$ rpki-client -vvf repo-rpki.idnic.net/repo/79fbe088-0d84-4789-b405-25c2e76937f6/0/323430353a373763303a3a2f33322d3438203d3e20313339343439.roa File: 323430353a373763303a3a2f33322d3438203d3e20313339343439.roa (raw, json) Hash identifier: f8MRJxlhbcY8EbEiwgi+/SKPemoWVlSCLt+ZroHUs4Q= Subject key identifier: AA:EF:9D:45:5E:94:90:EC:55:1C:E8:1A:1E:57:31:4D:BF:6D:30:2C Certificate issuer: /CN=D681DB990E904642A480AE9546646329FF5D0162 Certificate serial: 38698811167A5A7D6625363E65A2F3A850C3FF08 Authority key identifier: D6:81:DB:99:0E:90:46:42:A4:80:AE:95:46:64:63:29:FF:5D:01:62 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D681DB990E904642A480AE9546646329FF5D0162.cer Subject info access: rsync://repo-rpki.idnic.net/repo/79fbe088-0d84-4789-b405-25c2e76937f6/0/323430353a373763303a3a2f33322d3438203d3e20313339343439.roa Signing time: Thu 12 Dec 2024 08:01:34 +0000 ROA not before: Thu 12 Dec 2024 07:56:34 +0000 ROA not after: Thu 11 Dec 2025 08:01:34 +0000 asID: 139449 IP address blocks: 2405:77c0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/79fbe088-0d84-4789-b405-25c2e76937f6/0/D681DB990E904642A480AE9546646329FF5D0162.crl rsync://repo-rpki.idnic.net/repo/79fbe088-0d84-4789-b405-25c2e76937f6/0/D681DB990E904642A480AE9546646329FF5D0162.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D681DB990E904642A480AE9546646329FF5D0162.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 03:42:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:69:88:11:16:7a:5a:7d:66:25:36:3e:65:a2:f3:a8:50:c3:ff:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D681DB990E904642A480AE9546646329FF5D0162 Validity Not Before: Dec 12 07:56:34 2024 GMT Not After : Dec 11 08:01:34 2025 GMT Subject: CN=AAEF9D455E9490EC551CE81A1E57314DBF6D302C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:bf:70:05:ca:09:94:d3:3d:2d:64:c2:04:9e: e4:c0:21:7e:41:a5:b5:2f:23:90:18:b1:e9:40:db: 30:a1:4c:e1:50:d5:84:c9:67:86:0c:5f:64:fb:30: 4e:91:4f:35:49:57:21:f0:26:d2:cd:65:37:d9:72: fb:1d:b1:d6:93:f2:4d:3a:94:f9:56:06:20:49:5d: 29:0d:7b:14:54:e6:14:d6:32:04:45:4c:76:2f:f4: 91:2c:41:0c:8e:f9:84:5d:86:0a:34:8b:f2:d8:ba: 73:7f:1b:fd:3d:40:e3:55:03:e2:57:34:d6:4b:48: 41:5a:59:f7:23:62:00:9a:85:bc:07:39:cc:78:d7: 30:b2:1c:c5:b7:2d:c7:72:0b:dc:fe:61:53:70:4e: e2:35:ca:9d:fa:13:58:1a:97:1a:3d:17:75:58:f6: f0:3c:45:ed:20:7c:e3:6a:8f:89:df:08:5e:09:af: 5e:78:3d:02:bd:1c:2a:aa:06:7f:2a:07:44:e4:c8: 00:66:37:44:1b:49:06:af:a7:1b:fb:5d:da:5c:ea: f9:72:a3:20:e2:5b:e1:be:fd:30:9c:2e:ce:b0:f3: 06:5c:f6:a7:8d:b9:f4:61:0f:18:2a:9f:36:0b:19: 21:b2:6a:1d:9f:bd:df:5b:23:ba:da:77:81:ce:96: d3:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:EF:9D:45:5E:94:90:EC:55:1C:E8:1A:1E:57:31:4D:BF:6D:30:2C X509v3 Authority Key Identifier: keyid:D6:81:DB:99:0E:90:46:42:A4:80:AE:95:46:64:63:29:FF:5D:01:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/79fbe088-0d84-4789-b405-25c2e76937f6/0/D681DB990E904642A480AE9546646329FF5D0162.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D681DB990E904642A480AE9546646329FF5D0162.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/79fbe088-0d84-4789-b405-25c2e76937f6/0/323430353a373763303a3a2f33322d3438203d3e20313339343439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:77c0::/32 Signature Algorithm: sha256WithRSAEncryption 47:42:1c:6d:06:7d:5c:56:2e:5e:58:7a:fb:66:fa:74:c4:92: b5:1e:2d:44:51:d6:10:52:2d:40:ee:6f:68:fb:73:93:fa:39: 67:02:6c:15:3a:47:34:91:53:2c:66:12:20:6e:bf:4b:8c:c3: be:0e:d2:82:96:fa:b2:74:b1:15:dd:9a:b6:29:e1:c4:3b:ee: 87:b4:56:f3:8a:ca:47:13:bb:34:60:86:bd:bf:73:a6:60:d8: 18:43:6a:f7:ec:85:b5:00:65:3f:90:a5:0a:3e:dc:db:75:5f: 81:83:18:03:c3:84:09:4c:9a:54:3c:46:74:8a:bf:e4:35:31: 0c:14:06:fe:11:6e:d5:bc:bb:da:5c:f4:e9:5a:bd:ae:fe:90: 09:30:d5:e3:1e:e6:58:eb:13:a8:c7:1a:a5:14:79:fb:8c:5f: 81:c3:e5:a6:6f:68:49:24:63:8b:b5:0c:3a:58:c4:b0:ba:da: 61:e5:a2:72:9f:a5:0e:ec:24:1f:a2:74:91:03:12:90:cd:e7: 20:db:49:ca:51:34:21:50:b3:9f:d1:74:89:4d:dd:91:d1:01: 3a:7c:71:9f:5e:da:88:50:fa:5a:93:18:cc:46:98:19:a8:55: 45:93:1b:d3:8b:31:29:3c:c9:bc:03:08:76:69:84:1d:23:37: 01:a5:38:75 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUOGmIERZ6Wn1mJTY+ZaLzqFDD/wgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDY4MURCOTkwRTkwNDY0MkE0ODBBRTk1NDY2NDYzMjlG RjVEMDE2MjAeFw0yNDEyMTIwNzU2MzRaFw0yNTEyMTEwODAxMzRaMDMxMTAvBgNV BAMTKEFBRUY5RDQ1NUU5NDkwRUM1NTFDRTgxQTFFNTczMTREQkY2RDMwMkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRv3AFygmU0z0tZMIEnuTAIX5B pbUvI5AYselA2zChTOFQ1YTJZ4YMX2T7ME6RTzVJVyHwJtLNZTfZcvsdsdaT8k06 lPlWBiBJXSkNexRU5hTWMgRFTHYv9JEsQQyO+YRdhgo0i/LYunN/G/09QONVA+JX NNZLSEFaWfcjYgCahbwHOcx41zCyHMW3LcdyC9z+YVNwTuI1yp36E1galxo9F3VY 9vA8Re0gfONqj4nfCF4Jr154PQK9HCqqBn8qB0TkyABmN0QbSQavpxv7Xdpc6vly oyDiW+G+/TCcLs6w8wZc9qeNufRhDxgqnzYLGSGyah2fvd9bI7rad4HOltOtAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUqu+dRV6UkOxVHOgaHlcxTb9tMCwwHwYDVR0j BBgwFoAU1oHbmQ6QRkKkgK6VRmRjKf9dAWIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 OWZiZTA4OC0wZDg0LTQ3ODktYjQwNS0yNWMyZTc2OTM3ZjYvMC9ENjgxREI5OTBF OTA0NjQyQTQ4MEFFOTU0NjY0NjMyOUZGNUQwMTYyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDY4MURCOTkwRTkwNDY0MkE0ODBBRTk1NDY2NDYzMjlGRjVE MDE2Mi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc5ZmJlMDg4LTBkODQtNDc4OS1i NDA1LTI1YzJlNzY5MzdmNi8wLzMyMzQzMDM1M2EzNzM3NjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzOTM0MzQzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQFd8AwDQYJKoZI hvcNAQELBQADggEBAEdCHG0GfVxWLl5Yevtm+nTEkrUeLURR1hBSLUDub2j7c5P6 OWcCbBU6RzSRUyxmEiBuv0uMw74O0oKW+rJ0sRXdmrYp4cQ77oe0VvOKykcTuzRg hr2/c6Zg2BhDavfshbUAZT+QpQo+3Nt1X4GDGAPDhAlMmlQ8RnSKv+Q1MQwUBv4R btW8u9pc9Olava7+kAkw1eMe5ljrE6jHGqUUefuMX4HD5aZvaEkkY4u1DDpYxLC6 2mHlonKfpQ7sJB+idJEDEpDN5yDbScpRNCFQs5/RdIlN3ZHRATp8cZ9e2ohQ+lqT GMxGmBmoVUWTG9OLMSk8ybwDCHZphB0jNwGlOHU= -----END CERTIFICATE-----Generated at Sun Apr 6 14:10:38 2025 by rpki-client