$ rpki-client -vvf repo-rpki.idnic.net/repo/907608ce-c3f8-44eb-aee7-b784ae20c9c7/0/323430363a363263303a3a2f33322d3332203d3e20313431303734.roa File: 323430363a363263303a3a2f33322d3332203d3e20313431303734.roa (raw, json) Hash identifier: 2Lk6auTAFU1KMFXNa9pRSBxyYyKqC713tFzsVGAw9EU= Subject key identifier: 3E:B8:DB:A3:15:E4:03:4A:F1:61:FE:E2:FA:D8:3A:E5:DD:BF:C5:4A Certificate issuer: /CN=DE4325727D17555F6DABCC72788E361C741D47CF Certificate serial: 4602CA4E2E0B1F334AA2319890F40494C5CAC7DD Authority key identifier: DE:43:25:72:7D:17:55:5F:6D:AB:CC:72:78:8E:36:1C:74:1D:47:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DE4325727D17555F6DABCC72788E361C741D47CF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/907608ce-c3f8-44eb-aee7-b784ae20c9c7/0/323430363a363263303a3a2f33322d3332203d3e20313431303734.roa Signing time: Thu 06 Mar 2025 06:00:01 +0000 ROA not before: Thu 06 Mar 2025 05:55:01 +0000 ROA not after: Thu 05 Mar 2026 06:00:01 +0000 asID: 141074 IP address blocks: 2406:62c0::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/907608ce-c3f8-44eb-aee7-b784ae20c9c7/0/DE4325727D17555F6DABCC72788E361C741D47CF.crl rsync://repo-rpki.idnic.net/repo/907608ce-c3f8-44eb-aee7-b784ae20c9c7/0/DE4325727D17555F6DABCC72788E361C741D47CF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DE4325727D17555F6DABCC72788E361C741D47CF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 16:00:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:02:ca:4e:2e:0b:1f:33:4a:a2:31:98:90:f4:04:94:c5:ca:c7:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DE4325727D17555F6DABCC72788E361C741D47CF Validity Not Before: Mar 6 05:55:01 2025 GMT Not After : Mar 5 06:00:01 2026 GMT Subject: CN=3EB8DBA315E4034AF161FEE2FAD83AE5DDBFC54A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:7c:c2:be:33:cc:80:e1:27:e6:db:f3:17:72: 31:ad:a3:ac:21:33:36:9c:63:53:c3:8c:97:17:d0: 56:ac:44:61:fb:92:16:84:63:13:ff:e2:fc:b8:7a: 8e:b3:b6:ce:22:b3:e4:0b:ee:ab:a1:d7:30:cb:70: e4:f2:1b:b5:18:72:13:dc:61:e8:c7:1c:a5:10:3f: 69:c6:ff:95:28:12:df:05:53:3a:06:f4:4f:89:3d: 95:6e:77:1e:90:18:ef:ab:a5:47:1b:8c:02:e2:c6: 04:25:5e:72:78:a5:14:e2:9e:65:f3:22:b4:62:44: e5:2e:ed:83:68:45:cc:2c:4b:ab:40:6c:30:56:a2: e1:64:bf:12:ed:f0:3f:88:6b:4a:44:ad:f6:78:9d: 07:99:5d:dd:18:46:5c:94:48:8f:e6:24:79:15:76: 1e:66:9a:14:42:90:63:eb:eb:d0:14:c4:31:fb:39: cc:a3:87:2b:54:09:73:f9:dd:ea:81:10:20:e2:e9: 2f:e5:33:54:a1:d0:57:d7:dc:9f:bc:5b:15:01:00: d7:bd:90:00:29:1c:f4:d1:03:ef:ed:7c:bd:9d:47: 44:ea:a2:cf:d6:78:32:e5:09:07:56:83:74:ba:b6: 37:14:f5:ac:cd:14:5b:00:2f:7b:a8:5c:03:1b:6e: 85:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:B8:DB:A3:15:E4:03:4A:F1:61:FE:E2:FA:D8:3A:E5:DD:BF:C5:4A X509v3 Authority Key Identifier: keyid:DE:43:25:72:7D:17:55:5F:6D:AB:CC:72:78:8E:36:1C:74:1D:47:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/907608ce-c3f8-44eb-aee7-b784ae20c9c7/0/DE4325727D17555F6DABCC72788E361C741D47CF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DE4325727D17555F6DABCC72788E361C741D47CF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/907608ce-c3f8-44eb-aee7-b784ae20c9c7/0/323430363a363263303a3a2f33322d3332203d3e20313431303734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:62c0::/32 Signature Algorithm: sha256WithRSAEncryption 89:7c:9e:a6:88:31:55:c1:ea:e5:ca:45:c8:7f:48:cf:9e:a9: 84:d8:13:b7:10:64:e1:26:e6:ed:7b:a8:19:ae:21:b1:78:dd: 30:64:8a:14:1e:6a:8c:59:f8:e3:1c:5c:2b:df:d2:d9:45:43: 84:82:5d:d2:80:16:ab:93:c3:e9:4a:f8:aa:97:46:eb:54:6b: 95:6e:9f:19:7c:c1:82:ed:ef:a5:e1:c3:31:9b:20:76:82:21: c5:03:54:35:04:44:0b:9e:08:35:9e:69:b0:24:ff:38:b5:d4: c8:d1:3a:56:85:33:94:2d:8e:8f:d5:ab:00:d2:69:17:d6:0a: 73:c8:e8:cf:e4:c3:bb:b8:b6:28:bd:ee:d6:d9:cd:c6:ce:94: e3:79:93:a7:52:d3:ce:6d:c0:49:5b:70:74:72:4b:83:ed:a7: 49:b0:b5:69:00:d1:13:b1:f0:cf:5a:d7:22:df:e9:56:b2:4c: ff:2b:38:a4:94:95:7b:1b:dc:aa:55:19:8e:61:6e:25:51:60: b8:43:6b:c4:20:d1:9e:32:a5:0e:2a:ce:46:d9:db:0e:74:88: 17:51:09:c8:d1:17:df:32:17:bc:c6:01:93:a0:3a:e3:f8:23: 4a:14:78:33:8b:47:f6:8a:b0:07:da:e1:52:d9:25:f8:9d:ef: 19:9f:fd:78 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIURgLKTi4LHzNKojGYkPQElMXKx90wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREU0MzI1NzI3RDE3NTU1RjZEQUJDQzcyNzg4RTM2MUM3 NDFENDdDRjAeFw0yNTAzMDYwNTU1MDFaFw0yNjAzMDUwNjAwMDFaMDMxMTAvBgNV BAMTKDNFQjhEQkEzMTVFNDAzNEFGMTYxRkVFMkZBRDgzQUU1RERCRkM1NEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1fMK+M8yA4Sfm2/MXcjGto6wh MzacY1PDjJcX0FasRGH7khaEYxP/4vy4eo6zts4is+QL7quh1zDLcOTyG7UYchPc YejHHKUQP2nG/5UoEt8FUzoG9E+JPZVudx6QGO+rpUcbjALixgQlXnJ4pRTinmXz IrRiROUu7YNoRcwsS6tAbDBWouFkvxLt8D+Ia0pErfZ4nQeZXd0YRlyUSI/mJHkV dh5mmhRCkGPr69AUxDH7OcyjhytUCXP53eqBECDi6S/lM1Sh0FfX3J+8WxUBANe9 kAApHPTRA+/tfL2dR0Tqos/WeDLlCQdWg3S6tjcU9azNFFsAL3uoXAMbboVTAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUPrjboxXkA0rxYf7i+tg65d2/xUowHwYDVR0j BBgwFoAU3kMlcn0XVV9tq8xyeI42HHQdR88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MDc2MDhjZS1jM2Y4LTQ0ZWItYWVlNy1iNzg0YWUyMGM5YzcvMC9ERTQzMjU3MjdE MTc1NTVGNkRBQkNDNzI3ODhFMzYxQzc0MUQ0N0NGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREU0MzI1NzI3RDE3NTU1RjZEQUJDQzcyNzg4RTM2MUM3NDFE NDdDRi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkwNzYwOGNlLWMzZjgtNDRlYi1h ZWU3LWI3ODRhZTIwYzljNy8wLzMyMzQzMDM2M2EzNjMyNjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzQzMTMwMzczNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQGYsAwDQYJKoZI hvcNAQELBQADggEBAIl8nqaIMVXB6uXKRch/SM+eqYTYE7cQZOEm5u17qBmuIbF4 3TBkihQeaoxZ+OMcXCvf0tlFQ4SCXdKAFquTw+lK+KqXRutUa5Vunxl8wYLt76Xh wzGbIHaCIcUDVDUERAueCDWeabAk/zi11MjROlaFM5Qtjo/VqwDSaRfWCnPI6M/k w7u4tii97tbZzcbOlON5k6dS085twElbcHRyS4Ptp0mwtWkA0ROx8M9a1yLf6Vay TP8rOKSUlXsb3KpVGY5hbiVRYLhDa8Qg0Z4ypQ4qzkbZ2w50iBdRCcjRF98yF7zG AZOgOuP4I0oUeDOLR/aKsAfa4VLZJfid7xmf/Xg= -----END CERTIFICATE-----Generated at Sun Apr 6 09:40:32 2025 by rpki-client