$ rpki-client -vvf repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/323430333a653063303a3a2f33322d3438203d3e20313338303839.roa File: 323430333a653063303a3a2f33322d3438203d3e20313338303839.roa (raw, json) Hash identifier: IDS7wT53F/9d+GGxnBDomzis7H+va5MBv/3bGTQques= Subject key identifier: 06:37:B3:8A:7D:F2:8F:57:A8:85:1D:5F:51:12:85:B0:08:82:C5:51 Certificate issuer: /CN=7D4F0D007B60134996AC3198B9E5B71EAF70E733 Certificate serial: 290017771936C84017AB4C01C33E022D28B222F7 Authority key identifier: 7D:4F:0D:00:7B:60:13:49:96:AC:31:98:B9:E5:B7:1E:AF:70:E7:33 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/323430333a653063303a3a2f33322d3438203d3e20313338303839.roa Signing time: Sat 08 Feb 2025 10:00:00 +0000 ROA not before: Sat 08 Feb 2025 09:55:00 +0000 ROA not after: Sat 07 Feb 2026 10:00:00 +0000 asID: 138089 IP address blocks: 2403:e0c0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.crl rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 00:52:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:00:17:77:19:36:c8:40:17:ab:4c:01:c3:3e:02:2d:28:b2:22:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D4F0D007B60134996AC3198B9E5B71EAF70E733 Validity Not Before: Feb 8 09:55:00 2025 GMT Not After : Feb 7 10:00:00 2026 GMT Subject: CN=0637B38A7DF28F57A8851D5F511285B00882C551 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:86:c5:6e:f0:f8:80:15:03:4f:7f:34:e0:8f: 77:6d:fb:df:3a:f2:ea:a6:88:95:55:a2:ed:a9:08: cc:14:ad:5e:df:ee:71:d6:ab:a0:4f:ae:81:73:1a: 5d:fd:e3:da:81:62:3c:0f:33:d0:f4:df:c5:19:fe: 41:26:6d:fe:2e:1a:66:60:5b:a6:2a:a2:ec:cf:c6: a4:c5:2c:ed:5b:1f:b7:2d:66:a4:7a:2d:7e:d0:ec: 34:11:d7:43:9d:86:14:b3:f5:f7:a5:d8:4c:7b:36: ec:9d:d4:a5:41:19:4b:02:ea:de:d5:f5:ec:74:86: 40:cb:0c:26:eb:df:16:8f:05:03:3a:2e:84:4c:71: 8e:24:3f:20:3d:12:0a:7d:59:68:c2:4b:ac:c0:b8: 19:ac:8b:e1:32:32:1b:d3:96:a9:e9:46:a4:cf:f9: 99:06:9b:40:28:b0:66:88:f3:8d:b3:21:d2:d5:29: 0b:c8:89:e5:76:d3:7a:de:85:a4:56:91:4c:0d:45: 14:45:c4:13:42:fe:87:1a:a3:dc:c9:e6:b8:12:63: ed:bc:d2:c5:dd:d8:ab:d3:3e:89:0e:95:11:82:43: 1b:02:54:7e:03:25:bf:81:b3:9f:67:f5:e7:f2:08: 6d:bb:8e:31:94:f4:04:2d:65:1f:ac:85:00:05:e9: ac:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:37:B3:8A:7D:F2:8F:57:A8:85:1D:5F:51:12:85:B0:08:82:C5:51 X509v3 Authority Key Identifier: keyid:7D:4F:0D:00:7B:60:13:49:96:AC:31:98:B9:E5:B7:1E:AF:70:E7:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/323430333a653063303a3a2f33322d3438203d3e20313338303839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:e0c0::/32 Signature Algorithm: sha256WithRSAEncryption c6:03:4a:09:9c:f5:29:61:66:56:a8:43:3f:24:44:d7:c6:ca: 5e:89:2b:83:cd:da:f0:c7:83:5c:a7:52:fa:65:bb:a7:ab:9e: 18:47:51:a7:a2:2a:ab:cb:5b:56:75:fe:ad:55:77:90:4c:8d: 3c:96:91:0b:3e:73:df:f5:72:90:86:02:ed:88:b9:92:21:95: ea:77:ee:81:b9:44:1b:a1:0e:a1:c2:bb:75:db:0e:96:92:34: e5:45:df:3d:68:c8:fb:6e:c4:b6:b3:21:07:99:1d:52:39:d6: 06:95:81:5f:b2:cc:75:9c:4a:cf:b4:14:f2:27:a7:d6:9b:9d: c2:6c:38:17:f7:d2:79:ae:72:22:c4:03:ce:d4:f1:5d:74:d2: a7:8d:87:58:21:02:9a:8f:dd:86:a0:0b:5d:c8:a1:a0:18:2f: fd:91:75:89:1b:4c:80:1c:6c:a4:4f:62:0f:53:2c:3a:25:2a: 07:a6:5c:d1:0e:52:6c:ac:1f:74:9f:ae:9b:b2:12:45:27:2e: f6:0b:5f:b8:f4:dd:07:72:0e:e1:81:04:50:aa:c5:5a:69:4e: e2:d1:6b:79:7a:3a:fa:8c:98:4b:6c:c9:a5:93:4c:d9:36:49: a9:7b:95:5a:83:5b:c6:d2:54:e5:06:25:48:a7:e9:70:2a:c8: 1b:2d:6a:f6 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUKQAXdxk2yEAXq0wBwz4CLSiyIvcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0Q0RjBEMDA3QjYwMTM0OTk2QUMzMTk4QjlFNUI3MUVB RjcwRTczMzAeFw0yNTAyMDgwOTU1MDBaFw0yNjAyMDcxMDAwMDBaMDMxMTAvBgNV BAMTKDA2MzdCMzhBN0RGMjhGNTdBODg1MUQ1RjUxMTI4NUIwMDg4MkM1NTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDChsVu8PiAFQNPfzTgj3dt+986 8uqmiJVVou2pCMwUrV7f7nHWq6BProFzGl3949qBYjwPM9D038UZ/kEmbf4uGmZg W6YqouzPxqTFLO1bH7ctZqR6LX7Q7DQR10OdhhSz9fel2Ex7Nuyd1KVBGUsC6t7V 9ex0hkDLDCbr3xaPBQM6LoRMcY4kPyA9Egp9WWjCS6zAuBmsi+EyMhvTlqnpRqTP +ZkGm0AosGaI842zIdLVKQvIieV203rehaRWkUwNRRRFxBNC/ocao9zJ5rgSY+28 0sXd2KvTPokOlRGCQxsCVH4DJb+Bs59n9efyCG27jjGU9AQtZR+shQAF6ay/AgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUBjezin3yj1eohR1fURKFsAiCxVEwHwYDVR0j BBgwFoAUfU8NAHtgE0mWrDGYueW3Hq9w5zMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YWJhNGU1OS1mYjMxLTQxYjUtODhlNy0wYjJjZWQxZjIwMWMvMC83RDRGMEQwMDdC NjAxMzQ5OTZBQzMxOThCOUU1QjcxRUFGNzBFNzMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0Q0RjBEMDA3QjYwMTM0OTk2QUMzMTk4QjlFNUI3MUVBRjcw RTczMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhYmE0ZTU5LWZiMzEtNDFiNS04 OGU3LTBiMmNlZDFmMjAxYy8wLzMyMzQzMDMzM2E2NTMwNjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzODMwMzgzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQD4MAwDQYJKoZI hvcNAQELBQADggEBAMYDSgmc9SlhZlaoQz8kRNfGyl6JK4PN2vDHg1ynUvplu6er nhhHUaeiKqvLW1Z1/q1Vd5BMjTyWkQs+c9/1cpCGAu2IuZIhlep37oG5RBuhDqHC u3XbDpaSNOVF3z1oyPtuxLazIQeZHVI51gaVgV+yzHWcSs+0FPInp9abncJsOBf3 0nmuciLEA87U8V100qeNh1ghApqP3YagC13IoaAYL/2RdYkbTIAcbKRPYg9TLDol KgemXNEOUmysH3SfrpuyEkUnLvYLX7j03QdyDuGBBFCqxVppTuLRa3l6OvqMmEts yaWTTNk2Sal7lVqDW8bSVOUGJUin6XAqyBstavY= -----END CERTIFICATE-----Generated at Sun Apr 6 17:46:51 2025 by rpki-client