$ rpki-client -vvf repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/323430313a616530303a3130303a3a2f34382d3438203d3e203338373533.roa File: 323430313a616530303a3130303a3a2f34382d3438203d3e203338373533.roa (raw, json) Hash identifier: /88FqsSOxES05CGn/NSysxWwgOh4h9mJWu72LhKUl9A= Subject key identifier: D7:28:62:97:96:6E:7F:AF:2A:9F:21:D7:BC:C1:41:76:91:A2:49:89 Certificate issuer: /CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14 Certificate serial: 31FE90F18F4326A55D1495B901CA107B09563215 Authority key identifier: 11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/323430313a616530303a3130303a3a2f34382d3438203d3e203338373533.roa Signing time: Wed 29 Jan 2025 03:02:50 +0000 ROA not before: Wed 29 Jan 2025 02:57:50 +0000 ROA not after: Wed 28 Jan 2026 03:02:50 +0000 asID: 38753 IP address blocks: 2401:ae00:100::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 02:39:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:fe:90:f1:8f:43:26:a5:5d:14:95:b9:01:ca:10:7b:09:56:32:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14 Validity Not Before: Jan 29 02:57:50 2025 GMT Not After : Jan 28 03:02:50 2026 GMT Subject: CN=D7286297966E7FAF2A9F21D7BCC1417691A24989 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:79:15:24:30:d4:11:6a:3d:15:7c:a2:ba:82: e3:57:18:78:c9:9d:df:4e:48:85:eb:9e:83:a2:1c: 19:35:43:17:d1:0f:d3:20:0e:c0:d9:62:bb:69:11: 40:e0:3b:a9:7c:b5:4d:7b:37:8c:99:31:6f:cc:07: d3:77:a3:70:47:a9:1d:19:cf:f0:1b:3a:85:c2:8f: df:83:78:13:34:8d:3f:47:10:81:ba:ab:7b:06:e3: 46:d1:fa:f6:98:7f:89:92:c2:4d:3e:f6:b8:13:3e: 7f:e2:de:f9:8d:23:16:b7:11:f5:3d:6a:c3:af:a3: e7:30:fa:0c:96:c2:28:65:08:b6:0c:b7:30:c6:b6: 2a:54:d9:b3:56:5f:98:3f:27:9f:cc:78:70:4d:74: c1:6e:e2:cb:4d:14:34:61:fe:8f:8d:c9:eb:dc:98: 1a:4d:8f:a3:78:74:0d:44:c9:b6:0a:a3:d1:94:43: fb:e7:cb:55:7d:ce:a3:de:b3:48:27:0a:44:3a:fb: 08:75:be:2a:57:01:88:94:7b:2f:02:8a:9a:1f:59: 5a:5d:bb:42:90:3d:58:84:d4:1e:3d:6a:98:e4:22: bc:0a:e8:ba:27:f2:dd:04:6f:08:83:b6:f6:fd:7e: 1c:dd:22:d1:4b:48:56:b9:7c:f9:f4:d0:2a:74:33: 6b:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:28:62:97:96:6E:7F:AF:2A:9F:21:D7:BC:C1:41:76:91:A2:49:89 X509v3 Authority Key Identifier: keyid:11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/323430313a616530303a3130303a3a2f34382d3438203d3e203338373533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:ae00:100::/48 Signature Algorithm: sha256WithRSAEncryption b6:aa:b2:c4:d8:ff:99:75:37:7f:2d:3a:b1:f2:83:2e:82:b7: a7:db:0a:63:94:c3:8d:3d:fb:c2:6f:d7:e6:bd:48:0e:d4:3d: 54:90:cd:ae:4b:6c:0c:14:be:be:b6:53:a0:ad:12:58:7e:af: 7f:cd:03:dc:b9:30:0e:04:13:d0:f4:53:df:87:06:f9:e0:0e: 12:f2:ec:e6:be:b0:d6:23:c1:47:72:ae:32:94:19:e0:1d:39: 72:1e:e0:ac:4f:fd:e0:bb:f2:72:39:7d:e6:f6:7b:03:e5:db: c6:be:f9:be:4d:64:62:8b:dc:d9:80:53:a8:ed:bf:07:7c:56: 00:39:24:a8:b2:4b:86:15:3d:17:b7:cf:fe:bc:a4:fb:1f:60: 56:c2:bc:54:cf:30:24:ad:78:3a:97:96:4c:8f:f8:d0:f8:6c: 54:bf:c4:81:d5:19:52:5b:b1:b4:d1:5d:37:67:ff:46:33:93: bb:23:14:6f:59:3b:ca:9a:72:84:0b:a1:89:73:5d:ff:02:c1: 9c:cf:bb:9c:b1:d9:10:99:c8:c5:87:67:77:b7:3f:3c:e1:18: 0b:9f:68:e8:73:fb:da:62:1c:c1:3b:77:73:3c:04:4c:5f:e2: 42:46:a5:e8:5e:72:5d:7e:24:3c:4e:c2:af:14:4e:28:9f:21: 95:02:c0:cd -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUMf6Q8Y9DJqVdFJW5AcoQewlWMhUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTFDOUJBMjg1MzRCQTQ0OTk5QjRCQTVENkIwRjI4RTU2 OERGNkUxNDAeFw0yNTAxMjkwMjU3NTBaFw0yNjAxMjgwMzAyNTBaMDMxMTAvBgNV BAMTKEQ3Mjg2Mjk3OTY2RTdGQUYyQTlGMjFEN0JDQzE0MTc2OTFBMjQ5ODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyeRUkMNQRaj0VfKK6guNXGHjJ nd9OSIXrnoOiHBk1QxfRD9MgDsDZYrtpEUDgO6l8tU17N4yZMW/MB9N3o3BHqR0Z z/AbOoXCj9+DeBM0jT9HEIG6q3sG40bR+vaYf4mSwk0+9rgTPn/i3vmNIxa3EfU9 asOvo+cw+gyWwihlCLYMtzDGtipU2bNWX5g/J5/MeHBNdMFu4stNFDRh/o+Nyevc mBpNj6N4dA1EybYKo9GUQ/vny1V9zqPes0gnCkQ6+wh1vipXAYiUey8CipofWVpd u0KQPViE1B49apjkIrwK6Lon8t0EbwiDtvb9fhzdItFLSFa5fPn00Cp0M2vpAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQU1yhil5Zuf68qnyHXvMFBdpGiSYkwHwYDVR0j BBgwFoAUEcm6KFNLpEmZtLpdaw8o5WjfbhQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MDZiNjY3My00N2ExLTQ1ZTUtYjZjMi00MmFiOGI0NzYyNDkvMC8xMUM5QkEyODUz NEJBNDQ5OTlCNEJBNUQ2QjBGMjhFNTY4REY2RTE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTFDOUJBMjg1MzRCQTQ0OTk5QjRCQTVENkIwRjI4RTU2OERG NkUxNC5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EwNmI2NjczLTQ3YTEtNDVlNS1i NmMyLTQyYWI4YjQ3NjI0OS8wLzMyMzQzMDMxM2E2MTY1MzAzMDNhMzEzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzMzODM3MzUzMy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQBrgAB ADANBgkqhkiG9w0BAQsFAAOCAQEAtqqyxNj/mXU3fy06sfKDLoK3p9sKY5TDjT37 wm/X5r1IDtQ9VJDNrktsDBS+vrZToK0SWH6vf80D3LkwDgQT0PRT34cG+eAOEvLs 5r6w1iPBR3KuMpQZ4B05ch7grE/94Lvycjl95vZ7A+Xbxr75vk1kYovc2YBTqO2/ B3xWADkkqLJLhhU9F7fP/ryk+x9gVsK8VM8wJK14OpeWTI/40PhsVL/EgdUZUlux tNFdN2f/RjOTuyMUb1k7yppyhAuhiXNd/wLBnM+7nLHZEJnIxYdnd7c/POEYC59o 6HP72mIcwTt3czwETF/iQkal6F5yXX4kPE7CrxROKJ8hlQLAzQ== -----END CERTIFICATE-----Generated at Sun Apr 6 10:55:34 2025 by rpki-client