$ rpki-client -vvf repo-rpki.idnic.net/repo/829e7064-b352-43b6-9f09-514d68a2739e/0/323430363a6263303a3a2f33322d3332203d3e20313430343032.roa File: 323430363a6263303a3a2f33322d3332203d3e20313430343032.roa (raw, json) Hash identifier: xEKvL1Sy6gjieKkSQRdg2opwP1NrCxUV9PFI8nvYCrM= Subject key identifier: 80:64:91:3C:A9:5F:48:D5:D9:F3:B7:D0:9D:A7:3F:56:41:BC:9A:8A Certificate issuer: /CN=AD5EA76D7ABBD8617C323F06E24EF5190568F494 Certificate serial: 2F57D38260CA4E26AA50315B01711EDC4211C9E7 Authority key identifier: AD:5E:A7:6D:7A:BB:D8:61:7C:32:3F:06:E2:4E:F5:19:05:68:F4:94 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AD5EA76D7ABBD8617C323F06E24EF5190568F494.cer Subject info access: rsync://repo-rpki.idnic.net/repo/829e7064-b352-43b6-9f09-514d68a2739e/0/323430363a6263303a3a2f33322d3332203d3e20313430343032.roa Signing time: Thu 19 Dec 2024 13:02:03 +0000 ROA not before: Thu 19 Dec 2024 12:57:03 +0000 ROA not after: Thu 18 Dec 2025 13:02:03 +0000 asID: 140402 IP address blocks: 2406:bc0::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/829e7064-b352-43b6-9f09-514d68a2739e/0/AD5EA76D7ABBD8617C323F06E24EF5190568F494.crl rsync://repo-rpki.idnic.net/repo/829e7064-b352-43b6-9f09-514d68a2739e/0/AD5EA76D7ABBD8617C323F06E24EF5190568F494.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AD5EA76D7ABBD8617C323F06E24EF5190568F494.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 23:14:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:57:d3:82:60:ca:4e:26:aa:50:31:5b:01:71:1e:dc:42:11:c9:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AD5EA76D7ABBD8617C323F06E24EF5190568F494 Validity Not Before: Dec 19 12:57:03 2024 GMT Not After : Dec 18 13:02:03 2025 GMT Subject: CN=8064913CA95F48D5D9F3B7D09DA73F5641BC9A8A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:08:9a:bd:00:c6:05:f2:a2:f4:20:60:ca:5b: c2:cd:f1:29:19:7c:23:f8:a8:14:2e:30:7e:43:ad: df:2b:08:36:b0:35:7e:f0:21:03:d9:00:c1:94:be: 81:49:1f:81:45:2a:c2:cd:09:52:5f:51:a9:ef:62: 8e:62:b4:5a:76:dd:8a:52:1b:6a:dd:b7:7e:27:67: e1:b6:c1:04:fb:f8:e8:ef:2e:b6:5a:9b:01:18:a5: ae:b0:bc:ba:0e:e4:7a:27:17:a0:3d:51:be:97:6b: f5:43:6c:77:19:2a:a5:99:94:db:d5:93:e6:8d:22: 46:71:d4:c2:c7:6b:7d:44:09:91:92:f0:b4:ba:87: e4:fc:4d:89:5d:32:75:e1:76:ef:d4:cd:39:fe:02: c8:b0:bd:4c:49:66:e6:b0:9c:a2:32:aa:f5:82:e2: 17:c5:7c:ec:4c:e7:d8:08:3e:49:27:fd:bd:40:8a: 56:a6:54:cc:30:b2:a9:c3:46:0e:fc:ba:59:5f:32: 23:64:dc:42:4d:33:1f:55:86:00:5b:3e:36:36:36: a0:33:97:96:05:be:8b:82:c5:54:ec:90:81:2b:47: ad:32:64:b8:60:06:ab:8b:a5:be:34:1a:3b:ff:b0: fb:ae:60:2f:eb:c8:d3:ee:93:94:ba:4e:55:05:f5: 0f:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:64:91:3C:A9:5F:48:D5:D9:F3:B7:D0:9D:A7:3F:56:41:BC:9A:8A X509v3 Authority Key Identifier: keyid:AD:5E:A7:6D:7A:BB:D8:61:7C:32:3F:06:E2:4E:F5:19:05:68:F4:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/829e7064-b352-43b6-9f09-514d68a2739e/0/AD5EA76D7ABBD8617C323F06E24EF5190568F494.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AD5EA76D7ABBD8617C323F06E24EF5190568F494.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/829e7064-b352-43b6-9f09-514d68a2739e/0/323430363a6263303a3a2f33322d3332203d3e20313430343032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:bc0::/32 Signature Algorithm: sha256WithRSAEncryption 5d:8b:4d:0e:e4:28:a5:9e:34:2c:81:1e:b5:47:4a:d9:4b:4b: d2:44:55:4b:08:c7:d3:ad:22:bf:2e:4e:9f:0e:e4:d8:e9:44: 61:b5:cc:eb:cc:f4:38:1a:b2:d6:8b:c6:e6:cc:03:e6:df:65: d1:bd:6c:b7:cd:5e:f8:44:c1:8f:42:54:6f:05:dc:06:bf:7a: 54:30:e3:15:0d:a3:cc:8e:31:ca:a5:ed:f8:51:c0:c6:4b:6a: e1:ba:8a:8d:38:06:9f:a0:74:93:93:c2:77:74:3a:80:ea:3e: 8e:ca:49:d3:37:77:b0:37:35:c7:eb:b7:4e:04:3b:cc:ef:a8: 29:c1:5f:39:06:5d:60:dd:1e:45:d6:50:4b:05:ad:ac:c9:0c: 6a:2d:44:08:c4:d0:4c:9e:e6:56:5e:34:7b:5c:38:5a:4c:93: dd:b8:2a:62:39:d1:69:74:a0:6e:53:f2:db:76:d5:37:0f:c0: 0c:b0:59:fd:7f:07:12:74:b4:38:94:37:22:56:ec:f4:a8:d3: ab:84:92:96:fb:31:15:1c:fd:6e:a4:25:dd:27:f5:99:0d:71: 0e:02:f6:75:8e:04:16:f2:a5:70:30:1c:28:aa:d2:2e:e9:1b: 50:9c:45:b3:28:da:bf:41:99:4f:71:de:8d:76:f8:2a:a9:ad: 29:52:64:ef -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUL1fTgmDKTiaqUDFbAXEe3EIRyecwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUQ1RUE3NkQ3QUJCRDg2MTdDMzIzRjA2RTI0RUY1MTkw NTY4RjQ5NDAeFw0yNDEyMTkxMjU3MDNaFw0yNTEyMTgxMzAyMDNaMDMxMTAvBgNV BAMTKDgwNjQ5MTNDQTk1RjQ4RDVEOUYzQjdEMDlEQTczRjU2NDFCQzlBOEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQCJq9AMYF8qL0IGDKW8LN8SkZ fCP4qBQuMH5Drd8rCDawNX7wIQPZAMGUvoFJH4FFKsLNCVJfUanvYo5itFp23YpS G2rdt34nZ+G2wQT7+OjvLrZamwEYpa6wvLoO5HonF6A9Ub6Xa/VDbHcZKqWZlNvV k+aNIkZx1MLHa31ECZGS8LS6h+T8TYldMnXhdu/UzTn+AsiwvUxJZuawnKIyqvWC 4hfFfOxM59gIPkkn/b1AilamVMwwsqnDRg78ullfMiNk3EJNMx9VhgBbPjY2NqAz l5YFvouCxVTskIErR60yZLhgBquLpb40Gjv/sPuuYC/ryNPuk5S6TlUF9Q8bAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUgGSRPKlfSNXZ87fQnac/VkG8moowHwYDVR0j BBgwFoAUrV6nbXq72GF8Mj8G4k71GQVo9JQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MjllNzA2NC1iMzUyLTQzYjYtOWYwOS01MTRkNjhhMjczOWUvMC9BRDVFQTc2RDdB QkJEODYxN0MzMjNGMDZFMjRFRjUxOTA1NjhGNDk0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUQ1RUE3NkQ3QUJCRDg2MTdDMzIzRjA2RTI0RUY1MTkwNTY4 RjQ5NC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgyOWU3MDY0LWIzNTItNDNiNi05 ZjA5LTUxNGQ2OGEyNzM5ZS8wLzMyMzQzMDM2M2E2MjYzMzAzYTNhMmYzMzMyMmQz MzMyMjAzZDNlMjAzMTM0MzAzNDMwMzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBgvAMA0GCSqGSIb3 DQEBCwUAA4IBAQBdi00O5CilnjQsgR61R0rZS0vSRFVLCMfTrSK/Lk6fDuTY6URh tczrzPQ4GrLWi8bmzAPm32XRvWy3zV74RMGPQlRvBdwGv3pUMOMVDaPMjjHKpe34 UcDGS2rhuoqNOAafoHSTk8J3dDqA6j6OyknTN3ewNzXH67dOBDvM76gpwV85Bl1g 3R5F1lBLBa2syQxqLUQIxNBMnuZWXjR7XDhaTJPduCpiOdFpdKBuU/LbdtU3D8AM sFn9fwcSdLQ4lDciVuz0qNOrhJKW+zEVHP1upCXdJ/WZDXEOAvZ1jgQW8qVwMBwo qtIu6RtQnEWzKNq/QZlPcd6Ndvgqqa0pUmTv -----END CERTIFICATE-----Generated at Sun Apr 6 13:34:16 2025 by rpki-client