$ rpki-client -vvf repo-rpki.idnic.net/repo/38c9c252-f7ca-4dd5-88f6-22addc8934b3/0/323430373a373263303a3a2f33322d3332203d3e203538383230.roa File: 323430373a373263303a3a2f33322d3332203d3e203538383230.roa (raw, json) Hash identifier: DEQ6i2fIqhrPJGH2IFEMi8YnzTrgKlP6WPrpjEcp18o= Subject key identifier: A9:95:5B:C6:ED:BF:FC:42:4B:B1:52:78:42:94:39:90:E8:E8:FE:2F Certificate issuer: /CN=C1C0233DC07302E86D114AB772AB6566ED7F5FBB Certificate serial: 0521142C5504A9350D7C47DE5CFD83F24FC8D576 Authority key identifier: C1:C0:23:3D:C0:73:02:E8:6D:11:4A:B7:72:AB:65:66:ED:7F:5F:BB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C1C0233DC07302E86D114AB772AB6566ED7F5FBB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/38c9c252-f7ca-4dd5-88f6-22addc8934b3/0/323430373a373263303a3a2f33322d3332203d3e203538383230.roa Signing time: Thu 13 Feb 2025 16:01:54 +0000 ROA not before: Thu 13 Feb 2025 15:56:54 +0000 ROA not after: Thu 12 Feb 2026 16:01:54 +0000 asID: 58820 IP address blocks: 2407:72c0::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/38c9c252-f7ca-4dd5-88f6-22addc8934b3/0/C1C0233DC07302E86D114AB772AB6566ED7F5FBB.crl rsync://repo-rpki.idnic.net/repo/38c9c252-f7ca-4dd5-88f6-22addc8934b3/0/C1C0233DC07302E86D114AB772AB6566ED7F5FBB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C1C0233DC07302E86D114AB772AB6566ED7F5FBB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 22:17:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:21:14:2c:55:04:a9:35:0d:7c:47:de:5c:fd:83:f2:4f:c8:d5:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C1C0233DC07302E86D114AB772AB6566ED7F5FBB Validity Not Before: Feb 13 15:56:54 2025 GMT Not After : Feb 12 16:01:54 2026 GMT Subject: CN=A9955BC6EDBFFC424BB1527842943990E8E8FE2F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:46:51:3c:ff:73:da:39:66:a6:5b:c2:bd:70: 22:cf:45:f1:bd:a4:c0:15:e2:21:5a:3a:f2:0e:04: 07:65:71:78:44:53:9e:9a:9c:8a:17:ba:ce:07:7e: 32:9c:63:a0:cc:10:7e:e3:b5:22:55:66:e2:85:5f: bc:4e:3a:8f:e6:b8:a6:b6:4a:f7:6c:5d:44:ba:d9: a7:44:a7:7c:16:ef:ea:d4:d2:65:2e:48:d9:a5:92: 56:69:04:2d:29:71:d8:c6:1f:74:3d:8b:8c:9c:8f: 77:82:00:a5:e5:b1:57:20:44:f0:cc:09:3a:ed:66: 86:c7:ae:7c:1f:c7:24:cf:2d:fe:38:a9:31:3d:90: 1b:db:39:58:b8:db:e0:c9:79:8b:45:af:59:e8:f9: 93:ae:65:49:5a:4b:b8:57:ee:3e:26:c0:5a:6a:c2: fc:ad:44:c4:e8:b2:af:da:c2:24:bb:ed:a9:56:15: 21:1e:76:04:b5:78:06:c3:23:c6:b2:f6:4b:b3:ef: f9:4f:d1:dc:7f:21:15:87:1a:a5:3c:f6:47:70:9b: a2:1f:f6:52:8f:86:f3:cc:50:8b:7c:d0:76:20:a5: 97:b1:99:13:4d:56:e8:bb:2c:08:be:65:6f:bb:c3: bc:af:cc:09:1a:4a:2c:a5:2f:27:34:ed:fa:cb:b2: 3e:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:95:5B:C6:ED:BF:FC:42:4B:B1:52:78:42:94:39:90:E8:E8:FE:2F X509v3 Authority Key Identifier: keyid:C1:C0:23:3D:C0:73:02:E8:6D:11:4A:B7:72:AB:65:66:ED:7F:5F:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/38c9c252-f7ca-4dd5-88f6-22addc8934b3/0/C1C0233DC07302E86D114AB772AB6566ED7F5FBB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C1C0233DC07302E86D114AB772AB6566ED7F5FBB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/38c9c252-f7ca-4dd5-88f6-22addc8934b3/0/323430373a373263303a3a2f33322d3332203d3e203538383230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:72c0::/32 Signature Algorithm: sha256WithRSAEncryption 05:b1:34:7a:16:68:f2:c3:67:da:64:36:0f:4b:7f:9d:2d:4c: 59:5b:86:88:02:30:d7:23:63:c6:37:17:34:a7:c6:29:6a:d7: c9:df:66:70:d0:7f:d3:34:64:8a:fd:f9:09:d1:69:c6:1b:ef: 9a:89:e7:70:01:04:91:40:2f:4d:0e:ee:b5:cf:c8:ce:c5:64: 50:35:33:58:c6:d9:b3:c7:9c:85:22:46:8f:fb:a1:59:17:a5: 1b:d2:06:14:ff:64:c3:d0:c5:c8:93:57:5b:75:08:19:08:dc: 73:9f:d8:77:ad:e8:25:78:b7:db:52:a7:74:92:e4:38:7a:1c: 7e:9a:22:51:64:dd:27:d3:8c:97:20:e6:bf:b9:2a:fa:5f:c0: cb:9e:b7:19:55:e2:37:da:73:e6:75:ff:7b:3e:a4:48:73:a7: 9d:8c:0b:42:a3:aa:e6:ac:5e:ce:96:fb:63:4f:70:ae:53:fc: dc:7a:e6:bb:16:b2:80:7f:f3:c2:fb:34:3b:12:78:7d:b2:29: 13:87:38:9b:c0:04:5a:fb:cf:4f:eb:4b:ab:52:45:d9:ab:f9: b5:14:ab:9f:c6:4c:54:5f:2a:79:a1:0b:e5:96:06:85:52:75: a4:00:5c:72:6d:1c:d7:36:33:35:9b:51:00:3b:13:00:85:ca: 15:c3:4b:e3 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUBSEULFUEqTUNfEfeXP2D8k/I1XYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzFDMDIzM0RDMDczMDJFODZEMTE0QUI3NzJBQjY1NjZF RDdGNUZCQjAeFw0yNTAyMTMxNTU2NTRaFw0yNjAyMTIxNjAxNTRaMDMxMTAvBgNV BAMTKEE5OTU1QkM2RURCRkZDNDI0QkIxNTI3ODQyOTQzOTkwRThFOEZFMkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwRlE8/3PaOWamW8K9cCLPRfG9 pMAV4iFaOvIOBAdlcXhEU56anIoXus4HfjKcY6DMEH7jtSJVZuKFX7xOOo/muKa2 SvdsXUS62adEp3wW7+rU0mUuSNmlklZpBC0pcdjGH3Q9i4ycj3eCAKXlsVcgRPDM CTrtZobHrnwfxyTPLf44qTE9kBvbOVi42+DJeYtFr1no+ZOuZUlaS7hX7j4mwFpq wvytRMTosq/awiS77alWFSEedgS1eAbDI8ay9kuz7/lP0dx/IRWHGqU89kdwm6If 9lKPhvPMUIt80HYgpZexmRNNVui7LAi+ZW+7w7yvzAkaSiylLyc07frLsj4dAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUqZVbxu2//EJLsVJ4QpQ5kOjo/i8wHwYDVR0j BBgwFoAUwcAjPcBzAuhtEUq3cqtlZu1/X7swDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z OGM5YzI1Mi1mN2NhLTRkZDUtODhmNi0yMmFkZGM4OTM0YjMvMC9DMUMwMjMzREMw NzMwMkU4NkQxMTRBQjc3MkFCNjU2NkVEN0Y1RkJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzFDMDIzM0RDMDczMDJFODZEMTE0QUI3NzJBQjY1NjZFRDdG NUZCQi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM4YzljMjUyLWY3Y2EtNGRkNS04 OGY2LTIyYWRkYzg5MzRiMy8wLzMyMzQzMDM3M2EzNzMyNjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDM1MzgzODMyMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkB3LAMA0GCSqGSIb3 DQEBCwUAA4IBAQAFsTR6Fmjyw2faZDYPS3+dLUxZW4aIAjDXI2PGNxc0p8YpatfJ 32Zw0H/TNGSK/fkJ0WnGG++aiedwAQSRQC9NDu61z8jOxWRQNTNYxtmzx5yFIkaP +6FZF6Ub0gYU/2TD0MXIk1dbdQgZCNxzn9h3regleLfbUqd0kuQ4ehx+miJRZN0n 04yXIOa/uSr6X8DLnrcZVeI32nPmdf97PqRIc6edjAtCo6rmrF7OlvtjT3CuU/zc eua7FrKAf/PC+zQ7Enh9sikThzibwARa+89P60urUkXZq/m1FKufxkxUXyp5oQvl lgaFUnWkAFxybRzXNjM1m1EAOxMAhcoVw0vj -----END CERTIFICATE-----Generated at Sun Apr 6 11:44:17 2025 by rpki-client