$ rpki-client -vvf repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/323430343a636163303a313030303a3a2f34382d3438203d3e20313339343137.roa File: 323430343a636163303a313030303a3a2f34382d3438203d3e20313339343137.roa (raw, json) Hash identifier: mLEiuQCorcJxBHY4wKeDm97Zmemknme8ExMbOOO5lWE= Subject key identifier: 7A:F7:9D:7D:8A:B3:9B:A0:FE:59:79:95:16:53:53:E9:6E:FC:ED:1A Certificate issuer: /CN=8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6 Certificate serial: 3A298B912B8703365655DEEC70C91147303F655B Authority key identifier: 8F:C4:89:9C:A3:D6:12:A4:5C:1C:1D:C0:2A:21:F6:33:72:DA:ED:D6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/323430343a636163303a313030303a3a2f34382d3438203d3e20313339343137.roa Signing time: Mon 27 Jan 2025 16:00:01 +0000 ROA not before: Mon 27 Jan 2025 15:55:01 +0000 ROA not after: Mon 26 Jan 2026 16:00:01 +0000 asID: 139417 IP address blocks: 2404:cac0:1000::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.crl rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 16:44:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:29:8b:91:2b:87:03:36:56:55:de:ec:70:c9:11:47:30:3f:65:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6 Validity Not Before: Jan 27 15:55:01 2025 GMT Not After : Jan 26 16:00:01 2026 GMT Subject: CN=7AF79D7D8AB39BA0FE597995165353E96EFCED1A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:5e:53:45:fb:b8:ca:53:76:f2:87:a5:ab:31: a9:1d:e6:24:3d:e2:a1:70:8b:01:80:80:f3:b2:7b: 5f:f6:2b:d3:2b:4c:48:e4:cb:60:eb:7b:28:61:c3: 4a:ae:30:a1:94:b6:b3:a4:d2:6e:b1:34:01:60:2e: 64:a9:35:0e:56:62:ec:9a:8a:4d:cc:a3:2b:53:53: 3c:fd:19:42:de:c2:85:fc:c4:65:8b:2f:64:d9:00: 7c:18:36:70:ae:25:a9:17:ca:7f:b4:6d:08:ac:94: 50:80:ce:d4:38:40:42:2e:b4:29:e1:50:59:5e:23: d3:b4:03:f5:09:20:7c:d4:52:f0:d0:1a:32:c3:11: d4:28:57:4b:bc:fa:8d:19:c1:17:ed:b3:67:0b:2a: c3:62:99:ce:36:f7:82:34:f8:cd:e9:b3:f3:fb:e7: 10:09:a6:89:d0:f9:86:12:09:a1:9c:96:32:bf:19: e6:d0:f7:98:42:46:6a:e7:a5:38:da:db:79:18:e4: c1:8f:aa:13:f0:cc:dd:e8:d1:3f:a9:2b:d9:35:80: 87:3b:6f:77:e0:02:40:9d:fc:4a:7e:b0:7c:78:d4: 0d:d4:9c:b0:ab:92:6a:91:78:23:8d:57:a9:48:c1: 67:7e:03:99:95:07:cc:98:80:a1:9f:ff:54:ef:5a: d6:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:F7:9D:7D:8A:B3:9B:A0:FE:59:79:95:16:53:53:E9:6E:FC:ED:1A X509v3 Authority Key Identifier: keyid:8F:C4:89:9C:A3:D6:12:A4:5C:1C:1D:C0:2A:21:F6:33:72:DA:ED:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/323430343a636163303a313030303a3a2f34382d3438203d3e20313339343137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:cac0:1000::/48 Signature Algorithm: sha256WithRSAEncryption 06:28:26:6c:eb:6a:92:1d:8b:5c:67:17:69:f8:61:fc:fb:78: 23:c1:7a:75:50:d0:d9:ca:37:01:78:a5:f1:6a:23:e2:fe:1e: 71:6e:74:a0:04:0a:38:67:e1:f8:2c:22:e3:79:cc:16:43:4e: d5:77:f3:4e:f3:63:70:1b:5b:a3:0d:e2:47:2d:ea:24:0c:b9: d2:3c:d9:9c:35:f2:f3:0f:9e:c4:58:b7:33:fc:d3:44:8d:21: dc:fc:4b:85:96:fe:af:74:6b:4a:cf:b2:da:dc:81:26:9d:f0: 7e:68:ef:2c:dd:37:26:05:7d:a0:6c:11:b4:fd:65:ec:ed:22: 12:2e:78:0e:fd:b0:01:5f:1f:02:46:7f:c4:1a:cc:88:f3:e2: 43:67:ff:f2:54:14:ed:77:f3:73:83:f8:2d:fd:64:5e:49:b7: 2b:91:dd:f3:be:d0:3d:fb:48:38:c7:62:5d:37:83:83:68:7b: c5:37:ee:59:6c:e2:af:26:d1:1c:71:46:81:bb:1d:46:ff:e5: 12:fd:91:c6:c9:2b:95:3f:af:a8:b0:87:6b:4b:ec:bf:ee:61: df:59:36:34:3f:b7:4e:95:a6:fc:62:a0:6f:90:99:2f:1b:69: 5c:c5:4b:39:0f:b9:d7:e3:0e:46:31:62:55:88:0c:1f:51:6a: 75:e6:eb:e5 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUOimLkSuHAzZWVd7scMkRRzA/ZVswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDNDg5OUNBM0Q2MTJBNDVDMUMxREMwMkEyMUY2MzM3 MkRBRURENjAeFw0yNTAxMjcxNTU1MDFaFw0yNjAxMjYxNjAwMDFaMDMxMTAvBgNV BAMTKDdBRjc5RDdEOEFCMzlCQTBGRTU5Nzk5NTE2NTM1M0U5NkVGQ0VEMUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/XlNF+7jKU3byh6WrMakd5iQ9 4qFwiwGAgPOye1/2K9MrTEjky2Dreyhhw0quMKGUtrOk0m6xNAFgLmSpNQ5WYuya ik3MoytTUzz9GULewoX8xGWLL2TZAHwYNnCuJakXyn+0bQislFCAztQ4QEIutCnh UFleI9O0A/UJIHzUUvDQGjLDEdQoV0u8+o0ZwRfts2cLKsNimc4294I0+M3ps/P7 5xAJponQ+YYSCaGcljK/GebQ95hCRmrnpTja23kY5MGPqhPwzN3o0T+pK9k1gIc7 b3fgAkCd/Ep+sHx41A3UnLCrkmqReCONV6lIwWd+A5mVB8yYgKGf/1TvWtbVAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUevedfYqzm6D+WXmVFlNT6W787RowHwYDVR0j BBgwFoAUj8SJnKPWEqRcHB3AKiH2M3La7dYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NTQxM2ZmNC0yMDJiLTQ5OTktYjQ1ZC03M2M5NzJmMTAxMTYvMC84RkM0ODk5Q0Ez RDYxMkE0NUMxQzFEQzAyQTIxRjYzMzcyREFFREQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEZDNDg5OUNBM0Q2MTJBNDVDMUMxREMwMkEyMUY2MzM3MkRB RURENi5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U1NDEzZmY0LTIwMmItNDk5OS1i NDVkLTczYzk3MmYxMDExNi8wLzMyMzQzMDM0M2E2MzYxNjMzMDNhMzEzMDMwMzAz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzkzNDMxMzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BMrAEAAwDQYJKoZIhvcNAQELBQADggEBAAYoJmzrapIdi1xnF2n4Yfz7eCPBenVQ 0NnKNwF4pfFqI+L+HnFudKAECjhn4fgsIuN5zBZDTtV3807zY3AbW6MN4kct6iQM udI82Zw18vMPnsRYtzP800SNIdz8S4WW/q90a0rPstrcgSad8H5o7yzdNyYFfaBs EbT9ZeztIhIueA79sAFfHwJGf8QazIjz4kNn//JUFO1383OD+C39ZF5JtyuR3fO+ 0D37SDjHYl03g4Noe8U37lls4q8m0RxxRoG7HUb/5RL9kcbJK5U/r6iwh2tL7L/u Yd9ZNjQ/t06VpvxioG+QmS8baVzFSzkPudfjDkYxYlWIDB9RanXm6+U= -----END CERTIFICATE-----Generated at Sun Apr 6 11:05:47 2025 by rpki-client