$ rpki-client -vvf repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/323430313a383234303a3a2f33322d3438203d3e203233393438.roa File: 323430313a383234303a3a2f33322d3438203d3e203233393438.roa (raw, json) Hash identifier: LQahwQ72kro/LJH779tBFmRDGBJ/aQ/cw7AFn3KwUxg= Subject key identifier: 24:30:58:0D:C2:95:2C:27:DA:12:C4:C3:C7:43:BE:51:85:47:39:82 Certificate issuer: /CN=20B00D67B048DAE581FE60A498995A27878149A7 Certificate serial: 6FDAC5D1219AB5488621A543B9F7C77164D0EBAE Authority key identifier: 20:B0:0D:67:B0:48:DA:E5:81:FE:60:A4:98:99:5A:27:87:81:49:A7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B00D67B048DAE581FE60A498995A27878149A7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/323430313a383234303a3a2f33322d3438203d3e203233393438.roa Signing time: Wed 27 Nov 2024 11:00:02 +0000 ROA not before: Wed 27 Nov 2024 10:55:02 +0000 ROA not after: Wed 26 Nov 2025 11:00:02 +0000 asID: 23948 IP address blocks: 2401:8240::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/20B00D67B048DAE581FE60A498995A27878149A7.crl rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/20B00D67B048DAE581FE60A498995A27878149A7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B00D67B048DAE581FE60A498995A27878149A7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 13:33:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:da:c5:d1:21:9a:b5:48:86:21:a5:43:b9:f7:c7:71:64:d0:eb:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20B00D67B048DAE581FE60A498995A27878149A7 Validity Not Before: Nov 27 10:55:02 2024 GMT Not After : Nov 26 11:00:02 2025 GMT Subject: CN=2430580DC2952C27DA12C4C3C743BE5185473982 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:b7:b7:6c:d9:13:d1:d5:84:f2:87:28:36:12: 55:bd:06:e1:77:00:8c:c1:b8:e6:db:07:a1:60:8e: 00:b8:ef:68:5a:42:b0:6e:4a:45:00:0d:4b:bb:55: c9:e0:af:cb:36:3d:63:0a:ba:0e:78:79:de:f0:22: af:6b:f8:eb:83:ee:15:0a:bf:69:1b:a8:52:68:4e: d0:51:cf:a8:a3:2a:40:11:0d:49:13:c8:96:b5:9d: f8:08:44:77:95:27:96:c7:ce:f9:6f:54:47:97:93: c6:7b:91:90:e9:64:0e:29:fa:1c:ea:fc:30:b8:41: 80:91:9f:80:c1:1f:0b:b7:43:9d:9b:39:0a:a9:aa: 3f:43:a8:af:16:f1:26:2a:cf:6a:c8:f3:b2:d8:99: 1a:75:63:ff:6a:23:5a:ce:7f:88:3c:99:30:52:01: 65:43:1b:ad:a3:5b:9b:ff:dd:4c:c8:ba:b5:36:48: 18:ce:86:0f:3c:40:89:16:f7:74:98:33:ee:5c:0b: fb:29:db:6c:e3:44:82:42:03:c7:b5:7f:2d:42:8a: 28:3b:d0:25:07:39:14:e5:3c:01:af:63:e2:81:df: 7b:d0:04:47:30:eb:b7:0b:07:a0:b4:f4:fd:2a:5f: c0:ef:69:a4:dd:49:e4:b8:c2:40:b8:40:9a:7a:ad: b9:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:30:58:0D:C2:95:2C:27:DA:12:C4:C3:C7:43:BE:51:85:47:39:82 X509v3 Authority Key Identifier: keyid:20:B0:0D:67:B0:48:DA:E5:81:FE:60:A4:98:99:5A:27:87:81:49:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/20B00D67B048DAE581FE60A498995A27878149A7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B00D67B048DAE581FE60A498995A27878149A7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/323430313a383234303a3a2f33322d3438203d3e203233393438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:8240::/32 Signature Algorithm: sha256WithRSAEncryption 01:33:a9:3c:e6:76:da:d8:91:6c:57:b1:68:28:cc:5d:14:95: 71:42:2b:bc:42:ab:84:a3:46:3c:0b:f6:cb:db:32:dd:9c:ae: 4e:00:8b:79:a8:85:33:d9:8d:55:95:8d:55:92:8e:7a:fc:fb: 86:c9:3c:80:e8:b8:ff:76:9b:e3:db:4f:b6:5a:04:02:a8:9f: 02:98:2c:6b:8d:cb:c2:da:72:0f:23:7f:e3:4f:63:14:fc:88: e4:bd:9c:82:51:e4:cd:cb:f2:96:ef:a7:71:ed:7a:35:81:6f: ea:f1:3a:2e:3c:93:c4:0d:d1:a8:c2:4a:e3:54:54:eb:35:cb: dd:b4:f9:db:e7:04:a5:40:24:5c:c7:fc:1c:62:d0:9d:1f:1b: 1f:8e:64:1c:4a:0e:fe:c6:26:45:59:9a:0a:af:78:7a:9f:af: f4:7a:08:87:c3:60:7a:fd:df:f4:0d:3a:b3:cb:7d:2d:11:96: 44:e6:85:f9:f3:d6:ab:c9:ce:f3:b6:2b:0c:64:b6:c0:a4:de: 35:56:0b:0f:55:df:f4:43:6b:fe:2c:9c:54:a0:0f:e0:eb:35: f3:a0:54:9b:75:87:94:56:c9:a2:59:be:65:a1:50:26:0b:e6: 27:84:47:0b:20:78:d4:ff:37:55:c4:7d:df:ed:32:0b:4d:fa: 61:93:12:a6 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUb9rF0SGatUiGIaVDuffHcWTQ664wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBCMDBENjdCMDQ4REFFNTgxRkU2MEE0OTg5OTVBMjc4 NzgxNDlBNzAeFw0yNDExMjcxMDU1MDJaFw0yNTExMjYxMTAwMDJaMDMxMTAvBgNV BAMTKDI0MzA1ODBEQzI5NTJDMjdEQTEyQzRDM0M3NDNCRTUxODU0NzM5ODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJt7ds2RPR1YTyhyg2ElW9BuF3 AIzBuObbB6FgjgC472haQrBuSkUADUu7Vcngr8s2PWMKug54ed7wIq9r+OuD7hUK v2kbqFJoTtBRz6ijKkARDUkTyJa1nfgIRHeVJ5bHzvlvVEeXk8Z7kZDpZA4p+hzq /DC4QYCRn4DBHwu3Q52bOQqpqj9DqK8W8SYqz2rI87LYmRp1Y/9qI1rOf4g8mTBS AWVDG62jW5v/3UzIurU2SBjOhg88QIkW93SYM+5cC/sp22zjRIJCA8e1fy1Ciig7 0CUHORTlPAGvY+KB33vQBEcw67cLB6C09P0qX8DvaaTdSeS4wkC4QJp6rbm/AgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUJDBYDcKVLCfaEsTDx0O+UYVHOYIwHwYDVR0j BBgwFoAUILANZ7BI2uWB/mCkmJlaJ4eBSacwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NDU0NzEwNC05MzllLTQwZTMtOGZjOC00MjUyMjY0MjA0NGIvMC8yMEIwMEQ2N0Iw NDhEQUU1ODFGRTYwQTQ5ODk5NUEyNzg3ODE0OUE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjBCMDBENjdCMDQ4REFFNTgxRkU2MEE0OTg5OTVBMjc4Nzgx NDlBNy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M0NTQ3MTA0LTkzOWUtNDBlMy04 ZmM4LTQyNTIyNjQyMDQ0Yi8wLzMyMzQzMDMxM2EzODMyMzQzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMyMzMzOTM0Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAYJAMA0GCSqGSIb3 DQEBCwUAA4IBAQABM6k85nba2JFsV7FoKMxdFJVxQiu8QquEo0Y8C/bL2zLdnK5O AIt5qIUz2Y1VlY1Vko56/PuGyTyA6Lj/dpvj20+2WgQCqJ8CmCxrjcvC2nIPI3/j T2MU/IjkvZyCUeTNy/KW76dx7Xo1gW/q8TouPJPEDdGowkrjVFTrNcvdtPnb5wSl QCRcx/wcYtCdHxsfjmQcSg7+xiZFWZoKr3h6n6/0egiHw2B6/d/0DTqzy30tEZZE 5oX589aryc7ztisMZLbApN41VgsPVd/0Q2v+LJxUoA/g6zXzoFSbdYeUVsmiWb5l oVAmC+YnhEcLIHjU/zdVxH3f7TILTfphkxKm -----END CERTIFICATE-----Generated at Sun Apr 6 17:53:07 2025 by rpki-client