$ rpki-client -vvf repo-rpki.idnic.net/repo/2d2a5b51-bc00-4d6b-8761-c7d0d3f6de12/0/323430333a333163303a3a2f33322d3332203d3e20313337333736.roa File: 323430333a333163303a3a2f33322d3332203d3e20313337333736.roa (raw, json) Hash identifier: ZFgZf5/tUMHm0Xvm8MvmyqUsY/m95WPUFwA/Bk3NXco= Subject key identifier: 75:97:37:9D:A3:F8:52:C3:38:30:7A:6D:A8:01:65:BD:4E:12:78:C2 Certificate issuer: /CN=8C5FA2EBD7AF40393883FB08E71BDF41AAE20F57 Certificate serial: 7293B2A5ECC9B2C10BF09C22A36735D7D561A9AD Authority key identifier: 8C:5F:A2:EB:D7:AF:40:39:38:83:FB:08:E7:1B:DF:41:AA:E2:0F:57 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C5FA2EBD7AF40393883FB08E71BDF41AAE20F57.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d2a5b51-bc00-4d6b-8761-c7d0d3f6de12/0/323430333a333163303a3a2f33322d3332203d3e20313337333736.roa Signing time: Fri 29 Nov 2024 15:01:22 +0000 ROA not before: Fri 29 Nov 2024 14:56:22 +0000 ROA not after: Fri 28 Nov 2025 15:01:22 +0000 asID: 137376 IP address blocks: 2403:31c0::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d2a5b51-bc00-4d6b-8761-c7d0d3f6de12/0/8C5FA2EBD7AF40393883FB08E71BDF41AAE20F57.crl rsync://repo-rpki.idnic.net/repo/2d2a5b51-bc00-4d6b-8761-c7d0d3f6de12/0/8C5FA2EBD7AF40393883FB08E71BDF41AAE20F57.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C5FA2EBD7AF40393883FB08E71BDF41AAE20F57.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 06:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:93:b2:a5:ec:c9:b2:c1:0b:f0:9c:22:a3:67:35:d7:d5:61:a9:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8C5FA2EBD7AF40393883FB08E71BDF41AAE20F57 Validity Not Before: Nov 29 14:56:22 2024 GMT Not After : Nov 28 15:01:22 2025 GMT Subject: CN=7597379DA3F852C338307A6DA80165BD4E1278C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:59:b7:09:20:ef:b3:a1:46:2e:dd:5a:a1:24: ce:a6:e0:72:ba:17:e4:9e:1e:d6:9b:b8:6a:9a:b5: ed:ca:51:f3:e2:fb:e5:9d:01:44:19:08:b6:41:4f: e5:89:6e:c9:f7:37:97:33:4f:a0:7a:08:c2:c1:e7: 61:2e:f7:de:d7:3c:4b:3b:d9:82:6a:71:31:a6:98: 5e:cb:71:0a:81:12:43:55:5b:38:f4:92:32:c1:aa: 63:77:c8:9e:d5:95:e0:f0:e1:65:68:27:9c:38:ae: cd:c5:63:4d:4f:43:b0:fe:b1:f7:5b:f7:69:10:0c: ce:54:86:0c:6d:3b:79:15:63:6b:75:6f:56:4d:29: 69:ed:9b:b4:5d:89:09:c0:6d:9d:c5:c4:de:af:50: 16:a4:1f:80:3f:72:20:1b:8f:ca:26:e9:9d:2f:35: 0a:90:2a:eb:e1:10:4e:04:36:2b:2b:95:df:0f:60: e9:6f:ea:8b:5c:9e:f1:a9:05:3d:94:36:3b:d2:46: cc:c9:e9:4f:4a:56:31:b9:b6:fa:d5:ea:7a:b6:28: 0c:46:b0:24:77:6c:10:e2:d8:8a:46:4a:5a:1c:3f: 2e:12:cc:d8:1b:6d:cc:e7:16:2c:42:7f:5d:d9:63: 3b:44:f5:af:0a:34:21:c3:62:76:5d:c4:43:3d:49: a6:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:97:37:9D:A3:F8:52:C3:38:30:7A:6D:A8:01:65:BD:4E:12:78:C2 X509v3 Authority Key Identifier: keyid:8C:5F:A2:EB:D7:AF:40:39:38:83:FB:08:E7:1B:DF:41:AA:E2:0F:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d2a5b51-bc00-4d6b-8761-c7d0d3f6de12/0/8C5FA2EBD7AF40393883FB08E71BDF41AAE20F57.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C5FA2EBD7AF40393883FB08E71BDF41AAE20F57.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d2a5b51-bc00-4d6b-8761-c7d0d3f6de12/0/323430333a333163303a3a2f33322d3332203d3e20313337333736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:31c0::/32 Signature Algorithm: sha256WithRSAEncryption 3c:d8:0d:2b:b8:79:21:f0:42:7d:3a:d4:29:d9:27:dd:04:99: 3a:c5:65:c9:b2:99:0b:f7:84:2a:47:17:f4:4e:b5:42:aa:1d: a1:ed:8a:55:74:3c:73:93:80:b5:e6:9d:84:50:eb:57:11:7c: 4a:29:eb:b8:e7:12:38:c9:3b:16:e2:82:b6:e4:f9:89:84:9b: 64:c5:50:ca:08:1d:48:c6:46:23:45:9d:44:10:b6:33:2d:5f: 43:e9:35:ef:48:41:3d:6e:66:9d:97:e7:d3:d1:25:c4:e7:01: a0:a7:37:cd:74:78:03:c8:15:20:65:00:e3:01:e9:09:16:70: ad:7a:d5:70:76:85:7f:d8:91:ca:fb:ed:8a:02:b0:29:20:91: 0d:2a:d2:09:2e:b8:a6:97:20:d5:9d:e6:ff:f9:a5:01:63:44: d6:23:95:8e:19:72:87:c5:e7:80:1b:9f:6c:4d:d7:7d:15:2e: 88:b6:14:e4:46:75:d4:86:57:17:10:b3:97:fd:71:ed:2f:49: 09:d6:99:06:35:b7:f5:47:82:e3:28:62:be:c9:0a:15:e5:8b: 2f:61:29:e5:d8:17:f5:ba:ea:a2:b3:df:36:de:a2:a9:32:f6: 2a:cb:8b:46:d8:28:d6:a3:25:92:a1:e5:97:c8:54:53:46:dc: ef:58:15:17 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUcpOypezJssEL8Jwio2c119Vhqa0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEM1RkEyRUJEN0FGNDAzOTM4ODNGQjA4RTcxQkRGNDFB QUUyMEY1NzAeFw0yNDExMjkxNDU2MjJaFw0yNTExMjgxNTAxMjJaMDMxMTAvBgNV BAMTKDc1OTczNzlEQTNGODUyQzMzODMwN0E2REE4MDE2NUJENEUxMjc4QzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD6WbcJIO+zoUYu3VqhJM6m4HK6 F+SeHtabuGqate3KUfPi++WdAUQZCLZBT+WJbsn3N5czT6B6CMLB52Eu997XPEs7 2YJqcTGmmF7LcQqBEkNVWzj0kjLBqmN3yJ7VleDw4WVoJ5w4rs3FY01PQ7D+sfdb 92kQDM5UhgxtO3kVY2t1b1ZNKWntm7RdiQnAbZ3FxN6vUBakH4A/ciAbj8om6Z0v NQqQKuvhEE4ENisrld8PYOlv6otcnvGpBT2UNjvSRszJ6U9KVjG5tvrV6nq2KAxG sCR3bBDi2IpGSlocPy4SzNgbbcznFixCf13ZYztE9a8KNCHDYnZdxEM9SaZpAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUdZc3naP4UsM4MHptqAFlvU4SeMIwHwYDVR0j BBgwFoAUjF+i69evQDk4g/sI5xvfQariD1cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDJhNWI1MS1iYzAwLTRkNmItODc2MS1jN2QwZDNmNmRlMTIvMC84QzVGQTJFQkQ3 QUY0MDM5Mzg4M0ZCMDhFNzFCREY0MUFBRTIwRjU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEM1RkEyRUJEN0FGNDAzOTM4ODNGQjA4RTcxQkRGNDFBQUUy MEY1Ny5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkMmE1YjUxLWJjMDAtNGQ2Yi04 NzYxLWM3ZDBkM2Y2ZGUxMi8wLzMyMzQzMDMzM2EzMzMxNjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzNzMzMzczNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQDMcAwDQYJKoZI hvcNAQELBQADggEBADzYDSu4eSHwQn061CnZJ90EmTrFZcmymQv3hCpHF/ROtUKq HaHtilV0PHOTgLXmnYRQ61cRfEop67jnEjjJOxbigrbk+YmEm2TFUMoIHUjGRiNF nUQQtjMtX0PpNe9IQT1uZp2X59PRJcTnAaCnN810eAPIFSBlAOMB6QkWcK161XB2 hX/Ykcr77YoCsCkgkQ0q0gkuuKaXINWd5v/5pQFjRNYjlY4ZcofF54Abn2xN130V Loi2FORGddSGVxcQs5f9ce0vSQnWmQY1t/VHguMoYr7JChXliy9hKeXYF/W66qKz 3zbeoqky9irLi0bYKNajJZKh5ZfIVFNG3O9YFRc= -----END CERTIFICATE-----Generated at Mon Apr 7 15:24:06 2025 by rpki-client