$ rpki-client -vvf repo-rpki.idnic.net/repo/89f26fb8-72c4-49d9-9cbe-8226397271a2/0/323430353a636163303a3a2f33322d3332203d3e20313339393832.roa File: 323430353a636163303a3a2f33322d3332203d3e20313339393832.roa (raw, json) Hash identifier: DvQDh4Kkz219rckHWEzkCusXEwHFc00p00m6Uhd4LJY= Subject key identifier: 3B:68:51:BA:57:05:EB:61:1E:DF:89:1F:68:3E:55:58:E6:70:EE:E5 Certificate issuer: /CN=368369D096CE0982CCF1F111001F2A2E8A3BB6D4 Certificate serial: 2FAA7BB61927B841442BCADCC4E3AB265AB77403 Authority key identifier: 36:83:69:D0:96:CE:09:82:CC:F1:F1:11:00:1F:2A:2E:8A:3B:B6:D4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/368369D096CE0982CCF1F111001F2A2E8A3BB6D4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/89f26fb8-72c4-49d9-9cbe-8226397271a2/0/323430353a636163303a3a2f33322d3332203d3e20313339393832.roa Signing time: Sun 05 Jan 2025 13:00:01 +0000 ROA not before: Sun 05 Jan 2025 12:55:01 +0000 ROA not after: Sun 04 Jan 2026 13:00:01 +0000 asID: 139982 IP address blocks: 2405:cac0::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/89f26fb8-72c4-49d9-9cbe-8226397271a2/0/368369D096CE0982CCF1F111001F2A2E8A3BB6D4.crl rsync://repo-rpki.idnic.net/repo/89f26fb8-72c4-49d9-9cbe-8226397271a2/0/368369D096CE0982CCF1F111001F2A2E8A3BB6D4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/368369D096CE0982CCF1F111001F2A2E8A3BB6D4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 20:43:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:aa:7b:b6:19:27:b8:41:44:2b:ca:dc:c4:e3:ab:26:5a:b7:74:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=368369D096CE0982CCF1F111001F2A2E8A3BB6D4 Validity Not Before: Jan 5 12:55:01 2025 GMT Not After : Jan 4 13:00:01 2026 GMT Subject: CN=3B6851BA5705EB611EDF891F683E5558E670EEE5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:e4:9b:22:3e:fa:3e:c9:17:5b:6c:c0:a1:ae: 40:d4:42:31:49:f3:74:95:67:03:ac:a1:7f:79:6b: 67:6c:3b:da:70:4d:b4:73:df:f4:5c:2f:89:fd:0f: 88:a5:17:0d:cd:aa:c4:b2:eb:c7:1a:20:9b:34:3f: 89:b2:24:a3:f3:80:81:98:e8:b5:87:12:34:5e:64: 10:32:69:15:d6:07:30:76:df:38:13:88:b7:45:83: 94:a4:fb:e6:cf:95:55:c7:6c:d5:4b:fd:95:11:15: 09:b0:58:96:40:e3:e4:7a:ef:09:9b:29:91:ee:6c: cc:02:3c:c2:30:53:de:de:aa:8f:b4:29:1f:e4:04: 10:04:02:55:c1:34:41:6f:24:c6:cd:a2:2a:51:be: 13:23:35:f1:32:06:84:0e:c3:66:36:44:d8:a7:b5: eb:a9:d7:5b:2b:77:de:9a:cb:39:95:58:22:c3:71: bb:d3:3b:29:7b:36:cc:03:19:cb:12:d3:10:2e:f0: 38:81:5f:ed:bb:3d:ed:aa:b2:46:76:18:7a:2d:4a: 0d:97:33:d0:6e:a8:84:1a:62:95:87:15:31:fc:ad: 9c:9a:2d:da:8a:b4:2f:a9:9f:43:10:20:b7:45:26: 0e:67:c3:9a:20:6a:03:59:69:9e:f6:0a:4a:86:90: 8f:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:68:51:BA:57:05:EB:61:1E:DF:89:1F:68:3E:55:58:E6:70:EE:E5 X509v3 Authority Key Identifier: keyid:36:83:69:D0:96:CE:09:82:CC:F1:F1:11:00:1F:2A:2E:8A:3B:B6:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/89f26fb8-72c4-49d9-9cbe-8226397271a2/0/368369D096CE0982CCF1F111001F2A2E8A3BB6D4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/368369D096CE0982CCF1F111001F2A2E8A3BB6D4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/89f26fb8-72c4-49d9-9cbe-8226397271a2/0/323430353a636163303a3a2f33322d3332203d3e20313339393832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:cac0::/32 Signature Algorithm: sha256WithRSAEncryption 67:58:36:fd:5a:d3:4a:b1:f0:73:03:b8:e3:a9:36:26:27:b7: 6f:80:1f:ba:ce:8c:0a:ed:63:32:22:40:63:89:95:f9:32:33: d8:db:1f:8a:b5:f3:54:21:52:45:e6:88:c7:07:4b:4a:25:5d: 39:d2:c9:e6:c5:87:c1:da:3d:d2:a2:ef:86:b8:d0:f4:0c:04: d7:e9:b5:cf:d8:d9:0b:03:32:c1:25:4c:b6:18:15:a7:13:bc: 56:7a:d5:c6:50:4a:d5:20:d8:39:db:2a:4f:78:82:09:9a:cd: 23:9b:54:80:2e:4d:5a:a4:5b:b5:31:fd:de:f5:8c:3a:d9:88: f1:15:e8:c6:95:3b:c8:cb:a5:12:93:60:a4:2a:43:96:24:0d: 97:f3:54:2d:41:88:94:26:dd:bf:c9:6a:d0:a1:82:1a:35:6c: e3:80:79:fc:67:ca:1b:c3:6d:73:2d:ab:a4:77:60:e0:16:d7: 16:3d:ad:4c:da:05:a9:16:4d:41:7d:29:88:ad:5b:a8:af:6d: e6:f9:92:28:e0:9a:c2:a7:a7:32:12:dc:1b:5f:b5:47:2d:4b: da:18:fd:63:a2:b6:85:09:18:16:cd:ec:ca:86:75:9e:1a:aa: ed:a0:8e:5e:a2:84:c4:32:a0:58:22:f7:51:c5:b8:0f:ae:cc: 42:cb:fe:3c -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUL6p7thknuEFEK8rcxOOrJlq3dAMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzY4MzY5RDA5NkNFMDk4MkNDRjFGMTExMDAxRjJBMkU4 QTNCQjZENDAeFw0yNTAxMDUxMjU1MDFaFw0yNjAxMDQxMzAwMDFaMDMxMTAvBgNV BAMTKDNCNjg1MUJBNTcwNUVCNjExRURGODkxRjY4M0U1NTU4RTY3MEVFRTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC05JsiPvo+yRdbbMChrkDUQjFJ 83SVZwOsoX95a2dsO9pwTbRz3/RcL4n9D4ilFw3NqsSy68caIJs0P4myJKPzgIGY 6LWHEjReZBAyaRXWBzB23zgTiLdFg5Sk++bPlVXHbNVL/ZURFQmwWJZA4+R67wmb KZHubMwCPMIwU97eqo+0KR/kBBAEAlXBNEFvJMbNoipRvhMjNfEyBoQOw2Y2RNin teup11srd96ayzmVWCLDcbvTOyl7NswDGcsS0xAu8DiBX+27Pe2qskZ2GHotSg2X M9BuqIQaYpWHFTH8rZyaLdqKtC+pn0MQILdFJg5nw5ogagNZaZ72CkqGkI+FAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUO2hRulcF62Ee34kfaD5VWOZw7uUwHwYDVR0j BBgwFoAUNoNp0JbOCYLM8fERAB8qLoo7ttQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 OWYyNmZiOC03MmM0LTQ5ZDktOWNiZS04MjI2Mzk3MjcxYTIvMC8zNjgzNjlEMDk2 Q0UwOTgyQ0NGMUYxMTEwMDFGMkEyRThBM0JCNkQ0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzY4MzY5RDA5NkNFMDk4MkNDRjFGMTExMDAxRjJBMkU4QTNC QjZENC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg5ZjI2ZmI4LTcyYzQtNDlkOS05 Y2JlLTgyMjYzOTcyNzFhMi8wLzMyMzQzMDM1M2E2MzYxNjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzOTM5MzgzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQFysAwDQYJKoZI hvcNAQELBQADggEBAGdYNv1a00qx8HMDuOOpNiYnt2+AH7rOjArtYzIiQGOJlfky M9jbH4q181QhUkXmiMcHS0olXTnSyebFh8HaPdKi74a40PQMBNfptc/Y2QsDMsEl TLYYFacTvFZ61cZQStUg2DnbKk94ggmazSObVIAuTVqkW7Ux/d71jDrZiPEV6MaV O8jLpRKTYKQqQ5YkDZfzVC1BiJQm3b/JatChgho1bOOAefxnyhvDbXMtq6R3YOAW 1xY9rUzaBakWTUF9KYitW6ivbeb5kijgmsKnpzIS3BtftUctS9oY/WOitoUJGBbN 7MqGdZ4aqu2gjl6ihMQyoFgi91HFuA+uzELL/jw= -----END CERTIFICATE-----Generated at Sun Apr 6 09:50:40 2025 by rpki-client