$ rpki-client -vvf repo-rpki.idnic.net/repo/48f39bd4-cdac-41cf-8858-d7410f64d155/0/323430353a316534303a3a2f34382d3438203d3e203538343735.roa File: 323430353a316534303a3a2f34382d3438203d3e203538343735.roa (raw, json) Hash identifier: m1XWyT0e9T5E7FtX9EWKRd4erO5NAGL0dJ8kV06SJiQ= Subject key identifier: 2D:F8:75:BC:B3:9D:26:A8:0B:41:39:D5:CE:F6:60:6B:6E:61:80:FA Certificate issuer: /CN=A51E37523B05B166B7DE977CF4AC6596FDD97B98 Certificate serial: 0DB9FDBA30DA709D7E34B0DCC8D6F65774E5280B Authority key identifier: A5:1E:37:52:3B:05:B1:66:B7:DE:97:7C:F4:AC:65:96:FD:D9:7B:98 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A51E37523B05B166B7DE977CF4AC6596FDD97B98.cer Subject info access: rsync://repo-rpki.idnic.net/repo/48f39bd4-cdac-41cf-8858-d7410f64d155/0/323430353a316534303a3a2f34382d3438203d3e203538343735.roa Signing time: Mon 01 Jul 2024 01:06:01 +0000 ROA not before: Mon 01 Jul 2024 01:01:01 +0000 ROA not after: Mon 30 Jun 2025 01:06:01 +0000 asID: 58475 IP address blocks: 2405:1e40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/48f39bd4-cdac-41cf-8858-d7410f64d155/0/A51E37523B05B166B7DE977CF4AC6596FDD97B98.crl rsync://repo-rpki.idnic.net/repo/48f39bd4-cdac-41cf-8858-d7410f64d155/0/A51E37523B05B166B7DE977CF4AC6596FDD97B98.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A51E37523B05B166B7DE977CF4AC6596FDD97B98.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Mar 2025 20:56:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:b9:fd:ba:30:da:70:9d:7e:34:b0:dc:c8:d6:f6:57:74:e5:28:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A51E37523B05B166B7DE977CF4AC6596FDD97B98 Validity Not Before: Jul 1 01:01:01 2024 GMT Not After : Jun 30 01:06:01 2025 GMT Subject: CN=2DF875BCB39D26A80B4139D5CEF6606B6E6180FA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:36:86:64:0d:3e:99:05:44:bc:73:d0:fd:e2: 73:3c:98:77:6d:eb:68:5e:49:a4:43:6a:32:8e:af: b4:b6:90:3b:84:ed:05:06:da:d4:1a:f3:b8:f6:ae: da:79:e4:b1:e5:62:33:87:25:f4:74:60:ae:0e:10: ae:ab:74:76:1d:f3:0a:22:2b:bb:df:df:7b:6a:bf: bc:e0:6e:45:ee:dd:b3:b8:56:71:02:88:49:c0:78: 37:91:a5:56:5d:3e:1a:67:3f:81:f9:cc:2e:be:d6: 71:56:4c:2a:a6:ac:c7:ea:c8:39:f6:5b:1f:1a:db: 8c:64:9b:47:42:81:60:d8:6f:c8:82:ed:66:f9:3a: 41:5f:be:a0:02:fb:4d:5d:3a:48:35:a4:4d:ac:94: d8:d3:a5:e8:27:8e:b5:cb:90:c8:2e:60:22:8f:36: 49:b2:56:1b:d8:5e:88:03:20:be:18:07:09:2e:b5: 10:02:6a:10:1a:f3:fd:d9:91:9c:c5:9c:f4:15:50: 80:ad:ea:77:d1:f7:fd:d8:31:e6:b4:e7:8a:53:41: 35:55:20:50:99:60:5d:74:51:41:91:80:da:60:23: 4b:c6:db:15:09:e7:ef:d5:35:20:63:fc:15:aa:46: b4:93:46:73:21:8e:dc:3e:af:cf:bf:33:34:cd:97: a1:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:F8:75:BC:B3:9D:26:A8:0B:41:39:D5:CE:F6:60:6B:6E:61:80:FA X509v3 Authority Key Identifier: keyid:A5:1E:37:52:3B:05:B1:66:B7:DE:97:7C:F4:AC:65:96:FD:D9:7B:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/48f39bd4-cdac-41cf-8858-d7410f64d155/0/A51E37523B05B166B7DE977CF4AC6596FDD97B98.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A51E37523B05B166B7DE977CF4AC6596FDD97B98.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/48f39bd4-cdac-41cf-8858-d7410f64d155/0/323430353a316534303a3a2f34382d3438203d3e203538343735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:1e40::/48 Signature Algorithm: sha256WithRSAEncryption 4b:90:97:72:a2:e5:14:2f:ee:4a:85:d0:36:5f:4a:3c:e9:98: 92:00:47:7d:d7:a4:0e:d8:65:05:86:73:bd:69:23:48:a8:f1: f4:b0:a8:1a:18:41:db:c5:30:36:3c:4f:91:20:c6:1f:db:4e: 1c:39:50:2d:10:4d:d4:d5:8b:5a:88:e7:5b:f6:c2:b7:08:ee: 5a:ec:ee:c1:92:0b:c2:bb:6e:9d:42:b8:06:12:b9:32:dc:a1: bf:f4:ef:35:17:19:90:33:86:53:ee:32:5e:6f:92:b3:85:61: d6:86:c1:8f:32:d1:8b:da:23:d6:37:fb:e2:14:8d:58:56:f3: 40:87:09:15:de:ec:ef:df:bf:69:b4:a3:25:b5:d5:4c:6e:a4: 17:e4:af:74:33:f1:1a:64:01:c7:98:3a:2b:0b:bd:b0:8c:ee: 98:27:c8:3e:98:b9:14:fe:28:71:c6:60:11:2a:35:1e:78:76: 36:e0:10:c0:eb:cd:35:e3:30:84:58:51:39:ef:06:a7:5a:75: 81:58:e2:35:4e:1e:45:a2:fe:6b:5f:66:f9:a5:39:51:2f:45: da:1c:7f:29:93:44:a8:72:6c:55:df:ac:63:12:31:aa:7b:02: 31:f4:43:85:50:01:f2:64:00:02:07:b2:b7:ca:88:48:cf:86: 69:02:71:14 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUDbn9ujDacJ1+NLDcyNb2V3TlKAswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTUxRTM3NTIzQjA1QjE2NkI3REU5NzdDRjRBQzY1OTZG REQ5N0I5ODAeFw0yNDA3MDEwMTAxMDFaFw0yNTA2MzAwMTA2MDFaMDMxMTAvBgNV BAMTKDJERjg3NUJDQjM5RDI2QTgwQjQxMzlENUNFRjY2MDZCNkU2MTgwRkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXNoZkDT6ZBUS8c9D94nM8mHdt 62heSaRDajKOr7S2kDuE7QUG2tQa87j2rtp55LHlYjOHJfR0YK4OEK6rdHYd8woi K7vf33tqv7zgbkXu3bO4VnECiEnAeDeRpVZdPhpnP4H5zC6+1nFWTCqmrMfqyDn2 Wx8a24xkm0dCgWDYb8iC7Wb5OkFfvqAC+01dOkg1pE2slNjTpegnjrXLkMguYCKP NkmyVhvYXogDIL4YBwkutRACahAa8/3ZkZzFnPQVUICt6nfR9/3YMea054pTQTVV IFCZYF10UUGRgNpgI0vG2xUJ5+/VNSBj/BWqRrSTRnMhjtw+r8+/MzTNl6HTAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQULfh1vLOdJqgLQTnVzvZga25hgPowHwYDVR0j BBgwFoAUpR43UjsFsWa33pd89Kxllv3Ze5gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 OGYzOWJkNC1jZGFjLTQxY2YtODg1OC1kNzQxMGY2NGQxNTUvMC9BNTFFMzc1MjNC MDVCMTY2QjdERTk3N0NGNEFDNjU5NkZERDk3Qjk4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTUxRTM3NTIzQjA1QjE2NkI3REU5NzdDRjRBQzY1OTZGREQ5 N0I5OC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ4ZjM5YmQ0LWNkYWMtNDFjZi04 ODU4LWQ3NDEwZjY0ZDE1NS8wLzMyMzQzMDM1M2EzMTY1MzQzMDNhM2EyZjM0Mzgy ZDM0MzgyMDNkM2UyMDM1MzgzNDM3MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBR5AAAAwDQYJKoZI hvcNAQELBQADggEBAEuQl3Ki5RQv7kqF0DZfSjzpmJIAR33XpA7YZQWGc71pI0io 8fSwqBoYQdvFMDY8T5Egxh/bThw5UC0QTdTVi1qI51v2wrcI7lrs7sGSC8K7bp1C uAYSuTLcob/07zUXGZAzhlPuMl5vkrOFYdaGwY8y0YvaI9Y3++IUjVhW80CHCRXe 7O/fv2m0oyW11UxupBfkr3Qz8RpkAceYOisLvbCM7pgnyD6YuRT+KHHGYBEqNR54 djbgEMDrzTXjMIRYUTnvBqdadYFY4jVOHkWi/mtfZvmlOVEvRdocfymTRKhybFXf rGMSMap7AjH0Q4VQAfJkAAIHsrfKiEjPhmkCcRQ= -----END CERTIFICATE-----Generated at Tue Mar 11 05:03:03 2025 by rpki-client