$ rpki-client -vvf repo-rpki.idnic.net/repo/5c897c4a-e0ff-4652-a591-ff2d48e72c91/0/323430363a383434303a3a2f33322d3332203d3e20313431303837.roa File: 323430363a383434303a3a2f33322d3332203d3e20313431303837.roa (raw, json) Hash identifier: cXUkxWwyVPS60XbTkvXKCEQggyZtT3odfL2WdxtdbQM= Subject key identifier: D9:25:50:D9:ED:04:D8:9A:93:99:70:94:57:5F:B3:E2:10:89:6C:3C Certificate issuer: /CN=878DF4B7E3C776B2EDC1752FCCBC5E289C453BEE Certificate serial: 43E5C3646B46793A1D9F0FC02B0E2D1878DD06AD Authority key identifier: 87:8D:F4:B7:E3:C7:76:B2:ED:C1:75:2F:CC:BC:5E:28:9C:45:3B:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/878DF4B7E3C776B2EDC1752FCCBC5E289C453BEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c897c4a-e0ff-4652-a591-ff2d48e72c91/0/323430363a383434303a3a2f33322d3332203d3e20313431303837.roa Signing time: Wed 19 Feb 2025 08:00:01 +0000 ROA not before: Wed 19 Feb 2025 07:55:01 +0000 ROA not after: Wed 18 Feb 2026 08:00:01 +0000 asID: 141087 IP address blocks: 2406:8440::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c897c4a-e0ff-4652-a591-ff2d48e72c91/0/878DF4B7E3C776B2EDC1752FCCBC5E289C453BEE.crl rsync://repo-rpki.idnic.net/repo/5c897c4a-e0ff-4652-a591-ff2d48e72c91/0/878DF4B7E3C776B2EDC1752FCCBC5E289C453BEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/878DF4B7E3C776B2EDC1752FCCBC5E289C453BEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 16:02:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:e5:c3:64:6b:46:79:3a:1d:9f:0f:c0:2b:0e:2d:18:78:dd:06:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=878DF4B7E3C776B2EDC1752FCCBC5E289C453BEE Validity Not Before: Feb 19 07:55:01 2025 GMT Not After : Feb 18 08:00:01 2026 GMT Subject: CN=D92550D9ED04D89A93997094575FB3E210896C3C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:9a:0a:04:50:df:d5:ab:b2:5b:12:60:9b:83: 56:8c:c0:28:5a:ed:ec:59:12:f1:b9:2a:b2:3c:79: 86:ec:c0:68:56:5f:28:bf:a7:2e:4e:e7:0f:6f:3f: 15:36:39:b3:20:98:b0:93:99:27:46:94:24:5a:bf: 05:e2:df:2f:7f:07:e0:9f:3f:cf:66:19:d0:41:a2: ee:9a:cf:85:df:56:4a:ec:c0:7b:6b:15:ce:08:eb: 61:2c:b7:b0:85:d7:75:e5:8d:ec:e9:f6:c3:2a:fe: a8:b1:b2:88:36:0b:d8:f3:6a:79:d2:f5:ac:a3:d8: a0:b4:8a:3d:ad:52:87:c5:86:d5:9b:c9:da:a0:a0: b3:76:26:7f:a5:21:9c:73:6d:3b:f6:fd:07:c8:d0: 46:f5:bc:9a:23:77:02:5c:0d:30:03:1c:1d:78:50: d6:9b:36:8a:b0:0c:c2:58:80:c9:2c:f0:a6:14:1d: 8e:2d:38:8f:48:59:67:b6:da:e2:76:5a:15:33:6c: 86:64:01:19:cb:ab:c4:fc:4a:8e:40:68:50:df:33: 37:cb:3a:26:bd:24:3a:01:ce:cd:1a:c2:5a:4f:fa: 38:96:f6:84:95:91:19:bb:7e:7a:1e:b5:b3:81:38: d0:0a:dc:48:b1:bc:61:94:81:61:dc:a1:f7:22:5f: 30:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:25:50:D9:ED:04:D8:9A:93:99:70:94:57:5F:B3:E2:10:89:6C:3C X509v3 Authority Key Identifier: keyid:87:8D:F4:B7:E3:C7:76:B2:ED:C1:75:2F:CC:BC:5E:28:9C:45:3B:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c897c4a-e0ff-4652-a591-ff2d48e72c91/0/878DF4B7E3C776B2EDC1752FCCBC5E289C453BEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/878DF4B7E3C776B2EDC1752FCCBC5E289C453BEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c897c4a-e0ff-4652-a591-ff2d48e72c91/0/323430363a383434303a3a2f33322d3332203d3e20313431303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:8440::/32 Signature Algorithm: sha256WithRSAEncryption 3a:d8:e1:c7:76:c2:2a:1c:6d:1f:fe:b0:d7:fa:4a:35:86:ce: 13:d7:e0:9e:82:66:1e:4e:99:e7:45:6a:19:59:fe:3d:84:2c: a6:c9:75:39:8a:75:75:0f:26:a5:28:58:20:4d:bb:7c:a3:fd: 97:48:ff:94:55:6b:37:2b:21:87:a6:4a:2b:4c:f8:ce:a8:67: 1b:c1:d4:dc:22:c2:81:21:06:91:59:1f:05:9c:fa:32:20:e7: 75:27:7d:f1:cd:c7:fd:38:b9:de:e6:5b:28:d2:ff:ca:29:b2: 81:f9:cc:31:99:d7:fd:9e:49:aa:b1:76:f4:28:ee:c5:d0:79: b3:50:e5:09:48:d5:80:56:b7:85:10:81:dd:ac:7c:af:3d:96: 3c:a4:5b:52:ab:e1:64:c1:a6:51:2c:67:9b:3c:ab:93:6b:c4: 7b:43:38:36:a6:b9:b9:15:8c:2c:66:99:52:f8:63:c0:d9:14: 86:f6:aa:26:3d:5f:a8:3d:b6:8f:65:f7:ef:d0:03:72:dd:cd: a6:a8:ef:ab:07:16:2f:78:19:b0:93:eb:1c:23:a9:ee:63:8d: 75:45:26:dd:1f:81:56:e4:27:d9:41:c2:f2:cd:d0:e8:c2:58: d2:e9:96:bd:ff:34:28:a5:47:a7:f7:6d:dc:ed:04:56:1a:61: 2f:af:9b:23 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUQ+XDZGtGeTodnw/AKw4tGHjdBq0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODc4REY0QjdFM0M3NzZCMkVEQzE3NTJGQ0NCQzVFMjg5 QzQ1M0JFRTAeFw0yNTAyMTkwNzU1MDFaFw0yNjAyMTgwODAwMDFaMDMxMTAvBgNV BAMTKEQ5MjU1MEQ5RUQwNEQ4OUE5Mzk5NzA5NDU3NUZCM0UyMTA4OTZDM0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8mgoEUN/Vq7JbEmCbg1aMwCha 7exZEvG5KrI8eYbswGhWXyi/py5O5w9vPxU2ObMgmLCTmSdGlCRavwXi3y9/B+Cf P89mGdBBou6az4XfVkrswHtrFc4I62Est7CF13Xljezp9sMq/qixsog2C9jzannS 9ayj2KC0ij2tUofFhtWbydqgoLN2Jn+lIZxzbTv2/QfI0Eb1vJojdwJcDTADHB14 UNabNoqwDMJYgMks8KYUHY4tOI9IWWe22uJ2WhUzbIZkARnLq8T8So5AaFDfMzfL Oia9JDoBzs0awlpP+jiW9oSVkRm7fnoetbOBONAK3EixvGGUgWHcofciXzDnAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQU2SVQ2e0E2JqTmXCUV1+z4hCJbDwwHwYDVR0j BBgwFoAUh430t+PHdrLtwXUvzLxeKJxFO+4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 Yzg5N2M0YS1lMGZmLTQ2NTItYTU5MS1mZjJkNDhlNzJjOTEvMC84NzhERjRCN0Uz Qzc3NkIyRURDMTc1MkZDQ0JDNUUyODlDNDUzQkVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODc4REY0QjdFM0M3NzZCMkVEQzE3NTJGQ0NCQzVFMjg5QzQ1 M0JFRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVjODk3YzRhLWUwZmYtNDY1Mi1h NTkxLWZmMmQ0OGU3MmM5MS8wLzMyMzQzMDM2M2EzODM0MzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzQzMTMwMzgzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQGhEAwDQYJKoZI hvcNAQELBQADggEBADrY4cd2wiocbR/+sNf6SjWGzhPX4J6CZh5OmedFahlZ/j2E LKbJdTmKdXUPJqUoWCBNu3yj/ZdI/5RVazcrIYemSitM+M6oZxvB1NwiwoEhBpFZ HwWc+jIg53UnffHNx/04ud7mWyjS/8opsoH5zDGZ1/2eSaqxdvQo7sXQebNQ5QlI 1YBWt4UQgd2sfK89ljykW1Kr4WTBplEsZ5s8q5NrxHtDODamubkVjCxmmVL4Y8DZ FIb2qiY9X6g9to9l9+/QA3Ldzaao76sHFi94GbCT6xwjqe5jjXVFJt0fgVbkJ9lB wvLN0OjCWNLplr3/NCilR6f3bdztBFYaYS+vmyM= -----END CERTIFICATE-----Generated at Sun Apr 6 06:02:58 2025 by rpki-client