$ rpki-client -vvf repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a31303a3a2f34382d3438203d3e20313339393439.roa File: 323430353a616163303a31303a3a2f34382d3438203d3e20313339393439.roa (raw, json) Hash identifier: +fUGCq/gnGGfXjgZH+TqncbWTqimwElr7d59iQeb3O0= Subject key identifier: DB:59:2A:AD:83:F8:F4:A5:F9:42:24:23:B4:ED:3B:BD:8F:DD:70:A8 Certificate issuer: /CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Certificate serial: 426EBC3378E5C1698400ADF89837E429050E547D Authority key identifier: DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a31303a3a2f34382d3438203d3e20313339393439.roa Signing time: Fri 28 Feb 2025 21:36:31 +0000 ROA not before: Fri 28 Feb 2025 21:31:31 +0000 ROA not after: Fri 27 Feb 2026 21:36:31 +0000 asID: 139949 IP address blocks: 2405:aac0:10::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 16:04:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:6e:bc:33:78:e5:c1:69:84:00:ad:f8:98:37:e4:29:05:0e:54:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Validity Not Before: Feb 28 21:31:31 2025 GMT Not After : Feb 27 21:36:31 2026 GMT Subject: CN=DB592AAD83F8F4A5F9422423B4ED3BBD8FDD70A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:43:ba:df:24:d2:a0:14:34:65:09:e3:ce:25: f2:62:d1:a4:02:08:7a:c9:93:cd:55:f8:eb:86:05: 1d:de:16:ae:23:87:6a:fc:a2:6c:90:49:93:e9:83: 08:5d:45:60:99:77:b9:36:46:fa:94:eb:f7:bd:14: 02:09:6e:d4:22:de:8e:82:be:91:f0:36:64:73:a7: 0d:83:8e:4d:db:d9:ca:9e:cc:53:f5:78:fe:b1:87: 50:ad:ad:7e:15:5d:52:66:74:7a:38:a0:7c:0b:21: 4d:7f:ad:74:64:46:1a:c9:36:30:87:63:b7:64:ba: 31:07:e4:28:3a:12:1f:a5:39:3d:44:1f:bf:49:fe: 73:fc:8b:6c:49:d6:e0:d3:7f:a1:11:2e:82:05:3d: b2:c3:52:e8:85:e3:5d:aa:b8:c8:13:6e:a1:85:83: 18:64:24:2e:26:02:12:3f:26:db:e3:13:b0:5d:a1: a8:78:9c:6d:83:af:3f:ec:e8:3a:fe:f7:95:40:b0: ed:0a:cb:c4:65:d2:5f:6f:68:89:bd:9b:cc:4b:33: c1:a2:0a:b0:85:b0:d8:de:ee:d9:39:09:48:bd:46: 96:61:ba:75:a3:62:5d:14:2f:7c:46:2d:49:92:03: 31:05:7f:e4:9e:b6:9a:de:a0:94:12:2a:02:98:5d: 42:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:59:2A:AD:83:F8:F4:A5:F9:42:24:23:B4:ED:3B:BD:8F:DD:70:A8 X509v3 Authority Key Identifier: keyid:DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a31303a3a2f34382d3438203d3e20313339393439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:aac0:10::/48 Signature Algorithm: sha256WithRSAEncryption c9:f4:ee:71:fe:15:a6:5b:40:38:9c:e3:ec:b8:2a:75:6b:06: 5e:0b:39:87:ed:54:06:33:6b:a4:a6:5c:f2:18:43:e7:3a:a7: ea:e3:32:b9:e6:ec:2b:35:59:8d:d1:f9:47:9a:db:4f:38:b5: dc:37:e8:4f:57:92:22:43:70:12:e9:38:e2:e5:24:99:f7:37: 6f:71:65:db:3b:45:76:3f:e7:1b:75:d1:0c:6c:97:b9:2c:d3: d2:0e:4c:a6:61:47:3a:94:4b:0c:62:9d:f7:7b:fa:38:cc:a1: de:6a:35:1c:cf:f7:88:3f:85:04:93:f3:a8:0f:bc:52:6d:47: 3e:cd:6b:ee:ae:1e:11:0e:44:26:e0:72:c1:e3:11:16:f8:b8: 3e:d7:69:90:7b:63:40:8b:96:91:08:27:1d:fa:d5:a0:dd:65: 71:92:74:51:b3:52:b1:5c:cd:cf:07:4f:82:15:01:8a:19:5d: 89:17:c5:da:70:a7:40:fd:64:77:ac:b3:e5:27:7b:b7:4c:5c: 61:2b:f6:9a:34:62:4b:f7:ec:5e:b0:33:93:ca:30:27:1e:3b: bf:d3:44:87:82:5a:4a:42:b9:17:4c:5e:c3:29:25:a4:e6:5b: 1e:2f:0e:a1:28:7a:a9:6d:61:51:2d:73:13:e7:60:36:d7:2b: fe:6c:6a:0c -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUQm68M3jlwWmEAK34mDfkKQUOVH0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAx NjRGRTVDRjAeFw0yNTAyMjgyMTMxMzFaFw0yNjAyMjcyMTM2MzFaMDMxMTAvBgNV BAMTKERCNTkyQUFEODNGOEY0QTVGOTQyMjQyM0I0RUQzQkJEOEZERDcwQTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVQ7rfJNKgFDRlCePOJfJi0aQC CHrJk81V+OuGBR3eFq4jh2r8omyQSZPpgwhdRWCZd7k2RvqU6/e9FAIJbtQi3o6C vpHwNmRzpw2Djk3b2cqezFP1eP6xh1CtrX4VXVJmdHo4oHwLIU1/rXRkRhrJNjCH Y7dkujEH5Cg6Eh+lOT1EH79J/nP8i2xJ1uDTf6ERLoIFPbLDUuiF412quMgTbqGF gxhkJC4mAhI/JtvjE7Bdoah4nG2Drz/s6Dr+95VAsO0Ky8Rl0l9vaIm9m8xLM8Gi CrCFsNje7tk5CUi9RpZhunWjYl0UL3xGLUmSAzEFf+SetpreoJQSKgKYXUJ7AgMB AAGjggI7MIICNzAdBgNVHQ4EFgQU21kqrYP49KX5QiQjtO07vY/dcKgwHwYDVR0j BBgwFoAU2odmqQhRrkTXa4Vj2DWG8BZP5c8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZGVkYzAzMy1jZDRkLTQ2MjAtOTM3Mi1lNmUwMzlmYzA2YjkvMC9EQTg3NjZBOTA4 NTFBRTQ0RDc2Qjg1NjNEODM1ODZGMDE2NEZFNUNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAxNjRG RTVDRi5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNkZWRjMDMzLWNkNGQtNDYyMC05 MzcyLWU2ZTAzOWZjMDZiOS8wLzMyMzQzMDM1M2E2MTYxNjMzMDNhMzEzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzOTM5MzQzOS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQFqsAA EDANBgkqhkiG9w0BAQsFAAOCAQEAyfTucf4VpltAOJzj7LgqdWsGXgs5h+1UBjNr pKZc8hhD5zqn6uMyuebsKzVZjdH5R5rbTzi13DfoT1eSIkNwEuk44uUkmfc3b3Fl 2ztFdj/nG3XRDGyXuSzT0g5MpmFHOpRLDGKd93v6OMyh3mo1HM/3iD+FBJPzqA+8 Um1HPs1r7q4eEQ5EJuByweMRFvi4PtdpkHtjQIuWkQgnHfrVoN1lcZJ0UbNSsVzN zwdPghUBihldiRfF2nCnQP1kd6yz5Sd7t0xcYSv2mjRiS/fsXrAzk8owJx47v9NE h4JaSkK5F0xewyklpOZbHi8OoSh6qW1hUS1zE+dgNtcr/mxqDA== -----END CERTIFICATE-----Generated at Sun Apr 6 16:04:46 2025 by rpki-client