$ rpki-client -vvf repo-rpki.idnic.net/repo/7e4aca3c-63dc-4c1b-a7e8-acbae821cde5/0/323030313a6466323a656630303a3a2f34382d3438203d3e20313331373639.roa File: 323030313a6466323a656630303a3a2f34382d3438203d3e20313331373639.roa (raw, json) Hash identifier: vyewh8srPcPqYmqlfJbFGfy0CT3atirB3bnak8F4GJo= Subject key identifier: 45:CB:46:5A:2B:A2:63:00:75:02:0A:7C:36:2F:4B:7D:77:48:6A:D3 Certificate issuer: /CN=35369AC685201508541197F86A8FDAC2375BE30A Certificate serial: 7EF1C6A02DA0D8983E5D3EFD8DA5D11A3F70306D Authority key identifier: 35:36:9A:C6:85:20:15:08:54:11:97:F8:6A:8F:DA:C2:37:5B:E3:0A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35369AC685201508541197F86A8FDAC2375BE30A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7e4aca3c-63dc-4c1b-a7e8-acbae821cde5/0/323030313a6466323a656630303a3a2f34382d3438203d3e20313331373639.roa Signing time: Thu 16 Jan 2025 09:00:02 +0000 ROA not before: Thu 16 Jan 2025 08:55:02 +0000 ROA not after: Thu 15 Jan 2026 09:00:02 +0000 asID: 131769 IP address blocks: 2001:df2:ef00::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7e4aca3c-63dc-4c1b-a7e8-acbae821cde5/0/35369AC685201508541197F86A8FDAC2375BE30A.crl rsync://repo-rpki.idnic.net/repo/7e4aca3c-63dc-4c1b-a7e8-acbae821cde5/0/35369AC685201508541197F86A8FDAC2375BE30A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35369AC685201508541197F86A8FDAC2375BE30A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 15:34:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:f1:c6:a0:2d:a0:d8:98:3e:5d:3e:fd:8d:a5:d1:1a:3f:70:30:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35369AC685201508541197F86A8FDAC2375BE30A Validity Not Before: Jan 16 08:55:02 2025 GMT Not After : Jan 15 09:00:02 2026 GMT Subject: CN=45CB465A2BA2630075020A7C362F4B7D77486AD3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:84:d6:29:98:32:30:6a:94:c2:0f:2d:34:f2: 94:e4:7d:38:9a:5e:78:d3:62:5a:e2:35:18:e4:a0: 02:80:d8:95:9d:32:0a:51:4b:6b:5c:e9:20:e9:40: 71:c4:cd:97:77:48:86:a4:99:c3:ad:21:db:a3:fc: de:1e:fa:73:70:4b:bf:6c:3f:65:13:90:4f:de:83: fb:df:d3:2d:01:28:42:19:9f:f1:77:c7:93:b2:dd: 41:57:13:30:ff:e0:c8:07:50:15:02:dc:3d:80:5c: e7:d3:97:80:24:ed:70:3c:c7:df:57:29:d6:87:47: f0:f9:2b:e3:13:af:eb:79:f2:a5:f5:b0:ac:83:85: e1:8c:5f:8c:86:46:7c:77:e3:5e:8f:b6:22:a0:f1: e1:3e:00:70:d6:b8:ff:af:09:fc:8a:aa:45:bf:9d: fb:63:9e:5d:67:2c:a2:7e:e7:12:da:8f:39:c0:bc: 9e:ba:b5:dd:85:63:67:01:57:38:54:24:db:03:45: 4f:a7:44:e5:ca:5b:e5:77:c5:b7:d8:9d:77:73:ee: 98:82:96:89:0b:ad:64:c6:c8:fb:1f:47:57:40:e9: 32:7e:08:a4:89:8f:ae:12:ed:70:7b:0f:2e:a6:e7: b0:fb:d3:2d:e6:f6:cc:98:30:3f:a4:d3:d5:be:9d: df:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:CB:46:5A:2B:A2:63:00:75:02:0A:7C:36:2F:4B:7D:77:48:6A:D3 X509v3 Authority Key Identifier: keyid:35:36:9A:C6:85:20:15:08:54:11:97:F8:6A:8F:DA:C2:37:5B:E3:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7e4aca3c-63dc-4c1b-a7e8-acbae821cde5/0/35369AC685201508541197F86A8FDAC2375BE30A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35369AC685201508541197F86A8FDAC2375BE30A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7e4aca3c-63dc-4c1b-a7e8-acbae821cde5/0/323030313a6466323a656630303a3a2f34382d3438203d3e20313331373639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:ef00::/48 Signature Algorithm: sha256WithRSAEncryption 71:26:fe:c3:52:aa:fd:a6:2e:c7:a5:3b:f6:fb:33:72:f1:ed: da:6b:a2:2a:97:ef:03:48:c2:52:2a:91:a5:eb:db:ae:23:32: d3:97:2f:51:a1:54:63:ec:15:50:4d:10:cd:9d:fd:9f:9b:ea: db:ee:12:9c:3d:f8:d9:c7:19:ae:b4:2a:6d:76:42:31:16:07: 93:17:36:4e:70:c6:1a:56:2e:24:9b:ec:8a:96:f1:76:b8:7d: 5a:e5:6d:e7:00:62:24:3c:c2:07:b1:df:6e:73:ca:eb:eb:e4: a9:34:f0:d9:05:c4:a5:7b:ff:7a:65:23:ac:78:85:ef:2f:be: 4f:37:4f:0b:c5:f2:a5:8a:e7:db:79:05:54:86:8e:0b:73:d2: 28:60:87:3a:5c:61:07:9a:7c:3f:35:24:45:6f:6a:bf:40:a6: d0:37:b5:3c:13:1e:27:f9:be:b1:43:3e:48:29:fd:ea:50:30: 08:ee:80:3c:83:d0:c4:da:54:62:91:ec:15:2c:8f:ff:b6:1d: 17:fd:4a:90:49:d5:18:64:30:9c:0a:74:20:d1:36:9a:42:30: cd:da:4a:dc:90:b9:02:ae:14:e4:c5:3d:ce:74:3b:7e:58:b3: cc:3b:c6:7e:60:18:a8:f6:31:a2:ba:0b:8b:66:04:51:a4:b3: c2:a2:0c:65 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUfvHGoC2g2Jg+XT79jaXRGj9wMG0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzUzNjlBQzY4NTIwMTUwODU0MTE5N0Y4NkE4RkRBQzIz NzVCRTMwQTAeFw0yNTAxMTYwODU1MDJaFw0yNjAxMTUwOTAwMDJaMDMxMTAvBgNV BAMTKDQ1Q0I0NjVBMkJBMjYzMDA3NTAyMEE3QzM2MkY0QjdENzc0ODZBRDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuhNYpmDIwapTCDy008pTkfTia XnjTYlriNRjkoAKA2JWdMgpRS2tc6SDpQHHEzZd3SIakmcOtIduj/N4e+nNwS79s P2UTkE/eg/vf0y0BKEIZn/F3x5Oy3UFXEzD/4MgHUBUC3D2AXOfTl4Ak7XA8x99X KdaHR/D5K+MTr+t58qX1sKyDheGMX4yGRnx3416PtiKg8eE+AHDWuP+vCfyKqkW/ nftjnl1nLKJ+5xLajznAvJ66td2FY2cBVzhUJNsDRU+nROXKW+V3xbfYnXdz7piC lokLrWTGyPsfR1dA6TJ+CKSJj64S7XB7Dy6m57D70y3m9syYMD+k09W+nd+nAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQURctGWiuiYwB1Agp8Ni9LfXdIatMwHwYDVR0j BBgwFoAUNTaaxoUgFQhUEZf4ao/awjdb4wowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZTRhY2EzYy02M2RjLTRjMWItYTdlOC1hY2JhZTgyMWNkZTUvMC8zNTM2OUFDNjg1 MjAxNTA4NTQxMTk3Rjg2QThGREFDMjM3NUJFMzBBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzUzNjlBQzY4NTIwMTUwODU0MTE5N0Y4NkE4RkRBQzIzNzVC RTMwQS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdlNGFjYTNjLTYzZGMtNGMxYi1h N2U4LWFjYmFlODIxY2RlNS8wLzMyMzAzMDMxM2E2NDY2MzIzYTY1NjYzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzMxMzczNjM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8u8AMA0GCSqGSIb3DQEBCwUAA4IBAQBxJv7DUqr9pi7HpTv2+zNy8e3aa6Iql+8D SMJSKpGl69uuIzLTly9RoVRj7BVQTRDNnf2fm+rb7hKcPfjZxxmutCptdkIxFgeT FzZOcMYaVi4km+yKlvF2uH1a5W3nAGIkPMIHsd9uc8rr6+SpNPDZBcSle/96ZSOs eIXvL75PN08LxfKliufbeQVUho4Lc9IoYIc6XGEHmnw/NSRFb2q/QKbQN7U8Ex4n +b6xQz5IKf3qUDAI7oA8g9DE2lRikewVLI//th0X/UqQSdUYZDCcCnQg0TaaQjDN 2krckLkCrhTkxT3OdDt+WLPMO8Z+YBio9jGiuguLZgRRpLPCogxl -----END CERTIFICATE-----Generated at Sun Apr 6 14:44:19 2025 by rpki-client