$ rpki-client -vvf repo-rpki.idnic.net/repo/3b75bfd0-a86c-4beb-9f99-aac33fb5e49f/0/323030313a6466333a323534303a3a2f34382d3438203d3e20313530313936.roa File: 323030313a6466333a323534303a3a2f34382d3438203d3e20313530313936.roa (raw, json) Hash identifier: fYFecXdBAeKoyIAgB0JeLy6cqYChyPHEhUfoQQOYxUQ= Subject key identifier: 52:93:8E:03:91:B2:23:D8:56:A2:0B:45:AF:E0:A2:54:2F:79:90:89 Certificate issuer: /CN=731DB67572B48A3A86F0475A0E21E1A27DFC6A8E Certificate serial: 7C9637587B1A98469402139F32CDB6DA20D16635 Authority key identifier: 73:1D:B6:75:72:B4:8A:3A:86:F0:47:5A:0E:21:E1:A2:7D:FC:6A:8E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/731DB67572B48A3A86F0475A0E21E1A27DFC6A8E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3b75bfd0-a86c-4beb-9f99-aac33fb5e49f/0/323030313a6466333a323534303a3a2f34382d3438203d3e20313530313936.roa Signing time: Fri 07 Feb 2025 08:36:56 +0000 ROA not before: Fri 07 Feb 2025 08:31:56 +0000 ROA not after: Fri 06 Feb 2026 08:36:56 +0000 asID: 150196 IP address blocks: 2001:df3:2540::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3b75bfd0-a86c-4beb-9f99-aac33fb5e49f/0/731DB67572B48A3A86F0475A0E21E1A27DFC6A8E.crl rsync://repo-rpki.idnic.net/repo/3b75bfd0-a86c-4beb-9f99-aac33fb5e49f/0/731DB67572B48A3A86F0475A0E21E1A27DFC6A8E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/731DB67572B48A3A86F0475A0E21E1A27DFC6A8E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 16:00:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:96:37:58:7b:1a:98:46:94:02:13:9f:32:cd:b6:da:20:d1:66:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=731DB67572B48A3A86F0475A0E21E1A27DFC6A8E Validity Not Before: Feb 7 08:31:56 2025 GMT Not After : Feb 6 08:36:56 2026 GMT Subject: CN=52938E0391B223D856A20B45AFE0A2542F799089 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:a0:42:d5:0b:5e:c8:13:2d:61:43:6c:84:dd: 47:97:d3:f9:f3:dc:bc:f3:ae:2f:cf:b2:89:e0:49: 90:bc:f3:ae:a6:93:80:30:55:33:e8:47:e5:69:6f: 75:dc:b3:4c:c5:09:24:9a:80:7f:13:b9:9c:86:49: 1b:90:9e:c7:30:1e:e6:41:65:a0:10:59:f5:a0:72: f7:f9:f1:15:a7:ab:ca:a0:0c:49:93:80:3b:00:05: 00:65:83:8c:a3:8a:5b:a7:1c:97:69:3a:46:27:d5: 76:fe:24:e4:d4:a8:7d:52:b1:f9:f5:3a:25:d6:29: e5:c2:01:67:40:6a:1f:58:6c:0b:be:d0:d9:28:ba: 3b:a9:75:2e:35:a6:26:ab:9b:a0:93:77:a4:c9:11: 21:6e:7d:1a:37:e0:4f:b7:d5:43:d3:bc:52:2d:69: 0f:15:92:0f:28:1e:ee:4e:e0:98:e6:8d:d7:ab:8d: 4f:98:69:f2:47:42:77:89:de:cb:32:83:a5:f5:a6: 4b:87:bf:2d:7a:9d:e4:27:f8:77:f8:21:fc:6b:c5: 7c:21:20:4c:bc:12:dc:31:9e:34:c3:9e:39:f1:18: a3:17:00:55:f6:24:94:83:84:ab:d5:c2:d8:db:67: df:f4:84:64:6e:26:75:ad:b5:21:ce:bf:41:e9:e0: f1:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:93:8E:03:91:B2:23:D8:56:A2:0B:45:AF:E0:A2:54:2F:79:90:89 X509v3 Authority Key Identifier: keyid:73:1D:B6:75:72:B4:8A:3A:86:F0:47:5A:0E:21:E1:A2:7D:FC:6A:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3b75bfd0-a86c-4beb-9f99-aac33fb5e49f/0/731DB67572B48A3A86F0475A0E21E1A27DFC6A8E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/731DB67572B48A3A86F0475A0E21E1A27DFC6A8E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3b75bfd0-a86c-4beb-9f99-aac33fb5e49f/0/323030313a6466333a323534303a3a2f34382d3438203d3e20313530313936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:2540::/48 Signature Algorithm: sha256WithRSAEncryption 0b:9b:82:01:80:0a:74:18:9f:2f:81:37:fb:87:d8:ba:b5:ca: a5:b1:5e:07:d8:4a:b7:3d:66:5b:d0:73:94:2a:88:e7:ff:89: e9:05:1b:23:ad:62:30:a0:61:33:f8:92:ed:58:e5:27:5c:e6: f3:ec:2e:3a:26:64:85:3c:fd:f6:6a:13:d0:a3:d1:c9:74:36: 3e:50:d1:72:d8:93:05:84:99:e6:85:46:4a:b9:1f:79:b6:7a: 55:2d:3d:48:83:4f:cc:49:a6:ee:66:b3:a0:79:94:e9:fd:5c: 00:64:80:4b:df:0b:64:84:8a:7a:b3:6d:bc:87:4d:02:83:64: 8f:79:f5:56:1c:ec:65:5e:c0:39:3e:23:35:2a:6e:e2:1f:09: 49:dd:2f:32:e4:76:44:af:f6:ea:22:b4:75:11:00:b9:64:98: f5:81:1f:ce:ad:e3:22:c5:e1:bd:58:9b:d0:45:38:c6:2b:8b: fc:8e:f2:7d:33:a1:b6:55:e6:1e:a9:58:22:be:8a:f4:34:71: 05:ba:8a:55:c8:77:b7:e6:b4:9e:a5:78:e5:fe:25:03:fa:cd: 91:bd:78:b1:86:10:86:cd:6d:1e:ba:c6:7d:49:b2:dd:0f:dc: 18:f8:0e:eb:90:24:a1:2c:80:d7:14:94:77:60:56:df:5c:fc: 67:53:29:4e -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUfJY3WHsamEaUAhOfMs222iDRZjUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzMxREI2NzU3MkI0OEEzQTg2RjA0NzVBMEUyMUUxQTI3 REZDNkE4RTAeFw0yNTAyMDcwODMxNTZaFw0yNjAyMDYwODM2NTZaMDMxMTAvBgNV BAMTKDUyOTM4RTAzOTFCMjIzRDg1NkEyMEI0NUFGRTBBMjU0MkY3OTkwODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRoELVC17IEy1hQ2yE3UeX0/nz 3Lzzri/PsongSZC8866mk4AwVTPoR+Vpb3Xcs0zFCSSagH8TuZyGSRuQnscwHuZB ZaAQWfWgcvf58RWnq8qgDEmTgDsABQBlg4yjilunHJdpOkYn1Xb+JOTUqH1Ssfn1 OiXWKeXCAWdAah9YbAu+0NkoujupdS41piarm6CTd6TJESFufRo34E+31UPTvFIt aQ8Vkg8oHu5O4JjmjderjU+YafJHQneJ3ssyg6X1pkuHvy16neQn+Hf4IfxrxXwh IEy8EtwxnjTDnjnxGKMXAFX2JJSDhKvVwtjbZ9/0hGRuJnWttSHOv0Hp4PFPAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUUpOOA5GyI9hWogtFr+CiVC95kIkwHwYDVR0j BBgwFoAUcx22dXK0ijqG8EdaDiHhon38ao4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z Yjc1YmZkMC1hODZjLTRiZWItOWY5OS1hYWMzM2ZiNWU0OWYvMC83MzFEQjY3NTcy QjQ4QTNBODZGMDQ3NUEwRTIxRTFBMjdERkM2QThFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzMxREI2NzU3MkI0OEEzQTg2RjA0NzVBMEUyMUUxQTI3REZD NkE4RS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiNzViZmQwLWE4NmMtNGJlYi05 Zjk5LWFhYzMzZmI1ZTQ5Zi8wLzMyMzAzMDMxM2E2NDY2MzMzYTMyMzUzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMwMzEzOTM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8yVAMA0GCSqGSIb3DQEBCwUAA4IBAQALm4IBgAp0GJ8vgTf7h9i6tcqlsV4H2Eq3 PWZb0HOUKojn/4npBRsjrWIwoGEz+JLtWOUnXObz7C46JmSFPP32ahPQo9HJdDY+ UNFy2JMFhJnmhUZKuR95tnpVLT1Ig0/MSabuZrOgeZTp/VwAZIBL3wtkhIp6s228 h00Cg2SPefVWHOxlXsA5PiM1Km7iHwlJ3S8y5HZEr/bqIrR1EQC5ZJj1gR/OreMi xeG9WJvQRTjGK4v8jvJ9M6G2VeYeqVgivor0NHEFuopVyHe35rSepXjl/iUD+s2R vXixhhCGzW0eusZ9SbLdD9wY+A7rkCShLIDXFJR3YFbfXPxnUylO -----END CERTIFICATE-----Generated at Wed Apr 9 16:43:38 2025 by rpki-client