$ rpki-client -vvf repo-rpki.idnic.net/repo/d93674a6-114f-4bb5-85bb-cbb67db2a955/0/323430343a636463303a3a2f33322d3332203d3e20313338383432.roa File: 323430343a636463303a3a2f33322d3332203d3e20313338383432.roa (raw, json) Hash identifier: LMyurDa6RK+ceb5dAm5LdlT8EFTkNVmlTBXqLEHBy+Y= Subject key identifier: 0B:9C:C6:BF:83:15:88:1F:8E:96:17:AE:86:A8:9A:5C:90:A5:69:94 Certificate issuer: /CN=251859FA726E84EB8EF1585C6B1F3D925581A938 Certificate serial: 079F7E9E618AC7060520C4CE00C8921BE223518A Authority key identifier: 25:18:59:FA:72:6E:84:EB:8E:F1:58:5C:6B:1F:3D:92:55:81:A9:38 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/251859FA726E84EB8EF1585C6B1F3D925581A938.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d93674a6-114f-4bb5-85bb-cbb67db2a955/0/323430343a636463303a3a2f33322d3332203d3e20313338383432.roa Signing time: Sat 11 Jan 2025 05:13:34 +0000 ROA not before: Sat 11 Jan 2025 05:08:34 +0000 ROA not after: Sat 10 Jan 2026 05:13:34 +0000 asID: 138842 IP address blocks: 2404:cdc0::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d93674a6-114f-4bb5-85bb-cbb67db2a955/0/251859FA726E84EB8EF1585C6B1F3D925581A938.crl rsync://repo-rpki.idnic.net/repo/d93674a6-114f-4bb5-85bb-cbb67db2a955/0/251859FA726E84EB8EF1585C6B1F3D925581A938.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/251859FA726E84EB8EF1585C6B1F3D925581A938.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:13:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:9f:7e:9e:61:8a:c7:06:05:20:c4:ce:00:c8:92:1b:e2:23:51:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=251859FA726E84EB8EF1585C6B1F3D925581A938 Validity Not Before: Jan 11 05:08:34 2025 GMT Not After : Jan 10 05:13:34 2026 GMT Subject: CN=0B9CC6BF8315881F8E9617AE86A89A5C90A56994 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:94:32:02:d0:a4:c9:70:dd:a3:7a:6a:47:71: 21:4b:e3:28:03:35:67:dd:f1:65:19:e5:6b:79:bd: 86:65:97:7e:3b:8e:81:ff:3a:f0:32:06:c6:ee:55: a2:56:ad:da:82:04:36:f9:25:16:29:6c:f4:a2:e2: 02:71:33:3d:bd:94:a2:69:b8:fc:a9:cf:f9:4e:a9: 89:81:e3:a6:55:00:10:99:66:b3:d5:96:f8:9e:85: 2a:82:30:89:3b:ac:19:a6:b8:e2:b2:40:85:47:4f: de:00:08:59:6a:d4:51:68:21:b7:32:ef:1c:6d:3c: ba:55:a2:3b:6d:bf:df:c9:bc:27:bb:92:06:ec:29: c5:53:bc:6e:44:aa:bb:83:b0:09:5b:67:76:12:47: eb:71:a6:d5:be:d2:6d:d4:76:c1:fb:7f:2f:ec:14: fb:c0:a4:48:b3:68:05:17:01:83:9d:03:eb:fe:a1: 5d:79:1d:3e:5f:79:6b:3a:2f:ad:6e:64:c0:cf:af: 80:de:6f:42:3e:bb:50:7d:77:b4:77:5d:96:0e:9f: db:b7:69:f7:ec:83:eb:2b:c9:4d:ff:f2:bf:fa:5e: de:bd:f0:0b:a0:4b:bc:8a:9c:66:f1:e6:65:5f:f9: 6f:15:97:40:80:00:0f:da:bc:26:7f:23:1e:15:1c: e3:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:9C:C6:BF:83:15:88:1F:8E:96:17:AE:86:A8:9A:5C:90:A5:69:94 X509v3 Authority Key Identifier: keyid:25:18:59:FA:72:6E:84:EB:8E:F1:58:5C:6B:1F:3D:92:55:81:A9:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d93674a6-114f-4bb5-85bb-cbb67db2a955/0/251859FA726E84EB8EF1585C6B1F3D925581A938.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/251859FA726E84EB8EF1585C6B1F3D925581A938.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d93674a6-114f-4bb5-85bb-cbb67db2a955/0/323430343a636463303a3a2f33322d3332203d3e20313338383432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:cdc0::/32 Signature Algorithm: sha256WithRSAEncryption 8f:e1:5d:8e:f5:ee:31:7c:dd:f2:d4:75:4e:ea:74:86:4d:0a: 8e:c7:b5:5e:19:0a:13:42:af:76:c4:93:6b:09:fe:94:17:0d: b5:52:c4:a9:ff:c9:98:49:0e:56:f1:0d:7d:11:ae:49:77:0c: 5c:70:e6:d9:b1:8f:79:43:aa:10:81:38:6d:51:7b:91:c6:7a: ca:0c:55:c1:a8:8e:20:b7:86:02:ad:f6:fb:d1:a8:e0:89:66: 79:b5:81:c8:f4:10:03:1b:4e:f0:3d:d9:53:21:d4:70:75:02: 5d:5c:83:bf:6e:23:00:c9:1e:8b:ca:06:b9:df:be:20:c1:f7: af:b3:89:8f:89:14:09:64:a5:38:0a:de:8d:a2:d0:0a:2b:49: 5b:c6:d8:1c:ed:b8:92:ca:12:c8:65:fe:85:61:7a:12:bb:40: 7f:e2:4c:57:98:14:98:5e:43:c4:67:81:47:2d:22:77:89:54: fb:b8:9f:71:99:d6:73:a1:89:be:2d:30:ef:98:ee:76:57:01: 7f:67:49:ce:8c:63:25:59:7f:d8:c3:78:40:2f:b9:5f:6f:05: 80:57:55:c2:35:ce:5e:6c:e2:4b:a0:88:b5:53:3b:be:55:5f: 67:82:30:86:56:43:c5:49:91:53:05:d9:53:d5:c7:52:c1:f6: 33:2e:6a:06 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUB59+nmGKxwYFIMTOAMiSG+IjUYowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjUxODU5RkE3MjZFODRFQjhFRjE1ODVDNkIxRjNEOTI1 NTgxQTkzODAeFw0yNTAxMTEwNTA4MzRaFw0yNjAxMTAwNTEzMzRaMDMxMTAvBgNV BAMTKDBCOUNDNkJGODMxNTg4MUY4RTk2MTdBRTg2QTg5QTVDOTBBNTY5OTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPlDIC0KTJcN2jempHcSFL4ygD NWfd8WUZ5Wt5vYZll347joH/OvAyBsbuVaJWrdqCBDb5JRYpbPSi4gJxMz29lKJp uPypz/lOqYmB46ZVABCZZrPVlviehSqCMIk7rBmmuOKyQIVHT94ACFlq1FFoIbcy 7xxtPLpVojttv9/JvCe7kgbsKcVTvG5EqruDsAlbZ3YSR+txptW+0m3UdsH7fy/s FPvApEizaAUXAYOdA+v+oV15HT5feWs6L61uZMDPr4Deb0I+u1B9d7R3XZYOn9u3 affsg+sryU3/8r/6Xt698AugS7yKnGbx5mVf+W8Vl0CAAA/avCZ/Ix4VHOMhAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUC5zGv4MViB+OlheuhqiaXJClaZQwHwYDVR0j BBgwFoAUJRhZ+nJuhOuO8Vhcax89klWBqTgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k OTM2NzRhNi0xMTRmLTRiYjUtODViYi1jYmI2N2RiMmE5NTUvMC8yNTE4NTlGQTcy NkU4NEVCOEVGMTU4NUM2QjFGM0Q5MjU1ODFBOTM4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjUxODU5RkE3MjZFODRFQjhFRjE1ODVDNkIxRjNEOTI1NTgx QTkzOC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q5MzY3NGE2LTExNGYtNGJiNS04 NWJiLWNiYjY3ZGIyYTk1NS8wLzMyMzQzMDM0M2E2MzY0NjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzODM4MzQzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQEzcAwDQYJKoZI hvcNAQELBQADggEBAI/hXY717jF83fLUdU7qdIZNCo7HtV4ZChNCr3bEk2sJ/pQX DbVSxKn/yZhJDlbxDX0Rrkl3DFxw5tmxj3lDqhCBOG1Re5HGesoMVcGojiC3hgKt 9vvRqOCJZnm1gcj0EAMbTvA92VMh1HB1Al1cg79uIwDJHovKBrnfviDB96+ziY+J FAlkpTgK3o2i0AorSVvG2BztuJLKEshl/oVhehK7QH/iTFeYFJheQ8RngUctIneJ VPu4n3GZ1nOhib4tMO+Y7nZXAX9nSc6MYyVZf9jDeEAvuV9vBYBXVcI1zl5s4kug iLVTO75VX2eCMIZWQ8VJkVMF2VPVx1LB9jMuagY= -----END CERTIFICATE-----Generated at Sun Apr 6 07:23:41 2025 by rpki-client