$ rpki-client -vvf repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/323430323a616230303a61663a3a2f34382d3438203d3e203234323036.roa File: 323430323a616230303a61663a3a2f34382d3438203d3e203234323036.roa (raw, json) Hash identifier: lNnryO3KjbjallOCFXPMSeEsKPceLct4DmwTgOEASfo= Subject key identifier: F5:5E:82:C7:68:1B:EE:85:16:F3:67:B8:AE:DB:B7:1C:1A:35:1E:46 Certificate issuer: /CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Certificate serial: 54ECCA4D600EF9AA7A6E16AA552437D76DFE51DA Authority key identifier: 98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/323430323a616230303a61663a3a2f34382d3438203d3e203234323036.roa Signing time: Tue 11 Mar 2025 11:00:00 +0000 ROA not before: Tue 11 Mar 2025 10:55:00 +0000 ROA not after: Tue 10 Mar 2026 11:00:00 +0000 asID: 24206 IP address blocks: 2402:ab00:af::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 04:48:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:ec:ca:4d:60:0e:f9:aa:7a:6e:16:aa:55:24:37:d7:6d:fe:51:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Validity Not Before: Mar 11 10:55:00 2025 GMT Not After : Mar 10 11:00:00 2026 GMT Subject: CN=F55E82C7681BEE8516F367B8AEDBB71C1A351E46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:1f:8e:d6:92:89:00:0c:a0:fd:29:8e:91:f4: 52:eb:58:ed:6a:7f:07:9f:51:8f:a6:25:d2:32:78: 59:be:33:ea:f5:ed:56:c6:19:66:73:97:b5:38:4e: ce:31:2d:7f:83:39:6d:c0:23:97:5c:e8:30:e4:50: 7f:5a:45:d3:1f:1c:3c:d0:75:be:36:e0:63:1b:24: 39:82:05:35:ac:3d:01:e4:f0:f9:5d:71:a7:8a:67: 1f:37:34:49:fd:6b:e6:27:d4:57:5e:95:63:42:88: b7:89:37:2c:bc:14:36:67:41:08:cb:b5:85:9a:70: 42:5e:91:e0:f7:b4:e3:63:72:b5:90:1d:96:a6:41: 1f:ac:55:95:8f:1b:3b:7e:22:55:b4:73:1a:6f:5e: e7:fe:db:be:d4:a1:a8:9e:3a:15:8d:93:f4:13:c1: 21:ea:ef:7b:df:c9:3d:20:16:ff:28:d5:38:f4:9e: 6d:df:b9:97:ac:89:ee:90:72:b3:d3:86:c7:50:a9: 93:5d:eb:83:91:f5:7e:0c:4f:26:e3:32:20:31:ba: 63:86:22:29:b2:ad:08:11:d4:d5:3a:f4:d1:a4:88: 6c:74:d5:b4:c1:44:6d:5e:ae:0e:b6:3d:21:11:b4: de:83:18:ae:df:40:ba:27:40:ac:7e:a5:85:af:bc: 89:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:5E:82:C7:68:1B:EE:85:16:F3:67:B8:AE:DB:B7:1C:1A:35:1E:46 X509v3 Authority Key Identifier: keyid:98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/323430323a616230303a61663a3a2f34382d3438203d3e203234323036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:ab00:af::/48 Signature Algorithm: sha256WithRSAEncryption 1a:f0:aa:fd:86:a3:b1:ce:da:8d:17:9e:f2:b9:82:98:60:87: c5:0c:76:c3:81:c0:51:c8:b9:92:38:55:ed:02:b7:49:38:7e: 91:7a:cc:30:f0:15:86:a5:db:58:52:56:53:33:41:b9:f2:a6: 87:32:3f:f5:67:50:c1:df:f9:c8:ee:3b:9a:c9:bc:10:f0:0d: 93:dd:d0:91:3e:48:eb:b9:b0:a0:b0:f0:ca:46:d0:16:c5:94: 29:f1:77:78:cc:dc:2b:dd:13:fd:f4:f6:e7:96:03:50:c6:d4: 9e:1d:bb:bb:fe:4d:23:37:d4:4f:25:05:29:c3:a5:8e:b0:f5: 96:68:f6:d6:e5:b3:6a:86:06:08:44:34:1c:ca:50:11:a3:0f: 60:ff:f1:db:89:e7:19:bc:93:7e:37:6d:ff:da:a4:39:48:0c: 3a:a7:c3:26:ac:82:29:f7:4c:67:de:60:61:81:bc:ca:29:17: 74:c5:ac:4a:9f:02:a4:85:f6:61:e9:f4:20:f2:29:f5:6f:7e: d1:82:ce:35:cd:b1:cf:e6:44:d8:5b:9a:c4:28:2f:8d:c8:ec: 9a:6a:20:58:4f:1e:5a:04:62:ed:7f:5d:bd:c6:01:9a:da:9f: 5e:d7:25:dd:39:8b:a8:02:99:16:c4:22:ec:ea:fb:99:53:dc: 03:db:9a:40 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUVOzKTWAO+ap6bhaqVSQ3123+UdowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NC MEMxMDhBOTAeFw0yNTAzMTExMDU1MDBaFw0yNjAzMTAxMTAwMDBaMDMxMTAvBgNV BAMTKEY1NUU4MkM3NjgxQkVFODUxNkYzNjdCOEFFREJCNzFDMUEzNTFFNDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHH47WkokADKD9KY6R9FLrWO1q fwefUY+mJdIyeFm+M+r17VbGGWZzl7U4Ts4xLX+DOW3AI5dc6DDkUH9aRdMfHDzQ db424GMbJDmCBTWsPQHk8PldcaeKZx83NEn9a+Yn1FdelWNCiLeJNyy8FDZnQQjL tYWacEJekeD3tONjcrWQHZamQR+sVZWPGzt+IlW0cxpvXuf+277UoaieOhWNk/QT wSHq73vfyT0gFv8o1Tj0nm3fuZesie6QcrPThsdQqZNd64OR9X4MTybjMiAxumOG IimyrQgR1NU69NGkiGx01bTBRG1erg62PSERtN6DGK7fQLonQKx+pYWvvIk3AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQU9V6Cx2gb7oUW82e4rtu3HBo1HkYwHwYDVR0j BBgwFoAUmB5Wd6xgKVCr4aRCwneefLDBCKkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NzkyMmY4OS0zZTliLTRiMjEtOTE4Ni1hNjQ4YzJkYTNmN2IvMC85ODFFNTY3N0FD NjAyOTUwQUJFMUE0NDJDMjc3OUU3Q0IwQzEwOEE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NCMEMx MDhBOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3OTIyZjg5LTNlOWItNGIyMS05 MTg2LWE2NDhjMmRhM2Y3Yi8wLzMyMzQzMDMyM2E2MTYyMzAzMDNhNjE2NjNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzQzMjMwMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAqsAAK8w DQYJKoZIhvcNAQELBQADggEBABrwqv2Go7HO2o0XnvK5gphgh8UMdsOBwFHIuZI4 Ve0Ct0k4fpF6zDDwFYal21hSVlMzQbnypocyP/VnUMHf+cjuO5rJvBDwDZPd0JE+ SOu5sKCw8MpG0BbFlCnxd3jM3CvdE/309ueWA1DG1J4du7v+TSM31E8lBSnDpY6w 9ZZo9tbls2qGBghENBzKUBGjD2D/8duJ5xm8k343bf/apDlIDDqnwyasgin3TGfe YGGBvMopF3TFrEqfAqSF9mHp9CDyKfVvftGCzjXNsc/mRNhbmsQoL43I7JpqIFhP HloEYu1/Xb3GAZran17XJd05i6gCmRbEIuzq+5lT3APbmkA= -----END CERTIFICATE-----Generated at Sun Apr 6 08:27:50 2025 by rpki-client