$ rpki-client -vvf repo-rpki.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/323430323a343834303a313a3a2f34382d3438203d3e20313337333239.roa File: 323430323a343834303a313a3a2f34382d3438203d3e20313337333239.roa (raw, json) Hash identifier: eLhY6o5wd0LhUORB13U7rBVGOG36K01kVeOb5OLuofg= Subject key identifier: AA:BD:39:F6:EB:97:2C:44:EA:DC:7A:09:5D:22:65:61:37:B9:2B:CD Certificate issuer: /CN=19093F7761A9E337D03405604750BFD4ADC2121E Certificate serial: 7CCF6E23BC4638A7C723B81DDFC2C1AF237EB4CE Authority key identifier: 19:09:3F:77:61:A9:E3:37:D0:34:05:60:47:50:BF:D4:AD:C2:12:1E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/19093F7761A9E337D03405604750BFD4ADC2121E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/323430323a343834303a313a3a2f34382d3438203d3e20313337333239.roa Signing time: Tue 29 Apr 2025 20:00:03 +0000 ROA not before: Tue 29 Apr 2025 19:55:03 +0000 ROA not after: Tue 28 Apr 2026 20:00:03 +0000 asID: 137329 IP address blocks: 2402:4840:1::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/19093F7761A9E337D03405604750BFD4ADC2121E.crl rsync://repo-rpki.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/19093F7761A9E337D03405604750BFD4ADC2121E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/19093F7761A9E337D03405604750BFD4ADC2121E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 08:09:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:cf:6e:23:bc:46:38:a7:c7:23:b8:1d:df:c2:c1:af:23:7e:b4:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=19093F7761A9E337D03405604750BFD4ADC2121E Validity Not Before: Apr 29 19:55:03 2025 GMT Not After : Apr 28 20:00:03 2026 GMT Subject: CN=AABD39F6EB972C44EADC7A095D22656137B92BCD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ce:99:59:d9:b9:39:33:ec:02:83:58:8f:16: b1:a6:9f:10:e2:8a:df:b8:36:85:45:69:34:8a:d7: 39:5a:02:74:4f:5f:da:eb:a0:12:ce:07:d4:97:41: b0:fa:64:ef:be:c9:bc:f1:9e:b4:47:f1:e4:00:5b: df:75:8d:db:9b:5a:17:55:69:0c:06:41:ef:c9:30: ea:27:cb:71:ea:bc:8b:0b:1e:24:11:42:82:45:c4: 89:45:ff:40:25:c4:d4:2c:9a:dc:86:69:1f:e1:27: 19:b1:fe:71:a2:76:48:19:6d:1f:f1:34:cb:00:0b: bf:a0:7e:5b:cb:e3:33:ca:4e:4d:6c:d8:5d:55:cf: 3b:cf:de:a5:18:8b:9c:52:9b:61:cc:df:52:c0:1c: 24:e2:ea:42:aa:f8:10:8d:a8:ba:3f:9a:73:6c:1c: ca:db:9f:47:90:c8:48:97:72:56:ab:e6:f8:aa:49: 53:64:74:68:53:56:1d:87:18:e8:bb:c9:15:85:ea: 5f:e4:48:85:10:1d:f8:7d:03:7f:21:e1:07:f9:bf: 67:26:83:6f:02:78:cb:2d:ea:ab:e9:5a:30:87:5c: 57:e3:38:42:e5:e8:59:95:61:31:59:25:ee:29:01: 45:81:59:e9:49:dd:d5:62:40:31:9c:c7:74:5f:54: 0d:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:BD:39:F6:EB:97:2C:44:EA:DC:7A:09:5D:22:65:61:37:B9:2B:CD X509v3 Authority Key Identifier: keyid:19:09:3F:77:61:A9:E3:37:D0:34:05:60:47:50:BF:D4:AD:C2:12:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/19093F7761A9E337D03405604750BFD4ADC2121E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/19093F7761A9E337D03405604750BFD4ADC2121E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/323430323a343834303a313a3a2f34382d3438203d3e20313337333239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:4840:1::/48 Signature Algorithm: sha256WithRSAEncryption 35:cc:ae:5d:6e:0c:07:59:d7:3f:91:44:66:43:6b:4f:4b:47: 4c:57:a6:c7:fd:05:b5:4e:8f:16:85:fe:1c:4d:1b:d5:9e:7d: c0:25:d1:0d:a4:1a:cf:69:c6:d5:92:8d:2f:d8:8d:f9:74:66: f4:88:07:f3:0a:46:b5:4f:58:55:2c:0c:ad:65:c6:8b:05:7f: 65:ee:c5:c1:0a:b3:f5:13:c1:e9:ab:50:5b:38:f1:8d:9e:f0: a6:ce:fd:97:42:d8:f2:2a:36:bf:a3:c5:a6:f2:66:cf:8b:8b: 41:e6:51:c9:9e:8a:68:2e:1f:d7:7d:38:4c:eb:fc:4b:60:42: 1b:ab:91:5c:18:94:39:4c:2f:ec:3a:2b:c4:97:76:f0:11:ac: e4:f6:34:1c:bf:1b:15:b5:b3:66:6e:16:b4:cf:6e:78:50:60: f1:8c:28:ce:c4:2a:a4:aa:f6:94:f3:b1:c1:fc:bc:11:4f:af: fe:5b:87:f7:cf:53:ca:59:90:4f:bc:e4:50:aa:64:f6:5c:d9: 2f:60:82:68:8b:2d:a1:0a:fb:dc:36:c2:46:c5:f2:2a:fd:f7: 9f:1e:af:c8:01:5b:41:5c:57:63:f7:e3:ce:df:5b:e7:62:53: be:91:94:df:2e:f5:b4:e6:2e:a3:f1:06:03:85:dc:21:5f:22: e1:b5:c6:41 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUfM9uI7xGOKfHI7gd38LBryN+tM4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTkwOTNGNzc2MUE5RTMzN0QwMzQwNTYwNDc1MEJGRDRB REMyMTIxRTAeFw0yNTA0MjkxOTU1MDNaFw0yNjA0MjgyMDAwMDNaMDMxMTAvBgNV BAMTKEFBQkQzOUY2RUI5NzJDNDRFQURDN0EwOTVEMjI2NTYxMzdCOTJCQ0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKzplZ2bk5M+wCg1iPFrGmnxDi it+4NoVFaTSK1zlaAnRPX9rroBLOB9SXQbD6ZO++ybzxnrRH8eQAW991jdubWhdV aQwGQe/JMOony3HqvIsLHiQRQoJFxIlF/0AlxNQsmtyGaR/hJxmx/nGidkgZbR/x NMsAC7+gflvL4zPKTk1s2F1VzzvP3qUYi5xSm2HM31LAHCTi6kKq+BCNqLo/mnNs HMrbn0eQyEiXclar5viqSVNkdGhTVh2HGOi7yRWF6l/kSIUQHfh9A38h4Qf5v2cm g28CeMst6qvpWjCHXFfjOELl6FmVYTFZJe4pAUWBWelJ3dViQDGcx3RfVA1ZAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUqr059uuXLETq3HoJXSJlYTe5K80wHwYDVR0j BBgwFoAUGQk/d2Gp4zfQNAVgR1C/1K3CEh4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MTdiZDUwMi00MmMyLTQwMGQtYTJhZC1kMTc1NDM2NWE0NWQvMC8xOTA5M0Y3NzYx QTlFMzM3RDAzNDA1NjA0NzUwQkZENEFEQzIxMjFFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTkwOTNGNzc2MUE5RTMzN0QwMzQwNTYwNDc1MEJGRDRBREMy MTIxRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UxN2JkNTAyLTQyYzItNDAwZC1h MmFkLWQxNzU0MzY1YTQ1ZC8wLzMyMzQzMDMyM2EzNDM4MzQzMDNhMzEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzczMzMyMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAkhAAAEw DQYJKoZIhvcNAQELBQADggEBADXMrl1uDAdZ1z+RRGZDa09LR0xXpsf9BbVOjxaF /hxNG9WefcAl0Q2kGs9pxtWSjS/Yjfl0ZvSIB/MKRrVPWFUsDK1lxosFf2XuxcEK s/UTwemrUFs48Y2e8KbO/ZdC2PIqNr+jxabyZs+Li0HmUcmeimguH9d9OEzr/Etg QhurkVwYlDlML+w6K8SXdvARrOT2NBy/GxW1s2ZuFrTPbnhQYPGMKM7EKqSq9pTz scH8vBFPr/5bh/fPU8pZkE+85FCqZPZc2S9ggmiLLaEK+9w2wkbF8ir9958er8gB W0FcV2P3487fW+diU76RlN8u9bTmLqPxBgOF3CFfIuG1xkE= -----END CERTIFICATE-----Generated at Sat Jun 7 21:50:32 2025 by rpki-client