$ rpki-client -vvf repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/323430313a326334303a323a3a2f34382d3438203d3e203338353233.roa File: 323430313a326334303a323a3a2f34382d3438203d3e203338353233.roa (raw, json) Hash identifier: GcXNkBAv1340rwM/Oan5xv5UHgMfOa0RbbyoNs7Mx0I= Subject key identifier: 1B:6E:2E:57:B1:1B:8B:37:14:24:CD:FE:D2:9B:93:41:F0:CE:A9:05 Certificate issuer: /CN=1BC497D0AD0ADA80683A4AD17C60B87B6039448F Certificate serial: 51296EF8349FA0E9BE5DF2E318363681540B7C51 Authority key identifier: 1B:C4:97:D0:AD:0A:DA:80:68:3A:4A:D1:7C:60:B8:7B:60:39:44:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/323430313a326334303a323a3a2f34382d3438203d3e203338353233.roa Signing time: Wed 11 Dec 2024 14:57:40 +0000 ROA not before: Wed 11 Dec 2024 14:52:40 +0000 ROA not after: Wed 10 Dec 2025 14:57:40 +0000 asID: 38523 IP address blocks: 2401:2c40:2::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.crl rsync://repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 09:33:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:29:6e:f8:34:9f:a0:e9:be:5d:f2:e3:18:36:36:81:54:0b:7c:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1BC497D0AD0ADA80683A4AD17C60B87B6039448F Validity Not Before: Dec 11 14:52:40 2024 GMT Not After : Dec 10 14:57:40 2025 GMT Subject: CN=1B6E2E57B11B8B371424CDFED29B9341F0CEA905 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:9a:92:64:f6:2c:33:19:84:43:c9:1c:27:9d: b5:8c:50:78:13:f6:30:24:4b:2c:a3:ac:0f:4e:d9: 54:ef:53:40:23:24:4d:7f:ac:a7:7b:bf:7b:50:df: 2e:f7:0e:dd:21:43:7b:e9:12:6b:ae:83:52:a9:79: f4:5c:be:aa:06:d7:6a:dd:8d:3d:b4:43:03:fd:a5: f6:49:cf:82:14:ac:52:80:5f:e3:f9:6a:7c:1e:45: ca:15:de:9b:af:a6:97:b7:73:9d:47:17:8e:c4:ff: 0d:83:3e:e7:49:ff:50:c1:da:4d:7b:b2:aa:82:a6: 48:0c:11:d2:f0:6f:69:ff:14:67:e6:d0:5b:ad:cd: ab:5b:4a:33:91:16:ad:22:dd:ca:68:c2:18:98:4e: dc:02:3f:0b:d0:4a:2e:5a:02:c8:12:71:60:53:4d: 04:cd:52:6a:44:bb:02:b5:36:62:38:19:f1:f6:a6: 24:09:b9:4f:bd:f2:86:74:9a:28:cb:c3:c6:fc:18: 17:b3:72:43:6c:a8:20:c0:5b:3d:5c:b0:a6:27:20: 82:02:3d:96:b4:ec:b9:46:96:ce:59:41:6f:20:5d: 02:3e:12:80:9f:4e:87:f5:0d:86:ea:6c:70:35:e3: dc:e9:7f:c3:ef:92:7b:d5:6a:68:db:7c:13:b8:32: fd:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:6E:2E:57:B1:1B:8B:37:14:24:CD:FE:D2:9B:93:41:F0:CE:A9:05 X509v3 Authority Key Identifier: keyid:1B:C4:97:D0:AD:0A:DA:80:68:3A:4A:D1:7C:60:B8:7B:60:39:44:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/323430313a326334303a323a3a2f34382d3438203d3e203338353233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:2c40:2::/48 Signature Algorithm: sha256WithRSAEncryption 14:e5:e8:5d:f5:ee:69:ac:39:ef:be:43:4a:41:d9:03:84:96: 94:ee:a9:be:2f:85:f7:ef:6d:89:d2:73:bf:95:91:f0:91:6c: 3b:77:30:07:e6:37:c8:5b:44:a4:0e:0c:88:59:c9:3b:d1:80: 98:47:06:29:3f:f4:e9:b3:0f:86:5e:73:39:64:0f:1b:c4:8f: a2:c0:d7:1a:93:72:01:ee:71:ed:3a:1d:3d:ac:0d:3d:66:df: 14:05:d0:00:20:4b:14:58:73:21:09:ee:fd:83:b7:94:d6:7a: cd:72:c4:ba:fd:4b:76:38:91:e2:9a:87:dd:b9:6e:e3:fa:1b: de:83:ff:08:9f:95:a6:64:e9:66:01:8e:66:4c:17:42:91:bf: b9:ae:7f:b2:07:b4:22:e2:23:d8:80:3d:71:ef:64:26:9d:6d: 31:3a:10:9a:17:6c:ba:03:bd:b8:4d:02:aa:c8:ef:fd:aa:9a: 09:5b:62:84:dd:fd:f9:16:78:0a:0f:be:ed:c5:87:a4:c8:f6: 5d:e9:f7:3c:07:c2:7f:89:4a:55:a1:df:f6:d0:4b:2a:76:e4: 7d:bb:de:f7:24:a8:31:20:4b:fb:27:5e:d4:23:a2:45:59:c2: a1:2b:bd:ff:86:eb:66:0f:f1:ef:a8:1a:91:b5:a2:67:c7:4f: 7f:2c:ac:04 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUUSlu+DSfoOm+XfLjGDY2gVQLfFEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUJDNDk3RDBBRDBBREE4MDY4M0E0QUQxN0M2MEI4N0I2 MDM5NDQ4RjAeFw0yNDEyMTExNDUyNDBaFw0yNTEyMTAxNDU3NDBaMDMxMTAvBgNV BAMTKDFCNkUyRTU3QjExQjhCMzcxNDI0Q0RGRUQyOUI5MzQxRjBDRUE5MDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDmpJk9iwzGYRDyRwnnbWMUHgT 9jAkSyyjrA9O2VTvU0AjJE1/rKd7v3tQ3y73Dt0hQ3vpEmuug1KpefRcvqoG12rd jT20QwP9pfZJz4IUrFKAX+P5anweRcoV3puvppe3c51HF47E/w2DPudJ/1DB2k17 sqqCpkgMEdLwb2n/FGfm0FutzatbSjORFq0i3cpowhiYTtwCPwvQSi5aAsgScWBT TQTNUmpEuwK1NmI4GfH2piQJuU+98oZ0mijLw8b8GBezckNsqCDAWz1csKYnIIIC PZa07LlGls5ZQW8gXQI+EoCfTof1DYbqbHA149zpf8PvknvVamjbfBO4Mv0zAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUG24uV7EbizcUJM3+0puTQfDOqQUwHwYDVR0j BBgwFoAUG8SX0K0K2oBoOkrRfGC4e2A5RI8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NTVhMWE0NC0zMzdkLTRkYjQtOTBkNy01YmQ0ZjM3MjE0YjgvMC8xQkM0OTdEMEFE MEFEQTgwNjgzQTRBRDE3QzYwQjg3QjYwMzk0NDhGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUJDNDk3RDBBRDBBREE4MDY4M0E0QUQxN0M2MEI4N0I2MDM5 NDQ4Ri5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM1NWExYTQ0LTMzN2QtNGRiNC05 MGQ3LTViZDRmMzcyMTRiOC8wLzMyMzQzMDMxM2EzMjYzMzQzMDNhMzIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMjMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAEsQAACMA0G CSqGSIb3DQEBCwUAA4IBAQAU5ehd9e5prDnvvkNKQdkDhJaU7qm+L4X3722J0nO/ lZHwkWw7dzAH5jfIW0SkDgyIWck70YCYRwYpP/Tpsw+GXnM5ZA8bxI+iwNcak3IB 7nHtOh09rA09Zt8UBdAAIEsUWHMhCe79g7eU1nrNcsS6/Ut2OJHimofduW7j+hve g/8In5WmZOlmAY5mTBdCkb+5rn+yB7Qi4iPYgD1x72QmnW0xOhCaF2y6A724TQKq yO/9qpoJW2KE3f35FngKD77txYekyPZd6fc8B8J/iUpVod/20EsqduR9u973JKgx IEv7J17UI6JFWcKhK73/hutmD/HvqBqRtaJnx09/LKwE -----END CERTIFICATE-----Generated at Sun Apr 6 10:48:19 2025 by rpki-client