$ rpki-client -vvf repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/323430333a653063303a31333a3a2f34382d3438203d3e20313338303839.roa File: 323430333a653063303a31333a3a2f34382d3438203d3e20313338303839.roa (raw, json) Hash identifier: NEhivRqvBCnBURZf09iLRn6F9NwBbv/MNUQSDs4qTsQ= Subject key identifier: 4F:05:1A:81:6D:BD:BB:C9:9D:D7:26:70:69:3A:E9:43:AE:37:3D:E9 Certificate issuer: /CN=7D4F0D007B60134996AC3198B9E5B71EAF70E733 Certificate serial: 2228756A4F3BE2A6358E4B97E1EF2A60D56D10DD Authority key identifier: 7D:4F:0D:00:7B:60:13:49:96:AC:31:98:B9:E5:B7:1E:AF:70:E7:33 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/323430333a653063303a31333a3a2f34382d3438203d3e20313338303839.roa Signing time: Fri 14 Mar 2025 04:00:00 +0000 ROA not before: Fri 14 Mar 2025 03:55:00 +0000 ROA not after: Fri 13 Mar 2026 04:00:00 +0000 asID: 138089 IP address blocks: 2403:e0c0:13::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.crl rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 00:52:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:28:75:6a:4f:3b:e2:a6:35:8e:4b:97:e1:ef:2a:60:d5:6d:10:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D4F0D007B60134996AC3198B9E5B71EAF70E733 Validity Not Before: Mar 14 03:55:00 2025 GMT Not After : Mar 13 04:00:00 2026 GMT Subject: CN=4F051A816DBDBBC99DD72670693AE943AE373DE9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:86:ad:38:a6:49:db:15:5e:74:69:64:c1:39: 09:a7:80:3d:dd:98:ba:29:40:79:f9:97:8f:a2:44: 8b:7a:3b:02:83:ee:10:db:9b:48:2a:36:7c:03:d5: 63:3a:3d:3d:6b:b9:81:d0:a8:9f:7c:5a:38:67:42: 4b:48:b0:8d:9c:bb:0d:6b:df:c7:3c:fa:c2:d1:5d: 44:0f:ad:e2:44:83:d2:0d:82:0a:29:1e:76:82:26: b4:3b:52:3a:2d:4e:f5:54:6b:48:0e:05:81:6d:10: 8a:73:be:32:88:03:d4:dc:a8:7f:65:98:33:5e:91: e4:b2:9f:23:f2:d9:7a:57:37:76:e4:e3:19:1e:1b: eb:51:af:19:21:74:d1:5f:8c:97:a5:50:49:78:b1: 18:51:13:b0:d7:bd:81:f3:f7:9d:f1:34:d2:d8:08: f9:ad:6d:6d:b2:6d:0e:0b:66:83:83:7f:42:5a:c0: 8e:fe:16:cb:7a:66:ce:21:f2:5f:5a:cb:1b:e9:1f: 44:bd:ea:b5:cc:a3:21:e2:95:dd:ed:c2:7d:df:90: d9:d0:25:ec:13:fe:de:54:54:ff:70:66:25:d2:e8: bc:8f:fd:92:a8:82:b1:b7:c6:a2:d3:0f:85:bc:46: 03:76:ee:cd:39:18:c8:4e:f9:c9:73:89:2f:0e:d6: 15:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:05:1A:81:6D:BD:BB:C9:9D:D7:26:70:69:3A:E9:43:AE:37:3D:E9 X509v3 Authority Key Identifier: keyid:7D:4F:0D:00:7B:60:13:49:96:AC:31:98:B9:E5:B7:1E:AF:70:E7:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/323430333a653063303a31333a3a2f34382d3438203d3e20313338303839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:e0c0:13::/48 Signature Algorithm: sha256WithRSAEncryption 24:a2:00:ee:ed:42:98:a4:23:5a:1b:63:c2:c3:6b:8b:a2:0d: af:6d:6c:46:8d:1d:0d:40:44:08:98:33:9f:d2:5c:b3:41:32: 5c:bc:82:83:ef:7e:9a:f0:32:6a:f8:62:93:01:3e:d1:ae:5b: fd:f4:7c:c8:40:7f:51:3e:fe:4d:9f:c8:3b:0b:d7:45:bc:52: d8:84:29:24:90:fa:98:1d:d4:46:c7:1a:c6:22:e7:7b:3d:42: 30:62:2d:e9:60:f5:72:7c:05:c3:fe:38:37:3d:fb:b3:4e:c3: 8e:7a:3d:3b:92:6f:a8:4c:2f:1f:1d:f3:68:89:8a:01:ab:c4: bc:b7:ec:85:e9:01:11:09:17:80:7b:da:a7:ea:3b:83:68:b5: ba:67:81:de:96:c7:7d:1d:ed:bd:56:bc:74:98:fa:81:6e:92: 7d:05:4b:be:a8:c5:56:82:d6:07:e1:dc:25:6b:b0:02:56:cc: c6:24:3a:80:fd:39:8e:a5:fd:dc:a2:46:a0:a2:cd:9d:b1:4b: 9f:ec:2a:ae:56:37:e5:e0:9d:ec:e2:47:fd:d1:5b:2e:72:3b: 6f:56:10:b5:37:fa:9e:2b:4e:20:1e:37:50:18:f6:0a:0a:6b: 4a:c4:50:44:94:1f:1c:18:1f:ed:0a:7b:69:fb:57:6f:99:54: 50:ed:06:fe -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUIih1ak874qY1jkuX4e8qYNVtEN0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0Q0RjBEMDA3QjYwMTM0OTk2QUMzMTk4QjlFNUI3MUVB RjcwRTczMzAeFw0yNTAzMTQwMzU1MDBaFw0yNjAzMTMwNDAwMDBaMDMxMTAvBgNV BAMTKDRGMDUxQTgxNkRCREJCQzk5REQ3MjY3MDY5M0FFOTQzQUUzNzNERTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5hq04pknbFV50aWTBOQmngD3d mLopQHn5l4+iRIt6OwKD7hDbm0gqNnwD1WM6PT1ruYHQqJ98WjhnQktIsI2cuw1r 38c8+sLRXUQPreJEg9INggopHnaCJrQ7UjotTvVUa0gOBYFtEIpzvjKIA9TcqH9l mDNekeSynyPy2XpXN3bk4xkeG+tRrxkhdNFfjJelUEl4sRhRE7DXvYHz953xNNLY CPmtbW2ybQ4LZoODf0JawI7+Fst6Zs4h8l9ayxvpH0S96rXMoyHild3twn3fkNnQ JewT/t5UVP9wZiXS6LyP/ZKogrG3xqLTD4W8RgN27s05GMhO+clziS8O1hU9AgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUTwUagW29u8md1yZwaTrpQ643PekwHwYDVR0j BBgwFoAUfU8NAHtgE0mWrDGYueW3Hq9w5zMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YWJhNGU1OS1mYjMxLTQxYjUtODhlNy0wYjJjZWQxZjIwMWMvMC83RDRGMEQwMDdC NjAxMzQ5OTZBQzMxOThCOUU1QjcxRUFGNzBFNzMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0Q0RjBEMDA3QjYwMTM0OTk2QUMzMTk4QjlFNUI3MUVBRjcw RTczMy5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhYmE0ZTU5LWZiMzEtNDFiNS04 OGU3LTBiMmNlZDFmMjAxYy8wLzMyMzQzMDMzM2E2NTMwNjMzMDNhMzEzMzNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzODMwMzgzOS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQD4MAA EzANBgkqhkiG9w0BAQsFAAOCAQEAJKIA7u1CmKQjWhtjwsNri6INr21sRo0dDUBE CJgzn9Jcs0EyXLyCg+9+mvAyavhikwE+0a5b/fR8yEB/UT7+TZ/IOwvXRbxS2IQp JJD6mB3URscaxiLnez1CMGIt6WD1cnwFw/44Nz37s07Djno9O5JvqEwvHx3zaImK AavEvLfshekBEQkXgHvap+o7g2i1umeB3pbHfR3tvVa8dJj6gW6SfQVLvqjFVoLW B+HcJWuwAlbMxiQ6gP05jqX93KJGoKLNnbFLn+wqrlY35eCd7OJH/dFbLnI7b1YQ tTf6nitOIB43UBj2CgprSsRQRJQfHBgf7Qp7aftXb5lUUO0G/g== -----END CERTIFICATE-----Generated at Sun Apr 6 17:44:10 2025 by rpki-client