$ rpki-client -vvf repo-rpki.idnic.net/repo/7b3eabb4-4db3-4373-a348-fb1ed7055651/0/323030313a6466333a356238303a3a2f34382d3438203d3e20313430333839.roa File: 323030313a6466333a356238303a3a2f34382d3438203d3e20313430333839.roa (raw, json) Hash identifier: JKFEKy2zDD0/MbgGmVCYEU7vyiWQJvpcUY2RjG6e1rs= Subject key identifier: 46:03:4F:25:86:1D:C9:68:21:D8:08:F7:22:E6:54:BD:1E:2A:83:7B Certificate issuer: /CN=5C413D56294D9D20E64978B7296A9DA893C32CAB Certificate serial: 17CB0CDCF0BC92BFBDCC59368F64AF2E99997B06 Authority key identifier: 5C:41:3D:56:29:4D:9D:20:E6:49:78:B7:29:6A:9D:A8:93:C3:2C:AB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5C413D56294D9D20E64978B7296A9DA893C32CAB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7b3eabb4-4db3-4373-a348-fb1ed7055651/0/323030313a6466333a356238303a3a2f34382d3438203d3e20313430333839.roa Signing time: Tue 07 Jan 2025 04:01:26 +0000 ROA not before: Tue 07 Jan 2025 03:56:26 +0000 ROA not after: Tue 06 Jan 2026 04:01:26 +0000 asID: 140389 IP address blocks: 2001:df3:5b80::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7b3eabb4-4db3-4373-a348-fb1ed7055651/0/5C413D56294D9D20E64978B7296A9DA893C32CAB.crl rsync://repo-rpki.idnic.net/repo/7b3eabb4-4db3-4373-a348-fb1ed7055651/0/5C413D56294D9D20E64978B7296A9DA893C32CAB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5C413D56294D9D20E64978B7296A9DA893C32CAB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 03:48:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:cb:0c:dc:f0:bc:92:bf:bd:cc:59:36:8f:64:af:2e:99:99:7b:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5C413D56294D9D20E64978B7296A9DA893C32CAB Validity Not Before: Jan 7 03:56:26 2025 GMT Not After : Jan 6 04:01:26 2026 GMT Subject: CN=46034F25861DC96821D808F722E654BD1E2A837B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:14:60:31:f9:fe:6b:56:33:f6:22:84:f8:24: a3:8f:70:69:89:88:ff:9a:36:f9:18:5b:95:cc:07: c8:73:73:de:ee:57:a1:7f:07:04:b2:3e:97:c1:b2: cc:84:b9:3e:3f:90:07:47:fd:f6:6c:f6:2b:56:89: ab:13:dd:69:c8:31:2f:6d:7a:69:f4:5d:58:3f:0d: 54:7c:c3:80:a1:3c:59:98:95:ce:9c:33:11:7a:c9: 52:7e:f5:6d:c8:71:f7:50:a5:f4:c3:ce:f4:98:09: c8:a9:c7:d0:69:76:f2:6c:ab:c0:d9:cd:ae:b6:34: 64:7d:42:df:5e:ae:69:bd:35:dd:ed:df:41:2b:34: 64:b8:74:65:95:19:2c:4c:0c:e7:7e:ee:13:14:13: 77:23:8a:e1:07:1c:05:bd:38:20:c1:bb:e3:e1:bd: 42:a1:56:ad:e6:dc:a3:38:90:b5:5b:fc:f3:fd:eb: 83:24:f6:bc:e6:30:37:ba:34:56:83:53:02:63:cf: 85:e2:bf:67:56:86:85:4f:9c:ac:d1:a1:d3:15:74: 06:45:3d:f9:58:6e:92:b1:d9:8f:fd:67:88:c9:ba: 0b:7a:4e:c9:6e:b8:3e:ef:2c:04:5e:21:cb:00:9c: bd:13:4d:06:3c:8e:64:e7:b8:86:98:82:1d:3c:dc: 5c:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:03:4F:25:86:1D:C9:68:21:D8:08:F7:22:E6:54:BD:1E:2A:83:7B X509v3 Authority Key Identifier: keyid:5C:41:3D:56:29:4D:9D:20:E6:49:78:B7:29:6A:9D:A8:93:C3:2C:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7b3eabb4-4db3-4373-a348-fb1ed7055651/0/5C413D56294D9D20E64978B7296A9DA893C32CAB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5C413D56294D9D20E64978B7296A9DA893C32CAB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7b3eabb4-4db3-4373-a348-fb1ed7055651/0/323030313a6466333a356238303a3a2f34382d3438203d3e20313430333839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:5b80::/48 Signature Algorithm: sha256WithRSAEncryption 80:52:27:8e:0c:2e:97:2e:ac:05:1f:55:d7:54:cb:cc:0d:29: 44:dc:ea:2a:6b:02:ac:74:55:6c:49:89:c6:9d:25:39:e2:f9: 49:9e:b3:02:b1:20:76:bd:49:ca:38:25:43:ec:2a:f1:25:0d: 02:6a:14:37:08:80:5e:87:08:26:78:c6:df:91:1e:71:7c:cd: 2d:78:a3:f1:57:73:eb:a0:7c:8c:8a:19:c1:15:10:2d:0f:c0: 4f:17:00:d9:3c:95:d8:96:b3:73:64:6c:ba:c4:42:99:1a:f8: 02:2b:67:73:9d:97:62:b4:09:e7:82:cf:b0:e8:dd:26:9e:35: d8:42:b6:e5:77:52:be:b1:8b:08:02:c9:a1:9f:1d:92:88:d2: 4d:4c:10:c4:bf:ac:f9:36:ce:01:78:8d:c2:39:6e:ce:86:eb: 16:56:b0:32:b0:67:3b:48:8e:0d:b1:9b:38:07:71:ba:c6:a9: 7a:a2:64:ce:3a:12:64:fc:b7:87:37:bf:2a:72:2d:a4:fb:56: 8f:e7:97:ef:ab:53:3c:e2:ec:7a:78:e8:07:1a:2a:95:a1:47: b7:02:a1:11:f7:9d:c9:1e:e8:9e:0b:10:a9:f9:04:65:b7:34: 78:f3:e5:ef:dd:4f:09:76:fa:b6:85:c9:96:5e:64:51:03:24: 45:4e:bf:6f -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUF8sM3PC8kr+9zFk2j2SvLpmZewYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUM0MTNENTYyOTREOUQyMEU2NDk3OEI3Mjk2QTlEQTg5 M0MzMkNBQjAeFw0yNTAxMDcwMzU2MjZaFw0yNjAxMDYwNDAxMjZaMDMxMTAvBgNV BAMTKDQ2MDM0RjI1ODYxREM5NjgyMUQ4MDhGNzIyRTY1NEJEMUUyQTgzN0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/FGAx+f5rVjP2IoT4JKOPcGmJ iP+aNvkYW5XMB8hzc97uV6F/BwSyPpfBssyEuT4/kAdH/fZs9itWiasT3WnIMS9t emn0XVg/DVR8w4ChPFmYlc6cMxF6yVJ+9W3IcfdQpfTDzvSYCcipx9BpdvJsq8DZ za62NGR9Qt9ermm9Nd3t30ErNGS4dGWVGSxMDOd+7hMUE3cjiuEHHAW9OCDBu+Ph vUKhVq3m3KM4kLVb/PP964Mk9rzmMDe6NFaDUwJjz4Xiv2dWhoVPnKzRodMVdAZF PflYbpKx2Y/9Z4jJugt6TsluuD7vLAReIcsAnL0TTQY8jmTnuIaYgh083FxpAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQURgNPJYYdyWgh2Aj3IuZUvR4qg3swHwYDVR0j BBgwFoAUXEE9VilNnSDmSXi3KWqdqJPDLKswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YjNlYWJiNC00ZGIzLTQzNzMtYTM0OC1mYjFlZDcwNTU2NTEvMC81QzQxM0Q1NjI5 NEQ5RDIwRTY0OTc4QjcyOTZBOURBODkzQzMyQ0FCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUM0MTNENTYyOTREOUQyMEU2NDk3OEI3Mjk2QTlEQTg5M0Mz MkNBQi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdiM2VhYmI0LTRkYjMtNDM3My1h MzQ4LWZiMWVkNzA1NTY1MS8wLzMyMzAzMDMxM2E2NDY2MzMzYTM1NjIzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDMwMzMzODM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 81uAMA0GCSqGSIb3DQEBCwUAA4IBAQCAUieODC6XLqwFH1XXVMvMDSlE3OoqawKs dFVsSYnGnSU54vlJnrMCsSB2vUnKOCVD7CrxJQ0CahQ3CIBehwgmeMbfkR5xfM0t eKPxV3ProHyMihnBFRAtD8BPFwDZPJXYlrNzZGy6xEKZGvgCK2dznZditAnngs+w 6N0mnjXYQrbld1K+sYsIAsmhnx2SiNJNTBDEv6z5Ns4BeI3COW7OhusWVrAysGc7 SI4NsZs4B3G6xql6omTOOhJk/LeHN78qci2k+1aP55fvq1M84ux6eOgHGiqVoUe3 AqER953JHuieCxCp+QRltzR48+Xv3U8Jdvq2hcmWXmRRAyRFTr9v -----END CERTIFICATE-----Generated at Mon Apr 7 01:19:00 2025 by rpki-client