$ rpki-client -vvf repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/323430313a326334303a3a2f34382d3438203d3e203338353233.roa File: 323430313a326334303a3a2f34382d3438203d3e203338353233.roa (raw, json) Hash identifier: VqDDvUOu35p9WF+KpeR5rVDXBEuyr/t255Gs6Jfv+fI= Subject key identifier: 7F:8A:D6:DF:EF:0E:80:ED:10:21:B6:4C:95:AB:85:D7:4E:8C:5B:3D Certificate issuer: /CN=1BC497D0AD0ADA80683A4AD17C60B87B6039448F Certificate serial: 2D5B8FE2D26577AFEC8B1228D5A36594A2468FE7 Authority key identifier: 1B:C4:97:D0:AD:0A:DA:80:68:3A:4A:D1:7C:60:B8:7B:60:39:44:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/323430313a326334303a3a2f34382d3438203d3e203338353233.roa Signing time: Wed 11 Dec 2024 14:55:59 +0000 ROA not before: Wed 11 Dec 2024 14:50:59 +0000 ROA not after: Wed 10 Dec 2025 14:55:59 +0000 asID: 38523 IP address blocks: 2401:2c40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.crl rsync://repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 21:04:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:5b:8f:e2:d2:65:77:af:ec:8b:12:28:d5:a3:65:94:a2:46:8f:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1BC497D0AD0ADA80683A4AD17C60B87B6039448F Validity Not Before: Dec 11 14:50:59 2024 GMT Not After : Dec 10 14:55:59 2025 GMT Subject: CN=7F8AD6DFEF0E80ED1021B64C95AB85D74E8C5B3D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:6b:e3:29:6c:66:83:28:52:5e:b3:81:3e:59: fe:f4:d6:ed:7a:5d:74:8f:47:4e:47:07:d5:88:19: 16:54:1c:2d:c9:e3:1a:f7:c0:b9:be:27:1c:b0:6d: 1c:d7:8c:8e:d2:03:c5:56:20:a6:a4:df:aa:9f:16: fe:b7:42:ed:21:b4:9f:b5:90:25:fa:77:3d:59:37: f0:65:f1:ea:e6:ab:4d:8b:e6:b6:9e:cb:93:57:01: 76:d4:d6:ea:81:7f:25:41:13:2f:9c:bc:58:f0:ba: a7:4a:c3:4a:6d:78:50:c7:30:a5:2d:7b:20:ba:2c: e9:d0:91:b0:9d:16:65:4a:ab:b0:23:ec:7c:d7:d3: 0c:8b:a7:1b:9a:db:2e:c3:40:1b:db:fd:b5:2d:88: d9:e3:2b:4b:1c:3b:a7:3f:86:aa:88:11:e5:13:1d: a8:a4:a2:2c:10:9d:20:6b:59:55:02:27:c8:e5:a4: c0:9d:66:3d:c6:6a:cc:f2:7c:b6:9a:39:b1:4c:8d: 3f:b6:d1:f4:b4:8e:67:01:d0:1d:ff:0b:df:49:0c: 05:e0:f2:a1:43:c7:5a:95:77:1b:35:fa:1d:02:15: e2:84:b1:dd:e9:ee:01:37:4e:65:17:a8:e2:c1:53: 31:3a:05:ad:6e:ab:3f:9e:2f:da:8d:af:7e:47:36: e4:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:8A:D6:DF:EF:0E:80:ED:10:21:B6:4C:95:AB:85:D7:4E:8C:5B:3D X509v3 Authority Key Identifier: keyid:1B:C4:97:D0:AD:0A:DA:80:68:3A:4A:D1:7C:60:B8:7B:60:39:44:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BC497D0AD0ADA80683A4AD17C60B87B6039448F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/323430313a326334303a3a2f34382d3438203d3e203338353233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:2c40::/48 Signature Algorithm: sha256WithRSAEncryption 0d:4a:5f:b8:42:b9:af:c5:f1:71:e9:bf:65:d3:b0:3c:34:48: 23:19:f6:d5:8b:c3:d2:26:33:a6:b9:05:39:ba:55:5b:c0:12: fc:98:ed:61:d9:53:62:14:d1:71:06:a9:10:09:f2:9a:36:0a: bc:50:db:18:4d:4d:d0:06:79:1f:3c:1c:5e:af:b2:87:e2:dc: 3d:d4:5f:aa:d3:11:dd:ff:10:ee:e0:82:86:74:fd:c4:0f:0a: 9b:78:c3:78:4b:8b:ba:64:2a:ba:37:22:ca:b6:55:a3:41:f0: a7:65:d1:dd:ab:9d:44:85:dd:78:f2:2d:7b:1d:ee:e9:03:ec: e7:b8:8d:7e:5f:24:db:6a:e6:c7:44:de:6f:20:ef:6c:a8:28: f1:d8:d3:bc:5c:30:98:66:ad:d8:3e:31:3c:dc:f9:ad:09:f0: 4c:18:ad:22:ca:c6:8f:96:f8:55:b6:de:e6:06:b2:ad:0c:a2: 4e:09:20:5e:13:d6:ac:1e:16:08:1b:00:5e:e3:4b:95:dd:d9: c2:1f:92:b1:ac:e4:da:92:e5:9c:28:74:95:92:64:6e:63:7e: 66:97:71:da:3c:25:c4:86:cc:9f:7e:c8:6e:ed:79:8e:dd:71: cf:65:4e:b2:fb:11:ec:55:15:b7:f6:2b:b5:95:f2:36:f8:ab: ed:ab:4e:15 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIULVuP4tJld6/sixIo1aNllKJGj+cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUJDNDk3RDBBRDBBREE4MDY4M0E0QUQxN0M2MEI4N0I2 MDM5NDQ4RjAeFw0yNDEyMTExNDUwNTlaFw0yNTEyMTAxNDU1NTlaMDMxMTAvBgNV BAMTKDdGOEFENkRGRUYwRTgwRUQxMDIxQjY0Qzk1QUI4NUQ3NEU4QzVCM0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCea+MpbGaDKFJes4E+Wf701u16 XXSPR05HB9WIGRZUHC3J4xr3wLm+JxywbRzXjI7SA8VWIKak36qfFv63Qu0htJ+1 kCX6dz1ZN/Bl8ermq02L5raey5NXAXbU1uqBfyVBEy+cvFjwuqdKw0pteFDHMKUt eyC6LOnQkbCdFmVKq7Aj7HzX0wyLpxua2y7DQBvb/bUtiNnjK0scO6c/hqqIEeUT HaikoiwQnSBrWVUCJ8jlpMCdZj3GaszyfLaaObFMjT+20fS0jmcB0B3/C99JDAXg 8qFDx1qVdxs1+h0CFeKEsd3p7gE3TmUXqOLBUzE6Ba1uqz+eL9qNr35HNuRHAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUf4rW3+8OgO0QIbZMlauF106MWz0wHwYDVR0j BBgwFoAUG8SX0K0K2oBoOkrRfGC4e2A5RI8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NTVhMWE0NC0zMzdkLTRkYjQtOTBkNy01YmQ0ZjM3MjE0YjgvMC8xQkM0OTdEMEFE MEFEQTgwNjgzQTRBRDE3QzYwQjg3QjYwMzk0NDhGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUJDNDk3RDBBRDBBREE4MDY4M0E0QUQxN0M2MEI4N0I2MDM5 NDQ4Ri5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM1NWExYTQ0LTMzN2QtNGRiNC05 MGQ3LTViZDRmMzcyMTRiOC8wLzMyMzQzMDMxM2EzMjYzMzQzMDNhM2EyZjM0Mzgy ZDM0MzgyMDNkM2UyMDMzMzgzNTMyMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkASxAAAAwDQYJKoZI hvcNAQELBQADggEBAA1KX7hCua/F8XHpv2XTsDw0SCMZ9tWLw9ImM6a5BTm6VVvA EvyY7WHZU2IU0XEGqRAJ8po2CrxQ2xhNTdAGeR88HF6vsofi3D3UX6rTEd3/EO7g goZ0/cQPCpt4w3hLi7pkKro3Isq2VaNB8Kdl0d2rnUSF3XjyLXsd7ukD7Oe4jX5f JNtq5sdE3m8g72yoKPHY07xcMJhmrdg+MTzc+a0J8EwYrSLKxo+W+FW23uYGsq0M ok4JIF4T1qweFggbAF7jS5Xd2cIfkrGs5NqS5ZwodJWSZG5jfmaXcdo8JcSGzJ9+ yG7teY7dcc9lTrL7EexVFbf2K7WV8jb4q+2rThU= -----END CERTIFICATE-----Generated at Wed Apr 9 03:59:20 2025 by rpki-client