXkkEWTXv39rKpbncBKZNA+EnLK2MMPMF8gZ9OsoJC8JfwP 6gqM+PjMyXlEMrhFg+HGdZh1WzEXRPs9Y3B9U6wJxSQpCK6bQ0G3CTocr5MB1hL0 5dQZBwlJPQ16OY3dqbmxal3SqhaFWhRNtc505iivuvEQDeDvlHov3GYxqaN+P13Q zjf4+P46pzcFeEkP0SxiEVN8X0eBeGa1dIbthU5RfM/Fk5ilCTsYtlOHXbBrAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU9H9Hm261sn16xWuvwPaivYYOefowHwYDVR0j BBgwFoAUVSsxom6Sqd1qWFuSN1t/yk+maYQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDE0MzJjYy0zYmM5LTQ4NTgtYjUwNi0yMThhYWIwYjA4OWMvMC81NTJCMzFBMjZF OTJBOURENkE1ODVCOTIzNzVCN0ZDQTRGQTY2OTg0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0RkE2 Njk4NC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwMTQzMmNjLTNiYzktNDg1OC1i NTA2LTIxOGFhYjBiMDg5Yy8wLzMyMzQzMDMxM2EzMjM5MzAzMDNhMzM2NjMwMzAz YTNhMmYzNDMwMmQzNDMwMjAzZDNlMjAzMjMzMzYzNzM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAJAEp AD8wDQYJKoZIhvcNAQELBQADggEBAMsWioc2JesXir+hI7YEK7W52gmSWE6S+Xi9 9hR5MfgSOnv66bqgGOWB/w/0o8BbjpcT/q+EIfHdqc7ZNUcJYWBb97zZVREibfw5 ElQD9fxYcoB9IPVOC/S/E+9yoDh3byLbFA5kZaOFt1GBnGJzafgwH45P5d1Ipb77 +SkElRQuTdewl/2a97FxTC//uqchrVfH0VKkVqmDXryYLPZN96sxRf8ah4mzAXrV vvyrHIBeiJp1wIgayziClBq09hwN1peG4AGWmNh830hUwi2+shTt8kkBf35tSNeE bcnUkvgGU0K1QC9gJsAvEY1KSHrreLo+S2ihjSZTjBrn1eEvq98= -----END CERTIFICATE-----Generated at Sun Apr 6 11:01:40 2025 by rpki-client