$ rpki-client -vvf repo-rpki.idnic.net/repo/ad918b15-e63e-4b38-a05c-650fb49f0594/0/323430333a666338303a633030303a3a2f33342d3334203d3e203633353031.roa File: 323430333a666338303a633030303a3a2f33342d3334203d3e203633353031.roa (raw, json) Hash identifier: KAi90Yk2UdHOaKXHZIHDbTVI33QuVqpll9UtX+WnAS8= Subject key identifier: 44:0F:DB:C0:32:25:69:F8:BF:74:FD:37:B8:64:6A:4F:D2:06:7E:77 Certificate issuer: /CN=455696A81F434F9A36D66F455F4B3C43855A18E1 Certificate serial: 226610848A74682A4964C83C63F28C35C52DA6D7 Authority key identifier: 45:56:96:A8:1F:43:4F:9A:36:D6:6F:45:5F:4B:3C:43:85:5A:18:E1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/455696A81F434F9A36D66F455F4B3C43855A18E1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ad918b15-e63e-4b38-a05c-650fb49f0594/0/323430333a666338303a633030303a3a2f33342d3334203d3e203633353031.roa Signing time: Thu 04 Jul 2024 02:01:40 +0000 ROA not before: Thu 04 Jul 2024 01:56:40 +0000 ROA not after: Thu 03 Jul 2025 02:01:40 +0000 asID: 63501 IP address blocks: 2403:fc80:c000::/34 maxlen: 34 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ad918b15-e63e-4b38-a05c-650fb49f0594/0/455696A81F434F9A36D66F455F4B3C43855A18E1.crl rsync://repo-rpki.idnic.net/repo/ad918b15-e63e-4b38-a05c-650fb49f0594/0/455696A81F434F9A36D66F455F4B3C43855A18E1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/455696A81F434F9A36D66F455F4B3C43855A18E1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Mar 2025 20:47:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:66:10:84:8a:74:68:2a:49:64:c8:3c:63:f2:8c:35:c5:2d:a6:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=455696A81F434F9A36D66F455F4B3C43855A18E1 Validity Not Before: Jul 4 01:56:40 2024 GMT Not After : Jul 3 02:01:40 2025 GMT Subject: CN=440FDBC0322569F8BF74FD37B8646A4FD2067E77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:62:2d:e5:69:b7:e2:4a:35:b9:96:76:31:ce: 76:db:c5:c8:a5:f2:98:a4:94:70:61:0e:7c:43:22: 0a:ff:c5:e4:c8:c1:40:a4:fe:ec:28:17:6a:e9:95: f5:a4:56:71:ed:8a:55:c3:ce:12:7b:82:a6:19:08: d6:2c:53:81:be:63:2d:a3:d2:08:d0:cc:bb:2c:b7: 25:9f:aa:c8:86:b9:83:1a:6f:33:59:20:e5:0c:1c: d1:f2:06:92:97:b2:6b:93:b9:ef:67:92:97:1d:33: 71:fc:a9:63:1e:b7:bb:de:0d:78:c2:7c:92:5e:65: 0c:e4:dd:87:78:17:7e:8f:e9:71:d5:7a:b4:97:fb: 32:0e:87:b5:75:13:df:d6:12:38:1e:21:dc:bc:81: bd:0c:fc:c8:34:79:c5:48:a4:5f:0d:ce:20:99:c3: 98:47:1c:fb:55:ed:c2:fe:a1:23:02:88:91:6b:1c: ff:c2:5a:8c:0c:6c:a8:8b:5a:0f:d5:00:fd:8e:11: e0:0c:f6:8c:1f:81:22:e2:84:ca:96:d0:ae:c0:2a: fa:99:fa:a4:44:0e:19:7f:3b:d7:39:b1:12:12:0c: ad:8f:96:1c:ef:ab:65:8a:73:96:1d:b6:57:da:04: 32:6e:a6:db:67:62:d5:62:63:37:68:8c:9d:c7:32: 92:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:0F:DB:C0:32:25:69:F8:BF:74:FD:37:B8:64:6A:4F:D2:06:7E:77 X509v3 Authority Key Identifier: keyid:45:56:96:A8:1F:43:4F:9A:36:D6:6F:45:5F:4B:3C:43:85:5A:18:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ad918b15-e63e-4b38-a05c-650fb49f0594/0/455696A81F434F9A36D66F455F4B3C43855A18E1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/455696A81F434F9A36D66F455F4B3C43855A18E1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ad918b15-e63e-4b38-a05c-650fb49f0594/0/323430333a666338303a633030303a3a2f33342d3334203d3e203633353031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:fc80:c000::/34 Signature Algorithm: sha256WithRSAEncryption 70:3a:67:27:c1:03:f8:b0:b0:b4:6d:08:2b:b0:dd:21:64:e3: c8:59:34:d6:48:b5:4e:23:9f:70:af:fa:48:d7:c0:ce:f0:75: fb:83:0d:34:94:c3:be:0b:96:1c:b7:4d:ae:3e:d1:17:0b:57: ec:8f:81:05:db:86:54:55:54:33:25:43:ed:2e:e5:98:d8:25: c1:5c:46:3e:7e:7e:fc:39:b4:75:8f:26:b2:2c:88:a1:f2:42: dc:5f:6d:a8:52:55:67:71:d7:72:98:1e:a0:9c:7b:f8:7b:f3: b6:c5:a6:12:db:e0:fb:60:00:b3:a1:fc:9b:bd:4c:41:ee:5c: fc:a6:61:63:19:a6:f6:02:92:93:31:e9:e6:3f:d4:50:25:2a: 5b:3c:9a:7a:46:29:42:50:6a:f0:f2:60:3f:43:f9:b7:7d:cd: 05:80:aa:cc:28:45:b6:64:1b:cc:b0:36:10:c4:07:01:47:f2: a4:b0:db:4d:b3:c6:7b:87:29:97:a6:bc:70:aa:6e:22:ae:21: 36:ba:86:2d:3c:78:cb:70:cd:29:c3:6c:58:cc:45:50:97:ce: e7:94:46:b2:ba:c1:a9:9b:56:d1:58:27:0c:64:76:ce:a0:ed: e6:26:0b:30:31:df:71:2a:df:37:38:3a:61:47:24:b3:42:f7: 5c:28:3d:67 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUImYQhIp0aCpJZMg8Y/KMNcUtptcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDU1Njk2QTgxRjQzNEY5QTM2RDY2RjQ1NUY0QjNDNDM4 NTVBMThFMTAeFw0yNDA3MDQwMTU2NDBaFw0yNTA3MDMwMjAxNDBaMDMxMTAvBgNV BAMTKDQ0MEZEQkMwMzIyNTY5RjhCRjc0RkQzN0I4NjQ2QTRGRDIwNjdFNzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdYi3labfiSjW5lnYxznbbxcil 8piklHBhDnxDIgr/xeTIwUCk/uwoF2rplfWkVnHtilXDzhJ7gqYZCNYsU4G+Yy2j 0gjQzLsstyWfqsiGuYMabzNZIOUMHNHyBpKXsmuTue9nkpcdM3H8qWMet7veDXjC fJJeZQzk3Yd4F36P6XHVerSX+zIOh7V1E9/WEjgeIdy8gb0M/Mg0ecVIpF8NziCZ w5hHHPtV7cL+oSMCiJFrHP/CWowMbKiLWg/VAP2OEeAM9owfgSLihMqW0K7AKvqZ +qREDhl/O9c5sRISDK2Plhzvq2WKc5YdtlfaBDJupttnYtViYzdojJ3HMpIHAgMB AAGjggI8MIICODAdBgNVHQ4EFgQURA/bwDIlafi/dP03uGRqT9IGfncwHwYDVR0j BBgwFoAURVaWqB9DT5o21m9FX0s8Q4VaGOEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZDkxOGIxNS1lNjNlLTRiMzgtYTA1Yy02NTBmYjQ5ZjA1OTQvMC80NTU2OTZBODFG NDM0RjlBMzZENjZGNDU1RjRCM0M0Mzg1NUExOEUxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDU1Njk2QTgxRjQzNEY5QTM2RDY2RjQ1NUY0QjNDNDM4NTVB MThFMS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FkOTE4YjE1LWU2M2UtNGIzOC1h MDVjLTY1MGZiNDlmMDU5NC8wLzMyMzQzMDMzM2E2NjYzMzgzMDNhNjMzMDMwMzAz YTNhMmYzMzM0MmQzMzM0MjAzZDNlMjAzNjMzMzUzMDMxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYGJAP8 gMAwDQYJKoZIhvcNAQELBQADggEBAHA6ZyfBA/iwsLRtCCuw3SFk48hZNNZItU4j n3Cv+kjXwM7wdfuDDTSUw74Llhy3Ta4+0RcLV+yPgQXbhlRVVDMlQ+0u5ZjYJcFc Rj5+fvw5tHWPJrIsiKHyQtxfbahSVWdx13KYHqCce/h787bFphLb4PtgALOh/Ju9 TEHuXPymYWMZpvYCkpMx6eY/1FAlKls8mnpGKUJQavDyYD9D+bd9zQWAqswoRbZk G8ywNhDEBwFH8qSw202zxnuHKZemvHCqbiKuITa6hi08eMtwzSnDbFjMRVCXzueU RrK6wambVtFYJwxkds6g7eYmCzAx33Eq3zc4OmFHJLNC91woPWc= -----END CERTIFICATE-----Generated at Tue Mar 11 05:02:07 2025 by rpki-client