$ rpki-client -vvf repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/323430363a373534303a3a2f33322d3332203d3e20313431303637.roa File: 323430363a373534303a3a2f33322d3332203d3e20313431303637.roa (raw, json) Hash identifier: bv6pC6gX0eRc1LFkXxFUMTO8NK/3ORK3VMfpVTQQLkE= Subject key identifier: 1D:8D:ED:75:77:94:A4:6D:EB:40:F9:A6:7B:C4:2A:42:CF:33:6B:82 Certificate issuer: /CN=28B305C66336C433AB601BA6F0B352E6C57E9BEC Certificate serial: 6BC852F536819C1CDB45502EC0E9CBAAD6BEC76C Authority key identifier: 28:B3:05:C6:63:36:C4:33:AB:60:1B:A6:F0:B3:52:E6:C5:7E:9B:EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28B305C66336C433AB601BA6F0B352E6C57E9BEC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/323430363a373534303a3a2f33322d3332203d3e20313431303637.roa Signing time: Fri 13 Dec 2024 14:26:11 +0000 ROA not before: Fri 13 Dec 2024 14:21:11 +0000 ROA not after: Fri 12 Dec 2025 14:26:11 +0000 asID: 141067 IP address blocks: 2406:7540::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.crl rsync://repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28B305C66336C433AB601BA6F0B352E6C57E9BEC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 21 Apr 2025 02:35:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:c8:52:f5:36:81:9c:1c:db:45:50:2e:c0:e9:cb:aa:d6:be:c7:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28B305C66336C433AB601BA6F0B352E6C57E9BEC Validity Not Before: Dec 13 14:21:11 2024 GMT Not After : Dec 12 14:26:11 2025 GMT Subject: CN=1D8DED757794A46DEB40F9A67BC42A42CF336B82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:5e:eb:98:b3:3b:1a:bc:c0:0a:65:b2:f3:b0: 55:0e:3d:bc:87:db:82:9b:e2:14:ce:1d:61:8f:df: 66:21:6b:8c:e2:2b:ad:66:4b:af:22:ba:3c:7f:91: b1:3d:92:68:80:f3:21:b9:ee:83:4b:3a:61:8a:88: b0:be:32:14:6a:4b:89:49:63:4b:ea:31:18:05:2b: 94:d2:54:53:ac:b0:fb:44:25:84:4c:0d:38:3c:da: e5:34:13:1d:2c:d2:63:3b:67:e4:19:16:9a:fc:1b: 41:d3:26:5f:b9:cf:b7:1d:b7:88:07:8a:75:d1:8e: e7:46:53:0b:a2:e9:80:49:a6:73:df:6e:5b:98:65: d6:af:13:a7:40:2b:a2:ac:3f:1f:da:2a:ca:af:12: 7b:be:84:ff:60:bc:b8:df:4e:97:b4:f5:e9:e2:8c: 8e:87:47:d7:13:a4:72:cb:f4:57:a8:fd:59:34:2a: 8b:23:02:89:40:b1:91:24:a0:a6:ba:81:e0:be:b5: 04:4c:e5:e8:83:78:66:41:90:35:aa:1a:c6:06:21: 83:61:49:e8:8a:7e:39:c5:f1:f8:3d:31:25:17:94: 7b:ae:04:93:82:8e:77:6f:45:01:6f:a1:89:06:a6: 62:05:8b:13:21:84:4d:b5:c9:6a:9c:0f:ce:aa:d5: d5:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:8D:ED:75:77:94:A4:6D:EB:40:F9:A6:7B:C4:2A:42:CF:33:6B:82 X509v3 Authority Key Identifier: keyid:28:B3:05:C6:63:36:C4:33:AB:60:1B:A6:F0:B3:52:E6:C5:7E:9B:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28B305C66336C433AB601BA6F0B352E6C57E9BEC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/323430363a373534303a3a2f33322d3332203d3e20313431303637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:7540::/32 Signature Algorithm: sha256WithRSAEncryption 7c:61:b7:91:fc:1b:03:2c:95:94:e3:63:74:55:8d:d1:62:dd: 86:ed:3f:f3:ed:19:0c:c3:9b:32:b7:41:b8:3a:ab:74:15:b0: ed:8d:44:ab:22:f6:f7:46:2c:b9:19:56:8d:db:2e:9e:bc:d9: c1:be:65:19:30:99:d8:2e:b8:6e:0d:b4:d6:4f:23:d7:bd:b8: fe:62:33:e2:0c:0e:d6:95:8d:08:83:8b:b5:32:02:93:53:dd: 61:35:91:00:13:dc:8f:71:a4:c8:bb:ee:12:a2:8b:61:0b:39: 2c:03:e9:d9:39:61:4b:ff:4f:10:ef:13:ff:46:27:df:87:d9: c7:3d:3a:fd:05:60:81:ee:90:cf:4f:8c:0e:a0:00:02:20:a8: 7c:58:06:0a:6d:f7:7d:14:c6:ad:52:8f:e9:3d:50:69:12:72: 9c:d0:02:9b:3e:79:af:ac:be:16:a5:c4:6b:9c:21:7b:6d:02: b3:14:94:6d:a1:bb:63:1b:2d:f0:ff:d5:57:11:ba:4a:b0:fa: 4a:92:d4:62:b0:ee:a8:6c:d0:96:93:6a:58:ed:66:f8:95:96: 59:43:a2:be:bc:ff:66:ce:54:59:1c:27:d1:cb:e7:5e:fe:3b: a6:97:22:87:20:9e:1f:db:9e:bf:4e:04:a1:bd:9d:e7:78:ce: 0e:5e:ac:3c -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUa8hS9TaBnBzbRVAuwOnLqta+x2wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjhCMzA1QzY2MzM2QzQzM0FCNjAxQkE2RjBCMzUyRTZD NTdFOUJFQzAeFw0yNDEyMTMxNDIxMTFaFw0yNTEyMTIxNDI2MTFaMDMxMTAvBgNV BAMTKDFEOERFRDc1Nzc5NEE0NkRFQjQwRjlBNjdCQzQyQTQyQ0YzMzZCODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfXuuYszsavMAKZbLzsFUOPbyH 24Kb4hTOHWGP32Yha4ziK61mS68iujx/kbE9kmiA8yG57oNLOmGKiLC+MhRqS4lJ Y0vqMRgFK5TSVFOssPtEJYRMDTg82uU0Ex0s0mM7Z+QZFpr8G0HTJl+5z7cdt4gH inXRjudGUwui6YBJpnPfbluYZdavE6dAK6KsPx/aKsqvEnu+hP9gvLjfTpe09eni jI6HR9cTpHLL9Feo/Vk0KosjAolAsZEkoKa6geC+tQRM5eiDeGZBkDWqGsYGIYNh SeiKfjnF8fg9MSUXlHuuBJOCjndvRQFvoYkGpmIFixMhhE21yWqcD86q1dX7AgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUHY3tdXeUpG3rQPmme8QqQs8za4IwHwYDVR0j BBgwFoAUKLMFxmM2xDOrYBum8LNS5sV+m+wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YjZlOWI1MS1iZDg3LTQ5MDUtOWJmNC1hODQ4YTQ0ZTViYTUvMC8yOEIzMDVDNjYz MzZDNDMzQUI2MDFCQTZGMEIzNTJFNkM1N0U5QkVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjhCMzA1QzY2MzM2QzQzM0FCNjAxQkE2RjBCMzUyRTZDNTdF OUJFQy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiNmU5YjUxLWJkODctNDkwNS05 YmY0LWE4NDhhNDRlNWJhNS8wLzMyMzQzMDM2M2EzNzM1MzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzQzMTMwMzYzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQGdUAwDQYJKoZI hvcNAQELBQADggEBAHxht5H8GwMslZTjY3RVjdFi3YbtP/PtGQzDmzK3Qbg6q3QV sO2NRKsi9vdGLLkZVo3bLp682cG+ZRkwmdguuG4NtNZPI9e9uP5iM+IMDtaVjQiD i7UyApNT3WE1kQAT3I9xpMi77hKii2ELOSwD6dk5YUv/TxDvE/9GJ9+H2cc9Ov0F YIHukM9PjA6gAAIgqHxYBgpt930Uxq1Sj+k9UGkScpzQAps+ea+svhalxGucIXtt ArMUlG2hu2MbLfD/1VcRukqw+kqS1GKw7qhs0JaTaljtZviVlllDor68/2bOVFkc J9HL517+O6aXIocgnh/bnr9OBKG9ned4zg5erDw= -----END CERTIFICATE-----Generated at Sat Apr 19 12:03:05 2025 by rpki-client