$ rpki-client -vvf repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/323430333a396663303a3a2f33322d3438203d3e20313338303730.roa File: 323430333a396663303a3a2f33322d3438203d3e20313338303730.roa (raw, json) Hash identifier: imJTliY28qNv1lKNAZDzzIlAGldGiVIuuxF6gl7nan0= Subject key identifier: EC:59:3A:41:0E:1D:06:06:34:F4:43:8B:D9:96:14:92:2F:AE:31:6E Certificate issuer: /CN=1CA9E40710262DA751A67E932477D6E12B4B2DED Certificate serial: 3B06F97A9275A70113C1026EFC3FD684835A13A6 Authority key identifier: 1C:A9:E4:07:10:26:2D:A7:51:A6:7E:93:24:77:D6:E1:2B:4B:2D:ED Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1CA9E40710262DA751A67E932477D6E12B4B2DED.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/323430333a396663303a3a2f33322d3438203d3e20313338303730.roa Signing time: Mon 06 May 2024 11:47:10 +0000 ROA not before: Mon 06 May 2024 11:42:10 +0000 ROA not after: Mon 05 May 2025 11:47:10 +0000 asID: 138070 IP address blocks: 2403:9fc0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/1CA9E40710262DA751A67E932477D6E12B4B2DED.crl rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/1CA9E40710262DA751A67E932477D6E12B4B2DED.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1CA9E40710262DA751A67E932477D6E12B4B2DED.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Mar 2025 21:34:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:06:f9:7a:92:75:a7:01:13:c1:02:6e:fc:3f:d6:84:83:5a:13:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1CA9E40710262DA751A67E932477D6E12B4B2DED Validity Not Before: May 6 11:42:10 2024 GMT Not After : May 5 11:47:10 2025 GMT Subject: CN=EC593A410E1D060634F4438BD99614922FAE316E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:6c:68:95:ff:57:93:26:fe:a3:65:d9:c4:a7: 43:08:b6:d9:69:40:84:85:35:2e:a0:9f:0d:cd:3d: d2:63:89:9d:79:d6:04:74:99:d5:08:d1:bb:3c:9e: 2c:87:96:3f:54:25:c6:a3:b0:59:77:7f:35:b3:5a: df:51:8a:41:cf:70:e9:c5:5d:21:c6:f1:23:b7:37: c0:f0:aa:dc:d1:b9:df:b1:86:9c:13:85:73:27:0c: 1e:fe:25:f5:eb:71:03:4f:5c:fe:40:8f:52:72:f8: e1:3c:72:26:d5:71:45:8b:89:92:e8:af:97:f5:c3: 07:35:7e:b6:fd:f4:89:ea:47:26:89:69:33:b3:c5: e2:7c:c2:fc:64:59:9c:1f:99:12:fa:95:f6:f2:f5: 93:04:cf:a4:81:a0:32:fd:88:50:98:94:95:5d:ea: e5:f2:f4:81:70:bc:86:cb:cc:03:ef:b1:c5:c2:a6: 34:2f:bb:95:ec:e7:01:47:45:d3:2f:1a:fe:75:01: d2:e5:f1:a9:d8:ea:f6:46:d0:6a:95:9b:9a:f2:5d: 21:93:3d:69:af:d5:e5:b8:c2:ac:c9:65:cc:da:b2: ef:a2:8e:e8:f5:1f:44:14:f3:3a:e9:b4:a6:65:7f: 66:2c:b1:06:e0:bd:d1:fd:c2:89:6e:5c:7d:93:91: 27:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:59:3A:41:0E:1D:06:06:34:F4:43:8B:D9:96:14:92:2F:AE:31:6E X509v3 Authority Key Identifier: keyid:1C:A9:E4:07:10:26:2D:A7:51:A6:7E:93:24:77:D6:E1:2B:4B:2D:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/1CA9E40710262DA751A67E932477D6E12B4B2DED.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1CA9E40710262DA751A67E932477D6E12B4B2DED.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/323430333a396663303a3a2f33322d3438203d3e20313338303730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:9fc0::/32 Signature Algorithm: sha256WithRSAEncryption 89:28:01:9e:72:60:74:ee:7a:a6:34:cc:ad:49:97:ae:e5:f5: e4:b0:93:d4:4e:17:3f:66:26:f3:24:7d:77:c9:bb:45:61:00: cc:f4:d1:96:7f:d4:6c:ae:d9:6f:b6:9f:f9:b2:65:30:6a:83: e3:ac:d2:d6:8d:4e:8b:11:c1:b1:9d:7e:91:79:41:ec:6c:36: 25:0a:ba:65:bf:d4:c3:f5:2d:1c:4c:54:e5:8a:6e:19:b7:e9: b8:14:09:61:12:49:56:d0:61:84:4a:e6:a5:4d:eb:d0:d0:51: a2:9a:74:9b:e3:76:d4:dc:7b:dd:97:11:ba:89:a7:c4:20:57: 89:05:e9:ae:07:43:82:f1:81:c7:88:4b:42:4f:d3:a6:a6:34: 5e:c8:c5:56:dc:7c:13:27:50:e7:17:88:1d:c2:9c:f3:1c:31: d5:6c:ee:e9:13:46:f7:b0:2a:10:6f:a3:d6:af:a3:34:7d:8e: 36:61:40:df:a8:c8:91:da:28:e1:fe:12:d2:ed:ce:2d:11:70: ce:62:30:62:d8:5e:a2:fb:7f:52:80:d1:e0:bb:3c:1a:84:53: 59:93:f2:ed:3d:97:3a:0c:21:61:b3:be:ce:3c:c1:a9:06:1e: 6f:52:48:39:a1:7d:5f:4d:ac:ed:b9:2a:48:39:0c:99:c6:4a: 0b:c8:a0:5c -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUOwb5epJ1pwETwQJu/D/WhINaE6YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUNBOUU0MDcxMDI2MkRBNzUxQTY3RTkzMjQ3N0Q2RTEy QjRCMkRFRDAeFw0yNDA1MDYxMTQyMTBaFw0yNTA1MDUxMTQ3MTBaMDMxMTAvBgNV BAMTKEVDNTkzQTQxMEUxRDA2MDYzNEY0NDM4QkQ5OTYxNDkyMkZBRTMxNkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmbGiV/1eTJv6jZdnEp0MIttlp QISFNS6gnw3NPdJjiZ151gR0mdUI0bs8niyHlj9UJcajsFl3fzWzWt9RikHPcOnF XSHG8SO3N8DwqtzRud+xhpwThXMnDB7+JfXrcQNPXP5Aj1Jy+OE8cibVcUWLiZLo r5f1wwc1frb99InqRyaJaTOzxeJ8wvxkWZwfmRL6lfby9ZMEz6SBoDL9iFCYlJVd 6uXy9IFwvIbLzAPvscXCpjQvu5Xs5wFHRdMvGv51AdLl8anY6vZG0GqVm5ryXSGT PWmv1eW4wqzJZczasu+ijuj1H0QU8zrptKZlf2YssQbgvdH9woluXH2TkSetAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQU7Fk6QQ4dBgY09EOL2ZYUki+uMW4wHwYDVR0j BBgwFoAUHKnkBxAmLadRpn6TJHfW4StLLe0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YWQ2N2Q1Zi01NzEzLTQxNTMtODcxYi0xYjAwOGY3ZmZkZDIvMC8xQ0E5RTQwNzEw MjYyREE3NTFBNjdFOTMyNDc3RDZFMTJCNEIyREVELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUNBOUU0MDcxMDI2MkRBNzUxQTY3RTkzMjQ3N0Q2RTEyQjRC MkRFRC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RhZDY3ZDVmLTU3MTMtNDE1My04 NzFiLTFiMDA4ZjdmZmRkMi8wLzMyMzQzMDMzM2EzOTY2NjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzODMwMzczMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQDn8AwDQYJKoZI hvcNAQELBQADggEBAIkoAZ5yYHTueqY0zK1Jl67l9eSwk9ROFz9mJvMkfXfJu0Vh AMz00ZZ/1Gyu2W+2n/myZTBqg+Os0taNTosRwbGdfpF5QexsNiUKumW/1MP1LRxM VOWKbhm36bgUCWESSVbQYYRK5qVN69DQUaKadJvjdtTce92XEbqJp8QgV4kF6a4H Q4LxgceIS0JP06amNF7IxVbcfBMnUOcXiB3CnPMcMdVs7ukTRvewKhBvo9avozR9 jjZhQN+oyJHaKOH+EtLtzi0RcM5iMGLYXqL7f1KA0eC7PBqEU1mT8u09lzoMIWGz vs48wakGHm9SSDmhfV9NrO25Kkg5DJnGSgvIoFw= -----END CERTIFICATE-----Generated at Tue Mar 11 05:01:54 2025 by rpki-client