$ rpki-client -vvf repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/323430343a3162303a3a2f33322d3438203d3e203138303539.roa File: 323430343a3162303a3a2f33322d3438203d3e203138303539.roa (raw, json) Hash identifier: 1A1vvnpZK3dqbXIWfJTucbeBIBkIAdt3BAJWuU7RRBo= Subject key identifier: 01:A3:E9:BD:3C:2A:D1:71:1A:6A:55:B0:18:3B:B3:C3:94:65:71:02 Certificate issuer: /CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Certificate serial: 589A90D862476A7C10E92C5BA91195ED1E50DED4 Authority key identifier: 82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/323430343a3162303a3a2f33322d3438203d3e203138303539.roa Signing time: Fri 21 Mar 2025 11:00:01 +0000 ROA not before: Fri 21 Mar 2025 10:55:01 +0000 ROA not after: Fri 20 Mar 2026 11:00:01 +0000 asID: 18059 IP address blocks: 2404:1b0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 23:05:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:9a:90:d8:62:47:6a:7c:10:e9:2c:5b:a9:11:95:ed:1e:50:de:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82884151A5283F43CA97CE1ACE95A51C6C8A1D8E Validity Not Before: Mar 21 10:55:01 2025 GMT Not After : Mar 20 11:00:01 2026 GMT Subject: CN=01A3E9BD3C2AD1711A6A55B0183BB3C394657102 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:97:a0:84:1e:34:1a:90:9b:a4:6d:cc:30:3f: 67:4a:41:3f:2f:fb:99:f0:72:2a:d4:79:ed:9a:00: f8:8e:82:9c:2f:80:92:58:67:83:16:3d:82:5a:ec: 96:c7:44:20:7c:cb:84:a7:a0:cc:34:49:ed:3c:d5: 53:aa:19:8f:f7:b9:b9:c4:60:a9:ff:c7:54:8b:a1: 63:2a:91:38:32:dc:9a:08:c2:5f:ea:97:d9:c7:31: 99:33:c3:21:0a:5e:6a:dd:76:f8:7b:8f:5e:e3:40: 4d:48:4a:90:55:52:f6:3f:db:a5:ae:06:08:99:3f: f7:5d:dc:d0:10:e9:f2:93:7a:4e:ca:19:e9:12:d8: c3:39:6d:5e:1e:15:a6:69:cd:0d:fc:f4:b6:64:02: b3:1d:68:1b:01:84:dd:34:3d:5c:bb:da:5a:94:91: 0c:b0:e1:8e:8b:44:d7:c5:97:2f:4a:7a:b7:34:89: dc:81:62:29:82:03:ac:5d:60:79:a8:3b:38:d5:9c: 14:f4:37:7d:e1:17:94:94:78:45:ba:58:f0:e0:79: e0:40:24:b1:dc:bb:ba:29:eb:ae:ef:20:46:39:65: f5:86:b7:c5:1e:dd:e2:ae:04:a7:e0:1d:ee:dd:43: 50:f3:ca:b2:b6:73:18:07:d3:a2:12:34:14:31:35: b7:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:A3:E9:BD:3C:2A:D1:71:1A:6A:55:B0:18:3B:B3:C3:94:65:71:02 X509v3 Authority Key Identifier: keyid:82:88:41:51:A5:28:3F:43:CA:97:CE:1A:CE:95:A5:1C:6C:8A:1D:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/82884151A5283F43CA97CE1ACE95A51C6C8A1D8E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c2836763-12b6-4d8f-ad0b-4cd5b61959ef/0/323430343a3162303a3a2f33322d3438203d3e203138303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:1b0::/32 Signature Algorithm: sha256WithRSAEncryption 41:b3:86:68:57:8f:73:21:6d:16:82:ae:92:8b:e2:61:fd:ee: 00:84:a6:ac:22:20:60:85:de:63:f8:56:68:b2:f1:53:50:1d: b2:f8:09:d4:17:22:a8:c3:d0:21:42:26:f7:5f:64:f3:d1:c6: bd:eb:fb:7a:b7:83:57:76:eb:78:f6:dd:ee:eb:cf:64:b0:c0: 61:79:8e:12:c3:68:cd:df:39:53:3a:9c:44:6e:21:4f:83:3f: 4e:97:ba:11:38:6d:f0:ae:8d:cd:e2:32:d3:82:a4:ec:02:88: e3:8d:d0:d9:61:b6:29:a1:ab:1d:14:65:6d:46:4d:e7:90:ac: 89:bc:5b:e9:b5:f1:5c:0b:d4:e4:43:dd:ff:26:2c:5c:6d:61: fa:d1:7f:68:3b:de:d4:8e:dd:91:93:ea:a6:d8:88:99:72:78: da:a0:a2:2c:fb:69:c3:86:03:c9:12:92:0f:c0:1f:b6:5c:fb: aa:b0:2e:41:d0:0d:20:df:40:9b:60:d7:98:23:98:62:f8:a9: be:bc:02:90:f8:43:0c:f9:9a:ed:4a:0b:64:33:71:67:13:36: ed:77:7b:35:91:32:88:e0:e9:e1:09:60:08:bf:8d:fb:dc:8c: 09:0e:75:bb:4f:07:a6:af:24:58:41:f1:a4:a5:0d:f1:32:48: 00:9d:ac:72 -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUWJqQ2GJHanwQ6SxbqRGV7R5Q3tQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2 QzhBMUQ4RTAeFw0yNTAzMjExMDU1MDFaFw0yNjAzMjAxMTAwMDFaMDMxMTAvBgNV BAMTKDAxQTNFOUJEM0MyQUQxNzExQTZBNTVCMDE4M0JCM0MzOTQ2NTcxMDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1l6CEHjQakJukbcwwP2dKQT8v +5nwcirUee2aAPiOgpwvgJJYZ4MWPYJa7JbHRCB8y4SnoMw0Se081VOqGY/3ubnE YKn/x1SLoWMqkTgy3JoIwl/ql9nHMZkzwyEKXmrddvh7j17jQE1ISpBVUvY/26Wu BgiZP/dd3NAQ6fKTek7KGekS2MM5bV4eFaZpzQ389LZkArMdaBsBhN00PVy72lqU kQyw4Y6LRNfFly9Kerc0idyBYimCA6xdYHmoOzjVnBT0N33hF5SUeEW6WPDgeeBA JLHcu7op667vIEY5ZfWGt8Ue3eKuBKfgHe7dQ1DzyrK2cxgH06ISNBQxNbf3AgMB AAGjggIuMIICKjAdBgNVHQ4EFgQUAaPpvTwq0XEaalWwGDuzw5RlcQIwHwYDVR0j BBgwFoAUgohBUaUoP0PKl84azpWlHGyKHY4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MjgzNjc2My0xMmI2LTRkOGYtYWQwYi00Y2Q1YjYxOTU5ZWYvMC84Mjg4NDE1MUE1 MjgzRjQzQ0E5N0NFMUFDRTk1QTUxQzZDOEExRDhFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODI4ODQxNTFBNTI4M0Y0M0NBOTdDRTFBQ0U5NUE1MUM2QzhB MUQ4RS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYzI4MzY3NjMtMTJiNi00ZDhmLWFk MGItNGNkNWI2MTk1OWVmLzAvMzIzNDMwMzQzYTMxNjIzMDNhM2EyZjMzMzIyZDM0 MzgyMDNkM2UyMDMxMzgzMDM1Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBAGwMA0GCSqGSIb3DQEB CwUAA4IBAQBBs4ZoV49zIW0Wgq6Si+Jh/e4AhKasIiBghd5j+FZosvFTUB2y+AnU FyKow9AhQib3X2Tz0ca96/t6t4NXdut49t3u689ksMBheY4Sw2jN3zlTOpxEbiFP gz9Ol7oROG3wro3N4jLTgqTsAojjjdDZYbYpoasdFGVtRk3nkKyJvFvptfFcC9Tk Q93/JixcbWH60X9oO97Ujt2Rk+qm2IiZcnjaoKIs+2nDhgPJEpIPwB+2XPuqsC5B 0A0g30CbYNeYI5hi+Km+vAKQ+EMM+ZrtSgtkM3FnEzbtd3s1kTKI4OnhCWAIv437 3IwJDnW7TwemryRYQfGkpQ3xMkgAnaxy -----END CERTIFICATE-----Generated at Wed Apr 9 09:19:27 2025 by rpki-client