$ rpki-client -vvf repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/323430323a376163303a333030303a3a2f33362d3336203d3e20313337333136.roa File: 323430323a376163303a333030303a3a2f33362d3336203d3e20313337333136.roa (raw, json) Hash identifier: oR6JcMVSxn1iCQ3YzjC37JE4xRZl6WB1jE8ceuDSM7c= Subject key identifier: B7:6A:6C:19:2D:77:8E:F3:06:DE:C9:E4:4B:EE:A3:91:21:4F:20:58 Certificate issuer: /CN=7B35834A4704C7ED85D62212FC62C46FA5A0666D Certificate serial: 0CE172C419640E5ACE9CB3C635A9E68D0C9F8189 Authority key identifier: 7B:35:83:4A:47:04:C7:ED:85:D6:22:12:FC:62:C4:6F:A5:A0:66:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7B35834A4704C7ED85D62212FC62C46FA5A0666D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/323430323a376163303a333030303a3a2f33362d3336203d3e20313337333136.roa Signing time: Fri 06 Dec 2024 13:24:53 +0000 ROA not before: Fri 06 Dec 2024 13:19:53 +0000 ROA not after: Fri 05 Dec 2025 13:24:53 +0000 asID: 137316 IP address blocks: 2402:7ac0:3000::/36 maxlen: 36 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/7B35834A4704C7ED85D62212FC62C46FA5A0666D.crl rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/7B35834A4704C7ED85D62212FC62C46FA5A0666D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7B35834A4704C7ED85D62212FC62C46FA5A0666D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 09:12:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:e1:72:c4:19:64:0e:5a:ce:9c:b3:c6:35:a9:e6:8d:0c:9f:81:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7B35834A4704C7ED85D62212FC62C46FA5A0666D Validity Not Before: Dec 6 13:19:53 2024 GMT Not After : Dec 5 13:24:53 2025 GMT Subject: CN=B76A6C192D778EF306DEC9E44BEEA391214F2058 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:f7:f8:f7:65:49:32:a5:6d:09:93:3f:8e:35: be:47:57:d2:ca:84:b6:5b:15:09:1c:6f:d4:16:fc: 79:04:ed:4f:5a:e0:77:d3:42:d5:07:79:db:8d:bd: 17:13:25:79:e7:5a:26:2e:05:cf:b2:78:f8:df:54: 45:f4:0a:8d:66:9f:da:27:ea:11:32:5e:ba:59:11: e9:9f:ec:1d:05:34:ac:50:99:3e:1c:79:95:49:db: 42:af:00:ca:14:02:0d:46:fe:14:ae:41:e9:e8:b6: 55:0e:a6:f1:85:2e:3b:55:08:a3:3c:e2:b4:ca:80: 73:32:41:02:fb:28:cf:c1:f2:5a:b5:ff:f3:3e:bd: fe:b5:40:d0:c9:13:8d:f4:4a:84:77:a2:80:6b:1b: a3:14:2d:4d:69:8b:ce:d1:c8:4b:30:d9:cf:43:f4: 76:30:58:6b:ff:9e:67:35:02:16:68:70:4d:3e:de: 42:6f:ae:13:3d:c0:58:1f:da:5f:64:98:40:bc:0e: 79:6a:eb:03:b8:82:3e:91:b5:4c:87:ec:86:e2:23: c7:d9:37:6b:94:a9:68:88:ad:31:ab:10:a1:f4:4b: 2e:e6:af:27:cd:05:86:38:41:f1:bc:21:93:be:20: ba:60:28:c7:13:81:75:53:43:9a:84:6b:69:30:f6: 26:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:6A:6C:19:2D:77:8E:F3:06:DE:C9:E4:4B:EE:A3:91:21:4F:20:58 X509v3 Authority Key Identifier: keyid:7B:35:83:4A:47:04:C7:ED:85:D6:22:12:FC:62:C4:6F:A5:A0:66:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/7B35834A4704C7ED85D62212FC62C46FA5A0666D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7B35834A4704C7ED85D62212FC62C46FA5A0666D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/323430323a376163303a333030303a3a2f33362d3336203d3e20313337333136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:7ac0:3000::/36 Signature Algorithm: sha256WithRSAEncryption 52:87:fb:d1:3a:a6:5a:81:f0:49:f8:d5:54:20:af:8a:20:21: 11:cc:65:5e:e4:a4:54:ed:75:d1:5a:6b:84:97:b7:d7:76:5b: 3e:aa:f3:2a:71:49:d4:ed:c4:4b:41:f2:b1:a8:f9:4a:33:c1: 71:6e:5c:17:a6:3b:29:bc:a3:06:f6:5a:0b:61:59:b8:ea:10: 23:fb:27:f6:03:e7:9d:4a:03:3e:3a:6c:87:96:03:53:8b:8f: e1:35:51:a6:cb:26:7e:2e:50:31:ff:5c:f5:67:60:78:16:d9: fa:28:52:2a:4b:2f:16:82:9c:ec:3d:8b:4e:38:3a:41:e6:76: 1b:67:a9:92:f8:bd:1c:57:f2:99:04:de:8d:91:cb:ec:14:08: b9:8f:93:0f:1f:e6:5c:52:13:18:41:ab:cf:81:8f:9f:42:e8: e1:39:02:6e:65:0e:11:eb:03:4a:2d:a2:d2:cd:49:46:b3:b3: 7f:01:7b:04:9e:6d:dc:95:86:f3:7f:f7:bb:e7:29:2d:50:8d: 0a:59:1c:31:a2:e3:2d:8a:7a:b3:3c:33:2b:c4:2d:ab:bb:09: 40:fa:11:5b:a3:b5:a6:6f:9f:68:bd:64:b7:58:90:6c:ee:c6: ce:d3:79:47:cd:a6:ee:da:90:c2:58:bc:75:d3:69:44:99:de: 0c:56:a0:af -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUDOFyxBlkDlrOnLPGNanmjQyfgYkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0IzNTgzNEE0NzA0QzdFRDg1RDYyMjEyRkM2MkM0NkZB NUEwNjY2RDAeFw0yNDEyMDYxMzE5NTNaFw0yNTEyMDUxMzI0NTNaMDMxMTAvBgNV BAMTKEI3NkE2QzE5MkQ3NzhFRjMwNkRFQzlFNDRCRUVBMzkxMjE0RjIwNTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDR9/j3ZUkypW0Jkz+ONb5HV9LK hLZbFQkcb9QW/HkE7U9a4HfTQtUHeduNvRcTJXnnWiYuBc+yePjfVEX0Co1mn9on 6hEyXrpZEemf7B0FNKxQmT4ceZVJ20KvAMoUAg1G/hSuQenotlUOpvGFLjtVCKM8 4rTKgHMyQQL7KM/B8lq1//M+vf61QNDJE430SoR3ooBrG6MULU1pi87RyEsw2c9D 9HYwWGv/nmc1AhZocE0+3kJvrhM9wFgf2l9kmEC8Dnlq6wO4gj6RtUyH7IbiI8fZ N2uUqWiIrTGrEKH0Sy7mryfNBYY4QfG8IZO+ILpgKMcTgXVTQ5qEa2kw9iahAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUt2psGS13jvMG3snkS+6jkSFPIFgwHwYDVR0j BBgwFoAUezWDSkcEx+2F1iIS/GLEb6WgZm0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 Y2M0NjJhNS04Zjc0LTQyYWYtODgzYi01ZTg5ZWU1ZjJkZjMvMC83QjM1ODM0QTQ3 MDRDN0VEODVENjIyMTJGQzYyQzQ2RkE1QTA2NjZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0IzNTgzNEE0NzA0QzdFRDg1RDYyMjEyRkM2MkM0NkZBNUEw NjY2RC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZjYzQ2MmE1LThmNzQtNDJhZi04 ODNiLTVlODllZTVmMmRmMy8wLzMyMzQzMDMyM2EzNzYxNjMzMDNhMzMzMDMwMzAz YTNhMmYzMzM2MmQzMzM2MjAzZDNlMjAzMTMzMzczMzMxMzYucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQk AnrAMDANBgkqhkiG9w0BAQsFAAOCAQEAUof70TqmWoHwSfjVVCCviiAhEcxlXuSk VO110VprhJe313ZbPqrzKnFJ1O3ES0Hysaj5SjPBcW5cF6Y7KbyjBvZaC2FZuOoQ I/sn9gPnnUoDPjpsh5YDU4uP4TVRpssmfi5QMf9c9WdgeBbZ+ihSKksvFoKc7D2L Tjg6QeZ2G2epkvi9HFfymQTejZHL7BQIuY+TDx/mXFITGEGrz4GPn0Lo4TkCbmUO EesDSi2i0s1JRrOzfwF7BJ5t3JWG83/3u+cpLVCNClkcMaLjLYp6szwzK8Qtq7sJ QPoRW6O1pm+faL1kt1iQbO7GztN5R82m7tqQwli8ddNpRJneDFagrw== -----END CERTIFICATE-----Generated at Sun Apr 6 11:01:20 2025 by rpki-client