$ rpki-client -vvf repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a32303a3a2f34382d3438203d3e203538343835.roa File: 323430323a653130303a32303a3a2f34382d3438203d3e203538343835.roa (raw, json) Hash identifier: /nt77PAEWl7VykddnVbcJDci8AanpKq8RsOk21Gx/Ns= Subject key identifier: 64:04:36:6E:36:8B:0A:E7:F0:E6:2B:17:24:78:4E:85:C1:FD:14:26 Certificate issuer: /CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Certificate serial: 63CD5B251A0CE8C6C59DFA9FCC914CF02D962439 Authority key identifier: FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a32303a3a2f34382d3438203d3e203538343835.roa Signing time: Sat 07 Dec 2024 22:42:20 +0000 ROA not before: Sat 07 Dec 2024 22:37:20 +0000 ROA not after: Sat 06 Dec 2025 22:42:20 +0000 asID: 58485 IP address blocks: 2402:e100:20::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 07:19:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:cd:5b:25:1a:0c:e8:c6:c5:9d:fa:9f:cc:91:4c:f0:2d:96:24:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Validity Not Before: Dec 7 22:37:20 2024 GMT Not After : Dec 6 22:42:20 2025 GMT Subject: CN=6404366E368B0AE7F0E62B1724784E85C1FD1426 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:61:11:64:d6:53:f6:e8:7f:39:c5:de:52:cf: d1:2c:35:7c:d4:f5:ca:5c:9b:a3:14:7a:e1:a0:b3: 3a:89:e7:11:64:15:48:ed:6c:54:e4:9d:9e:a0:fb: ce:05:4f:72:70:79:fe:24:c4:24:99:c4:b7:11:8b: 6d:c3:4f:41:7b:4c:04:9f:7f:c2:27:d1:44:54:30: 44:e0:8b:18:9c:c9:ea:6c:ee:60:16:c9:7b:d4:81: b0:65:b8:32:fa:6b:04:bd:78:67:71:89:2e:f4:cb: b0:e3:49:94:f8:11:cd:72:4d:eb:0b:e1:e0:54:b6: 11:34:12:77:31:a1:d8:99:44:ec:4b:6a:86:91:7a: 98:19:65:44:93:26:40:e8:d0:70:22:2e:9f:b0:4d: ea:35:f6:03:b9:6d:16:44:55:92:79:47:3c:c3:e1: 4c:05:7e:39:ea:14:43:1f:f3:e6:58:a3:30:61:7d: ef:69:0a:4c:4c:64:26:a9:4f:cb:96:a5:27:c3:ab: b2:ff:3e:b9:3f:3e:a6:9a:2b:f4:26:64:61:41:47: 6a:cb:82:40:fa:76:a5:4d:9d:e4:cc:0e:b1:fe:10: 58:b7:23:f3:1b:13:0e:83:be:59:56:3e:43:01:67: 2e:6e:aa:c3:74:38:e8:75:96:4a:c0:d7:14:ba:ea: 90:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:04:36:6E:36:8B:0A:E7:F0:E6:2B:17:24:78:4E:85:C1:FD:14:26 X509v3 Authority Key Identifier: keyid:FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/323430323a653130303a32303a3a2f34382d3438203d3e203538343835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:e100:20::/48 Signature Algorithm: sha256WithRSAEncryption a0:de:38:84:fd:c4:9e:0b:17:12:6b:5d:0a:49:c1:b9:75:91: 32:43:a5:05:34:80:50:a0:7e:3f:91:71:49:29:dd:cd:7f:70: 12:9a:b2:1c:42:ad:8e:ae:2a:e9:94:ea:d5:e6:99:80:cd:96: 7e:32:f9:ab:e1:a5:01:6d:7c:5b:b6:d1:c8:2d:f3:28:72:6b: 21:19:ba:ff:a7:88:ee:3e:2d:e6:06:d5:f2:e2:83:a6:0b:ee: 18:87:81:24:27:4b:20:fb:93:41:a8:6e:c1:40:d5:b2:b6:b1: d8:ef:93:01:a8:11:90:da:c6:56:41:1c:d4:39:4c:d1:fa:ff: 79:a6:66:24:2e:41:01:b0:c3:38:31:75:f4:bc:0f:85:c3:13: 8f:a3:c0:be:f5:08:04:43:72:54:92:a6:5f:07:f4:0b:5a:1c: ad:b5:78:eb:ef:fd:62:fe:24:9e:ef:5f:91:c9:ca:d3:7b:67: 85:8d:49:41:ae:52:0a:a4:42:93:d6:e2:ab:75:9a:21:b4:02: 9e:b2:1e:b9:30:08:0d:70:6c:2a:26:3c:fa:c9:53:89:ae:0f: a8:83:27:c8:b4:55:ea:cd:03:b5:21:e4:a3:91:ed:22:52:95: 7d:e5:47:1f:24:83:d6:30:30:4b:65:67:d6:b9:c5:42:69:ea: e6:90:91:0c -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUY81bJRoM6MbFnfqfzJFM8C2WJDkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJF QjNCRkYzOTAeFw0yNDEyMDcyMjM3MjBaFw0yNTEyMDYyMjQyMjBaMDMxMTAvBgNV BAMTKDY0MDQzNjZFMzY4QjBBRTdGMEU2MkIxNzI0Nzg0RTg1QzFGRDE0MjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhYRFk1lP26H85xd5Sz9EsNXzU 9cpcm6MUeuGgszqJ5xFkFUjtbFTknZ6g+84FT3Jwef4kxCSZxLcRi23DT0F7TASf f8In0URUMETgixicyeps7mAWyXvUgbBluDL6awS9eGdxiS70y7DjSZT4Ec1yTesL 4eBUthE0EncxodiZROxLaoaRepgZZUSTJkDo0HAiLp+wTeo19gO5bRZEVZJ5RzzD 4UwFfjnqFEMf8+ZYozBhfe9pCkxMZCapT8uWpSfDq7L/Prk/PqaaK/QmZGFBR2rL gkD6dqVNneTMDrH+EFi3I/MbEw6DvllWPkMBZy5uqsN0OOh1lkrA1xS66pCVAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUZAQ2bjaLCufw5isXJHhOhcH9FCYwHwYDVR0j BBgwFoAU+lvKmE7rr/3O2EGQxwdW2+s7/zkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZWU0N2JiZi1iYTg0LTQ0OGYtOTYyYi0yYWFmNWM3ZGQ2OGQvMC9GQTVCQ0E5ODRF RUJBRkZEQ0VEODQxOTBDNzA3NTZEQkVCM0JGRjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJFQjNC RkYzOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJlZTQ3YmJmLWJhODQtNDQ4Zi05 NjJiLTJhYWY1YzdkZDY4ZC8wLzMyMzQzMDMyM2E2NTMxMzAzMDNhMzIzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzgzNDM4MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAuEAACAw DQYJKoZIhvcNAQELBQADggEBAKDeOIT9xJ4LFxJrXQpJwbl1kTJDpQU0gFCgfj+R cUkp3c1/cBKashxCrY6uKumU6tXmmYDNln4y+avhpQFtfFu20cgt8yhyayEZuv+n iO4+LeYG1fLig6YL7hiHgSQnSyD7k0GobsFA1bK2sdjvkwGoEZDaxlZBHNQ5TNH6 /3mmZiQuQQGwwzgxdfS8D4XDE4+jwL71CARDclSSpl8H9AtaHK21eOvv/WL+JJ7v X5HJytN7Z4WNSUGuUgqkQpPW4qt1miG0Ap6yHrkwCA1wbComPPrJU4muD6iDJ8i0 VerNA7Uh5KOR7SJSlX3lRx8kg9YwMEtlZ9a5xUJp6uaQkQw= -----END CERTIFICATE-----Generated at Sun Apr 6 08:27:47 2025 by rpki-client