$ rpki-client -vvf repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/323430323a393830303a343031303a3a2f34382d3438203d3e20333937373633.roa File: 323430323a393830303a343031303a3a2f34382d3438203d3e20333937373633.roa (raw, json) Hash identifier: MBiGxv0ZO20HmuL2lUlmVAx4s0nmUR8oNwBPTRWxbyM= Subject key identifier: 18:EF:AA:0C:BE:9A:78:48:5B:E3:BE:07:8C:C3:63:80:E2:6E:A3:48 Certificate issuer: /CN=FCD05385904E00F3C10A339EE19D924D72FFAE0E Certificate serial: 60966AA2ECAEE569C6F3997D13B7128604EF53A3 Authority key identifier: FC:D0:53:85:90:4E:00:F3:C1:0A:33:9E:E1:9D:92:4D:72:FF:AE:0E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/323430323a393830303a343031303a3a2f34382d3438203d3e20333937373633.roa Signing time: Fri 10 Jan 2025 16:00:02 +0000 ROA not before: Fri 10 Jan 2025 15:55:02 +0000 ROA not after: Fri 09 Jan 2026 16:00:02 +0000 asID: 397763 IP address blocks: 2402:9800:4010::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.crl rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:96:6a:a2:ec:ae:e5:69:c6:f3:99:7d:13:b7:12:86:04:ef:53:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FCD05385904E00F3C10A339EE19D924D72FFAE0E Validity Not Before: Jan 10 15:55:02 2025 GMT Not After : Jan 9 16:00:02 2026 GMT Subject: CN=18EFAA0CBE9A78485BE3BE078CC36380E26EA348 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:bd:c3:03:3d:c0:89:5e:cb:14:97:3b:0d:2b: 64:2d:ee:e4:b1:52:4e:47:f1:af:bb:41:78:3b:e7: 45:ba:96:09:3b:d1:3c:1e:14:7c:13:09:90:74:8d: 70:4a:1b:fe:be:b4:00:ab:df:28:b1:c3:f7:5d:e5: e1:07:a0:92:52:24:2c:a3:2f:f2:f8:c7:02:34:8f: 55:6e:4c:f0:e9:e5:93:f4:ee:ed:5c:11:8d:81:5d: 5e:a1:e0:49:b2:bf:0f:68:54:7e:f5:95:e2:c6:ba: 79:72:ee:0a:6f:db:1d:d5:54:f6:70:b5:4a:ca:3a: 63:1c:37:d4:16:08:16:fb:50:9f:2d:5f:9e:0d:5f: 5c:0a:52:0b:80:34:a4:8b:18:d9:1b:42:da:6a:b4: f9:fb:e6:fa:93:e3:f3:60:4c:40:07:6b:62:a6:6c: e0:59:fc:59:f5:b1:a5:d6:9d:ee:7a:f5:95:15:50: 09:7d:e7:87:aa:c6:10:94:eb:21:3c:40:5f:74:23: 11:a7:22:8f:76:90:e4:b2:f2:ab:c4:04:1c:fd:99: 3e:d2:90:36:77:a4:7a:6e:69:06:d6:17:6c:f3:54: 76:bf:bb:29:f1:ee:b3:7a:67:b5:6d:4e:40:57:2d: 12:a6:13:1a:e0:db:37:b6:47:a9:7e:b2:08:8a:1e: 67:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:EF:AA:0C:BE:9A:78:48:5B:E3:BE:07:8C:C3:63:80:E2:6E:A3:48 X509v3 Authority Key Identifier: keyid:FC:D0:53:85:90:4E:00:F3:C1:0A:33:9E:E1:9D:92:4D:72:FF:AE:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/323430323a393830303a343031303a3a2f34382d3438203d3e20333937373633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:9800:4010::/48 Signature Algorithm: sha256WithRSAEncryption a3:33:5f:e1:69:99:f4:f6:c2:e1:3c:dc:54:ae:88:34:cd:1a: b3:fe:f4:2f:ea:28:85:fd:6e:e4:7b:84:d8:46:d3:9c:17:c6: 73:49:4b:ef:30:7e:bf:72:af:b3:87:db:ef:6b:41:db:af:50: 95:ec:60:06:24:8e:e0:09:45:4d:0f:fc:b4:99:f6:30:f8:7f: cd:98:09:0b:1b:64:45:82:7f:6f:ba:3b:70:30:94:19:a4:2c: 4c:69:b8:b7:45:c6:31:26:58:19:bc:bb:06:29:d7:84:49:2c: 35:f4:29:4b:0d:41:ba:f5:91:99:22:48:82:05:a8:90:b4:08: df:be:cf:52:82:4a:3e:2b:d9:38:6e:c1:37:fc:7d:c4:f8:9f: b0:a5:99:02:94:f4:5c:4f:8c:1c:45:6c:79:e8:e6:95:a2:d2: 1c:26:a7:79:c9:e0:0f:f5:69:54:2d:4b:9b:af:2f:b0:0b:0c: 59:2d:88:80:b3:a3:69:c9:58:ef:a9:40:f3:4e:b9:6d:98:93: fd:d1:fb:a0:d7:f7:d8:83:bb:08:5b:47:62:46:40:3b:cf:26: 7a:7d:cc:df:f2:28:ba:21:2b:4a:9a:cf:3e:9a:84:9a:6f:70: 62:82:1f:b7:68:17:61:2b:a4:a5:86:3f:44:5a:46:d9:65:78: cd:d5:51:23 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUYJZqouyu5WnG85l9E7cShgTvU6MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkNEMDUzODU5MDRFMDBGM0MxMEEzMzlFRTE5RDkyNEQ3 MkZGQUUwRTAeFw0yNTAxMTAxNTU1MDJaFw0yNjAxMDkxNjAwMDJaMDMxMTAvBgNV BAMTKDE4RUZBQTBDQkU5QTc4NDg1QkUzQkUwNzhDQzM2MzgwRTI2RUEzNDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzvcMDPcCJXssUlzsNK2Qt7uSx Uk5H8a+7QXg750W6lgk70TweFHwTCZB0jXBKG/6+tACr3yixw/dd5eEHoJJSJCyj L/L4xwI0j1VuTPDp5ZP07u1cEY2BXV6h4Emyvw9oVH71leLGunly7gpv2x3VVPZw tUrKOmMcN9QWCBb7UJ8tX54NX1wKUguANKSLGNkbQtpqtPn75vqT4/NgTEAHa2Km bOBZ/Fn1saXWne569ZUVUAl954eqxhCU6yE8QF90IxGnIo92kOSy8qvEBBz9mT7S kDZ3pHpuaQbWF2zzVHa/uynx7rN6Z7VtTkBXLRKmExrg2ze2R6l+sgiKHmeBAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUGO+qDL6aeEhb474HjMNjgOJuo0gwHwYDVR0j BBgwFoAU/NBThZBOAPPBCjOe4Z2STXL/rg4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NzhmZDRhZi1mZTY3LTQ1YzgtODBiNy0wNmZjMTE4ZGY4ZTIvMC9GQ0QwNTM4NTkw NEUwMEYzQzEwQTMzOUVFMTlEOTI0RDcyRkZBRTBFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkNEMDUzODU5MDRFMDBGM0MxMEEzMzlFRTE5RDkyNEQ3MkZG QUUwRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ3OGZkNGFmLWZlNjctNDVjOC04 MGI3LTA2ZmMxMThkZjhlMi8wLzMyMzQzMDMyM2EzOTM4MzAzMDNhMzQzMDMxMzAz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM5MzczNzM2MzMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk ApgAQBAwDQYJKoZIhvcNAQELBQADggEBAKMzX+FpmfT2wuE83FSuiDTNGrP+9C/q KIX9buR7hNhG05wXxnNJS+8wfr9yr7OH2+9rQduvUJXsYAYkjuAJRU0P/LSZ9jD4 f82YCQsbZEWCf2+6O3AwlBmkLExpuLdFxjEmWBm8uwYp14RJLDX0KUsNQbr1kZki SIIFqJC0CN++z1KCSj4r2ThuwTf8fcT4n7ClmQKU9FxPjBxFbHno5pWi0hwmp3nJ 4A/1aVQtS5uvL7ALDFktiICzo2nJWO+pQPNOuW2Yk/3R+6DX99iDuwhbR2JGQDvP Jnp9zN/yKLohK0qazz6ahJpvcGKCH7doF2ErpKWGP0RaRtlleM3VUSM= -----END CERTIFICATE-----Generated at Sun Feb 16 20:38:59 2025 by rpki-client