$ rpki-client -vvf repo-rpki.idnic.net/repo/7bed83bd-8986-4429-a011-ac590724d586/0/323030313a6466313a316438303a3a2f34382d3438203d3e20313339333635.roa File: 323030313a6466313a316438303a3a2f34382d3438203d3e20313339333635.roa (raw, json) Hash identifier: Jd1nQVdoPb9xeVhKiBu85pl1W/vsrnMXJ91FlIH1uQw= Subject key identifier: 06:88:6A:3F:96:1F:34:BD:25:26:92:B7:EB:37:51:78:75:65:BF:FE Certificate issuer: /CN=1BA1ADD734797C0383628A8723DEBADA827B5B02 Certificate serial: 2124EB20A459F5610D4A657403BD401F8086C7F1 Authority key identifier: 1B:A1:AD:D7:34:79:7C:03:83:62:8A:87:23:DE:BA:DA:82:7B:5B:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BA1ADD734797C0383628A8723DEBADA827B5B02.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7bed83bd-8986-4429-a011-ac590724d586/0/323030313a6466313a316438303a3a2f34382d3438203d3e20313339333635.roa Signing time: Tue 18 Feb 2025 08:00:00 +0000 ROA not before: Tue 18 Feb 2025 07:55:00 +0000 ROA not after: Tue 17 Feb 2026 08:00:00 +0000 asID: 139365 IP address blocks: 2001:df1:1d80::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7bed83bd-8986-4429-a011-ac590724d586/0/1BA1ADD734797C0383628A8723DEBADA827B5B02.crl rsync://repo-rpki.idnic.net/repo/7bed83bd-8986-4429-a011-ac590724d586/0/1BA1ADD734797C0383628A8723DEBADA827B5B02.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BA1ADD734797C0383628A8723DEBADA827B5B02.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 21 Apr 2025 00:22:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:24:eb:20:a4:59:f5:61:0d:4a:65:74:03:bd:40:1f:80:86:c7:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1BA1ADD734797C0383628A8723DEBADA827B5B02 Validity Not Before: Feb 18 07:55:00 2025 GMT Not After : Feb 17 08:00:00 2026 GMT Subject: CN=06886A3F961F34BD252692B7EB3751787565BFFE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:ac:4b:37:fc:ce:f6:53:e5:8a:ce:1a:81:84: 59:5c:e2:9d:67:6f:81:6d:cd:03:4a:32:e0:67:89: 89:6c:f1:fc:b3:df:d3:22:ca:e6:d2:3e:2b:cd:ea: 28:e8:2c:30:9c:79:c1:70:38:70:7a:c4:ce:04:1c: fb:84:c4:84:64:75:c2:d2:cd:02:25:3d:5f:4f:17: e6:2f:f2:db:dd:57:9b:23:72:b9:88:35:a0:10:9e: 49:ab:0a:e0:60:ea:4c:ad:47:04:7d:50:15:52:5d: ab:75:1b:51:50:f2:c0:4f:3f:7d:44:eb:27:1e:05: 4e:68:36:fe:c5:2a:61:a6:da:cb:c8:6c:a4:79:9c: 9c:13:fd:e5:1a:5f:4b:15:8a:04:d6:36:40:77:0e: 0f:46:58:e7:a2:5b:a8:23:19:81:d2:e5:2b:00:8c: a7:ed:9c:ca:b6:39:60:9e:96:6b:95:2d:d9:9b:aa: 9a:d0:0e:94:34:72:22:27:92:55:13:8d:9f:80:43: 8a:6b:90:c7:52:3c:e2:d6:ce:89:b4:83:7b:c4:65: 6e:a3:58:20:e0:d1:50:81:58:08:96:ce:f3:20:c3: 2e:dc:94:ce:51:69:d8:3b:28:81:88:b0:3b:88:f8: d6:3c:2c:8f:ff:98:48:c1:c9:db:e3:d7:6b:e7:ac: 2d:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:88:6A:3F:96:1F:34:BD:25:26:92:B7:EB:37:51:78:75:65:BF:FE X509v3 Authority Key Identifier: keyid:1B:A1:AD:D7:34:79:7C:03:83:62:8A:87:23:DE:BA:DA:82:7B:5B:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7bed83bd-8986-4429-a011-ac590724d586/0/1BA1ADD734797C0383628A8723DEBADA827B5B02.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BA1ADD734797C0383628A8723DEBADA827B5B02.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7bed83bd-8986-4429-a011-ac590724d586/0/323030313a6466313a316438303a3a2f34382d3438203d3e20313339333635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:1d80::/48 Signature Algorithm: sha256WithRSAEncryption a0:c7:9b:02:2d:79:ac:f0:ef:d3:f9:8d:df:b5:15:05:ec:3c: 65:f3:5e:79:5b:f4:11:2a:03:94:e4:88:6a:81:7f:eb:5c:7e: 53:73:cb:45:06:d2:7d:32:3e:68:92:c8:74:20:57:03:43:e2: 0c:e5:a7:70:a8:f7:d2:25:87:25:99:fc:12:24:a7:76:72:af: 20:e1:98:a7:06:18:22:9e:8c:cb:db:f0:60:46:8f:e5:66:fc: ad:97:45:a6:c3:bc:a3:2c:f6:69:6d:98:3c:29:70:e0:0e:0b: a0:cc:22:1b:8e:34:e1:7c:4a:35:3c:62:b3:4e:64:d7:3a:d5: 80:5d:11:a3:99:d8:14:ac:45:97:38:b4:6c:59:a3:76:06:5b: bd:2b:0e:72:09:15:b7:10:04:1d:d9:e1:38:ef:9b:60:dd:4c: 46:16:a2:e1:35:40:7a:0d:85:9a:2e:a9:e7:8a:74:a8:bd:3e: 61:97:d1:17:ba:21:d8:df:fb:ee:82:0d:7f:de:7c:2e:35:80: cd:5f:23:41:e0:c7:da:b0:71:ec:9b:aa:fc:c8:f1:c5:82:9b: 9b:66:a2:64:e6:52:23:e0:dd:55:cd:25:f4:26:a3:8d:31:0e: 98:b1:42:19:2b:07:d5:34:15:0a:ba:4d:6b:72:d5:c7:24:69: f6:0c:cf:61 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUISTrIKRZ9WENSmV0A71AH4CGx/EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUJBMUFERDczNDc5N0MwMzgzNjI4QTg3MjNERUJBREE4 MjdCNUIwMjAeFw0yNTAyMTgwNzU1MDBaFw0yNjAyMTcwODAwMDBaMDMxMTAvBgNV BAMTKDA2ODg2QTNGOTYxRjM0QkQyNTI2OTJCN0VCMzc1MTc4NzU2NUJGRkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIrEs3/M72U+WKzhqBhFlc4p1n b4FtzQNKMuBniYls8fyz39MiyubSPivN6ijoLDCcecFwOHB6xM4EHPuExIRkdcLS zQIlPV9PF+Yv8tvdV5sjcrmINaAQnkmrCuBg6kytRwR9UBVSXat1G1FQ8sBPP31E 6yceBU5oNv7FKmGm2svIbKR5nJwT/eUaX0sVigTWNkB3Dg9GWOeiW6gjGYHS5SsA jKftnMq2OWCelmuVLdmbqprQDpQ0ciInklUTjZ+AQ4prkMdSPOLWzom0g3vEZW6j WCDg0VCBWAiWzvMgwy7clM5Radg7KIGIsDuI+NY8LI//mEjBydvj12vnrC37AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUBohqP5YfNL0lJpK36zdReHVlv/4wHwYDVR0j BBgwFoAUG6Gt1zR5fAODYoqHI9662oJ7WwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YmVkODNiZC04OTg2LTQ0MjktYTAxMS1hYzU5MDcyNGQ1ODYvMC8xQkExQURENzM0 Nzk3QzAzODM2MjhBODcyM0RFQkFEQTgyN0I1QjAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUJBMUFERDczNDc5N0MwMzgzNjI4QTg3MjNERUJBREE4MjdC NUIwMi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdiZWQ4M2JkLTg5ODYtNDQyOS1h MDExLWFjNTkwNzI0ZDU4Ni8wLzMyMzAzMDMxM2E2NDY2MzEzYTMxNjQzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM5MzMzNjM1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8R2AMA0GCSqGSIb3DQEBCwUAA4IBAQCgx5sCLXms8O/T+Y3ftRUF7Dxl8155W/QR KgOU5IhqgX/rXH5Tc8tFBtJ9Mj5oksh0IFcDQ+IM5adwqPfSJYclmfwSJKd2cq8g 4ZinBhginozL2/BgRo/lZvytl0Wmw7yjLPZpbZg8KXDgDgugzCIbjjThfEo1PGKz TmTXOtWAXRGjmdgUrEWXOLRsWaN2Blu9Kw5yCRW3EAQd2eE475tg3UxGFqLhNUB6 DYWaLqnninSovT5hl9EXuiHY3/vugg1/3nwuNYDNXyNB4MfasHHsm6r8yPHFgpub ZqJk5lIj4N1VzSX0JqONMQ6YsUIZKwfVNBUKuk1rctXHJGn2DM9h -----END CERTIFICATE-----Generated at Fri Apr 18 02:54:48 2025 by rpki-client