$ rpki-client -vvf repo-rpki.idnic.net/repo/38c9c252-f7ca-4dd5-88f6-22addc8934b3/0/323430373a373263303a3a2f33322d3438203d3e203538383230.roa File: 323430373a373263303a3a2f33322d3438203d3e203538383230.roa (raw, json) Hash identifier: t1SEps+PxNqj4zacSf/7DBl+MO9xjw/dSKyX8w5YIzQ= Subject key identifier: 34:0B:B6:97:B8:65:81:01:45:86:94:7A:5E:F1:5E:95:73:5A:85:98 Certificate issuer: /CN=C1C0233DC07302E86D114AB772AB6566ED7F5FBB Certificate serial: 77703BFF36E6C78C30680658FAA7F08CCE42213F Authority key identifier: C1:C0:23:3D:C0:73:02:E8:6D:11:4A:B7:72:AB:65:66:ED:7F:5F:BB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C1C0233DC07302E86D114AB772AB6566ED7F5FBB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/38c9c252-f7ca-4dd5-88f6-22addc8934b3/0/323430373a373263303a3a2f33322d3438203d3e203538383230.roa Signing time: Thu 13 Feb 2025 16:01:54 +0000 ROA not before: Thu 13 Feb 2025 15:56:54 +0000 ROA not after: Thu 12 Feb 2026 16:01:54 +0000 asID: 58820 IP address blocks: 2407:72c0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/38c9c252-f7ca-4dd5-88f6-22addc8934b3/0/C1C0233DC07302E86D114AB772AB6566ED7F5FBB.crl rsync://repo-rpki.idnic.net/repo/38c9c252-f7ca-4dd5-88f6-22addc8934b3/0/C1C0233DC07302E86D114AB772AB6566ED7F5FBB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C1C0233DC07302E86D114AB772AB6566ED7F5FBB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 22:17:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:70:3b:ff:36:e6:c7:8c:30:68:06:58:fa:a7:f0:8c:ce:42:21:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C1C0233DC07302E86D114AB772AB6566ED7F5FBB Validity Not Before: Feb 13 15:56:54 2025 GMT Not After : Feb 12 16:01:54 2026 GMT Subject: CN=340BB697B86581014586947A5EF15E95735A8598 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:e0:45:c6:c8:ef:09:53:f7:ee:77:e2:4a:ff: 6e:44:4d:67:a3:af:f8:43:c0:af:f9:5e:68:ca:45: bb:9e:1a:b1:2a:1e:12:4d:2b:d2:7f:83:f3:11:b9: da:22:0d:15:33:7f:b8:d3:18:d9:ad:be:37:5c:b7: aa:f7:4c:d1:cd:4d:e7:df:35:69:6c:f8:01:85:bf: 3e:aa:a0:6f:99:e6:d4:ff:f2:94:b9:fa:62:26:8c: 44:10:4b:a5:b8:87:e3:4d:62:55:21:bb:59:72:44: cd:07:f6:fe:51:5b:22:24:ca:19:37:35:a3:6a:61: ea:2a:83:35:a0:39:c5:60:dc:22:a4:f3:75:00:73: 5e:a9:fe:c4:7c:61:4f:1b:27:63:20:61:0a:e2:8b: 61:17:64:c6:58:47:f9:fc:e9:18:6a:43:f0:6b:77: 2d:e5:e8:66:d7:d2:1b:24:d2:00:6b:5b:46:69:93: ff:b7:93:8c:b8:5e:bf:4e:2f:93:0d:34:39:27:c3: 0c:b7:2e:d3:c8:e8:5c:ab:c6:34:91:e6:b0:6e:49: b1:00:59:94:0f:2c:b0:f4:28:af:3a:a1:6a:c0:82: f8:7a:19:53:42:40:c7:77:5f:cb:63:c2:0a:94:ef: 2b:bd:21:d3:43:14:60:55:63:bd:24:6a:0d:cf:b3: de:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:0B:B6:97:B8:65:81:01:45:86:94:7A:5E:F1:5E:95:73:5A:85:98 X509v3 Authority Key Identifier: keyid:C1:C0:23:3D:C0:73:02:E8:6D:11:4A:B7:72:AB:65:66:ED:7F:5F:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/38c9c252-f7ca-4dd5-88f6-22addc8934b3/0/C1C0233DC07302E86D114AB772AB6566ED7F5FBB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C1C0233DC07302E86D114AB772AB6566ED7F5FBB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/38c9c252-f7ca-4dd5-88f6-22addc8934b3/0/323430373a373263303a3a2f33322d3438203d3e203538383230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:72c0::/32 Signature Algorithm: sha256WithRSAEncryption 13:68:c7:93:85:04:7d:5a:b9:a1:46:c3:98:17:d6:9f:a0:b2: 40:0e:7c:31:64:4c:7f:7e:42:ad:d9:65:03:ab:f7:79:70:5f: 80:8f:1e:3b:33:0d:95:11:bf:99:ee:61:87:29:f5:8a:02:c5: c3:8a:a5:02:3e:ad:ad:54:a0:e0:23:b9:62:a2:cd:78:d3:3f: 89:f7:cb:ce:09:0d:a4:1a:7c:c4:a0:6b:c0:9f:05:d0:38:23: a8:3f:75:79:7d:2b:98:cb:64:cc:40:6a:05:99:dd:a3:ee:9b: 2c:54:69:51:9a:de:70:53:13:44:3a:43:3c:1f:68:95:87:94: 78:99:e6:7a:a1:1a:6c:58:c7:a6:26:67:92:16:a5:39:54:e1: 30:c1:11:46:fc:a0:42:3f:51:a8:46:78:71:64:d5:2b:f4:0a: 71:2f:b6:ae:d2:60:06:1a:94:eb:87:6e:82:80:b3:4f:a2:ef: 2f:75:1d:81:78:09:ea:a6:43:cf:bc:9a:bf:0c:7a:91:cd:87: 37:a5:15:f1:bf:23:6b:31:07:04:56:98:7d:4b:06:2f:9b:73: 29:ba:11:d0:12:93:e2:09:2b:4d:22:7a:0b:8e:fa:8b:4f:8b: 87:56:44:b4:4a:e9:7f:ec:f8:2c:43:1c:16:fc:78:79:b1:3c: 91:08:5a:06 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUd3A7/zbmx4wwaAZY+qfwjM5CIT8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzFDMDIzM0RDMDczMDJFODZEMTE0QUI3NzJBQjY1NjZF RDdGNUZCQjAeFw0yNTAyMTMxNTU2NTRaFw0yNjAyMTIxNjAxNTRaMDMxMTAvBgNV BAMTKDM0MEJCNjk3Qjg2NTgxMDE0NTg2OTQ3QTVFRjE1RTk1NzM1QTg1OTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDS4EXGyO8JU/fud+JK/25ETWej r/hDwK/5XmjKRbueGrEqHhJNK9J/g/MRudoiDRUzf7jTGNmtvjdct6r3TNHNTeff NWls+AGFvz6qoG+Z5tT/8pS5+mImjEQQS6W4h+NNYlUhu1lyRM0H9v5RWyIkyhk3 NaNqYeoqgzWgOcVg3CKk83UAc16p/sR8YU8bJ2MgYQrii2EXZMZYR/n86RhqQ/Br dy3l6GbX0hsk0gBrW0Zpk/+3k4y4Xr9OL5MNNDknwwy3LtPI6FyrxjSR5rBuSbEA WZQPLLD0KK86oWrAgvh6GVNCQMd3X8tjwgqU7yu9IdNDFGBVY70kag3Ps95HAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUNAu2l7hlgQFFhpR6XvFelXNahZgwHwYDVR0j BBgwFoAUwcAjPcBzAuhtEUq3cqtlZu1/X7swDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z OGM5YzI1Mi1mN2NhLTRkZDUtODhmNi0yMmFkZGM4OTM0YjMvMC9DMUMwMjMzREMw NzMwMkU4NkQxMTRBQjc3MkFCNjU2NkVEN0Y1RkJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzFDMDIzM0RDMDczMDJFODZEMTE0QUI3NzJBQjY1NjZFRDdG NUZCQi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM4YzljMjUyLWY3Y2EtNGRkNS04 OGY2LTIyYWRkYzg5MzRiMy8wLzMyMzQzMDM3M2EzNzMyNjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDM1MzgzODMyMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkB3LAMA0GCSqGSIb3 DQEBCwUAA4IBAQATaMeThQR9WrmhRsOYF9afoLJADnwxZEx/fkKt2WUDq/d5cF+A jx47Mw2VEb+Z7mGHKfWKAsXDiqUCPq2tVKDgI7lios140z+J98vOCQ2kGnzEoGvA nwXQOCOoP3V5fSuYy2TMQGoFmd2j7pssVGlRmt5wUxNEOkM8H2iVh5R4meZ6oRps WMemJmeSFqU5VOEwwRFG/KBCP1GoRnhxZNUr9ApxL7au0mAGGpTrh26CgLNPou8v dR2BeAnqpkPPvJq/DHqRzYc3pRXxvyNrMQcEVph9SwYvm3MpuhHQEpPiCStNInoL jvqLT4uHVkS0Sul/7PgsQxwW/Hh5sTyRCFoG -----END CERTIFICATE-----Generated at Sun Apr 6 11:44:20 2025 by rpki-client