$ rpki-client -vvf repo-rpki.idnic.net/repo/ea4f7934-cdc7-4082-83fb-df7d4f8219af/1/323030313a6466333a393263303a3a2f34382d3438203d3e20313532343231.roa File: 323030313a6466333a393263303a3a2f34382d3438203d3e20313532343231.roa (raw, json) Hash identifier: sF0+Hzy6oJxlj5HSJzIfCoHVtQeeL/eSjk9uB3se86E= Subject key identifier: E9:4D:F9:C4:37:D0:B5:0E:FF:DA:27:3B:29:CF:6B:CE:FB:68:2B:A9 Certificate issuer: /CN=EAAF14D74C27E1502835CCF1541D5D92498C8427 Certificate serial: 36BEAC6B819BDA644067465C548327243779975D Authority key identifier: EA:AF:14:D7:4C:27:E1:50:28:35:CC:F1:54:1D:5D:92:49:8C:84:27 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EAAF14D74C27E1502835CCF1541D5D92498C8427.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ea4f7934-cdc7-4082-83fb-df7d4f8219af/1/323030313a6466333a393263303a3a2f34382d3438203d3e20313532343231.roa Signing time: Thu 27 Feb 2025 03:02:56 +0000 ROA not before: Thu 27 Feb 2025 02:57:56 +0000 ROA not after: Thu 26 Feb 2026 03:02:56 +0000 asID: 152421 IP address blocks: 2001:df3:92c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ea4f7934-cdc7-4082-83fb-df7d4f8219af/1/EAAF14D74C27E1502835CCF1541D5D92498C8427.crl rsync://repo-rpki.idnic.net/repo/ea4f7934-cdc7-4082-83fb-df7d4f8219af/1/EAAF14D74C27E1502835CCF1541D5D92498C8427.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EAAF14D74C27E1502835CCF1541D5D92498C8427.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 13:25:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:be:ac:6b:81:9b:da:64:40:67:46:5c:54:83:27:24:37:79:97:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EAAF14D74C27E1502835CCF1541D5D92498C8427 Validity Not Before: Feb 27 02:57:56 2025 GMT Not After : Feb 26 03:02:56 2026 GMT Subject: CN=E94DF9C437D0B50EFFDA273B29CF6BCEFB682BA9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:dd:7f:32:5e:fe:7f:b1:0d:85:0e:49:11:62: aa:e3:ee:5a:02:55:ae:65:1f:89:d9:d7:6b:8f:bd: 88:f7:6d:22:1f:76:72:e9:9d:0f:92:a5:d7:7c:1d: d1:0b:22:b9:7e:dc:ba:eb:da:a2:4b:57:87:07:50: 20:aa:b8:a4:2f:66:8d:a5:13:e5:30:3f:b4:36:a4: 5c:d8:bc:dc:4d:46:44:89:e5:54:93:54:3a:80:b7: 77:31:a4:51:ae:d5:2a:d4:f4:ee:91:01:16:44:be: d5:f8:64:3b:ba:7c:1b:86:d6:a3:43:9b:2f:66:3f: 56:91:03:a4:1c:cd:ce:fa:cb:82:2a:53:cd:dd:59: 1d:49:29:92:1c:e4:5f:01:46:fc:5b:8c:0d:19:d9: 3f:a9:cd:cc:61:d2:fe:69:fb:4b:72:88:d9:bb:53: 46:75:6c:46:74:3f:b9:96:98:d1:7b:df:b3:19:b3: d4:dd:5a:b6:81:1a:6f:9c:f3:ad:b0:d1:8e:f8:26: c4:b5:fe:d9:2b:87:23:26:2d:77:8d:aa:13:9b:b9: 2c:80:73:4b:b7:a7:2c:b3:f4:f9:0c:0f:fc:d6:8c: 42:af:ba:df:96:61:eb:dc:82:05:5b:d9:d3:f2:8a: 42:3a:c0:ee:08:ab:a4:4e:6f:c5:1b:0f:d8:a5:fc: 7f:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:4D:F9:C4:37:D0:B5:0E:FF:DA:27:3B:29:CF:6B:CE:FB:68:2B:A9 X509v3 Authority Key Identifier: keyid:EA:AF:14:D7:4C:27:E1:50:28:35:CC:F1:54:1D:5D:92:49:8C:84:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ea4f7934-cdc7-4082-83fb-df7d4f8219af/1/EAAF14D74C27E1502835CCF1541D5D92498C8427.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EAAF14D74C27E1502835CCF1541D5D92498C8427.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ea4f7934-cdc7-4082-83fb-df7d4f8219af/1/323030313a6466333a393263303a3a2f34382d3438203d3e20313532343231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:92c0::/48 Signature Algorithm: sha256WithRSAEncryption 20:b9:50:e5:68:17:b6:41:d1:3b:87:e8:01:db:2a:13:af:fb: 34:3f:41:f9:03:52:2d:c7:5d:ac:1b:da:83:1d:ba:70:7f:45: 5b:5a:a3:6a:92:3b:db:02:7c:5d:33:aa:0b:af:8c:eb:57:44: 6a:b9:c3:df:f4:d5:a2:84:4d:fe:44:9d:74:5d:4f:55:fa:2a: b3:ab:9d:95:e9:1c:f9:37:f4:b5:47:d9:fe:b3:15:b9:67:9d: fa:3f:9b:0b:d3:75:4c:e8:33:6d:1a:c9:6a:f7:0f:0a:da:e3: bc:bb:88:ce:6f:d8:a1:98:56:3d:63:cb:c8:bd:72:25:7d:74: 2d:95:1f:33:60:81:f2:fd:14:50:a2:aa:2f:ed:20:ba:e2:60: d7:24:cd:62:d1:78:9c:dd:2f:5f:87:77:42:83:5d:ca:31:a7: 24:f0:19:e3:4d:f0:93:88:75:51:f1:cd:0a:33:05:f0:fa:19: d8:13:42:b3:9a:38:a2:41:16:49:da:a2:bd:45:26:f0:4b:25: 1e:89:a9:b0:2a:81:71:18:87:50:15:f1:db:2c:6c:b8:47:14: a8:5f:92:c1:8e:bf:25:44:48:62:0d:aa:c3:fa:68:2c:d0:5c: 5a:a2:f6:33:b5:99:9d:e6:7f:70:bc:e6:16:ae:82:9d:2f:c2: 40:85:43:5a -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUNr6sa4Gb2mRAZ0ZcVIMnJDd5l10wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUFBRjE0RDc0QzI3RTE1MDI4MzVDQ0YxNTQxRDVEOTI0 OThDODQyNzAeFw0yNTAyMjcwMjU3NTZaFw0yNjAyMjYwMzAyNTZaMDMxMTAvBgNV BAMTKEU5NERGOUM0MzdEMEI1MEVGRkRBMjczQjI5Q0Y2QkNFRkI2ODJCQTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC23X8yXv5/sQ2FDkkRYqrj7loC Va5lH4nZ12uPvYj3bSIfdnLpnQ+Spdd8HdELIrl+3Lrr2qJLV4cHUCCquKQvZo2l E+UwP7Q2pFzYvNxNRkSJ5VSTVDqAt3cxpFGu1SrU9O6RARZEvtX4ZDu6fBuG1qND my9mP1aRA6Qczc76y4IqU83dWR1JKZIc5F8BRvxbjA0Z2T+pzcxh0v5p+0tyiNm7 U0Z1bEZ0P7mWmNF737MZs9TdWraBGm+c862w0Y74JsS1/tkrhyMmLXeNqhObuSyA c0u3pyyz9PkMD/zWjEKvut+WYevcggVb2dPyikI6wO4Iq6ROb8UbD9il/H8BAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU6U35xDfQtQ7/2ic7Kc9rzvtoK6kwHwYDVR0j BBgwFoAU6q8U10wn4VAoNczxVB1dkkmMhCcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YTRmNzkzNC1jZGM3LTQwODItODNmYi1kZjdkNGY4MjE5YWYvMS9FQUFGMTRENzRD MjdFMTUwMjgzNUNDRjE1NDFENUQ5MjQ5OEM4NDI3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRUFBRjE0RDc0QzI3RTE1MDI4MzVDQ0YxNTQxRDVEOTI0OThD ODQyNy5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VhNGY3OTM0LWNkYzctNDA4Mi04 M2ZiLWRmN2Q0ZjgyMTlhZi8xLzMyMzAzMDMxM2E2NDY2MzMzYTM5MzI2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMyMzQzMjMxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 85LAMA0GCSqGSIb3DQEBCwUAA4IBAQAguVDlaBe2QdE7h+gB2yoTr/s0P0H5A1It x12sG9qDHbpwf0VbWqNqkjvbAnxdM6oLr4zrV0RqucPf9NWihE3+RJ10XU9V+iqz q52V6Rz5N/S1R9n+sxW5Z536P5sL03VM6DNtGslq9w8K2uO8u4jOb9ihmFY9Y8vI vXIlfXQtlR8zYIHy/RRQoqov7SC64mDXJM1i0Xic3S9fh3dCg13KMack8BnjTfCT iHVR8c0KMwXw+hnYE0KzmjiiQRZJ2qK9RSbwSyUeiamwKoFxGIdQFfHbLGy4RxSo X5LBjr8lREhiDarD+mgs0FxaovYztZmd5n9wvOYWroKdL8JAhUNa -----END CERTIFICATE-----Generated at Mon Apr 7 15:29:20 2025 by rpki-client