$ rpki-client -vvf repo-rpki.idnic.net/repo/b450d956-9b00-46c1-a631-3564e186a079/0/323430363a373563303a666666663a3a2f34382d3438203d3e20313431303639.roa File: 323430363a373563303a666666663a3a2f34382d3438203d3e20313431303639.roa (raw, json) Hash identifier: s+vjjfwevG5hNAz1IxDdgMgUMcSlvwVtkT0ZkEAzrPU= Subject key identifier: 7E:1C:90:46:F9:64:3E:8E:E1:CD:CC:DA:6B:BD:F4:AA:14:1B:42:BA Certificate issuer: /CN=98FF48FFAD3CC9E9878D3FA74E0EEA79CA13F0FA Certificate serial: 3A870F7AB33563DCB08A4ECF96E49A908F905F7E Authority key identifier: 98:FF:48:FF:AD:3C:C9:E9:87:8D:3F:A7:4E:0E:EA:79:CA:13:F0:FA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/98FF48FFAD3CC9E9878D3FA74E0EEA79CA13F0FA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b450d956-9b00-46c1-a631-3564e186a079/0/323430363a373563303a666666663a3a2f34382d3438203d3e20313431303639.roa Signing time: Wed 08 May 2024 09:00:00 +0000 ROA not before: Wed 08 May 2024 08:55:00 +0000 ROA not after: Wed 07 May 2025 09:00:00 +0000 asID: 141069 IP address blocks: 2406:75c0:ffff::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b450d956-9b00-46c1-a631-3564e186a079/0/98FF48FFAD3CC9E9878D3FA74E0EEA79CA13F0FA.crl rsync://repo-rpki.idnic.net/repo/b450d956-9b00-46c1-a631-3564e186a079/0/98FF48FFAD3CC9E9878D3FA74E0EEA79CA13F0FA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/98FF48FFAD3CC9E9878D3FA74E0EEA79CA13F0FA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 22 Feb 2025 15:14:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:87:0f:7a:b3:35:63:dc:b0:8a:4e:cf:96:e4:9a:90:8f:90:5f:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=98FF48FFAD3CC9E9878D3FA74E0EEA79CA13F0FA Validity Not Before: May 8 08:55:00 2024 GMT Not After : May 7 09:00:00 2025 GMT Subject: CN=7E1C9046F9643E8EE1CDCCDA6BBDF4AA141B42BA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:0a:f3:d5:c3:a7:59:a3:e0:95:5d:eb:13:0a: 46:f6:18:fe:12:4c:b6:cf:7b:1c:bb:b4:9b:d4:7d: ed:93:da:1f:ed:ab:5c:f0:b0:21:bf:f5:7b:de:48: da:68:e7:c3:1b:5d:d4:6c:03:92:3d:f7:66:01:dc: eb:61:45:dc:35:21:b4:e6:71:b6:63:ef:86:cc:73: 23:65:62:d6:54:9b:e6:cc:58:29:8c:28:fb:73:85: bc:a7:19:42:b5:20:44:35:05:cd:10:47:78:e6:c5: b3:0b:27:b9:fa:93:5a:aa:ac:c7:b5:95:b3:67:3d: 67:be:e5:b8:18:6c:6f:56:b4:f7:f4:1b:13:ff:59: e8:a9:e9:ce:fb:2e:df:aa:6d:86:dd:57:7a:7c:00: bc:45:e5:22:94:bd:47:a7:d9:35:26:2d:90:51:00: d5:c6:ce:fa:a8:14:b7:bf:d7:1a:fd:19:c0:ec:05: 50:5b:24:ec:fe:ff:3b:a3:ac:d8:4a:ab:77:37:e6: e6:b1:54:60:d3:52:e2:50:bb:c1:cf:62:96:df:63: ab:c5:79:ca:15:f3:6b:e0:07:76:e9:cc:38:7b:0a: bb:4a:51:37:60:bf:31:c6:fc:2c:0b:4e:61:00:56: 45:92:6c:cd:38:18:c7:d9:60:6d:a2:48:44:dc:ab: 85:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:1C:90:46:F9:64:3E:8E:E1:CD:CC:DA:6B:BD:F4:AA:14:1B:42:BA X509v3 Authority Key Identifier: keyid:98:FF:48:FF:AD:3C:C9:E9:87:8D:3F:A7:4E:0E:EA:79:CA:13:F0:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b450d956-9b00-46c1-a631-3564e186a079/0/98FF48FFAD3CC9E9878D3FA74E0EEA79CA13F0FA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/98FF48FFAD3CC9E9878D3FA74E0EEA79CA13F0FA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b450d956-9b00-46c1-a631-3564e186a079/0/323430363a373563303a666666663a3a2f34382d3438203d3e20313431303639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:75c0:ffff::/48 Signature Algorithm: sha256WithRSAEncryption 66:57:b0:6f:a9:d1:ac:f3:18:59:66:80:9b:5b:79:65:27:9d: fd:f9:b6:95:c7:9a:e1:19:fe:4f:a8:b7:a1:b3:50:a5:5f:8d: 97:eb:e0:90:0b:7d:72:ad:34:a1:42:b1:62:ad:ca:78:78:83: 4c:7c:5e:91:e1:05:47:99:b0:ca:24:a2:55:20:bf:7e:e3:6b: 43:6e:55:69:08:3d:c7:d9:b5:7e:96:5c:eb:e4:cc:d6:cf:fd: bd:0d:12:d0:45:73:43:ae:7f:5e:bf:fc:2e:77:8b:56:24:f5: 89:13:22:18:2c:2e:a9:aa:0a:70:5e:cf:8c:d0:1e:02:c9:90: aa:3a:7f:76:01:f8:ba:a6:48:5e:96:0c:bb:67:a7:7f:10:8c: 58:04:3c:9b:32:30:f3:2a:e1:5a:7f:c4:8b:17:e9:7e:18:e0: 4f:4e:23:b6:ce:e0:32:17:bf:09:9d:f2:e5:65:31:3c:99:79: 2d:e5:97:63:90:5d:3f:b0:f8:5b:c2:c9:19:8a:2c:45:81:ba: 84:1f:66:02:e6:ac:97:f7:f9:1a:1e:e6:ff:ad:82:8b:6a:69: 4d:e8:65:23:20:4b:33:42:42:9b:1c:d2:68:67:ca:e2:59:34: 90:96:cf:3e:14:a5:84:73:d5:8f:69:f7:98:91:c8:79:dd:2b: 32:80:8d:db -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUOocPerM1Y9ywik7PluSakI+QX34wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOThGRjQ4RkZBRDNDQzlFOTg3OEQzRkE3NEUwRUVBNzlD QTEzRjBGQTAeFw0yNDA1MDgwODU1MDBaFw0yNTA1MDcwOTAwMDBaMDMxMTAvBgNV BAMTKDdFMUM5MDQ2Rjk2NDNFOEVFMUNEQ0NEQTZCQkRGNEFBMTQxQjQyQkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDnCvPVw6dZo+CVXesTCkb2GP4S TLbPexy7tJvUfe2T2h/tq1zwsCG/9XveSNpo58MbXdRsA5I992YB3OthRdw1IbTm cbZj74bMcyNlYtZUm+bMWCmMKPtzhbynGUK1IEQ1Bc0QR3jmxbMLJ7n6k1qqrMe1 lbNnPWe+5bgYbG9WtPf0GxP/Weip6c77Lt+qbYbdV3p8ALxF5SKUvUen2TUmLZBR ANXGzvqoFLe/1xr9GcDsBVBbJOz+/zujrNhKq3c35uaxVGDTUuJQu8HPYpbfY6vF ecoV82vgB3bpzDh7CrtKUTdgvzHG/CwLTmEAVkWSbM04GMfZYG2iSETcq4UdAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUfhyQRvlkPo7hzczaa730qhQbQrowHwYDVR0j BBgwFoAUmP9I/608yemHjT+nTg7qecoT8PowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NDUwZDk1Ni05YjAwLTQ2YzEtYTYzMS0zNTY0ZTE4NmEwNzkvMC85OEZGNDhGRkFE M0NDOUU5ODc4RDNGQTc0RTBFRUE3OUNBMTNGMEZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOThGRjQ4RkZBRDNDQzlFOTg3OEQzRkE3NEUwRUVBNzlDQTEz RjBGQS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I0NTBkOTU2LTliMDAtNDZjMS1h NjMxLTM1NjRlMTg2YTA3OS8wLzMyMzQzMDM2M2EzNzM1NjMzMDNhNjY2NjY2NjYz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM0MzEzMDM2Mzkucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BnXA//8wDQYJKoZIhvcNAQELBQADggEBAGZXsG+p0azzGFlmgJtbeWUnnf35tpXH muEZ/k+ot6GzUKVfjZfr4JALfXKtNKFCsWKtynh4g0x8XpHhBUeZsMokolUgv37j a0NuVWkIPcfZtX6WXOvkzNbP/b0NEtBFc0Ouf16//C53i1Yk9YkTIhgsLqmqCnBe z4zQHgLJkKo6f3YB+LqmSF6WDLtnp38QjFgEPJsyMPMq4Vp/xIsX6X4Y4E9OI7bO 4DIXvwmd8uVlMTyZeS3ll2OQXT+w+FvCyRmKLEWBuoQfZgLmrJf3+Roe5v+tgotq aU3oZSMgSzNCQpsc0mhnyuJZNJCWzz4UpYRz1Y9p95iRyHndKzKAjds= -----END CERTIFICATE-----Generated at Fri Feb 21 11:20:32 2025 by rpki-client