$ rpki-client -vvf repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/323430323a376163303a633030303a3a2f33362d3336203d3e20313337333136.roa File: 323430323a376163303a633030303a3a2f33362d3336203d3e20313337333136.roa (raw, json) Hash identifier: GluRORrk+N0ZpFT5uNMyYECpa1mLrj6W6nckaiXItFc= Subject key identifier: B3:D2:03:E8:05:DF:69:EB:24:2D:03:27:4D:82:AB:44:47:28:4B:19 Certificate issuer: /CN=7B35834A4704C7ED85D62212FC62C46FA5A0666D Certificate serial: 5DEFB5CE5FB6E6F1D858F11891406E20F20DF78E Authority key identifier: 7B:35:83:4A:47:04:C7:ED:85:D6:22:12:FC:62:C4:6F:A5:A0:66:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7B35834A4704C7ED85D62212FC62C46FA5A0666D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/323430323a376163303a633030303a3a2f33362d3336203d3e20313337333136.roa Signing time: Fri 06 Dec 2024 13:26:51 +0000 ROA not before: Fri 06 Dec 2024 13:21:51 +0000 ROA not after: Fri 05 Dec 2025 13:26:51 +0000 asID: 137316 IP address blocks: 2402:7ac0:c000::/36 maxlen: 36 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/7B35834A4704C7ED85D62212FC62C46FA5A0666D.crl rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/7B35834A4704C7ED85D62212FC62C46FA5A0666D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7B35834A4704C7ED85D62212FC62C46FA5A0666D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 09:12:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:ef:b5:ce:5f:b6:e6:f1:d8:58:f1:18:91:40:6e:20:f2:0d:f7:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7B35834A4704C7ED85D62212FC62C46FA5A0666D Validity Not Before: Dec 6 13:21:51 2024 GMT Not After : Dec 5 13:26:51 2025 GMT Subject: CN=B3D203E805DF69EB242D03274D82AB4447284B19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:bb:a1:b4:e2:da:6f:f1:9a:6b:40:14:3b:9f: 4b:ba:25:74:72:78:7a:a4:8a:fc:37:8d:cf:07:51: 19:94:5d:6b:dc:ee:c2:7b:54:a0:7d:bb:5e:19:9b: 75:06:16:5d:ac:2c:6a:17:48:ec:0d:5e:72:3f:b3: 79:dd:f1:d6:77:e0:3e:2c:c9:2d:0c:8b:d0:06:3a: bf:b6:60:dc:ea:eb:68:83:63:c2:8e:79:74:86:1f: ed:a8:e0:63:20:e1:be:2e:79:9c:3d:f1:d0:23:80: ee:6b:f3:1e:d3:8b:62:ef:2c:cb:81:9b:33:36:c1: 30:1e:cb:34:19:91:21:0e:29:6a:37:61:3c:e6:f9: 6b:da:55:0e:01:9a:8b:4c:bc:95:54:ab:68:6d:67: 31:eb:38:0e:f0:90:aa:00:75:d7:a4:93:c8:a0:84: 87:02:d0:a2:8f:bf:0a:e5:92:2a:38:17:73:67:f8: e7:d8:65:60:5b:58:79:ff:42:41:38:37:b8:99:a6: e5:ac:43:c1:81:e0:17:53:ce:43:1e:b6:3d:69:ec: fa:a7:87:96:ed:6b:5e:8c:9a:d8:2e:39:be:a7:9c: 64:44:6e:97:7f:19:dd:14:65:ae:17:be:0c:af:11: 62:f7:7e:40:6b:5d:99:bc:23:e3:f4:4f:89:61:b6: fa:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:D2:03:E8:05:DF:69:EB:24:2D:03:27:4D:82:AB:44:47:28:4B:19 X509v3 Authority Key Identifier: keyid:7B:35:83:4A:47:04:C7:ED:85:D6:22:12:FC:62:C4:6F:A5:A0:66:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/7B35834A4704C7ED85D62212FC62C46FA5A0666D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7B35834A4704C7ED85D62212FC62C46FA5A0666D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6cc462a5-8f74-42af-883b-5e89ee5f2df3/0/323430323a376163303a633030303a3a2f33362d3336203d3e20313337333136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:7ac0:c000::/36 Signature Algorithm: sha256WithRSAEncryption 6c:a7:7e:eb:d6:16:4b:d1:c8:28:69:22:d2:1e:81:fe:64:f1: 99:c1:01:86:4d:f9:f0:3b:c4:d1:ba:f4:9d:aa:87:12:65:b8: 91:72:e6:96:1e:bc:e8:aa:09:af:c5:b6:db:5a:34:d6:a7:4e: b1:1f:7e:e8:86:22:88:18:5a:96:0b:ec:38:74:65:5c:24:2b: 55:a4:68:0b:04:6d:cc:06:2f:16:bc:d9:ba:67:cc:ab:3f:bd: 7a:f7:7f:f5:e3:4c:91:c3:1f:ca:bd:00:4c:a8:10:a9:77:c5: 9b:fe:3c:cc:70:21:9a:d4:06:ac:e6:35:db:46:06:b8:a6:ba: a9:62:2c:b5:ab:c8:03:61:23:9b:eb:23:13:c1:98:17:4a:3f: b4:d2:03:31:2c:80:81:bc:24:50:67:bc:de:dc:e8:94:79:28: 2d:c1:d1:36:e6:a5:4a:76:bb:79:17:5a:77:15:34:5c:02:00: b6:d6:27:71:e0:b4:b6:98:da:de:8f:5e:3c:cc:8f:b8:f6:e3: 86:b0:33:1f:0e:26:72:cf:56:56:23:45:dc:1c:57:7f:f8:da: d5:8f:68:a8:b8:1d:57:fa:6c:4d:0a:6c:b7:39:22:3a:37:b3: 41:42:b6:36:19:a9:cb:6e:01:a2:47:2f:6d:c1:ef:0c:56:9a: 51:5f:d3:1a -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUXe+1zl+25vHYWPEYkUBuIPIN944wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0IzNTgzNEE0NzA0QzdFRDg1RDYyMjEyRkM2MkM0NkZB NUEwNjY2RDAeFw0yNDEyMDYxMzIxNTFaFw0yNTEyMDUxMzI2NTFaMDMxMTAvBgNV BAMTKEIzRDIwM0U4MDVERjY5RUIyNDJEMDMyNzREODJBQjQ0NDcyODRCMTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDtu6G04tpv8ZprQBQ7n0u6JXRy eHqkivw3jc8HURmUXWvc7sJ7VKB9u14Zm3UGFl2sLGoXSOwNXnI/s3nd8dZ34D4s yS0Mi9AGOr+2YNzq62iDY8KOeXSGH+2o4GMg4b4ueZw98dAjgO5r8x7Ti2LvLMuB mzM2wTAeyzQZkSEOKWo3YTzm+WvaVQ4BmotMvJVUq2htZzHrOA7wkKoAddekk8ig hIcC0KKPvwrlkio4F3Nn+OfYZWBbWHn/QkE4N7iZpuWsQ8GB4BdTzkMetj1p7Pqn h5bta16MmtguOb6nnGREbpd/Gd0UZa4XvgyvEWL3fkBrXZm8I+P0T4lhtvrJAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUs9ID6AXfaeskLQMnTYKrREcoSxkwHwYDVR0j BBgwFoAUezWDSkcEx+2F1iIS/GLEb6WgZm0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 Y2M0NjJhNS04Zjc0LTQyYWYtODgzYi01ZTg5ZWU1ZjJkZjMvMC83QjM1ODM0QTQ3 MDRDN0VEODVENjIyMTJGQzYyQzQ2RkE1QTA2NjZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0IzNTgzNEE0NzA0QzdFRDg1RDYyMjEyRkM2MkM0NkZBNUEw NjY2RC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZjYzQ2MmE1LThmNzQtNDJhZi04 ODNiLTVlODllZTVmMmRmMy8wLzMyMzQzMDMyM2EzNzYxNjMzMDNhNjMzMDMwMzAz YTNhMmYzMzM2MmQzMzM2MjAzZDNlMjAzMTMzMzczMzMxMzYucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQk AnrAwDANBgkqhkiG9w0BAQsFAAOCAQEAbKd+69YWS9HIKGki0h6B/mTxmcEBhk35 8DvE0br0naqHEmW4kXLmlh686KoJr8W221o01qdOsR9+6IYiiBhalgvsOHRlXCQr VaRoCwRtzAYvFrzZumfMqz+9evd/9eNMkcMfyr0ATKgQqXfFm/48zHAhmtQGrOY1 20YGuKa6qWIstavIA2Ejm+sjE8GYF0o/tNIDMSyAgbwkUGe83tzolHkoLcHRNual Sna7eRdadxU0XAIAttYnceC0tpja3o9ePMyPuPbjhrAzHw4mcs9WViNF3BxXf/ja 1Y9oqLgdV/psTQpstzkiOjezQUK2Nhmpy24BokcvbcHvDFaaUV/TGg== -----END CERTIFICATE-----Generated at Sun Apr 6 11:03:34 2025 by rpki-client