$ rpki-client -vvf repo-rpki.idnic.net/repo/bdd1eacd-a067-4924-9284-bc6f10d8d5a8/0/323430353a353130303a3a2f33322d3438203d3e203137383236.roa File: 323430353a353130303a3a2f33322d3438203d3e203137383236.roa (raw, json) Hash identifier: RPuPflMz4nJKBYzjEh4JwUHlASpyjK5FiwQGJODrOJ0= Subject key identifier: 8D:8E:7E:6C:AB:3A:CD:D1:FD:EC:6B:AF:A6:17:64:8B:8E:B7:11:E6 Certificate issuer: /CN=0DA6D433710276BF7B8006C21C26AEF5F856AF21 Certificate serial: 4C40D368927D2D2D9896211321B1F3ECCEE9572D Authority key identifier: 0D:A6:D4:33:71:02:76:BF:7B:80:06:C2:1C:26:AE:F5:F8:56:AF:21 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0DA6D433710276BF7B8006C21C26AEF5F856AF21.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bdd1eacd-a067-4924-9284-bc6f10d8d5a8/0/323430353a353130303a3a2f33322d3438203d3e203137383236.roa Signing time: Fri 17 Jan 2025 08:00:00 +0000 ROA not before: Fri 17 Jan 2025 07:55:00 +0000 ROA not after: Fri 16 Jan 2026 08:00:00 +0000 asID: 17826 IP address blocks: 2405:5100::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bdd1eacd-a067-4924-9284-bc6f10d8d5a8/0/0DA6D433710276BF7B8006C21C26AEF5F856AF21.crl rsync://repo-rpki.idnic.net/repo/bdd1eacd-a067-4924-9284-bc6f10d8d5a8/0/0DA6D433710276BF7B8006C21C26AEF5F856AF21.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0DA6D433710276BF7B8006C21C26AEF5F856AF21.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 04:30:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:40:d3:68:92:7d:2d:2d:98:96:21:13:21:b1:f3:ec:ce:e9:57:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0DA6D433710276BF7B8006C21C26AEF5F856AF21 Validity Not Before: Jan 17 07:55:00 2025 GMT Not After : Jan 16 08:00:00 2026 GMT Subject: CN=8D8E7E6CAB3ACDD1FDEC6BAFA617648B8EB711E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:25:fd:07:1e:41:0a:96:5b:5a:6d:f5:f2:35: cb:34:9d:81:08:e4:eb:5d:1a:d4:1b:9b:b5:82:ce: 19:1b:a8:ea:f4:d3:9e:9e:6f:24:7a:19:1e:44:45: b1:39:7c:6a:a1:6a:ab:f8:24:72:a9:6d:f4:0e:87: 0f:a7:b8:51:89:6d:60:71:1a:e9:38:d9:a8:e4:ed: 44:03:0e:5b:67:ee:1b:37:a8:d8:09:c2:bd:6b:16: 70:08:39:57:84:00:87:21:58:8a:49:b8:60:cd:d4: 20:9c:84:7d:b5:1a:72:2a:15:19:cc:68:7d:ca:ba: c0:97:41:a2:71:16:9c:1e:83:25:5f:e8:c7:a7:f0: ea:6b:d8:46:f9:28:45:dc:d5:38:56:2e:ec:cb:72: 77:63:88:83:84:64:d9:c2:28:7f:95:03:1c:49:7d: 71:de:cd:87:d5:38:4e:5a:6d:13:83:76:46:40:c9: 96:4d:7c:c3:fb:40:96:8f:99:f6:cc:3c:73:55:8b: 17:be:06:5a:7f:24:eb:05:8a:6d:8a:cc:1a:f7:4d: ad:1d:72:6f:31:4a:b0:1a:8f:b4:e7:1f:d3:93:9a: e0:9a:80:37:12:3d:d7:96:e3:bc:be:f9:32:b7:e4: 14:ea:c0:9d:33:20:47:b8:89:1f:56:24:63:ea:96: 48:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:8E:7E:6C:AB:3A:CD:D1:FD:EC:6B:AF:A6:17:64:8B:8E:B7:11:E6 X509v3 Authority Key Identifier: keyid:0D:A6:D4:33:71:02:76:BF:7B:80:06:C2:1C:26:AE:F5:F8:56:AF:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bdd1eacd-a067-4924-9284-bc6f10d8d5a8/0/0DA6D433710276BF7B8006C21C26AEF5F856AF21.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0DA6D433710276BF7B8006C21C26AEF5F856AF21.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bdd1eacd-a067-4924-9284-bc6f10d8d5a8/0/323430353a353130303a3a2f33322d3438203d3e203137383236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:5100::/32 Signature Algorithm: sha256WithRSAEncryption 92:14:24:c1:e2:d9:de:a0:de:32:ed:04:14:9d:be:f2:ab:be: 77:40:71:85:c8:80:1e:d8:b1:c4:de:44:a1:42:23:78:bc:23: 45:7a:78:37:f5:d5:e5:76:f3:84:6d:6a:35:0e:74:79:91:fd: f6:b3:46:6b:a8:6b:e1:ab:90:c4:a8:89:02:00:ac:d0:96:0d: db:5e:2f:96:57:86:3e:08:26:e1:cd:39:0c:0b:a9:ff:b4:53: 4a:da:42:ab:b9:89:c3:79:cf:1f:ab:1b:90:3e:f1:6c:cd:be: d3:6a:e4:73:99:ca:70:6a:c8:15:63:3f:71:53:2c:b7:2a:d8: 90:d8:52:68:92:03:d4:80:9c:d9:02:04:87:9d:52:65:58:ba: 67:d0:4c:c2:f9:a3:a1:e1:3a:e5:32:3d:ec:13:09:0a:3d:65: 71:34:63:12:01:35:a4:6c:16:db:87:23:79:d6:e7:71:e2:e6: 6a:a5:46:3a:08:1e:b4:27:4f:fe:6e:30:cf:61:31:3b:55:bf: 59:50:0d:cb:c1:f8:a8:71:28:59:e2:01:85:61:48:77:6c:bf: 95:71:2f:de:6b:54:a1:b5:d6:9d:a7:6b:5b:b0:9c:f0:c7:95: 92:77:6e:0d:23:73:45:ce:b4:51:12:8b:f0:de:e5:d1:52:5e: 7c:d3:35:19 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUTEDTaJJ9LS2YliETIbHz7M7pVy0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMERBNkQ0MzM3MTAyNzZCRjdCODAwNkMyMUMyNkFFRjVG ODU2QUYyMTAeFw0yNTAxMTcwNzU1MDBaFw0yNjAxMTYwODAwMDBaMDMxMTAvBgNV BAMTKDhEOEU3RTZDQUIzQUNERDFGREVDNkJBRkE2MTc2NDhCOEVCNzExRTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHJf0HHkEKlltabfXyNcs0nYEI 5OtdGtQbm7WCzhkbqOr0056ebyR6GR5ERbE5fGqhaqv4JHKpbfQOhw+nuFGJbWBx Guk42ajk7UQDDltn7hs3qNgJwr1rFnAIOVeEAIchWIpJuGDN1CCchH21GnIqFRnM aH3KusCXQaJxFpwegyVf6Men8Opr2Eb5KEXc1ThWLuzLcndjiIOEZNnCKH+VAxxJ fXHezYfVOE5abRODdkZAyZZNfMP7QJaPmfbMPHNVixe+Blp/JOsFim2KzBr3Ta0d cm8xSrAaj7TnH9OTmuCagDcSPdeW47y++TK35BTqwJ0zIEe4iR9WJGPqlkibAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUjY5+bKs6zdH97Guvphdki463EeYwHwYDVR0j BBgwFoAUDabUM3ECdr97gAbCHCau9fhWryEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZGQxZWFjZC1hMDY3LTQ5MjQtOTI4NC1iYzZmMTBkOGQ1YTgvMC8wREE2RDQzMzcx MDI3NkJGN0I4MDA2QzIxQzI2QUVGNUY4NTZBRjIxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMERBNkQ0MzM3MTAyNzZCRjdCODAwNkMyMUMyNkFFRjVGODU2 QUYyMS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JkZDFlYWNkLWEwNjctNDkyNC05 Mjg0LWJjNmYxMGQ4ZDVhOC8wLzMyMzQzMDM1M2EzNTMxMzAzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzczODMyMzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBVEAMA0GCSqGSIb3 DQEBCwUAA4IBAQCSFCTB4tneoN4y7QQUnb7yq753QHGFyIAe2LHE3kShQiN4vCNF eng39dXldvOEbWo1DnR5kf32s0ZrqGvhq5DEqIkCAKzQlg3bXi+WV4Y+CCbhzTkM C6n/tFNK2kKruYnDec8fqxuQPvFszb7TauRzmcpwasgVYz9xUyy3KtiQ2FJokgPU gJzZAgSHnVJlWLpn0EzC+aOh4TrlMj3sEwkKPWVxNGMSATWkbBbbhyN51udx4uZq pUY6CB60J0/+bjDPYTE7Vb9ZUA3LwfiocShZ4gGFYUh3bL+VcS/ea1Shtdadp2tb sJzwx5WSd24NI3NFzrRREovw3uXRUl580zUZ -----END CERTIFICATE-----Generated at Sun Apr 6 19:08:02 2025 by rpki-client