$ rpki-client -vvf repo-rpki.idnic.net/repo/438061f1-fa30-4bd6-81a0-2ec670836c42/0/323030313a6466363a366630303a3a2f34382d3438203d3e20313331373034.roa File: 323030313a6466363a366630303a3a2f34382d3438203d3e20313331373034.roa (raw, json) Hash identifier: 3CBY+1byt2hh1kG4N61+QCfs3v8FSbnr3cgZmaX/kYc= Subject key identifier: CC:94:FF:6A:B4:D3:C1:F9:72:88:EB:41:19:7E:28:81:06:9A:C0:41 Certificate issuer: /CN=4AC7DCD8EB1234ADC427AEBE3949E8691638A707 Certificate serial: 4461766F6207BC7CE996C18E80784F2AFE100D24 Authority key identifier: 4A:C7:DC:D8:EB:12:34:AD:C4:27:AE:BE:39:49:E8:69:16:38:A7:07 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AC7DCD8EB1234ADC427AEBE3949E8691638A707.cer Subject info access: rsync://repo-rpki.idnic.net/repo/438061f1-fa30-4bd6-81a0-2ec670836c42/0/323030313a6466363a366630303a3a2f34382d3438203d3e20313331373034.roa Signing time: Tue 10 Dec 2024 04:03:04 +0000 ROA not before: Tue 10 Dec 2024 03:58:04 +0000 ROA not after: Tue 09 Dec 2025 04:03:04 +0000 asID: 131704 IP address blocks: 2001:df6:6f00::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/438061f1-fa30-4bd6-81a0-2ec670836c42/0/4AC7DCD8EB1234ADC427AEBE3949E8691638A707.crl rsync://repo-rpki.idnic.net/repo/438061f1-fa30-4bd6-81a0-2ec670836c42/0/4AC7DCD8EB1234ADC427AEBE3949E8691638A707.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AC7DCD8EB1234ADC427AEBE3949E8691638A707.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 18:45:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:61:76:6f:62:07:bc:7c:e9:96:c1:8e:80:78:4f:2a:fe:10:0d:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4AC7DCD8EB1234ADC427AEBE3949E8691638A707 Validity Not Before: Dec 10 03:58:04 2024 GMT Not After : Dec 9 04:03:04 2025 GMT Subject: CN=CC94FF6AB4D3C1F97288EB41197E2881069AC041 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:b1:4e:03:1f:eb:19:bb:1e:2a:ed:3b:ec:60: 03:26:f7:06:bd:0a:e7:a4:0a:8a:2a:59:89:7a:d9: 99:a4:01:91:d8:cb:92:b1:d6:8e:38:1a:60:57:85: 6c:dd:84:c3:0f:eb:85:9f:7c:cd:9a:cb:f7:bb:1d: 5c:fb:e8:c2:33:80:91:b9:ef:c6:fa:6e:c4:86:0d: 4d:7b:54:d8:c7:1b:47:c7:cd:a3:1a:4a:de:cf:09: af:a0:20:59:b8:10:ab:06:bd:c8:b7:7b:92:d0:b6: 04:99:05:44:bd:da:93:df:c5:4d:b0:ff:33:52:77: 0b:54:67:e0:2e:4c:f5:86:2a:5a:62:33:9b:8a:d7: aa:f3:1f:6c:b2:7c:fe:02:57:30:e2:26:4a:f4:9b: ad:a8:c3:f3:91:aa:3c:76:4c:5f:4e:ef:b3:d0:0d: 32:32:c6:f3:0f:8a:65:e9:8a:f8:d3:9a:89:f3:2c: b0:2e:b1:07:ca:e0:d7:38:78:8b:55:c3:35:95:3e: cc:e3:bc:ac:e9:c7:f0:d4:90:f8:8d:a4:1b:a7:ee: aa:2d:6c:bb:ff:b5:4a:3a:b8:17:73:e7:85:57:0e: 12:95:c1:d9:09:de:f1:16:d8:d9:96:0f:5d:40:10: d5:e3:5f:ac:80:61:6a:f2:51:0b:3c:ba:c4:8a:b0: 8a:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:94:FF:6A:B4:D3:C1:F9:72:88:EB:41:19:7E:28:81:06:9A:C0:41 X509v3 Authority Key Identifier: keyid:4A:C7:DC:D8:EB:12:34:AD:C4:27:AE:BE:39:49:E8:69:16:38:A7:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/438061f1-fa30-4bd6-81a0-2ec670836c42/0/4AC7DCD8EB1234ADC427AEBE3949E8691638A707.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AC7DCD8EB1234ADC427AEBE3949E8691638A707.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/438061f1-fa30-4bd6-81a0-2ec670836c42/0/323030313a6466363a366630303a3a2f34382d3438203d3e20313331373034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df6:6f00::/48 Signature Algorithm: sha256WithRSAEncryption 3b:62:e7:6f:84:4c:7b:f0:c3:77:e4:0b:ef:23:4a:83:7d:4b: eb:4a:a0:51:12:d7:0a:22:d9:b1:be:9d:40:d6:f4:6c:75:92: ce:ad:e3:c8:b4:ba:78:2e:eb:d8:4f:57:9c:05:c5:85:02:d3: ef:55:f8:25:3f:ef:1c:bb:3b:5e:fa:da:14:10:fe:81:70:18: 4e:da:e9:2b:2f:0d:5e:d0:33:92:6a:ab:17:d7:d3:c2:b4:66: 53:40:31:f0:24:82:b3:cb:40:14:40:f9:71:78:9b:4e:1d:e5: 9b:45:2b:2b:91:d6:10:46:0b:e0:9b:d2:0e:0b:e2:4d:59:9f: a1:0f:d7:aa:e0:31:57:7d:b7:38:69:df:9a:16:0b:67:3c:bc: 39:ea:1c:d3:09:0e:0d:66:d9:c8:eb:4a:49:e3:03:0a:34:c3: 9d:fb:74:a8:21:0f:1a:cd:43:d0:f5:f2:3e:27:6c:6f:bc:2a: 22:4d:86:bb:f9:83:81:f5:f6:3f:0e:05:7c:ee:ab:3d:99:7c: 88:55:ac:56:ed:44:1d:57:d1:d5:96:12:59:e7:95:d3:b8:d0: 96:6e:18:c4:e4:79:a3:d3:46:f3:1a:aa:6b:90:a6:36:0b:dd: e6:94:dd:86:84:ae:f3:49:e3:91:56:83:92:3b:ae:6b:92:56: f5:a7:15:5c -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIURGF2b2IHvHzplsGOgHhPKv4QDSQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEFDN0RDRDhFQjEyMzRBREM0MjdBRUJFMzk0OUU4Njkx NjM4QTcwNzAeFw0yNDEyMTAwMzU4MDRaFw0yNTEyMDkwNDAzMDRaMDMxMTAvBgNV BAMTKENDOTRGRjZBQjREM0MxRjk3Mjg4RUI0MTE5N0UyODgxMDY5QUMwNDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1sU4DH+sZux4q7TvsYAMm9wa9 CuekCooqWYl62ZmkAZHYy5Kx1o44GmBXhWzdhMMP64WffM2ay/e7HVz76MIzgJG5 78b6bsSGDU17VNjHG0fHzaMaSt7PCa+gIFm4EKsGvci3e5LQtgSZBUS92pPfxU2w /zNSdwtUZ+AuTPWGKlpiM5uK16rzH2yyfP4CVzDiJkr0m62ow/ORqjx2TF9O77PQ DTIyxvMPimXpivjTmonzLLAusQfK4Nc4eItVwzWVPszjvKzpx/DUkPiNpBun7qot bLv/tUo6uBdz54VXDhKVwdkJ3vEW2NmWD11AENXjX6yAYWryUQs8usSKsIp1AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUzJT/arTTwflyiOtBGX4ogQaawEEwHwYDVR0j BBgwFoAUSsfc2OsSNK3EJ66+OUnoaRY4pwcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MzgwNjFmMS1mYTMwLTRiZDYtODFhMC0yZWM2NzA4MzZjNDIvMC80QUM3RENEOEVC MTIzNEFEQzQyN0FFQkUzOTQ5RTg2OTE2MzhBNzA3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEFDN0RDRDhFQjEyMzRBREM0MjdBRUJFMzk0OUU4NjkxNjM4 QTcwNy5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQzODA2MWYxLWZhMzAtNGJkNi04 MWEwLTJlYzY3MDgzNmM0Mi8wLzMyMzAzMDMxM2E2NDY2MzYzYTM2NjYzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzMxMzczMDM0LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9m8AMA0GCSqGSIb3DQEBCwUAA4IBAQA7YudvhEx78MN35AvvI0qDfUvrSqBREtcK Itmxvp1A1vRsdZLOrePItLp4LuvYT1ecBcWFAtPvVfglP+8cuzte+toUEP6BcBhO 2ukrLw1e0DOSaqsX19PCtGZTQDHwJIKzy0AUQPlxeJtOHeWbRSsrkdYQRgvgm9IO C+JNWZ+hD9eq4DFXfbc4ad+aFgtnPLw56hzTCQ4NZtnI60pJ4wMKNMOd+3SoIQ8a zUPQ9fI+J2xvvCoiTYa7+YOB9fY/DgV87qs9mXyIVaxW7UQdV9HVlhJZ55XTuNCW bhjE5Hmj00bzGqprkKY2C93mlN2GhK7zSeORVoOSO65rklb1pxVc -----END CERTIFICATE-----Generated at Sun Apr 6 13:56:54 2025 by rpki-client