$ rpki-client -vvf repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/323430323a376163303a623030303a3a2f33362d3336203d3e20313337333136.roa File: 323430323a376163303a623030303a3a2f33362d3336203d3e20313337333136.roa (raw, json) Hash identifier: SSNH/8sgMyh2GdaudMS1OcVjJYHuLixpoQxB/Sd42Vs= Subject key identifier: 5E:6F:A8:4C:17:F5:57:4B:70:55:DE:DA:52:FB:17:59:C3:94:71:BA Certificate issuer: /CN=7B35834A4704C7ED85D62212FC62C46FA5A0666D Certificate serial: 3F43144D33A205951C6661F8EB1FBEF685A4BC4A Authority key identifier: 7B:35:83:4A:47:04:C7:ED:85:D6:22:12:FC:62:C4:6F:A5:A0:66:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7B35834A4704C7ED85D62212FC62C46FA5A0666D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/323430323a376163303a623030303a3a2f33362d3336203d3e20313337333136.roa Signing time: Fri 06 Dec 2024 13:26:41 +0000 ROA not before: Fri 06 Dec 2024 13:21:41 +0000 ROA not after: Fri 05 Dec 2025 13:26:41 +0000 asID: 137316 IP address blocks: 2402:7ac0:b000::/36 maxlen: 36 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/7B35834A4704C7ED85D62212FC62C46FA5A0666D.crl rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/7B35834A4704C7ED85D62212FC62C46FA5A0666D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7B35834A4704C7ED85D62212FC62C46FA5A0666D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 09:12:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:43:14:4d:33:a2:05:95:1c:66:61:f8:eb:1f:be:f6:85:a4:bc:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7B35834A4704C7ED85D62212FC62C46FA5A0666D Validity Not Before: Dec 6 13:21:41 2024 GMT Not After : Dec 5 13:26:41 2025 GMT Subject: CN=5E6FA84C17F5574B7055DEDA52FB1759C39471BA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:23:95:5a:d9:b6:7c:64:58:94:b0:a8:81:80: 7a:2a:93:4e:a1:8f:3c:e4:61:70:79:a6:dc:28:66: 0a:ae:4e:c8:9f:d1:74:39:c1:9f:d0:d0:40:73:99: 3a:f8:26:3e:e3:be:a0:38:56:d2:5b:d5:c4:5c:73: 2f:84:94:cb:45:80:b6:e3:c2:2c:57:47:a4:7e:81: 37:b4:c6:a9:1a:94:d8:8e:1c:5a:a8:25:90:c5:8b: 16:7b:b6:36:d1:e4:b9:5c:10:04:46:94:1c:fc:ee: d9:9b:7a:8d:2a:83:77:df:ac:4f:1b:b7:d4:79:1f: a7:fb:92:3c:23:59:55:35:6f:f4:e4:e7:3b:c8:e0: 71:62:20:d3:76:4c:4e:10:7c:e7:8d:2f:1a:1b:b4: bc:2d:d7:26:1a:d5:9d:6d:46:e2:ee:05:c9:7b:c1: 2e:cc:25:5e:6a:0e:97:db:1d:01:6c:46:9a:12:53: 42:25:b6:7a:3a:8e:60:08:61:38:e2:84:fb:08:a2: 53:85:2d:30:73:a5:09:0c:39:22:70:5a:4f:22:ce: 30:17:a0:82:04:3c:20:c7:b4:d6:37:94:aa:e0:18: 74:0c:a9:fd:ee:5d:b3:31:fc:83:24:39:38:67:91: 26:63:a1:9b:45:ec:ae:27:f7:11:ab:04:22:46:4a: 3b:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:6F:A8:4C:17:F5:57:4B:70:55:DE:DA:52:FB:17:59:C3:94:71:BA X509v3 Authority Key Identifier: keyid:7B:35:83:4A:47:04:C7:ED:85:D6:22:12:FC:62:C4:6F:A5:A0:66:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/7B35834A4704C7ED85D62212FC62C46FA5A0666D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7B35834A4704C7ED85D62212FC62C46FA5A0666D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/323430323a376163303a623030303a3a2f33362d3336203d3e20313337333136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:7ac0:b000::/36 Signature Algorithm: sha256WithRSAEncryption 28:77:f9:63:da:90:77:d2:bc:32:b4:1b:ef:5c:99:b1:d3:18: 76:37:d1:d9:3f:8c:7b:de:3a:b9:30:31:44:bc:4c:cb:c1:46: 47:c8:ac:ed:ed:dc:cb:b9:47:41:30:06:ad:36:fc:55:fe:77: ca:82:84:87:2d:5b:39:48:bd:3f:42:97:7e:1b:a3:4f:45:66: 60:a9:21:e7:e3:74:e9:38:4b:5a:e6:34:0d:1a:fa:07:cf:7a: dc:bf:40:03:83:c2:a5:6c:38:3f:4a:cf:27:1a:6d:30:72:4e: 6d:25:57:2a:c0:1a:a4:58:75:8c:a1:46:94:bd:17:1b:78:1f: 5c:ec:0c:11:96:78:3b:8e:57:30:8a:4a:13:9d:51:71:64:b0: f8:67:06:16:f3:39:d6:50:1b:50:57:1e:c9:e6:d6:38:7f:fd: 0f:3f:76:db:66:3f:ab:85:41:41:c4:ef:de:a2:62:48:d5:3d: f0:c3:dd:37:c5:8d:38:a5:01:7f:eb:10:87:1e:15:17:f0:1d: 03:03:af:9d:40:e2:89:dd:d6:0c:8d:74:bb:c1:1b:fb:fe:e2: df:27:b0:d2:ae:00:89:b2:77:bf:59:a8:74:eb:33:7d:8e:e9: 0e:35:39:e3:1b:7b:d1:16:29:80:aa:51:4e:10:36:07:10:e3: 18:35:6d:0a -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUP0MUTTOiBZUcZmH46x++9oWkvEowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0IzNTgzNEE0NzA0QzdFRDg1RDYyMjEyRkM2MkM0NkZB NUEwNjY2RDAeFw0yNDEyMDYxMzIxNDFaFw0yNTEyMDUxMzI2NDFaMDMxMTAvBgNV BAMTKDVFNkZBODRDMTdGNTU3NEI3MDU1REVEQTUyRkIxNzU5QzM5NDcxQkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxI5Va2bZ8ZFiUsKiBgHoqk06h jzzkYXB5ptwoZgquTsif0XQ5wZ/Q0EBzmTr4Jj7jvqA4VtJb1cRccy+ElMtFgLbj wixXR6R+gTe0xqkalNiOHFqoJZDFixZ7tjbR5LlcEARGlBz87tmbeo0qg3ffrE8b t9R5H6f7kjwjWVU1b/Tk5zvI4HFiINN2TE4QfOeNLxobtLwt1yYa1Z1tRuLuBcl7 wS7MJV5qDpfbHQFsRpoSU0Iltno6jmAIYTjihPsIolOFLTBzpQkMOSJwWk8izjAX oIIEPCDHtNY3lKrgGHQMqf3uXbMx/IMkOThnkSZjoZtF7K4n9xGrBCJGSjvbAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUXm+oTBf1V0twVd7aUvsXWcOUcbowHwYDVR0j BBgwFoAUezWDSkcEx+2F1iIS/GLEb6WgZm0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 Y2M0NjJhNS04Zjc0LTQyYWYtODgzYi01ZTg5ZWU1ZjJkZjMvMC83QjM1ODM0QTQ3 MDRDN0VEODVENjIyMTJGQzYyQzQ2RkE1QTA2NjZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0IzNTgzNEE0NzA0QzdFRDg1RDYyMjEyRkM2MkM0NkZBNUEw NjY2RC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZjYzQ2MmE1LThmNzQtNDJhZi04 ODNiLTVlODllZTVmMmRmMy8wLzMyMzQzMDMyM2EzNzYxNjMzMDNhNjIzMDMwMzAz YTNhMmYzMzM2MmQzMzM2MjAzZDNlMjAzMTMzMzczMzMxMzYucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQk AnrAsDANBgkqhkiG9w0BAQsFAAOCAQEAKHf5Y9qQd9K8MrQb71yZsdMYdjfR2T+M e946uTAxRLxMy8FGR8is7e3cy7lHQTAGrTb8Vf53yoKEhy1bOUi9P0KXfhujT0Vm YKkh5+N06ThLWuY0DRr6B8963L9AA4PCpWw4P0rPJxptMHJObSVXKsAapFh1jKFG lL0XG3gfXOwMEZZ4O45XMIpKE51RcWSw+GcGFvM51lAbUFceyebWOH/9Dz9222Y/ q4VBQcTv3qJiSNU98MPdN8WNOKUBf+sQhx4VF/AdAwOvnUDiid3WDI10u8Eb+/7i 3yew0q4AibJ3v1modOszfY7pDjU54xt70RYpgKpRThA2BxDjGDVtCg== -----END CERTIFICATE-----Generated at Sun Apr 6 11:08:27 2025 by rpki-client