$ rpki-client -vvf repo-rpki.idnic.net/repo/57280400-9654-4d45-888b-9067bada190b/0/323430303a363463303a3a2f33322d3438203d3e20313336303535.roa File: 323430303a363463303a3a2f33322d3438203d3e20313336303535.roa (raw, json) Hash identifier: nVKz/Z4lzOOXkiUaEAcb0AwZb+JTb9lrVFfeSZMfmCY= Subject key identifier: F5:66:FB:29:89:E3:ED:6C:34:E6:CE:F8:F6:15:56:DB:E6:BA:6A:30 Certificate issuer: /CN=A4AC49C4F55BF5D4AF3D42104A8A5EC1F2123E6F Certificate serial: 1CF609B4655752D98066D1FA47793E89E91ECAB1 Authority key identifier: A4:AC:49:C4:F5:5B:F5:D4:AF:3D:42:10:4A:8A:5E:C1:F2:12:3E:6F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A4AC49C4F55BF5D4AF3D42104A8A5EC1F2123E6F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/57280400-9654-4d45-888b-9067bada190b/0/323430303a363463303a3a2f33322d3438203d3e20313336303535.roa Signing time: Tue 28 Jan 2025 04:01:30 +0000 ROA not before: Tue 28 Jan 2025 03:56:30 +0000 ROA not after: Tue 27 Jan 2026 04:01:30 +0000 asID: 136055 IP address blocks: 2400:64c0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/57280400-9654-4d45-888b-9067bada190b/0/A4AC49C4F55BF5D4AF3D42104A8A5EC1F2123E6F.crl rsync://repo-rpki.idnic.net/repo/57280400-9654-4d45-888b-9067bada190b/0/A4AC49C4F55BF5D4AF3D42104A8A5EC1F2123E6F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A4AC49C4F55BF5D4AF3D42104A8A5EC1F2123E6F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Mar 2025 09:51:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:f6:09:b4:65:57:52:d9:80:66:d1:fa:47:79:3e:89:e9:1e:ca:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A4AC49C4F55BF5D4AF3D42104A8A5EC1F2123E6F Validity Not Before: Jan 28 03:56:30 2025 GMT Not After : Jan 27 04:01:30 2026 GMT Subject: CN=F566FB2989E3ED6C34E6CEF8F61556DBE6BA6A30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:17:dd:67:2f:77:0b:62:68:44:40:fe:12:70: 98:a2:be:32:8d:bd:8a:63:f7:57:ef:c4:33:31:55: ff:d1:06:e9:66:a4:f0:e0:70:51:87:9a:b0:8f:95: e8:bd:a4:a1:70:59:31:f3:6f:26:9d:60:b1:7e:a5: 65:6b:7d:6f:69:9d:89:f4:9d:d5:2e:a5:e1:dc:b1: 4c:83:a1:06:91:e3:14:23:0f:82:b9:ca:03:f0:9b: ad:49:95:85:2b:a7:f7:74:3e:aa:78:25:07:01:67: 40:4f:17:b6:09:9f:e3:81:a0:2f:47:e8:ef:e4:22: 25:91:d7:b2:74:98:ef:9f:9d:79:26:a5:aa:e9:e2: 9a:72:be:d9:1e:20:14:9f:30:8d:e7:04:05:cd:52: 4c:e4:8f:27:4b:82:51:35:fb:d4:98:93:8e:98:2b: a5:ea:d4:9b:8a:63:52:62:6c:73:63:e6:89:cb:52: 51:2d:59:c1:90:dc:81:55:67:81:72:ce:0a:0e:4d: c2:cb:0d:f0:bb:e8:e2:1b:c3:6d:ec:f7:c3:18:69: 15:cc:a5:98:11:9c:19:cf:36:a1:0f:e7:fc:97:79: 05:7b:e0:b8:17:c8:35:08:9b:0a:2f:32:37:1c:0e: ae:0c:b4:72:b0:7c:93:1e:92:c0:6a:9a:9a:56:57: dd:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:66:FB:29:89:E3:ED:6C:34:E6:CE:F8:F6:15:56:DB:E6:BA:6A:30 X509v3 Authority Key Identifier: keyid:A4:AC:49:C4:F5:5B:F5:D4:AF:3D:42:10:4A:8A:5E:C1:F2:12:3E:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/57280400-9654-4d45-888b-9067bada190b/0/A4AC49C4F55BF5D4AF3D42104A8A5EC1F2123E6F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A4AC49C4F55BF5D4AF3D42104A8A5EC1F2123E6F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/57280400-9654-4d45-888b-9067bada190b/0/323430303a363463303a3a2f33322d3438203d3e20313336303535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:64c0::/32 Signature Algorithm: sha256WithRSAEncryption 3f:9a:6d:24:08:3e:cd:97:cd:64:93:f6:c8:81:a0:26:3a:f6: 73:2a:fc:29:79:36:26:f1:82:01:70:9f:1e:64:3d:29:12:a2: cb:0b:bf:e3:47:90:82:6f:3d:6a:af:78:1a:5b:29:ef:31:a4: 21:9c:11:0b:60:f5:e4:30:cf:ad:ce:76:f6:98:56:bf:7a:e2: 4b:44:0b:1d:7b:83:74:c1:39:12:c2:36:97:e6:35:2d:27:b3: 53:7a:35:ca:62:94:0d:f1:fd:33:65:ed:08:b8:a4:e8:c9:0f: e5:de:ad:d1:3d:86:87:38:0d:58:56:e9:31:44:48:1b:80:c2: ba:0f:9f:e5:b1:66:c3:6b:15:09:6a:e7:54:88:2d:e3:5a:34: e5:fb:fd:cd:e4:9c:a3:02:86:bf:51:66:38:a8:44:21:90:e0: 33:15:66:b0:3e:35:23:f6:48:f0:21:a8:96:9d:48:19:be:98: 80:f1:92:46:23:58:3f:c5:fa:70:6e:d3:0c:b3:bb:77:16:f7: e9:4e:1f:d8:29:4f:6e:dd:30:b2:62:0e:90:f8:48:03:cd:07: 3a:ca:5c:6e:ca:31:b8:4e:10:41:37:f4:8b:e8:58:8e:d2:d2: 37:7b:82:c4:eb:9d:be:8d:75:5a:bb:5f:cb:5c:4d:5e:b1:eb: 61:1a:a1:a7 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUHPYJtGVXUtmAZtH6R3k+iekeyrEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTRBQzQ5QzRGNTVCRjVENEFGM0Q0MjEwNEE4QTVFQzFG MjEyM0U2RjAeFw0yNTAxMjgwMzU2MzBaFw0yNjAxMjcwNDAxMzBaMDMxMTAvBgNV BAMTKEY1NjZGQjI5ODlFM0VENkMzNEU2Q0VGOEY2MTU1NkRCRTZCQTZBMzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdF91nL3cLYmhEQP4ScJiivjKN vYpj91fvxDMxVf/RBulmpPDgcFGHmrCPlei9pKFwWTHzbyadYLF+pWVrfW9pnYn0 ndUupeHcsUyDoQaR4xQjD4K5ygPwm61JlYUrp/d0Pqp4JQcBZ0BPF7YJn+OBoC9H 6O/kIiWR17J0mO+fnXkmparp4ppyvtkeIBSfMI3nBAXNUkzkjydLglE1+9SYk46Y K6Xq1JuKY1JibHNj5onLUlEtWcGQ3IFVZ4FyzgoOTcLLDfC76OIbw23s98MYaRXM pZgRnBnPNqEP5/yXeQV74LgXyDUImwovMjccDq4MtHKwfJMeksBqmppWV93PAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQU9Wb7KYnj7Ww05s749hVW2+a6ajAwHwYDVR0j BBgwFoAUpKxJxPVb9dSvPUIQSopewfISPm8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 NzI4MDQwMC05NjU0LTRkNDUtODg4Yi05MDY3YmFkYTE5MGIvMC9BNEFDNDlDNEY1 NUJGNUQ0QUYzRDQyMTA0QThBNUVDMUYyMTIzRTZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTRBQzQ5QzRGNTVCRjVENEFGM0Q0MjEwNEE4QTVFQzFGMjEy M0U2Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU3MjgwNDAwLTk2NTQtNGQ0NS04 ODhiLTkwNjdiYWRhMTkwYi8wLzMyMzQzMDMwM2EzNjM0NjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzNjMwMzUzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQAZMAwDQYJKoZI hvcNAQELBQADggEBAD+abSQIPs2XzWST9siBoCY69nMq/Cl5NibxggFwnx5kPSkS ossLv+NHkIJvPWqveBpbKe8xpCGcEQtg9eQwz63OdvaYVr964ktECx17g3TBORLC NpfmNS0ns1N6NcpilA3x/TNl7Qi4pOjJD+XerdE9hoc4DVhW6TFESBuAwroPn+Wx ZsNrFQlq51SILeNaNOX7/c3knKMChr9RZjioRCGQ4DMVZrA+NSP2SPAhqJadSBm+ mIDxkkYjWD/F+nBu0wyzu3cW9+lOH9gpT27dMLJiDpD4SAPNBzrKXG7KMbhOEEE3 9IvoWI7S0jd7gsTrnb6NdVq7X8tcTV6x62Eaoac= -----END CERTIFICATE-----Generated at Tue Mar 11 05:04:32 2025 by rpki-client