$ rpki-client -vvf repo-rpki.idnic.net/repo/d2502205-5c54-47db-ae6f-9d48e183241c/0/323430343a643563303a3a2f33322d3438203d3e20313338383534.roa File: 323430343a643563303a3a2f33322d3438203d3e20313338383534.roa (raw, json) Hash identifier: d3VfPkAv0Y7wZUXEtDA5/M8jwR4+SgensuDndKBOuNg= Subject key identifier: 6C:75:B9:09:28:42:39:D9:53:B3:DA:0A:57:4C:EB:F3:43:10:09:93 Certificate issuer: /CN=96C41CFE277F686E3476A533FDAE5A0F411173D9 Certificate serial: 3C805C36A2648F55B2DA2C59979AB69A3B691853 Authority key identifier: 96:C4:1C:FE:27:7F:68:6E:34:76:A5:33:FD:AE:5A:0F:41:11:73:D9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/96C41CFE277F686E3476A533FDAE5A0F411173D9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d2502205-5c54-47db-ae6f-9d48e183241c/0/323430343a643563303a3a2f33322d3438203d3e20313338383534.roa Signing time: Wed 12 Mar 2025 08:02:48 +0000 ROA not before: Wed 12 Mar 2025 07:57:48 +0000 ROA not after: Wed 11 Mar 2026 08:02:48 +0000 asID: 138854 IP address blocks: 2404:d5c0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d2502205-5c54-47db-ae6f-9d48e183241c/0/96C41CFE277F686E3476A533FDAE5A0F411173D9.crl rsync://repo-rpki.idnic.net/repo/d2502205-5c54-47db-ae6f-9d48e183241c/0/96C41CFE277F686E3476A533FDAE5A0F411173D9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/96C41CFE277F686E3476A533FDAE5A0F411173D9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 15:16:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:80:5c:36:a2:64:8f:55:b2:da:2c:59:97:9a:b6:9a:3b:69:18:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=96C41CFE277F686E3476A533FDAE5A0F411173D9 Validity Not Before: Mar 12 07:57:48 2025 GMT Not After : Mar 11 08:02:48 2026 GMT Subject: CN=6C75B909284239D953B3DA0A574CEBF343100993 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:0d:83:f7:18:9d:7d:62:41:f9:c5:81:5c:aa: 10:e4:9a:7a:f5:e1:88:e7:29:01:fa:90:01:8b:a0: 2f:81:47:40:7e:7d:c7:22:cd:54:5d:58:43:bb:60: cc:aa:64:c4:9a:37:e1:8c:0a:6b:9b:ce:46:50:08: d7:98:06:6d:9b:15:02:fe:1f:ff:45:7a:43:a2:55: d7:26:d2:6f:e7:f2:e6:db:02:db:4d:18:17:5c:f8: 0f:de:20:67:18:96:4d:6e:7f:e1:88:ee:4b:c7:c2: ca:f2:97:df:4d:21:2b:51:b9:6a:e6:46:ab:2d:50: 6d:a7:b6:99:8a:8d:f9:4f:f6:fc:ba:dd:3a:01:d9: 83:6d:74:92:bb:59:e0:76:aa:d2:bc:13:a1:40:6f: 8e:28:bb:20:bb:a0:d9:c9:8b:4f:1c:58:29:d3:0b: 4f:0a:d4:f9:26:25:a5:1d:7e:cc:a7:db:2d:ce:66: 51:84:83:74:07:ac:e2:3b:80:1a:c6:71:2c:a9:f7: 6a:14:d4:c5:57:63:66:17:4b:c3:5e:43:8e:0a:b4: ed:b5:bf:15:d0:63:32:8c:7e:39:bd:82:79:01:42: 62:ae:86:7d:35:3f:96:f0:7d:27:88:cd:5d:5e:e0: 9c:b7:d6:e0:84:66:72:72:7e:fd:28:74:1e:2c:e8: 52:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:75:B9:09:28:42:39:D9:53:B3:DA:0A:57:4C:EB:F3:43:10:09:93 X509v3 Authority Key Identifier: keyid:96:C4:1C:FE:27:7F:68:6E:34:76:A5:33:FD:AE:5A:0F:41:11:73:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d2502205-5c54-47db-ae6f-9d48e183241c/0/96C41CFE277F686E3476A533FDAE5A0F411173D9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/96C41CFE277F686E3476A533FDAE5A0F411173D9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d2502205-5c54-47db-ae6f-9d48e183241c/0/323430343a643563303a3a2f33322d3438203d3e20313338383534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:d5c0::/32 Signature Algorithm: sha256WithRSAEncryption 47:27:04:ee:f4:2f:4c:22:78:fb:00:23:2e:1b:92:f1:ad:ef: 37:0d:2d:94:a6:2d:93:9b:26:a7:ab:94:1c:a9:d6:2d:6e:e9: fa:86:59:ec:6b:10:a9:1b:49:5d:33:2e:b1:cb:a1:1a:42:27: ee:ba:e6:8b:01:9c:05:74:73:6e:f8:d4:48:79:7e:4a:d6:d2: cb:14:37:51:47:71:7a:53:1a:f8:52:dd:4d:59:6c:6c:10:2b: 83:45:e8:36:cb:f7:c0:1e:f4:6d:d9:72:0c:4f:de:e0:f6:e4: 53:c4:24:d4:1c:cf:61:2b:c9:0d:29:b1:81:97:ff:18:25:d9: 3d:fb:79:27:8d:4e:1b:ef:90:b2:5b:49:fc:e1:06:c4:e3:cf: c8:d4:96:e7:af:b3:5a:2b:c0:8a:c6:4d:44:49:95:5d:de:2b: 24:fc:9a:99:2a:14:16:63:25:43:ad:90:f7:b7:a6:c9:e1:6e: 56:e7:31:dc:fb:5e:81:86:40:be:b5:9c:ec:70:14:26:43:5d: 07:49:5c:dc:7a:ed:88:fb:36:77:3f:25:20:5a:6b:d9:1c:13: 3c:25:89:9b:ad:5f:0e:df:e0:90:81:59:e8:40:05:a5:c5:5f: 49:0f:e7:76:99:10:1a:57:ee:d0:ef:45:1d:2f:e7:72:0a:04: f2:4a:df:ad -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUPIBcNqJkj1Wy2ixZl5q2mjtpGFMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTZDNDFDRkUyNzdGNjg2RTM0NzZBNTMzRkRBRTVBMEY0 MTExNzNEOTAeFw0yNTAzMTIwNzU3NDhaFw0yNjAzMTEwODAyNDhaMDMxMTAvBgNV BAMTKDZDNzVCOTA5Mjg0MjM5RDk1M0IzREEwQTU3NENFQkYzNDMxMDA5OTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeDYP3GJ19YkH5xYFcqhDkmnr1 4YjnKQH6kAGLoC+BR0B+fccizVRdWEO7YMyqZMSaN+GMCmubzkZQCNeYBm2bFQL+ H/9FekOiVdcm0m/n8ubbAttNGBdc+A/eIGcYlk1uf+GI7kvHwsryl99NIStRuWrm RqstUG2ntpmKjflP9vy63ToB2YNtdJK7WeB2qtK8E6FAb44ouyC7oNnJi08cWCnT C08K1PkmJaUdfsyn2y3OZlGEg3QHrOI7gBrGcSyp92oU1MVXY2YXS8NeQ44KtO21 vxXQYzKMfjm9gnkBQmKuhn01P5bwfSeIzV1e4Jy31uCEZnJyfv0odB4s6FITAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUbHW5CShCOdlTs9oKV0zr80MQCZMwHwYDVR0j BBgwFoAUlsQc/id/aG40dqUz/a5aD0ERc9kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MjUwMjIwNS01YzU0LTQ3ZGItYWU2Zi05ZDQ4ZTE4MzI0MWMvMC85NkM0MUNGRTI3 N0Y2ODZFMzQ3NkE1MzNGREFFNUEwRjQxMTE3M0Q5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTZDNDFDRkUyNzdGNjg2RTM0NzZBNTMzRkRBRTVBMEY0MTEx NzNEOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QyNTAyMjA1LTVjNTQtNDdkYi1h ZTZmLTlkNDhlMTgzMjQxYy8wLzMyMzQzMDM0M2E2NDM1NjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzODM4MzUzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQE1cAwDQYJKoZI hvcNAQELBQADggEBAEcnBO70L0wiePsAIy4bkvGt7zcNLZSmLZObJqerlByp1i1u 6fqGWexrEKkbSV0zLrHLoRpCJ+665osBnAV0c2741Eh5fkrW0ssUN1FHcXpTGvhS 3U1ZbGwQK4NF6DbL98Ae9G3ZcgxP3uD25FPEJNQcz2EryQ0psYGX/xgl2T37eSeN ThvvkLJbSfzhBsTjz8jUluevs1orwIrGTURJlV3eKyT8mpkqFBZjJUOtkPe3psnh blbnMdz7XoGGQL61nOxwFCZDXQdJXNx67Yj7Nnc/JSBaa9kcEzwliZutXw7f4JCB WehABaXFX0kP53aZEBpX7tDvRR0v53IKBPJK360= -----END CERTIFICATE-----Generated at Sun Apr 6 10:50:37 2025 by rpki-client