$ rpki-client -vvf repo-rpki.idnic.net/repo/d691777e-cdb4-4897-b287-e58e424c199d/0/323430343a326638303a666630313a3a2f34382d3438203d3e203538343935.roa File: 323430343a326638303a666630313a3a2f34382d3438203d3e203538343935.roa (raw, json) Hash identifier: K2H9rDoVFcyYLS03yu8cFLk5pCTYwfZt8bp66BciG5s= Subject key identifier: BC:10:9A:0B:62:DF:97:0E:84:C8:9E:8E:77:2F:7C:34:A3:65:15:BA Certificate issuer: /CN=6E5534ABA6EF3C98C8D0CF437795D25A3A9C25C6 Certificate serial: 326C4DD0DB179BDB3BB072CEA5600A020D846DD4 Authority key identifier: 6E:55:34:AB:A6:EF:3C:98:C8:D0:CF:43:77:95:D2:5A:3A:9C:25:C6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6E5534ABA6EF3C98C8D0CF437795D25A3A9C25C6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d691777e-cdb4-4897-b287-e58e424c199d/0/323430343a326638303a666630313a3a2f34382d3438203d3e203538343935.roa Signing time: Thu 28 Nov 2024 09:00:51 +0000 ROA not before: Thu 28 Nov 2024 08:55:51 +0000 ROA not after: Thu 27 Nov 2025 09:00:51 +0000 asID: 58495 IP address blocks: 2404:2f80:ff01::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d691777e-cdb4-4897-b287-e58e424c199d/0/6E5534ABA6EF3C98C8D0CF437795D25A3A9C25C6.crl rsync://repo-rpki.idnic.net/repo/d691777e-cdb4-4897-b287-e58e424c199d/0/6E5534ABA6EF3C98C8D0CF437795D25A3A9C25C6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6E5534ABA6EF3C98C8D0CF437795D25A3A9C25C6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 10:51:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:6c:4d:d0:db:17:9b:db:3b:b0:72:ce:a5:60:0a:02:0d:84:6d:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6E5534ABA6EF3C98C8D0CF437795D25A3A9C25C6 Validity Not Before: Nov 28 08:55:51 2024 GMT Not After : Nov 27 09:00:51 2025 GMT Subject: CN=BC109A0B62DF970E84C89E8E772F7C34A36515BA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:44:55:0f:34:b0:2e:03:11:30:26:db:e9:65: b6:fc:fc:f3:ee:58:1c:ff:76:76:30:9d:65:90:a7: d1:73:d6:bf:4e:64:16:fd:1f:1e:4a:03:7c:49:84: e8:82:5e:54:6a:a9:6f:fb:5f:ef:95:0c:6a:60:63: b3:8f:1a:67:41:5b:84:da:92:8b:20:c4:50:75:f3: de:61:82:83:56:26:f3:47:74:bd:02:18:6d:c0:80: 32:68:7e:55:62:b3:37:b8:c9:ec:dc:5b:bc:98:eb: 3e:a3:0c:45:47:84:72:b1:c7:da:c4:66:c1:58:a8: 10:99:15:b4:4c:e6:82:af:a8:3a:21:a9:db:ae:c3: 5f:05:b1:aa:89:eb:e1:e7:7e:99:89:de:ba:1e:18: 87:b0:4d:9c:48:2b:ef:1d:a4:18:65:b1:b0:c2:60: 0a:e1:cd:0f:ea:4a:34:9e:65:ef:29:cf:58:d1:9e: 03:93:89:9b:43:48:f3:22:52:f4:88:ef:f1:9c:eb: 90:57:70:3e:66:e1:6f:62:f7:df:05:01:94:e4:6b: 0d:23:c1:bb:a9:43:3d:06:ed:e9:99:84:22:bf:f4: db:1e:de:a3:d4:f0:65:31:f8:63:4d:89:5b:4b:f5: 67:c1:cc:83:28:7c:ab:82:8f:ee:cc:d8:2c:47:6b: a8:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:10:9A:0B:62:DF:97:0E:84:C8:9E:8E:77:2F:7C:34:A3:65:15:BA X509v3 Authority Key Identifier: keyid:6E:55:34:AB:A6:EF:3C:98:C8:D0:CF:43:77:95:D2:5A:3A:9C:25:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d691777e-cdb4-4897-b287-e58e424c199d/0/6E5534ABA6EF3C98C8D0CF437795D25A3A9C25C6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6E5534ABA6EF3C98C8D0CF437795D25A3A9C25C6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d691777e-cdb4-4897-b287-e58e424c199d/0/323430343a326638303a666630313a3a2f34382d3438203d3e203538343935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:2f80:ff01::/48 Signature Algorithm: sha256WithRSAEncryption 9c:80:2c:54:67:a2:39:7e:e5:fa:30:41:af:85:86:6a:bd:a5: 82:b5:20:da:e4:dd:c3:0f:b4:3c:07:1a:da:fe:2e:f0:8e:87: 83:a1:1d:78:75:47:5a:7c:62:06:40:7a:28:f6:b6:47:2b:2a: 38:6c:98:86:20:27:f5:64:d9:d6:f2:64:3c:40:95:2b:2e:04: a5:bc:91:74:6d:96:5c:30:6d:6d:02:4a:ea:1a:97:8e:07:93: 1a:57:1d:02:6f:40:29:29:06:39:85:e8:39:13:fa:0e:05:4d: 15:0a:29:40:11:6f:90:92:b6:7c:ba:7e:87:49:fc:e7:e7:9a: 8d:01:e8:0d:d1:1a:22:53:cb:cd:fa:3b:68:c5:90:cf:35:70: 75:e4:4b:40:76:38:6b:b5:72:0e:2c:c7:b5:76:eb:1f:36:7f: 54:bb:16:48:d1:fe:30:7c:0a:f9:7d:f6:08:39:7e:f5:51:9e: 0c:a6:76:58:26:83:a3:b8:21:34:2c:7c:ea:1b:fa:22:eb:39: ff:9d:3b:60:f3:30:fb:ac:8a:2f:31:b2:6c:3a:d3:85:33:02: b0:05:10:8f:62:de:ef:52:20:07:cf:75:50:31:04:03:8f:4f: f8:8f:31:2d:d0:05:4a:15:d5:ea:8f:27:86:27:f8:f1:e4:de: 7c:cd:ec:70 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUMmxN0NsXm9s7sHLOpWAKAg2EbdQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkU1NTM0QUJBNkVGM0M5OEM4RDBDRjQzNzc5NUQyNUEz QTlDMjVDNjAeFw0yNDExMjgwODU1NTFaFw0yNTExMjcwOTAwNTFaMDMxMTAvBgNV BAMTKEJDMTA5QTBCNjJERjk3MEU4NEM4OUU4RTc3MkY3QzM0QTM2NTE1QkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXRFUPNLAuAxEwJtvpZbb8/PPu WBz/dnYwnWWQp9Fz1r9OZBb9Hx5KA3xJhOiCXlRqqW/7X++VDGpgY7OPGmdBW4Ta kosgxFB1895hgoNWJvNHdL0CGG3AgDJoflVisze4yezcW7yY6z6jDEVHhHKxx9rE ZsFYqBCZFbRM5oKvqDohqduuw18FsaqJ6+HnfpmJ3roeGIewTZxIK+8dpBhlsbDC YArhzQ/qSjSeZe8pz1jRngOTiZtDSPMiUvSI7/Gc65BXcD5m4W9i998FAZTkaw0j wbupQz0G7emZhCK/9Nse3qPU8GUx+GNNiVtL9WfBzIMofKuCj+7M2CxHa6jhAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUvBCaC2Lflw6EyJ6Ody98NKNlFbowHwYDVR0j BBgwFoAUblU0q6bvPJjI0M9Dd5XSWjqcJcYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NjkxNzc3ZS1jZGI0LTQ4OTctYjI4Ny1lNThlNDI0YzE5OWQvMC82RTU1MzRBQkE2 RUYzQzk4QzhEMENGNDM3Nzk1RDI1QTNBOUMyNUM2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkU1NTM0QUJBNkVGM0M5OEM4RDBDRjQzNzc5NUQyNUEzQTlD MjVDNi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q2OTE3NzdlLWNkYjQtNDg5Ny1i Mjg3LWU1OGU0MjRjMTk5ZC8wLzMyMzQzMDM0M2EzMjY2MzgzMDNhNjY2NjMwMzEz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzNTM4MzQzOTM1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAQv gP8BMA0GCSqGSIb3DQEBCwUAA4IBAQCcgCxUZ6I5fuX6MEGvhYZqvaWCtSDa5N3D D7Q8Bxra/i7wjoeDoR14dUdafGIGQHoo9rZHKyo4bJiGICf1ZNnW8mQ8QJUrLgSl vJF0bZZcMG1tAkrqGpeOB5MaVx0Cb0ApKQY5heg5E/oOBU0VCilAEW+QkrZ8un6H Sfzn55qNAegN0RoiU8vN+jtoxZDPNXB15EtAdjhrtXIOLMe1dusfNn9UuxZI0f4w fAr5ffYIOX71UZ4MpnZYJoOjuCE0LHzqG/oi6zn/nTtg8zD7rIovMbJsOtOFMwKw BRCPYt7vUiAHz3VQMQQDj0/4jzEt0AVKFdXqjyeGJ/jx5N58zexw -----END CERTIFICATE-----Generated at Sun Apr 6 13:54:07 2025 by rpki-client