$ rpki-client -vvf repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/323430323a3738303a3a2f34382d3438203d3e203435373235.roa File: 323430323a3738303a3a2f34382d3438203d3e203435373235.roa (raw, json) Hash identifier: srQ63HzedpqK/Z+fkfeTxdmOJkM7qi6/v3UkdQRaL40= Subject key identifier: 4B:62:7A:C5:36:10:16:F1:D1:7C:0B:7E:19:11:B1:46:D1:31:5C:E7 Certificate issuer: /CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Certificate serial: 57931685C3EEC79B6C5DC96968E95CDEAD11757E Authority key identifier: BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject info access: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/323430323a3738303a3a2f34382d3438203d3e203435373235.roa Signing time: Sun 06 Apr 2025 15:17:30 +0000 ROA not before: Sun 06 Apr 2025 15:12:30 +0000 ROA not after: Sun 05 Apr 2026 15:17:30 +0000 asID: 45725 IP address blocks: 2402:780::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 16:36:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:93:16:85:c3:ee:c7:9b:6c:5d:c9:69:68:e9:5c:de:ad:11:75:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Validity Not Before: Apr 6 15:12:30 2025 GMT Not After : Apr 5 15:17:30 2026 GMT Subject: CN=4B627AC5361016F1D17C0B7E1911B146D1315CE7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:ac:99:af:94:ed:42:ac:9a:fa:9d:7b:de:15: c2:99:fd:f1:de:e2:58:5f:d9:20:28:d8:aa:16:f2: fb:52:d8:ab:11:7e:03:e2:a9:4e:0c:3f:95:2c:57: 04:2e:d2:89:0a:85:98:12:b4:2d:f3:a9:23:fc:0d: c0:0d:ed:bd:d4:b0:36:4f:cc:0e:85:39:7b:08:3e: f9:9d:4a:51:b4:a2:49:56:48:b0:6c:de:c7:e2:02: 9d:3a:36:5e:1a:0d:5e:b1:47:11:4b:0d:1a:6f:5b: 2d:3e:3f:4b:67:13:8b:89:b9:b9:01:09:27:c5:0f: f1:b1:d0:c7:fa:3e:a9:8a:91:48:20:12:f7:59:27: d3:6d:d8:4d:42:5d:75:81:ff:26:f4:56:23:3a:82: 07:b1:ba:be:71:d6:df:e8:98:04:04:3c:54:64:74: ed:00:ab:71:c9:d7:b1:b7:26:26:53:18:51:af:cb: af:66:b2:b8:3b:91:b4:f8:50:6d:72:e1:e9:e1:17: 36:d9:f6:dd:be:97:43:32:fb:5f:5c:f2:9f:94:a5: 57:44:19:4b:e0:75:81:57:72:ce:fe:15:da:ac:9f: e6:5b:7b:3f:c8:43:89:e8:53:db:dd:f8:30:0d:e3: 5c:65:28:91:fc:c7:82:53:44:6e:00:4a:d3:d2:6c: 6b:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:62:7A:C5:36:10:16:F1:D1:7C:0B:7E:19:11:B1:46:D1:31:5C:E7 X509v3 Authority Key Identifier: keyid:BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/323430323a3738303a3a2f34382d3438203d3e203435373235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:780::/48 Signature Algorithm: sha256WithRSAEncryption 4e:da:7b:22:ce:10:f7:a8:b0:08:9a:9f:d9:73:ad:99:79:3d: 2e:2a:cc:62:78:4b:ac:99:45:d6:3d:4d:d8:83:66:15:52:20: 81:76:b7:97:50:14:0e:51:b4:70:cb:76:35:4e:81:2d:03:cf: 14:6c:6b:be:3d:9c:30:62:e1:5d:8f:4d:ae:df:ec:3b:45:3e: d0:a1:18:11:61:55:aa:31:7f:e9:67:48:4e:d3:74:2d:52:13: 0a:07:11:ea:0f:d9:c1:8d:f1:00:ff:4c:9d:d6:0c:aa:10:9a: e2:5b:a7:58:7d:96:db:17:ed:6c:21:77:3c:a7:d8:a6:f6:28: e6:e0:26:8c:21:f5:67:8d:39:61:80:58:29:b4:10:2f:01:ac: 07:b7:46:14:04:45:eb:50:d3:97:56:95:9a:89:74:e0:63:c3: f9:6a:40:30:af:8f:98:16:44:b0:ce:30:59:06:98:17:ac:27: 3b:8a:04:54:ad:71:bf:1f:5a:fd:14:95:60:86:81:ff:48:98: 34:96:11:93:01:4e:74:1a:a5:d2:a4:6f:91:26:46:ac:5f:d4: f0:61:24:31:b2:9a:35:c1:1a:7b:c7:3b:03:c3:c2:4f:8d:f0: 9a:50:d5:52:8f:b1:6e:cb:cd:9c:8a:99:2e:81:e2:31:91:00: 5b:85:09:a4 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUV5MWhcPux5tsXclpaOlc3q0RdX4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYy NzQ1ODEwMzAeFw0yNTA0MDYxNTEyMzBaFw0yNjA0MDUxNTE3MzBaMDMxMTAvBgNV BAMTKDRCNjI3QUM1MzYxMDE2RjFEMTdDMEI3RTE5MTFCMTQ2RDEzMTVDRTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVrJmvlO1CrJr6nXveFcKZ/fHe 4lhf2SAo2KoW8vtS2KsRfgPiqU4MP5UsVwQu0okKhZgStC3zqSP8DcAN7b3UsDZP zA6FOXsIPvmdSlG0oklWSLBs3sfiAp06Nl4aDV6xRxFLDRpvWy0+P0tnE4uJubkB CSfFD/Gx0Mf6PqmKkUggEvdZJ9Nt2E1CXXWB/yb0ViM6ggexur5x1t/omAQEPFRk dO0Aq3HJ17G3JiZTGFGvy69msrg7kbT4UG1y4enhFzbZ9t2+l0My+19c8p+UpVdE GUvgdYFXcs7+Fdqsn+Zbez/IQ4noU9vd+DAN41xlKJH8x4JTRG4AStPSbGuZAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUS2J6xTYQFvHRfAt+GRGxRtExXOcwHwYDVR0j BBgwFoAUvn+BPzxsoompzaxWMJdbdidFgQMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NDQyMTZkOC03MGNlLTQ5MDgtYTcyYi1lYzI3M2Y0M2JiYzIvMC9CRTdGODEzRjND NkNBMjg5QTlDREFDNTYzMDk3NUI3NjI3NDU4MTAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYyNzQ1 ODEwMy5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNjQ0MjE2ZDgtNzBjZS00OTA4LWE3 MmItZWMyNzNmNDNiYmMyLzAvMzIzNDMwMzIzYTM3MzgzMDNhM2EyZjM0MzgyZDM0 MzgyMDNkM2UyMDM0MzUzNzMyMzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAgeAAAAwDQYJKoZIhvcN AQELBQADggEBAE7aeyLOEPeosAian9lzrZl5PS4qzGJ4S6yZRdY9TdiDZhVSIIF2 t5dQFA5RtHDLdjVOgS0DzxRsa749nDBi4V2PTa7f7DtFPtChGBFhVaoxf+lnSE7T dC1SEwoHEeoP2cGN8QD/TJ3WDKoQmuJbp1h9ltsX7Wwhdzyn2Kb2KObgJowh9WeN OWGAWCm0EC8BrAe3RhQERetQ05dWlZqJdOBjw/lqQDCvj5gWRLDOMFkGmBesJzuK BFStcb8fWv0UlWCGgf9ImDSWEZMBTnQapdKkb5EmRqxf1PBhJDGymjXBGnvHOwPD wk+N8JpQ1VKPsW7LzZyKmS6B4jGRAFuFCaQ= -----END CERTIFICATE-----Generated at Mon Apr 7 02:22:14 2025 by rpki-client