$ rpki-client -vvf repo-rpki.idnic.net/repo/b450d956-9b00-46c1-a631-3564e186a079/0/323430363a373563303a3a2f33322d3332203d3e20313431303639.roa File: 323430363a373563303a3a2f33322d3332203d3e20313431303639.roa (raw, json) Hash identifier: PTq4K7C1NfA7u/hBgxfzHnc927GHuD0+t6G+/br9unw= Subject key identifier: 9A:78:5A:B8:8C:70:61:3A:33:FD:D6:55:28:0A:DD:13:07:46:8B:53 Certificate issuer: /CN=98FF48FFAD3CC9E9878D3FA74E0EEA79CA13F0FA Certificate serial: 6B4ECE02D76D48597300955B186FD510B8614474 Authority key identifier: 98:FF:48:FF:AD:3C:C9:E9:87:8D:3F:A7:4E:0E:EA:79:CA:13:F0:FA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/98FF48FFAD3CC9E9878D3FA74E0EEA79CA13F0FA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b450d956-9b00-46c1-a631-3564e186a079/0/323430363a373563303a3a2f33322d3332203d3e20313431303639.roa Signing time: Thu 17 Apr 2025 08:00:00 +0000 ROA not before: Thu 17 Apr 2025 07:55:00 +0000 ROA not after: Thu 16 Apr 2026 08:00:00 +0000 asID: 141069 IP address blocks: 2406:75c0::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b450d956-9b00-46c1-a631-3564e186a079/0/98FF48FFAD3CC9E9878D3FA74E0EEA79CA13F0FA.crl rsync://repo-rpki.idnic.net/repo/b450d956-9b00-46c1-a631-3564e186a079/0/98FF48FFAD3CC9E9878D3FA74E0EEA79CA13F0FA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/98FF48FFAD3CC9E9878D3FA74E0EEA79CA13F0FA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 22 Apr 2025 21:50:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:4e:ce:02:d7:6d:48:59:73:00:95:5b:18:6f:d5:10:b8:61:44:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=98FF48FFAD3CC9E9878D3FA74E0EEA79CA13F0FA Validity Not Before: Apr 17 07:55:00 2025 GMT Not After : Apr 16 08:00:00 2026 GMT Subject: CN=9A785AB88C70613A33FDD655280ADD1307468B53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:29:53:d5:49:c6:1a:65:ed:32:70:9b:a7:43: 2a:cb:f8:36:a4:c4:50:fd:e5:66:9c:1e:c0:c6:43: 80:c2:6d:dc:9c:e1:9b:cc:0e:59:41:b6:cf:d8:bc: 39:5f:8c:37:13:77:e0:6b:3d:b9:ee:62:e1:fc:5d: 35:3e:e1:a8:f0:d2:76:1d:6a:a1:39:ad:da:bc:46: 1d:5a:76:02:b7:54:ed:3c:cf:e7:9f:96:26:89:ed: c8:27:4b:40:b8:6f:a3:37:12:c9:bf:bc:97:1e:d0: fa:d2:28:e9:a6:7d:b5:4e:97:a9:2c:bc:0a:5b:0d: b5:b7:b2:9f:c9:8e:1f:1d:38:31:b3:bd:06:15:b5: a5:3f:fe:ca:e6:33:6a:f5:1f:87:a5:68:86:c0:50: 99:ae:a1:aa:15:55:64:6a:96:ed:48:67:81:89:00: a0:47:dd:02:d9:aa:f2:2e:dd:89:19:26:a5:f9:53: e7:09:39:37:b5:ec:29:be:57:64:99:39:f4:c7:78: fd:e4:42:f2:f2:fc:08:d6:a5:25:37:17:f9:8d:db: 4d:8d:6e:91:41:a8:02:ef:1a:99:b3:18:70:3d:94: 73:c6:f6:9d:d8:4d:ae:ca:c9:8d:b5:f8:c7:1e:19: b4:4e:4b:04:9a:36:25:e3:75:75:4d:9d:e9:e9:12: 63:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:78:5A:B8:8C:70:61:3A:33:FD:D6:55:28:0A:DD:13:07:46:8B:53 X509v3 Authority Key Identifier: keyid:98:FF:48:FF:AD:3C:C9:E9:87:8D:3F:A7:4E:0E:EA:79:CA:13:F0:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b450d956-9b00-46c1-a631-3564e186a079/0/98FF48FFAD3CC9E9878D3FA74E0EEA79CA13F0FA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/98FF48FFAD3CC9E9878D3FA74E0EEA79CA13F0FA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b450d956-9b00-46c1-a631-3564e186a079/0/323430363a373563303a3a2f33322d3332203d3e20313431303639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:75c0::/32 Signature Algorithm: sha256WithRSAEncryption 74:d6:57:7b:74:9f:10:a5:da:94:07:aa:7e:c4:f1:0d:61:e4: 33:f4:cf:d6:2c:46:99:cd:79:00:01:f9:ef:0b:28:6d:73:5b: 9f:7e:6f:5b:45:ab:e9:18:38:c9:b9:43:56:52:fa:e8:40:e3: a1:72:d0:bd:21:1a:3b:90:28:4a:b5:b5:8d:f7:4a:f4:ed:ed: 5f:ac:02:ec:61:b1:88:54:ff:3a:2e:13:1e:20:4d:7d:db:27: 83:e5:ca:f3:f0:c2:43:20:90:88:bd:12:f3:03:84:cc:9f:14: f0:ee:d0:0e:fc:c2:c3:cf:2b:5b:c8:8d:fe:18:be:4c:7a:7f: 72:61:bd:c5:ac:92:3d:0f:02:42:dc:81:f4:54:51:0f:0f:37: 3b:85:cd:0c:99:04:9f:0e:db:d5:8e:25:92:87:79:84:fa:af: 34:9b:bf:6f:02:ce:43:06:b8:26:d0:ef:83:d7:9f:ed:54:e3: 10:dc:1c:1c:f6:1b:5b:f6:fe:cf:62:b7:33:f6:31:f1:ef:37: 59:26:25:ab:68:3b:ea:ab:44:82:30:82:74:55:e2:41:bd:d9: de:28:69:56:fc:c2:6f:50:d4:f7:6f:a6:18:1f:eb:f9:84:82: 15:9c:57:0c:02:5e:20:fd:09:9b:97:0a:41:a5:7a:79:53:be: 6e:5a:78:bc -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUa07OAtdtSFlzAJVbGG/VELhhRHQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOThGRjQ4RkZBRDNDQzlFOTg3OEQzRkE3NEUwRUVBNzlD QTEzRjBGQTAeFw0yNTA0MTcwNzU1MDBaFw0yNjA0MTYwODAwMDBaMDMxMTAvBgNV BAMTKDlBNzg1QUI4OEM3MDYxM0EzM0ZERDY1NTI4MEFERDEzMDc0NjhCNTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEKVPVScYaZe0ycJunQyrL+Dak xFD95WacHsDGQ4DCbdyc4ZvMDllBts/YvDlfjDcTd+BrPbnuYuH8XTU+4ajw0nYd aqE5rdq8Rh1adgK3VO08z+efliaJ7cgnS0C4b6M3Esm/vJce0PrSKOmmfbVOl6ks vApbDbW3sp/Jjh8dODGzvQYVtaU//srmM2r1H4elaIbAUJmuoaoVVWRqlu1IZ4GJ AKBH3QLZqvIu3YkZJqX5U+cJOTe17Cm+V2SZOfTHeP3kQvLy/AjWpSU3F/mN202N bpFBqALvGpmzGHA9lHPG9p3YTa7KyY21+MceGbROSwSaNiXjdXVNnenpEmMFAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUmnhauIxwYToz/dZVKArdEwdGi1MwHwYDVR0j BBgwFoAUmP9I/608yemHjT+nTg7qecoT8PowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NDUwZDk1Ni05YjAwLTQ2YzEtYTYzMS0zNTY0ZTE4NmEwNzkvMC85OEZGNDhGRkFE M0NDOUU5ODc4RDNGQTc0RTBFRUE3OUNBMTNGMEZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOThGRjQ4RkZBRDNDQzlFOTg3OEQzRkE3NEUwRUVBNzlDQTEz RjBGQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I0NTBkOTU2LTliMDAtNDZjMS1h NjMxLTM1NjRlMTg2YTA3OS8wLzMyMzQzMDM2M2EzNzM1NjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzQzMTMwMzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQGdcAwDQYJKoZI hvcNAQELBQADggEBAHTWV3t0nxCl2pQHqn7E8Q1h5DP0z9YsRpnNeQAB+e8LKG1z W59+b1tFq+kYOMm5Q1ZS+uhA46Fy0L0hGjuQKEq1tY33SvTt7V+sAuxhsYhU/zou Ex4gTX3bJ4PlyvPwwkMgkIi9EvMDhMyfFPDu0A78wsPPK1vIjf4Yvkx6f3JhvcWs kj0PAkLcgfRUUQ8PNzuFzQyZBJ8O29WOJZKHeYT6rzSbv28CzkMGuCbQ74PXn+1U 4xDcHBz2G1v2/s9itzP2MfHvN1kmJatoO+qrRIIwgnRV4kG92d4oaVb8wm9Q1Pdv phgf6/mEghWcVwwCXiD9CZuXCkGlenlTvm5aeLw= -----END CERTIFICATE-----Generated at Mon Apr 21 16:41:13 2025 by rpki-client