$ rpki-client -vvf repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a383030333a3a2f34382d3438203d3e203233363739.roa File: 323430313a323930303a383030333a3a2f34382d3438203d3e203233363739.roa (raw, json) Hash identifier: EI8WyoNl9IQToGiE2eXxLfawDjdk7zGEfQS5LbeTKBg= Subject key identifier: 8C:6C:C6:28:EA:F2:FC:4B:F7:D1:B1:6A:64:06:5F:51:53:74:76:03 Certificate issuer: /CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Certificate serial: 481BA78CD81562A0BD5A5C13AB7B072FA10EB697 Authority key identifier: 55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject info access: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a383030333a3a2f34382d3438203d3e203233363739.roa Signing time: Wed 01 Jan 2025 04:00:37 +0000 ROA not before: Wed 01 Jan 2025 03:55:37 +0000 ROA not after: Wed 31 Dec 2025 04:00:37 +0000 asID: 23679 IP address blocks: 2401:2900:8003::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 10:26:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:1b:a7:8c:d8:15:62:a0:bd:5a:5c:13:ab:7b:07:2f:a1:0e:b6:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=552B31A26E92A9DD6A585B92375B7FCA4FA66984 Validity Not Before: Jan 1 03:55:37 2025 GMT Not After : Dec 31 04:00:37 2025 GMT Subject: CN=8C6CC628EAF2FC4BF7D1B16A64065F5153747603 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:48:3e:8f:ee:48:f8:6c:71:f4:52:94:8b:2e: d4:a3:1c:0e:0e:eb:f9:21:d9:ad:df:79:68:33:2f: 11:7f:7b:ee:97:f3:54:6b:a7:f0:03:35:f4:44:ac: 7b:67:f2:f5:68:95:6f:ec:5e:b7:40:ad:6f:db:96: 8a:6a:11:67:40:55:a3:44:a0:bc:f3:73:21:0d:b1: 54:4c:f7:7c:25:92:a6:f8:c8:a8:a8:8d:91:c0:3b: f1:32:23:b7:df:09:76:f5:aa:eb:d0:65:21:74:07: 73:77:e7:55:27:96:3d:97:05:52:22:f7:21:f3:6b: 3f:d1:87:53:9c:17:7f:32:55:b9:7f:68:48:16:6f: 32:ec:cc:1f:10:09:b3:36:f0:b6:49:84:2e:13:62: 9f:4e:fa:2f:43:d4:48:71:36:19:b5:b2:0a:a4:d3: 8e:5a:c1:2a:3c:03:9c:db:e8:ec:19:4a:c2:3d:0f: 81:64:b6:53:2e:d6:d6:22:bb:3d:b9:b1:17:0d:75: 04:df:b5:76:fc:74:8f:a6:be:ce:98:76:86:4d:2b: 6a:2e:f3:29:fd:66:e2:28:1c:d0:4b:7c:05:18:eb: 62:7a:62:05:ca:24:72:f8:2c:41:4c:5a:21:22:a8: dc:d8:65:0c:e5:fe:ac:59:44:6f:32:de:31:80:e0: bd:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:6C:C6:28:EA:F2:FC:4B:F7:D1:B1:6A:64:06:5F:51:53:74:76:03 X509v3 Authority Key Identifier: keyid:55:2B:31:A2:6E:92:A9:DD:6A:58:5B:92:37:5B:7F:CA:4F:A6:69:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/552B31A26E92A9DD6A585B92375B7FCA4FA66984.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/552B31A26E92A9DD6A585B92375B7FCA4FA66984.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/201432cc-3bc9-4858-b506-218aab0b089c/0/323430313a323930303a383030333a3a2f34382d3438203d3e203233363739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:2900:8003::/48 Signature Algorithm: sha256WithRSAEncryption 1d:00:7a:6e:b7:7e:f1:64:81:c9:7a:dc:12:da:eb:ce:e0:cf: 49:1e:09:66:16:c7:00:f4:ba:a3:45:0d:33:11:f2:9f:70:f0: fe:a1:9e:f6:3f:ab:00:b4:15:9e:e0:45:80:2b:26:02:15:ae: cf:60:71:9f:4a:a0:9b:5e:56:44:1b:4c:4a:72:73:c5:35:67: 8d:68:e7:7a:11:b1:c6:68:92:cf:4a:c2:59:86:d2:4f:2f:5f: 32:36:b7:93:7a:98:a4:21:39:f6:2b:8d:05:5b:a3:74:0c:0e: 9c:ba:99:7f:12:47:11:28:95:e8:d8:cf:a6:22:63:e3:56:15: cc:56:f2:bd:3b:22:f3:3b:f5:ca:65:17:6c:44:74:81:86:0c: 24:5f:da:3c:74:82:e7:c2:8c:b0:1b:ac:3f:8f:14:6c:fb:75: 1b:01:13:f4:5c:77:dd:b9:a1:d9:2b:7d:36:bc:94:b3:01:ec: 49:3a:ba:d2:4d:a1:ad:77:28:8e:1e:1e:be:43:8a:e7:1b:62: 8b:a1:80:47:05:c0:d0:c3:e0:d0:72:90:25:82:5f:8a:51:f3: 9f:3b:10:45:fd:0f:aa:39:8b:29:a4:05:4f:d2:b9:d1:2b:85: 4a:da:44:04:e4:4a:ed:93:ea:36:fd:a0:99:af:c5:9c:06:43: cf:0d:59:c0 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUSBunjNgVYqC9WlwTq3sHL6EOtpcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0 RkE2Njk4NDAeFw0yNTAxMDEwMzU1MzdaFw0yNTEyMzEwNDAwMzdaMDMxMTAvBgNV BAMTKDhDNkNDNjI4RUFGMkZDNEJGN0QxQjE2QTY0MDY1RjUxNTM3NDc2MDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZSD6P7kj4bHH0UpSLLtSjHA4O 6/kh2a3feWgzLxF/e+6X81Rrp/ADNfRErHtn8vVolW/sXrdArW/blopqEWdAVaNE oLzzcyENsVRM93wlkqb4yKiojZHAO/EyI7ffCXb1quvQZSF0B3N351Unlj2XBVIi 9yHzaz/Rh1OcF38yVbl/aEgWbzLszB8QCbM28LZJhC4TYp9O+i9D1EhxNhm1sgqk 045awSo8A5zb6OwZSsI9D4FktlMu1tYiuz25sRcNdQTftXb8dI+mvs6YdoZNK2ou 8yn9ZuIoHNBLfAUY62J6YgXKJHL4LEFMWiEiqNzYZQzl/qxZRG8y3jGA4L1TAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUjGzGKOry/Ev30bFqZAZfUVN0dgMwHwYDVR0j BBgwFoAUVSsxom6Sqd1qWFuSN1t/yk+maYQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDE0MzJjYy0zYmM5LTQ4NTgtYjUwNi0yMThhYWIwYjA4OWMvMC81NTJCMzFBMjZF OTJBOURENkE1ODVCOTIzNzVCN0ZDQTRGQTY2OTg0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTUyQjMxQTI2RTkyQTlERDZBNTg1QjkyMzc1QjdGQ0E0RkE2 Njk4NC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwMTQzMmNjLTNiYzktNDg1OC1i NTA2LTIxOGFhYjBiMDg5Yy8wLzMyMzQzMDMxM2EzMjM5MzAzMDNhMzgzMDMwMzMz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMzMzYzNzM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAEp AIADMA0GCSqGSIb3DQEBCwUAA4IBAQAdAHput37xZIHJetwS2uvO4M9JHglmFscA 9LqjRQ0zEfKfcPD+oZ72P6sAtBWe4EWAKyYCFa7PYHGfSqCbXlZEG0xKcnPFNWeN aOd6EbHGaJLPSsJZhtJPL18yNreTepikITn2K40FW6N0DA6cupl/EkcRKJXo2M+m ImPjVhXMVvK9OyLzO/XKZRdsRHSBhgwkX9o8dILnwoywG6w/jxRs+3UbARP0XHfd uaHZK302vJSzAexJOrrSTaGtdyiOHh6+Q4rnG2KLoYBHBcDQw+DQcpAlgl+KUfOf OxBF/Q+qOYsppAVP0rnRK4VK2kQE5Ertk+o2/aCZr8WcBkPPDVnA -----END CERTIFICATE-----Generated at Sun Apr 6 11:03:39 2025 by rpki-client