$ rpki-client -vvf repo-rpki.idnic.net/repo/6e2c9285-c09a-4506-a320-fda1a07fd9ec/0/323430333a653863303a3a2f33322d3332203d3e20313338303930.roa File: 323430333a653863303a3a2f33322d3332203d3e20313338303930.roa (raw, json) Hash identifier: lF0dOyIyZG9RuRsQ/tt5Ru3/SkbdBI8dlNM+ehbBJXc= Subject key identifier: BC:EC:A1:CE:F9:5C:64:A2:66:18:FA:E9:AB:DD:5D:A8:29:2F:79:13 Certificate issuer: /CN=9D25181C9096851A77EB95DA55649E08E3B7941B Certificate serial: 59A200E0F08B401D2D070EF2F075A56476934B84 Authority key identifier: 9D:25:18:1C:90:96:85:1A:77:EB:95:DA:55:64:9E:08:E3:B7:94:1B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9D25181C9096851A77EB95DA55649E08E3B7941B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6e2c9285-c09a-4506-a320-fda1a07fd9ec/0/323430333a653863303a3a2f33322d3332203d3e20313338303930.roa Signing time: Thu 03 Apr 2025 01:00:00 +0000 ROA not before: Thu 03 Apr 2025 00:55:00 +0000 ROA not after: Thu 02 Apr 2026 01:00:00 +0000 asID: 138090 IP address blocks: 2403:e8c0::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6e2c9285-c09a-4506-a320-fda1a07fd9ec/0/9D25181C9096851A77EB95DA55649E08E3B7941B.crl rsync://repo-rpki.idnic.net/repo/6e2c9285-c09a-4506-a320-fda1a07fd9ec/0/9D25181C9096851A77EB95DA55649E08E3B7941B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9D25181C9096851A77EB95DA55649E08E3B7941B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 10:40:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:a2:00:e0:f0:8b:40:1d:2d:07:0e:f2:f0:75:a5:64:76:93:4b:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9D25181C9096851A77EB95DA55649E08E3B7941B Validity Not Before: Apr 3 00:55:00 2025 GMT Not After : Apr 2 01:00:00 2026 GMT Subject: CN=BCECA1CEF95C64A26618FAE9ABDD5DA8292F7913 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:18:9a:7a:80:63:09:b0:f6:1a:01:e0:c7:6c: c4:97:5a:c7:00:17:6e:8b:40:cd:42:65:dd:50:b3: 4e:c8:09:0c:4c:ae:91:78:81:d2:35:f7:fc:1a:e6: f1:39:3e:41:fd:9c:85:8a:99:e2:3c:ff:75:39:87: ac:82:ea:ff:67:88:18:34:28:53:56:b2:85:e8:bd: b4:61:3b:69:cf:de:8c:76:65:36:5e:58:8c:72:84: 07:3d:b7:55:99:36:78:83:a6:1e:e9:96:35:c0:b9: 27:dd:4f:25:6b:e4:8b:a3:d9:ba:8c:88:ab:55:04: 0b:3c:1d:57:84:8f:87:dd:66:6b:8b:5b:5a:82:79: 0f:8f:95:a4:00:e7:46:bd:11:d7:83:52:73:bb:bb: 21:6c:c4:72:1c:94:2b:65:c1:c9:22:22:33:a9:6b: fc:94:8f:f8:2a:a0:09:6b:31:7f:d3:1e:7a:c6:7f: 2d:c8:56:20:1d:60:e8:b7:93:b5:3f:96:8d:dc:85: f4:fa:9f:e5:d5:fb:78:a0:6e:e3:27:ef:1e:8a:d5: df:24:c6:ec:e2:5e:ff:ac:fa:ec:51:37:d0:07:0a: 06:3e:33:49:25:ee:b7:3d:e0:95:1f:05:33:15:bd: 05:e2:b9:70:40:aa:51:8e:08:9c:4f:4b:0e:1d:b4: 89:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:EC:A1:CE:F9:5C:64:A2:66:18:FA:E9:AB:DD:5D:A8:29:2F:79:13 X509v3 Authority Key Identifier: keyid:9D:25:18:1C:90:96:85:1A:77:EB:95:DA:55:64:9E:08:E3:B7:94:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6e2c9285-c09a-4506-a320-fda1a07fd9ec/0/9D25181C9096851A77EB95DA55649E08E3B7941B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9D25181C9096851A77EB95DA55649E08E3B7941B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6e2c9285-c09a-4506-a320-fda1a07fd9ec/0/323430333a653863303a3a2f33322d3332203d3e20313338303930.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:e8c0::/32 Signature Algorithm: sha256WithRSAEncryption 28:46:d4:e5:ad:b4:16:f4:75:4a:2e:3f:eb:d3:83:62:29:84: 15:d3:d3:8d:50:7b:f9:6b:ba:42:4b:b5:64:b5:42:bb:f9:45: fc:11:97:aa:3f:60:fe:cd:55:bc:67:48:60:eb:46:44:d2:2a: 28:4e:ad:79:0d:3f:a5:fa:a0:b6:da:91:7e:32:f9:c1:36:53: 73:d0:23:e3:d4:59:03:05:0e:61:23:0c:3a:b1:3b:43:87:25: da:94:45:b1:25:cb:c7:99:3b:d5:69:54:42:d4:ee:08:ce:57: a6:4b:78:67:2c:84:9f:ed:2d:cd:bf:05:46:36:da:16:5e:13: 22:9b:af:f8:5d:8f:c1:a5:a8:72:05:50:02:91:f2:a0:a7:93: 5a:7c:78:7d:ce:48:c3:ca:b3:05:87:ba:df:9a:00:42:09:73: e0:25:74:87:ab:e0:01:38:8e:7f:85:62:25:f1:12:62:8d:16: 52:a9:61:62:64:3d:d2:a8:42:23:a6:de:d8:db:15:33:3a:0d: 40:a4:cf:93:38:b9:0c:9b:e7:0f:42:60:15:32:2a:86:9f:2a: 0c:b5:15:c5:c2:ea:7b:e1:62:21:bd:cc:3f:77:48:06:1f:fe: b3:ce:59:71:e0:62:66:11:06:83:15:55:4b:e5:68:b2:3b:74: bb:b3:04:03 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUWaIA4PCLQB0tBw7y8HWlZHaTS4QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUQyNTE4MUM5MDk2ODUxQTc3RUI5NURBNTU2NDlFMDhF M0I3OTQxQjAeFw0yNTA0MDMwMDU1MDBaFw0yNjA0MDIwMTAwMDBaMDMxMTAvBgNV BAMTKEJDRUNBMUNFRjk1QzY0QTI2NjE4RkFFOUFCREQ1REE4MjkyRjc5MTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDzGJp6gGMJsPYaAeDHbMSXWscA F26LQM1CZd1Qs07ICQxMrpF4gdI19/wa5vE5PkH9nIWKmeI8/3U5h6yC6v9niBg0 KFNWsoXovbRhO2nP3ox2ZTZeWIxyhAc9t1WZNniDph7pljXAuSfdTyVr5Iuj2bqM iKtVBAs8HVeEj4fdZmuLW1qCeQ+PlaQA50a9EdeDUnO7uyFsxHIclCtlwckiIjOp a/yUj/gqoAlrMX/THnrGfy3IViAdYOi3k7U/lo3chfT6n+XV+3igbuMn7x6K1d8k xuziXv+s+uxRN9AHCgY+M0kl7rc94JUfBTMVvQXiuXBAqlGOCJxPSw4dtIlZAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUvOyhzvlcZKJmGPrpq91dqCkveRMwHwYDVR0j BBgwFoAUnSUYHJCWhRp365XaVWSeCOO3lBswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZTJjOTI4NS1jMDlhLTQ1MDYtYTMyMC1mZGExYTA3ZmQ5ZWMvMC85RDI1MTgxQzkw OTY4NTFBNzdFQjk1REE1NTY0OUUwOEUzQjc5NDFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUQyNTE4MUM5MDk2ODUxQTc3RUI5NURBNTU2NDlFMDhFM0I3 OTQxQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZlMmM5Mjg1LWMwOWEtNDUwNi1h MzIwLWZkYTFhMDdmZDllYy8wLzMyMzQzMDMzM2E2NTM4NjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzODMwMzkzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQD6MAwDQYJKoZI hvcNAQELBQADggEBAChG1OWttBb0dUouP+vTg2IphBXT041Qe/lrukJLtWS1Qrv5 RfwRl6o/YP7NVbxnSGDrRkTSKihOrXkNP6X6oLbakX4y+cE2U3PQI+PUWQMFDmEj DDqxO0OHJdqURbEly8eZO9VpVELU7gjOV6ZLeGcshJ/tLc2/BUY22hZeEyKbr/hd j8GlqHIFUAKR8qCnk1p8eH3OSMPKswWHut+aAEIJc+AldIer4AE4jn+FYiXxEmKN FlKpYWJkPdKoQiOm3tjbFTM6DUCkz5M4uQyb5w9CYBUyKoafKgy1FcXC6nvhYiG9 zD93SAYf/rPOWXHgYmYRBoMVVUvlaLI7dLuzBAM= -----END CERTIFICATE-----Generated at Sun Apr 6 13:54:02 2025 by rpki-client