$ rpki-client -vvf repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/323430323a3738303a343a3a2f34382d3438203d3e203435373235.roa File: 323430323a3738303a343a3a2f34382d3438203d3e203435373235.roa (raw, json) Hash identifier: q6uWsjDfmvPCM3wtKPBAHFLOKfxyuluuaFv/8slgJu8= Subject key identifier: C0:6A:4D:9A:77:6F:7C:C6:75:44:F9:21:21:26:98:4B:F9:EC:D1:94 Certificate issuer: /CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Certificate serial: 317D66B9998BEAB6C6E79E31EE314E9127BBC57A Authority key identifier: BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject info access: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/323430323a3738303a343a3a2f34382d3438203d3e203435373235.roa Signing time: Sun 06 Apr 2025 15:17:44 +0000 ROA not before: Sun 06 Apr 2025 15:12:44 +0000 ROA not after: Sun 05 Apr 2026 15:17:44 +0000 asID: 45725 IP address blocks: 2402:780:4::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 22:27:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:7d:66:b9:99:8b:ea:b6:c6:e7:9e:31:ee:31:4e:91:27:bb:c5:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Validity Not Before: Apr 6 15:12:44 2025 GMT Not After : Apr 5 15:17:44 2026 GMT Subject: CN=C06A4D9A776F7CC67544F9212126984BF9ECD194 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:ae:ad:1f:a6:b0:fc:13:52:2b:63:96:17:65: c4:4f:57:c8:f9:b8:7e:d3:46:5c:01:e9:85:0b:8a: 49:94:ba:cc:f1:21:c2:4b:a8:71:2e:c1:69:46:1c: 92:f6:c3:3c:c8:ec:cc:ec:b7:b0:1f:64:50:8f:c7: f5:a5:d5:bb:0e:f3:d2:6a:8b:87:46:ea:85:77:4d: ef:8b:be:c8:b2:87:96:f6:88:dd:dc:38:9b:74:8c: 2a:6e:73:6c:64:e2:3d:26:54:45:b5:0e:e7:0b:04: 9d:33:5f:01:1d:9e:42:23:a9:aa:9f:34:5b:85:75: 0d:85:be:84:a0:7a:02:19:e5:25:fe:ad:b8:39:9d: 3b:85:3a:7b:b6:5b:76:2a:26:0a:da:85:d0:ae:ec: eb:90:ad:28:84:4b:3b:d9:c4:e5:c9:0e:2f:c7:5c: ed:4c:6c:92:90:04:f9:a4:8e:ab:b3:07:4c:22:0e: 29:4e:c2:01:b8:51:4a:e2:49:a9:cb:98:e2:92:5d: c9:60:5f:4e:84:3a:0d:f1:eb:3c:c8:db:d6:83:bd: 9a:89:3b:7f:e7:59:6f:25:d8:bb:e5:04:fc:cb:36: f3:b8:d1:59:ed:d6:7e:3d:0b:c1:ae:f9:96:e0:e0: 7d:6b:8c:57:98:0c:92:f2:44:bd:25:62:75:c5:a3: 01:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:6A:4D:9A:77:6F:7C:C6:75:44:F9:21:21:26:98:4B:F9:EC:D1:94 X509v3 Authority Key Identifier: keyid:BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/323430323a3738303a343a3a2f34382d3438203d3e203435373235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:780:4::/48 Signature Algorithm: sha256WithRSAEncryption 9e:e2:8c:03:3f:14:d7:80:23:76:e3:84:ac:62:5c:b4:f8:05: f4:4a:95:4d:08:33:45:51:71:8e:89:e0:35:b7:28:0d:bb:50: eb:d5:ee:01:bf:53:f8:11:4a:b2:5e:79:dc:91:b6:c7:81:e7: c9:f7:b1:b6:96:de:a0:fe:7c:65:83:b4:c4:9a:c0:c5:7d:ec: 01:64:15:cf:6e:0f:2f:39:7b:f3:37:07:85:d3:27:d7:30:3a: 04:df:e6:7e:38:37:48:f7:a9:6d:97:c9:2e:20:1d:4b:ad:38: a0:1b:a8:d3:a6:e0:2e:92:88:07:4c:60:91:51:82:f3:ad:38: 3c:31:4c:37:0f:dc:f9:ae:b6:d3:12:64:6d:e8:66:d4:e1:ce: e1:66:cb:4c:16:68:b7:5d:80:c8:23:a7:76:64:92:ae:8b:44: 87:b2:4d:41:5a:f2:66:da:4e:88:e4:3c:ff:df:26:11:5d:c3: f6:6d:13:3a:c5:f3:fb:5e:88:1e:e7:88:a2:ed:98:f2:52:b8: 7d:4a:3d:fc:b0:29:63:21:9e:6e:a0:dd:31:4f:a7:ae:d0:02: 62:17:e3:b3:08:71:70:85:56:fc:8e:9f:45:ac:2e:57:71:51: a8:8a:6f:3f:e8:9f:ee:6d:dd:53:11:1b:33:04:03:bb:51:6e: df:f2:41:21 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgIUMX1muZmL6rbG554x7jFOkSe7xXowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYy NzQ1ODEwMzAeFw0yNTA0MDYxNTEyNDRaFw0yNjA0MDUxNTE3NDRaMDMxMTAvBgNV BAMTKEMwNkE0RDlBNzc2RjdDQzY3NTQ0RjkyMTIxMjY5ODRCRjlFQ0QxOTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNrq0fprD8E1IrY5YXZcRPV8j5 uH7TRlwB6YULikmUuszxIcJLqHEuwWlGHJL2wzzI7Mzst7AfZFCPx/Wl1bsO89Jq i4dG6oV3Te+Lvsiyh5b2iN3cOJt0jCpuc2xk4j0mVEW1DucLBJ0zXwEdnkIjqaqf NFuFdQ2FvoSgegIZ5SX+rbg5nTuFOnu2W3YqJgrahdCu7OuQrSiESzvZxOXJDi/H XO1MbJKQBPmkjquzB0wiDilOwgG4UUriSanLmOKSXclgX06EOg3x6zzI29aDvZqJ O3/nWW8l2LvlBPzLNvO40Vnt1n49C8Gu+Zbg4H1rjFeYDJLyRL0lYnXFowHBAgMB AAGjggI1MIICMTAdBgNVHQ4EFgQUwGpNmndvfMZ1RPkhISaYS/ns0ZQwHwYDVR0j BBgwFoAUvn+BPzxsoompzaxWMJdbdidFgQMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NDQyMTZkOC03MGNlLTQ5MDgtYTcyYi1lYzI3M2Y0M2JiYzIvMC9CRTdGODEzRjND NkNBMjg5QTlDREFDNTYzMDk3NUI3NjI3NDU4MTAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYyNzQ1 ODEwMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY0NDIxNmQ4LTcwY2UtNDkwOC1h NzJiLWVjMjczZjQzYmJjMi8wLzMyMzQzMDMyM2EzNzM4MzAzYTM0M2EzYTJmMzQz ODJkMzQzODIwM2QzZTIwMzQzNTM3MzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQCB4AABDANBgkq hkiG9w0BAQsFAAOCAQEAnuKMAz8U14AjduOErGJctPgF9EqVTQgzRVFxjongNbco DbtQ69XuAb9T+BFKsl553JG2x4HnyfextpbeoP58ZYO0xJrAxX3sAWQVz24PLzl7 8zcHhdMn1zA6BN/mfjg3SPepbZfJLiAdS604oBuo06bgLpKIB0xgkVGC8604PDFM Nw/c+a620xJkbehm1OHO4WbLTBZot12AyCOndmSSrotEh7JNQVryZtpOiOQ8/98m EV3D9m0TOsXz+16IHueIou2Y8lK4fUo9/LApYyGebqDdMU+nrtACYhfjswhxcIVW /I6fRawuV3FRqIpvP+if7m3dUxEbMwQDu1Fu3/JBIQ== -----END CERTIFICATE-----Generated at Wed Apr 9 09:24:17 2025 by rpki-client