$ rpki-client -vvf repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/323430333a653063303a313a3a2f34382d3438203d3e20313338303839.roa File: 323430333a653063303a313a3a2f34382d3438203d3e20313338303839.roa (raw, json) Hash identifier: H7BZrybLTpX0NJFsDuTjqzH8VF1huH+0BD/mvn2lSto= Subject key identifier: 82:D6:39:57:E1:67:03:EC:13:40:A8:A8:D0:66:54:7E:3E:20:69:45 Certificate issuer: /CN=7D4F0D007B60134996AC3198B9E5B71EAF70E733 Certificate serial: 266192A51CCD9C4FF95F9A30F48BD2CF2F954679 Authority key identifier: 7D:4F:0D:00:7B:60:13:49:96:AC:31:98:B9:E5:B7:1E:AF:70:E7:33 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/323430333a653063303a313a3a2f34382d3438203d3e20313338303839.roa Signing time: Sun 30 Mar 2025 01:00:00 +0000 ROA not before: Sun 30 Mar 2025 00:55:00 +0000 ROA not after: Sun 29 Mar 2026 01:00:00 +0000 asID: 138089 IP address blocks: 2403:e0c0:1::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.crl rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 00:52:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:61:92:a5:1c:cd:9c:4f:f9:5f:9a:30:f4:8b:d2:cf:2f:95:46:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D4F0D007B60134996AC3198B9E5B71EAF70E733 Validity Not Before: Mar 30 00:55:00 2025 GMT Not After : Mar 29 01:00:00 2026 GMT Subject: CN=82D63957E16703EC1340A8A8D066547E3E206945 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:23:20:a6:81:76:17:43:86:02:dc:2f:c5:7c: ca:05:8a:f6:0e:99:e5:d1:74:9e:4c:f9:98:30:33: 23:38:66:d6:58:68:1b:8d:4f:ba:18:c7:a4:da:ab: b4:3a:e8:9e:1b:21:9a:ef:72:0e:b7:a3:e1:ba:e4: de:94:13:98:6b:4c:00:21:40:06:f7:f3:68:74:1b: b2:01:a8:c3:be:18:1a:65:d8:03:0c:31:4f:34:06: 3e:fe:ce:bd:9d:ae:79:1b:9b:25:6a:fd:fc:12:96: 9b:b8:15:e0:b2:a0:eb:a2:cc:af:00:65:78:9b:2e: 33:96:88:fa:42:5a:39:40:75:37:db:75:f9:3a:62: dc:4e:20:18:90:e4:1c:3d:ca:74:51:a0:f6:eb:76: 7f:b0:16:8e:bb:64:ad:bc:57:e5:c6:fa:4a:41:04: 71:9b:89:14:54:fb:de:b3:3c:f2:35:ff:d8:9d:12: 89:99:59:98:e9:90:56:c0:30:8a:8a:0c:16:37:1c: fd:dc:8f:01:e1:7b:88:e4:45:c6:5b:95:f7:2c:1e: e3:82:00:1c:31:41:5a:cc:3e:38:80:6b:94:15:31: 30:a3:11:0e:4a:24:83:29:9d:a3:54:1e:04:45:d7: 78:2e:4f:22:8a:0a:3e:95:45:91:2f:dd:fa:29:3a: 6f:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:D6:39:57:E1:67:03:EC:13:40:A8:A8:D0:66:54:7E:3E:20:69:45 X509v3 Authority Key Identifier: keyid:7D:4F:0D:00:7B:60:13:49:96:AC:31:98:B9:E5:B7:1E:AF:70:E7:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/323430333a653063303a313a3a2f34382d3438203d3e20313338303839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:e0c0:1::/48 Signature Algorithm: sha256WithRSAEncryption 34:64:c8:7e:3f:75:0e:73:a9:68:14:fb:91:7c:9b:87:3f:01: 71:3f:bc:1f:87:95:b5:44:d0:17:f9:86:10:fe:de:29:04:f3: 96:e9:d1:69:db:c7:7d:d7:c3:9c:90:9e:bd:e6:9a:ae:08:2c: 3d:81:fc:9d:7c:5e:db:57:0c:c4:73:79:c3:61:b4:9b:58:8d: d0:cc:13:b3:fb:90:62:e6:f1:2d:aa:09:5e:5d:eb:ce:0f:26: b8:fe:1a:a2:b6:0c:b1:56:f0:36:72:78:34:2e:9e:98:de:98: 1d:50:44:51:8a:59:21:c0:d9:ec:22:3b:a4:4c:82:ac:5d:06: 64:b1:22:88:d8:9c:1f:47:aa:5c:84:3e:22:81:f1:d1:fb:db: 77:c6:86:bc:02:45:33:9f:a4:02:1c:21:ab:cd:2a:12:31:2f: 3a:c0:af:31:4d:81:2e:c9:a2:76:84:81:1d:88:1d:e9:2a:fd: f1:55:47:8b:41:91:af:f6:f9:13:6c:27:4d:4c:10:d0:4b:1e: ed:44:94:2f:b0:d9:ec:b5:64:6f:9f:82:64:65:70:b3:7c:ca: a8:f7:ee:c3:a7:fe:4c:08:c2:9a:be:7f:57:14:4c:a8:9c:9e: da:db:d3:a0:96:34:88:0a:7c:02:85:70:52:38:67:25:d9:8d: 45:f2:3a:22 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUJmGSpRzNnE/5X5ow9IvSzy+VRnkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0Q0RjBEMDA3QjYwMTM0OTk2QUMzMTk4QjlFNUI3MUVB RjcwRTczMzAeFw0yNTAzMzAwMDU1MDBaFw0yNjAzMjkwMTAwMDBaMDMxMTAvBgNV BAMTKDgyRDYzOTU3RTE2NzAzRUMxMzQwQThBOEQwNjY1NDdFM0UyMDY5NDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIIyCmgXYXQ4YC3C/FfMoFivYO meXRdJ5M+ZgwMyM4ZtZYaBuNT7oYx6Taq7Q66J4bIZrvcg63o+G65N6UE5hrTAAh QAb382h0G7IBqMO+GBpl2AMMMU80Bj7+zr2drnkbmyVq/fwSlpu4FeCyoOuizK8A ZXibLjOWiPpCWjlAdTfbdfk6YtxOIBiQ5Bw9ynRRoPbrdn+wFo67ZK28V+XG+kpB BHGbiRRU+96zPPI1/9idEomZWZjpkFbAMIqKDBY3HP3cjwHhe4jkRcZblfcsHuOC ABwxQVrMPjiAa5QVMTCjEQ5KJIMpnaNUHgRF13guTyKKCj6VRZEv3fopOm8bAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUgtY5V+FnA+wTQKio0GZUfj4gaUUwHwYDVR0j BBgwFoAUfU8NAHtgE0mWrDGYueW3Hq9w5zMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YWJhNGU1OS1mYjMxLTQxYjUtODhlNy0wYjJjZWQxZjIwMWMvMC83RDRGMEQwMDdC NjAxMzQ5OTZBQzMxOThCOUU1QjcxRUFGNzBFNzMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0Q0RjBEMDA3QjYwMTM0OTk2QUMzMTk4QjlFNUI3MUVBRjcw RTczMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhYmE0ZTU5LWZiMzEtNDFiNS04 OGU3LTBiMmNlZDFmMjAxYy8wLzMyMzQzMDMzM2E2NTMwNjMzMDNhMzEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzMDM4Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkA+DAAAEw DQYJKoZIhvcNAQELBQADggEBADRkyH4/dQ5zqWgU+5F8m4c/AXE/vB+HlbVE0Bf5 hhD+3ikE85bp0Wnbx33Xw5yQnr3mmq4ILD2B/J18XttXDMRzecNhtJtYjdDME7P7 kGLm8S2qCV5d684PJrj+GqK2DLFW8DZyeDQunpjemB1QRFGKWSHA2ewiO6RMgqxd BmSxIojYnB9HqlyEPiKB8dH723fGhrwCRTOfpAIcIavNKhIxLzrArzFNgS7JonaE gR2IHekq/fFVR4tBka/2+RNsJ01MENBLHu1ElC+w2ey1ZG+fgmRlcLN8yqj37sOn /kwIwpq+f1cUTKicntrb06CWNIgKfAKFcFI4ZyXZjUXyOiI= -----END CERTIFICATE-----Generated at Sun Apr 6 17:45:47 2025 by rpki-client