$ rpki-client -vvf repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a3330303a3a2f34302d3430203d3e20313339393439.roa File: 323430353a616163303a3330303a3a2f34302d3430203d3e20313339393439.roa (raw, json) Hash identifier: jm88+kjM4koBWvlRIo+d33M24ZrmzpDt3fol94UYN2k= Subject key identifier: 51:BC:9C:D7:DE:F7:A8:20:EA:A9:AB:D5:7C:81:B2:53:86:B3:BF:6B Certificate issuer: /CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Certificate serial: 3BF8D568BCCAF43AAB7382109AA974B09409709D Authority key identifier: DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a3330303a3a2f34302d3430203d3e20313339393439.roa Signing time: Mon 03 Mar 2025 06:38:20 +0000 ROA not before: Mon 03 Mar 2025 06:33:20 +0000 ROA not after: Mon 02 Mar 2026 06:38:20 +0000 asID: 139949 IP address blocks: 2405:aac0:300::/40 maxlen: 40 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 16:04:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:f8:d5:68:bc:ca:f4:3a:ab:73:82:10:9a:a9:74:b0:94:09:70:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Validity Not Before: Mar 3 06:33:20 2025 GMT Not After : Mar 2 06:38:20 2026 GMT Subject: CN=51BC9CD7DEF7A820EAA9ABD57C81B25386B3BF6B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:93:77:8e:21:54:59:11:18:06:fb:c2:41:a4: 81:8c:fa:0b:c8:52:42:bf:26:ea:93:55:34:e4:0f: f5:7b:af:56:b2:a5:e5:35:46:c0:4a:ad:bc:fa:04: bf:a7:b6:54:b6:3b:d6:51:8c:59:bc:dc:6a:7f:62: b2:51:27:9e:5d:0e:d5:2e:41:c0:c1:2c:4c:90:f3: 31:8b:e7:1b:77:ac:02:7c:93:bc:69:12:35:dc:2b: cc:5f:d5:0f:db:08:d7:f8:02:1e:9a:80:31:ec:df: 2f:ad:33:04:2d:b1:4c:bb:1b:fe:8a:ac:81:30:5b: c2:d1:16:1b:f6:4e:b3:cb:f5:cd:e6:61:f8:1d:86: 10:2b:b8:90:47:42:b0:7e:4d:3f:94:53:13:ff:10: e8:43:10:77:0f:b8:67:fe:0d:4e:f6:44:2d:6f:2a: d3:f0:63:0d:b7:c1:ca:34:fd:ab:b3:fa:24:4d:2e: 63:5d:0e:39:af:75:66:84:c8:58:46:c2:35:37:8f: 8a:55:49:bb:15:30:38:06:b3:28:ab:7b:6d:cd:44: f3:fc:01:ca:6d:f9:83:0b:c6:a3:51:af:0a:b6:63: 52:77:7e:50:47:fc:4c:1c:dd:e8:37:f7:c4:c6:ea: a3:8c:5a:76:30:b3:40:d2:7d:77:56:4c:f5:a5:f7: ae:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:BC:9C:D7:DE:F7:A8:20:EA:A9:AB:D5:7C:81:B2:53:86:B3:BF:6B X509v3 Authority Key Identifier: keyid:DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a3330303a3a2f34302d3430203d3e20313339393439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:aac0:300::/40 Signature Algorithm: sha256WithRSAEncryption 82:a7:a3:32:cd:ad:fb:fe:2d:b3:bd:57:05:de:b7:76:28:be: 44:31:1e:41:23:5e:c1:04:93:f6:78:e7:2f:16:d5:e9:c9:92: 67:d9:53:69:22:99:1f:c1:b4:36:79:33:0a:a4:ca:6d:b4:a2: 23:14:aa:b5:c8:da:41:c9:51:da:f0:99:bd:ac:b4:2b:85:13: 88:e6:2b:9a:47:2d:f0:1d:da:47:1c:6c:52:c5:81:6d:99:62: 16:fe:e1:99:4b:0f:cf:41:00:1f:53:5e:cc:46:6c:55:57:40: 83:4a:41:a2:59:30:bf:c0:65:41:39:c5:dd:1a:bb:94:be:13: de:e3:13:19:b8:ee:9b:f1:86:39:ba:c2:25:d3:ca:df:97:ce: 84:71:f8:6f:11:4e:9b:c7:f0:53:6b:2b:d7:a6:38:28:6d:73: ba:e3:4a:18:f3:5f:d6:52:28:1a:73:80:7e:6e:e7:5b:6e:93: 38:05:0c:57:4c:7f:0e:59:b7:f0:4d:a4:17:25:7c:5a:0d:33: 16:68:0a:6d:d4:7e:8e:6b:a9:06:a2:34:d9:f7:67:04:df:16: 89:e7:6e:7d:6b:dd:43:90:67:6e:3d:73:97:f4:3c:a8:c2:be: d2:08:ab:06:59:68:f7:29:da:89:cd:f5:84:d0:63:32:ab:a3: ca:68:6e:35 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUO/jVaLzK9Dqrc4IQmql0sJQJcJ0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAx NjRGRTVDRjAeFw0yNTAzMDMwNjMzMjBaFw0yNjAzMDIwNjM4MjBaMDMxMTAvBgNV BAMTKDUxQkM5Q0Q3REVGN0E4MjBFQUE5QUJENTdDODFCMjUzODZCM0JGNkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuk3eOIVRZERgG+8JBpIGM+gvI UkK/JuqTVTTkD/V7r1aypeU1RsBKrbz6BL+ntlS2O9ZRjFm83Gp/YrJRJ55dDtUu QcDBLEyQ8zGL5xt3rAJ8k7xpEjXcK8xf1Q/bCNf4Ah6agDHs3y+tMwQtsUy7G/6K rIEwW8LRFhv2TrPL9c3mYfgdhhAruJBHQrB+TT+UUxP/EOhDEHcPuGf+DU72RC1v KtPwYw23wco0/auz+iRNLmNdDjmvdWaEyFhGwjU3j4pVSbsVMDgGsyire23NRPP8 Acpt+YMLxqNRrwq2Y1J3flBH/Ewc3eg398TG6qOMWnYws0DSfXdWTPWl965JAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUUbyc1973qCDqqavVfIGyU4azv2swHwYDVR0j BBgwFoAU2odmqQhRrkTXa4Vj2DWG8BZP5c8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZGVkYzAzMy1jZDRkLTQ2MjAtOTM3Mi1lNmUwMzlmYzA2YjkvMC9EQTg3NjZBOTA4 NTFBRTQ0RDc2Qjg1NjNEODM1ODZGMDE2NEZFNUNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAxNjRG RTVDRi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNkZWRjMDMzLWNkNGQtNDYyMC05 MzcyLWU2ZTAzOWZjMDZiOS8wLzMyMzQzMDM1M2E2MTYxNjMzMDNhMzMzMDMwM2Ez YTJmMzQzMDJkMzQzMDIwM2QzZTIwMzEzMzM5MzkzNDM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAJAWq wAMwDQYJKoZIhvcNAQELBQADggEBAIKnozLNrfv+LbO9VwXet3YovkQxHkEjXsEE k/Z45y8W1enJkmfZU2kimR/BtDZ5Mwqkym20oiMUqrXI2kHJUdrwmb2stCuFE4jm K5pHLfAd2kccbFLFgW2ZYhb+4ZlLD89BAB9TXsxGbFVXQINKQaJZML/AZUE5xd0a u5S+E97jExm47pvxhjm6wiXTyt+XzoRx+G8RTpvH8FNrK9emOChtc7rjShjzX9ZS KBpzgH5u51tukzgFDFdMfw5Zt/BNpBclfFoNMxZoCm3Ufo5rqQaiNNn3ZwTfFonn bn1r3UOQZ249c5f0PKjCvtIIqwZZaPcp2onN9YTQYzKro8pobjU= -----END CERTIFICATE-----Generated at Sun Apr 6 16:04:45 2025 by rpki-client