$ rpki-client -vvf repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a333030343a3a2f34382d3438203d3e20313333383430.roa File: 323430343a653130303a333030343a3a2f34382d3438203d3e20313333383430.roa (raw, json) Hash identifier: Blng/Z0vnlIlDO5YXGf47JTQLaYhRBkoevlEV55kR3Q= Subject key identifier: 64:DC:97:38:19:8E:80:BC:23:10:0B:7D:D9:17:87:24:47:3C:40:AF Certificate issuer: /CN=B6F0131510E62F73E5F29246F9C8F691811A704D Certificate serial: 189B8F11E8B3C24A77CEEA1066A9AC471139C826 Authority key identifier: B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a333030343a3a2f34382d3438203d3e20313333383430.roa Signing time: Fri 03 Jan 2025 02:00:02 +0000 ROA not before: Fri 03 Jan 2025 01:55:02 +0000 ROA not after: Fri 02 Jan 2026 02:00:02 +0000 asID: 133840 IP address blocks: 2404:e100:3004::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:58:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:9b:8f:11:e8:b3:c2:4a:77:ce:ea:10:66:a9:ac:47:11:39:c8:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F0131510E62F73E5F29246F9C8F691811A704D Validity Not Before: Jan 3 01:55:02 2025 GMT Not After : Jan 2 02:00:02 2026 GMT Subject: CN=64DC9738198E80BC23100B7DD9178724473C40AF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:98:2b:82:ee:d9:53:1e:12:17:fc:b7:de:fc: e8:c1:2a:0a:11:3e:a7:3f:9e:b9:ff:a4:22:c8:39: f9:d1:e7:2c:31:09:83:cb:cf:67:fe:00:3e:8d:4b: 2e:6c:7f:57:27:10:14:b7:89:98:1f:34:79:45:82: 25:89:d7:9a:92:27:67:eb:4b:5d:11:cc:49:99:94: db:f5:cd:9a:62:b9:1c:7c:c8:a5:95:97:db:6f:5e: 22:43:f1:e9:8b:7f:38:b8:ac:67:e1:5b:89:a3:3e: 4c:81:49:b9:20:fa:a6:93:00:de:b1:fb:e4:83:3e: 51:1e:ce:5c:59:d4:08:f5:09:24:31:0d:56:14:98: 49:db:d4:30:13:30:17:b0:c1:bd:8f:0b:ee:89:d5: 4d:dd:1e:c0:82:03:3d:6f:a1:e7:eb:48:e0:e7:2b: 0f:53:a3:b6:07:49:0f:54:de:21:68:b9:37:23:5c: 4e:22:a3:74:c4:e1:ba:77:57:a5:6a:cc:ab:44:a8: 1b:56:f8:08:3b:33:f5:d9:a0:66:42:48:05:d8:c7: 0a:6c:49:93:e5:45:3a:f0:dd:7a:43:0e:6e:67:e2: 51:31:6a:8a:07:4a:95:9c:5f:85:93:17:17:15:0c: 12:71:2b:ba:73:2d:d1:cf:af:97:5d:64:da:e6:4f: 32:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:DC:97:38:19:8E:80:BC:23:10:0B:7D:D9:17:87:24:47:3C:40:AF X509v3 Authority Key Identifier: keyid:B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a333030343a3a2f34382d3438203d3e20313333383430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:e100:3004::/48 Signature Algorithm: sha256WithRSAEncryption 62:86:c5:71:5c:c2:1e:28:96:05:49:5d:4e:be:48:d0:eb:3a: 82:93:39:6f:e9:fb:1e:7a:11:1e:f7:bd:5f:5f:65:f6:9e:e4: 70:d6:2a:81:22:24:95:25:69:b0:f6:2d:14:4f:76:6e:a8:cc: 21:5f:7e:59:9b:8d:c1:d7:80:f3:5f:46:94:9d:48:8b:dd:83: 4c:63:43:eb:c1:de:55:f1:27:f5:48:e6:fe:ca:26:13:d8:9a: 15:82:8e:ce:ed:3f:4d:8c:87:54:4e:d8:30:bb:6a:4e:e2:f7: 57:03:c9:2b:50:9f:93:4e:79:ff:70:f5:ae:ba:ab:5c:9d:e1: c2:23:fd:0b:c9:05:7f:f3:b5:c9:ae:13:e0:71:b0:ae:3d:5f: f4:70:d8:a8:41:b9:b2:3b:0b:a1:46:04:67:a0:d5:45:ba:8d: 67:81:71:b5:61:bf:0d:f6:96:f0:1e:3f:3a:b8:43:41:c3:f4: e4:b8:14:af:fb:57:00:28:ec:fa:19:9c:0a:bc:61:72:bc:09: 78:c9:fa:1f:8a:2a:25:37:02:cc:60:b6:bc:93:25:4a:ae:5d: 89:ef:8d:05:bd:73:54:51:00:d1:ce:0d:8d:4e:c7:93:74:f4: 8c:56:6f:35:a5:9d:7a:c7:3d:15:40:57:c2:0b:bc:19:c2:30: 2d:27:25:2f -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUGJuPEeizwkp3zuoQZqmsRxE5yCYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4 MTFBNzA0RDAeFw0yNTAxMDMwMTU1MDJaFw0yNjAxMDIwMjAwMDJaMDMxMTAvBgNV BAMTKDY0REM5NzM4MTk4RTgwQkMyMzEwMEI3REQ5MTc4NzI0NDczQzQwQUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2mCuC7tlTHhIX/Lfe/OjBKgoR Pqc/nrn/pCLIOfnR5ywxCYPLz2f+AD6NSy5sf1cnEBS3iZgfNHlFgiWJ15qSJ2fr S10RzEmZlNv1zZpiuRx8yKWVl9tvXiJD8emLfzi4rGfhW4mjPkyBSbkg+qaTAN6x ++SDPlEezlxZ1Aj1CSQxDVYUmEnb1DATMBewwb2PC+6J1U3dHsCCAz1voefrSODn Kw9To7YHSQ9U3iFouTcjXE4io3TE4bp3V6VqzKtEqBtW+Ag7M/XZoGZCSAXYxwps SZPlRTrw3XpDDm5n4lExaooHSpWcX4WTFxcVDBJxK7pzLdHPr5ddZNrmTzKZAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUZNyXOBmOgLwjEAt92ReHJEc8QK8wHwYDVR0j BBgwFoAUtvATFRDmL3Pl8pJG+cj2kYEacE0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWQ4ZGFiNC04YmI2LTRlZDAtOGRhYi01YTQwNjE2N2I5OWQvMC9CNkYwMTMxNTEw RTYyRjczRTVGMjkyNDZGOUM4RjY5MTgxMUE3MDRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4MTFB NzA0RC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMyMzQzMDM0M2E2NTMxMzAzMDNhMzMzMDMwMzQz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzMzODM0MzAucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BOEAMAQwDQYJKoZIhvcNAQELBQADggEBAGKGxXFcwh4olgVJXU6+SNDrOoKTOW/p +x56ER73vV9fZfae5HDWKoEiJJUlabD2LRRPdm6ozCFfflmbjcHXgPNfRpSdSIvd g0xjQ+vB3lXxJ/VI5v7KJhPYmhWCjs7tP02Mh1RO2DC7ak7i91cDyStQn5NOef9w 9a66q1yd4cIj/QvJBX/ztcmuE+BxsK49X/Rw2KhBubI7C6FGBGeg1UW6jWeBcbVh vw32lvAePzq4Q0HD9OS4FK/7VwAo7PoZnAq8YXK8CXjJ+h+KKiU3AsxgtryTJUqu XYnvjQW9c1RRANHODY1Ox5N09IxWbzWlnXrHPRVAV8ILvBnCMC0nJS8= -----END CERTIFICATE-----Generated at Sun Apr 6 11:00:06 2025 by rpki-client