$ rpki-client -vvf repo-rpki.idnic.net/repo/24ba6778-b16d-4ba8-984f-34e419fc9c49/0/323430373a373234303a3a2f33322d3332203d3e203538383230.roa File: 323430373a373234303a3a2f33322d3332203d3e203538383230.roa (raw, json) Hash identifier: ozUo4nr2ZiT2mHAD8ioZ2hPWQXjTqtcohKzFBlHP+7Q= Subject key identifier: 06:DC:F3:75:9C:ED:E7:3C:77:D7:EF:F2:DB:C8:41:42:24:14:17:0B Certificate issuer: /CN=314988A79F2A522D2ED1D4AC99C4ABDFDCDBB400 Certificate serial: 03FD699CA28C7B82F5BB3369A2AFB69713901B69 Authority key identifier: 31:49:88:A7:9F:2A:52:2D:2E:D1:D4:AC:99:C4:AB:DF:DC:DB:B4:00 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/314988A79F2A522D2ED1D4AC99C4ABDFDCDBB400.cer Subject info access: rsync://repo-rpki.idnic.net/repo/24ba6778-b16d-4ba8-984f-34e419fc9c49/0/323430373a373234303a3a2f33322d3332203d3e203538383230.roa Signing time: Thu 13 Feb 2025 16:01:50 +0000 ROA not before: Thu 13 Feb 2025 15:56:50 +0000 ROA not after: Thu 12 Feb 2026 16:01:50 +0000 asID: 58820 IP address blocks: 2407:7240::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/24ba6778-b16d-4ba8-984f-34e419fc9c49/0/314988A79F2A522D2ED1D4AC99C4ABDFDCDBB400.crl rsync://repo-rpki.idnic.net/repo/24ba6778-b16d-4ba8-984f-34e419fc9c49/0/314988A79F2A522D2ED1D4AC99C4ABDFDCDBB400.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/314988A79F2A522D2ED1D4AC99C4ABDFDCDBB400.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 06:53:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:fd:69:9c:a2:8c:7b:82:f5:bb:33:69:a2:af:b6:97:13:90:1b:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=314988A79F2A522D2ED1D4AC99C4ABDFDCDBB400 Validity Not Before: Feb 13 15:56:50 2025 GMT Not After : Feb 12 16:01:50 2026 GMT Subject: CN=06DCF3759CEDE73C77D7EFF2DBC841422414170B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:5d:84:6b:af:00:21:cb:05:bf:8c:c1:9a:1a: 70:7f:e8:d9:6b:fd:fb:fe:fe:6d:15:7f:0d:5b:48: e5:15:6b:fc:a1:67:66:4f:d3:5b:c2:9d:e5:45:fb: 70:09:ae:ce:fe:9b:bd:7b:4f:08:1d:40:df:46:37: ec:4b:93:8c:64:10:de:dd:58:69:67:df:4b:a6:93: 4b:ca:fd:1c:50:06:fe:04:cc:e0:7a:39:04:d2:52: 5e:81:d6:07:34:4b:05:b6:00:be:49:7e:df:de:61: 3d:c4:59:1d:b3:c7:c6:27:60:00:91:51:2c:84:c9: 53:5e:ea:fd:02:17:70:87:d1:ba:04:54:e5:8c:90: 7d:6c:cd:b3:c3:89:10:98:bf:4a:32:c6:9f:d6:d4: 2d:b7:c0:76:44:a4:8b:e7:92:38:6d:ae:92:80:a9: ea:86:3d:1d:3e:2a:7f:48:12:6a:b2:9d:e3:d1:a2: ae:31:31:8c:90:bf:8c:f9:af:3a:17:f3:9b:b4:a7: b0:77:d4:df:36:e9:83:73:d7:fe:a6:e1:74:fe:47: bc:fe:99:32:76:bb:3e:a3:b8:d9:84:69:fa:35:32: 92:4b:44:59:a1:94:2e:fb:85:84:1d:1d:bc:cc:90: e1:8c:0e:a0:b4:0d:89:7e:cc:22:1c:2a:7d:cd:9d: 8f:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:DC:F3:75:9C:ED:E7:3C:77:D7:EF:F2:DB:C8:41:42:24:14:17:0B X509v3 Authority Key Identifier: keyid:31:49:88:A7:9F:2A:52:2D:2E:D1:D4:AC:99:C4:AB:DF:DC:DB:B4:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/24ba6778-b16d-4ba8-984f-34e419fc9c49/0/314988A79F2A522D2ED1D4AC99C4ABDFDCDBB400.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/314988A79F2A522D2ED1D4AC99C4ABDFDCDBB400.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/24ba6778-b16d-4ba8-984f-34e419fc9c49/0/323430373a373234303a3a2f33322d3332203d3e203538383230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:7240::/32 Signature Algorithm: sha256WithRSAEncryption 1b:65:bc:73:a6:f2:a8:65:83:c8:5e:bf:05:40:53:9e:44:9c: 49:33:d3:fe:f9:b9:4b:62:4a:e3:ed:ba:e0:19:ba:06:e7:d9: 5d:0c:ee:56:9d:8f:d2:af:48:b8:1c:45:91:29:cd:9a:31:a6: 7a:c9:a7:6c:98:95:3a:0d:63:48:a2:18:c5:c3:0d:f0:f8:b7: 1e:59:25:3f:d2:4d:27:dd:19:0b:a3:5d:c7:69:53:86:a3:c0: 11:7b:7a:81:d5:61:f3:8d:cb:18:f2:01:d1:66:85:37:a3:2e: 85:40:7b:4d:27:19:b3:83:82:42:96:6a:e7:00:55:af:12:af: e4:1a:fd:e4:d8:eb:6a:b1:28:ba:5a:c9:53:49:d0:88:aa:c5: 06:01:48:93:45:5c:ca:a4:a7:78:31:62:b7:7c:3a:bd:b0:91: 78:c9:51:f2:a5:ff:c0:20:e6:13:d3:f5:1f:12:b4:1a:9e:4f: 4d:6a:2c:5b:b5:02:23:79:bf:16:39:31:e6:71:4d:3d:3c:da: 26:74:82:28:47:4a:b6:3d:68:b5:40:35:d1:ea:78:87:bd:12: 19:71:7d:e4:57:ff:8a:90:c8:d6:20:f3:d1:d1:01:ac:08:04: 06:f2:a2:61:d9:84:35:93:d8:88:c1:4c:62:5a:52:76:9a:50: 6f:e1:ce:f9 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUA/1pnKKMe4L1uzNpoq+2lxOQG2kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzE0OTg4QTc5RjJBNTIyRDJFRDFENEFDOTlDNEFCREZE Q0RCQjQwMDAeFw0yNTAyMTMxNTU2NTBaFw0yNjAyMTIxNjAxNTBaMDMxMTAvBgNV BAMTKDA2RENGMzc1OUNFREU3M0M3N0Q3RUZGMkRCQzg0MTQyMjQxNDE3MEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnXYRrrwAhywW/jMGaGnB/6Nlr /fv+/m0Vfw1bSOUVa/yhZ2ZP01vCneVF+3AJrs7+m717TwgdQN9GN+xLk4xkEN7d WGln30umk0vK/RxQBv4EzOB6OQTSUl6B1gc0SwW2AL5Jft/eYT3EWR2zx8YnYACR USyEyVNe6v0CF3CH0boEVOWMkH1szbPDiRCYv0oyxp/W1C23wHZEpIvnkjhtrpKA qeqGPR0+Kn9IEmqynePRoq4xMYyQv4z5rzoX85u0p7B31N826YNz1/6m4XT+R7z+ mTJ2uz6juNmEafo1MpJLRFmhlC77hYQdHbzMkOGMDqC0DYl+zCIcKn3NnY8pAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUBtzzdZzt5zx31+/y28hBQiQUFwswHwYDVR0j BBgwFoAUMUmIp58qUi0u0dSsmcSr39zbtAAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NGJhNjc3OC1iMTZkLTRiYTgtOTg0Zi0zNGU0MTlmYzljNDkvMC8zMTQ5ODhBNzlG MkE1MjJEMkVEMUQ0QUM5OUM0QUJERkRDREJCNDAwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzE0OTg4QTc5RjJBNTIyRDJFRDFENEFDOTlDNEFCREZEQ0RC QjQwMC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI0YmE2Nzc4LWIxNmQtNGJhOC05 ODRmLTM0ZTQxOWZjOWM0OS8wLzMyMzQzMDM3M2EzNzMyMzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDM1MzgzODMyMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkB3JAMA0GCSqGSIb3 DQEBCwUAA4IBAQAbZbxzpvKoZYPIXr8FQFOeRJxJM9P++blLYkrj7brgGboG59ld DO5WnY/Sr0i4HEWRKc2aMaZ6yadsmJU6DWNIohjFww3w+LceWSU/0k0n3RkLo13H aVOGo8ARe3qB1WHzjcsY8gHRZoU3oy6FQHtNJxmzg4JClmrnAFWvEq/kGv3k2Otq sSi6WslTSdCIqsUGAUiTRVzKpKd4MWK3fDq9sJF4yVHypf/AIOYT0/UfErQank9N aixbtQIjeb8WOTHmcU09PNomdIIoR0q2PWi1QDXR6niHvRIZcX3kV/+KkMjWIPPR 0QGsCAQG8qJh2YQ1k9iIwUxiWlJ2mlBv4c75 -----END CERTIFICATE-----Generated at Sun Apr 6 12:13:04 2025 by rpki-client