$ rpki-client -vvf repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/323030313a6632303a343030303a3a2f33362d3438203d3e2039383735.roa File: 323030313a6632303a343030303a3a2f33362d3438203d3e2039383735.roa (raw, json) Hash identifier: nPfvFxh32GtLGhwJQ/WVsbfFCUobHuoJlvZ49Ao0HyU= Subject key identifier: 78:39:0F:91:BA:F5:72:34:55:1D:6D:D8:7A:87:80:DC:1D:7D:2A:04 Certificate issuer: /CN=F33127B2252454B491C5DC9FE3937C56F28F8066 Certificate serial: 59F84B4C027ED15B8DF9A18B184C895397DA4C43 Authority key identifier: F3:31:27:B2:25:24:54:B4:91:C5:DC:9F:E3:93:7C:56:F2:8F:80:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F33127B2252454B491C5DC9FE3937C56F28F8066.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/323030313a6632303a343030303a3a2f33362d3438203d3e2039383735.roa Signing time: Fri 31 Jan 2025 12:00:02 +0000 ROA not before: Fri 31 Jan 2025 11:55:02 +0000 ROA not after: Fri 30 Jan 2026 12:00:02 +0000 asID: 9875 IP address blocks: 2001:f20:4000::/36 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/F33127B2252454B491C5DC9FE3937C56F28F8066.crl rsync://repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/F33127B2252454B491C5DC9FE3937C56F28F8066.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F33127B2252454B491C5DC9FE3937C56F28F8066.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 01:11:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:f8:4b:4c:02:7e:d1:5b:8d:f9:a1:8b:18:4c:89:53:97:da:4c:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F33127B2252454B491C5DC9FE3937C56F28F8066 Validity Not Before: Jan 31 11:55:02 2025 GMT Not After : Jan 30 12:00:02 2026 GMT Subject: CN=78390F91BAF57234551D6DD87A8780DC1D7D2A04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:72:13:0c:d3:06:69:d2:d8:40:4a:6d:00:0d: 8f:b7:87:ef:57:53:8d:00:dc:a5:9d:32:36:09:37: 24:86:9e:18:f7:e2:58:6f:36:3f:bc:6c:f4:4b:9a: ec:61:ca:37:09:17:16:e8:64:7f:3d:c6:ee:e3:39: 74:e2:41:a1:74:9c:32:de:85:8a:92:48:22:6c:87: d1:04:d6:7a:25:06:c0:26:3f:49:ec:a3:58:be:57: a2:8e:6c:8b:5f:88:10:dc:89:9d:46:c2:b1:5e:33: 46:8e:f4:c4:93:7e:75:28:cb:0f:49:d7:2b:48:a6: 17:94:29:83:13:87:e9:04:66:de:99:c2:67:ed:32: 4e:bd:08:46:3a:c1:48:54:2e:55:1f:1e:e9:ba:ac: 8c:81:97:1b:e5:4d:65:3f:25:a7:61:3b:27:96:c6: 60:ce:e9:fa:9f:96:84:92:4d:3d:ad:83:e2:c4:4f: 9f:01:00:79:8e:ad:89:cb:85:63:65:d8:45:bf:35: 80:69:c2:85:8a:db:4d:89:85:55:1d:66:46:9c:69: 91:e6:62:4d:a3:ea:8b:ca:7e:cf:e5:d9:51:a4:cc: a0:6f:1a:08:5e:d1:d1:2d:68:a0:0b:6e:5d:f3:e6: 66:88:7b:a5:ec:47:ef:87:15:47:43:a1:7c:c3:82: f2:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:39:0F:91:BA:F5:72:34:55:1D:6D:D8:7A:87:80:DC:1D:7D:2A:04 X509v3 Authority Key Identifier: keyid:F3:31:27:B2:25:24:54:B4:91:C5:DC:9F:E3:93:7C:56:F2:8F:80:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/F33127B2252454B491C5DC9FE3937C56F28F8066.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F33127B2252454B491C5DC9FE3937C56F28F8066.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/323030313a6632303a343030303a3a2f33362d3438203d3e2039383735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:f20:4000::/36 Signature Algorithm: sha256WithRSAEncryption 28:01:43:54:d3:34:c7:c4:c0:85:a9:17:ee:31:55:bb:76:37: b2:3f:9e:5f:74:a0:56:51:1a:06:39:68:6a:01:9e:5b:83:12: 1a:1d:36:a3:f2:c9:90:83:6c:f7:10:42:9b:3d:60:de:ee:63: 74:de:b4:64:aa:41:50:81:90:07:5a:ea:e0:b2:e2:6b:04:58: 38:8b:e0:c7:16:7b:d6:77:1f:7c:ed:3e:4f:64:54:fc:8b:ba: 40:a8:b7:ab:ff:57:b2:f2:0f:91:5d:26:71:12:46:30:68:2c: 8b:7b:db:7a:df:c1:89:3a:4b:a1:a2:17:6f:c0:e9:80:fc:f1: 41:77:04:e0:02:c0:02:d6:d0:33:12:d5:2a:a8:04:3b:65:f2: 23:0c:f3:38:3d:32:39:7d:4e:fd:1c:5a:ba:f8:bf:d6:1b:b8: 42:ec:5f:21:ee:87:0d:f8:44:5a:7c:7a:3d:44:4c:dd:f6:aa: 00:9e:6d:e0:ca:f8:6d:0d:c4:31:b5:bd:83:0f:30:23:72:3f: e3:69:a9:4c:dc:5e:81:74:02:0c:9a:36:87:7e:80:ac:03:b9: 99:6f:bc:0e:e6:f2:19:a1:87:f5:a0:5a:24:16:3f:05:63:4c: dc:a3:32:41:92:98:26:62:f1:96:97:4e:75:b8:fb:d3:c0:ac: 90:8d:61:aa -----BEGIN CERTIFICATE----- MIIFLjCCBBagAwIBAgIUWfhLTAJ+0VuN+aGLGEyJU5faTEMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjMzMTI3QjIyNTI0NTRCNDkxQzVEQzlGRTM5MzdDNTZG MjhGODA2NjAeFw0yNTAxMzExMTU1MDJaFw0yNjAxMzAxMjAwMDJaMDMxMTAvBgNV BAMTKDc4MzkwRjkxQkFGNTcyMzQ1NTFENkREODdBODc4MERDMUQ3RDJBMDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4chMM0wZp0thASm0ADY+3h+9X U40A3KWdMjYJNySGnhj34lhvNj+8bPRLmuxhyjcJFxboZH89xu7jOXTiQaF0nDLe hYqSSCJsh9EE1nolBsAmP0nso1i+V6KObItfiBDciZ1GwrFeM0aO9MSTfnUoyw9J 1ytIpheUKYMTh+kEZt6ZwmftMk69CEY6wUhULlUfHum6rIyBlxvlTWU/JadhOyeW xmDO6fqfloSSTT2tg+LET58BAHmOrYnLhWNl2EW/NYBpwoWK202JhVUdZkacaZHm Yk2j6ovKfs/l2VGkzKBvGghe0dEtaKALbl3z5maIe6XsR++HFUdDoXzDgvIbAgMB AAGjggI4MIICNDAdBgNVHQ4EFgQUeDkPkbr1cjRVHW3YeoeA3B19KgQwHwYDVR0j BBgwFoAU8zEnsiUkVLSRxdyf45N8VvKPgGYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YmJmZTc3Ni0wMGEzLTQ3NzYtYmYzZi01MjExOTQ2MTAxYzMvMC9GMzMxMjdCMjI1 MjQ1NEI0OTFDNURDOUZFMzkzN0M1NkYyOEY4MDY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjMzMTI3QjIyNTI0NTRCNDkxQzVEQzlGRTM5MzdDNTZGMjhG ODA2Ni5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ViYmZlNzc2LTAwYTMtNDc3Ni1i ZjNmLTUyMTE5NDYxMDFjMy8wLzMyMzAzMDMxM2E2NjMyMzAzYTM0MzAzMDMwM2Ez YTJmMzMzNjJkMzQzODIwM2QzZTIwMzkzODM3MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQgAQ8gQDAN BgkqhkiG9w0BAQsFAAOCAQEAKAFDVNM0x8TAhakX7jFVu3Y3sj+eX3SgVlEaBjlo agGeW4MSGh02o/LJkINs9xBCmz1g3u5jdN60ZKpBUIGQB1rq4LLiawRYOIvgxxZ7 1ncffO0+T2RU/Iu6QKi3q/9XsvIPkV0mcRJGMGgsi3vbet/BiTpLoaIXb8DpgPzx QXcE4ALAAtbQMxLVKqgEO2XyIwzzOD0yOX1O/Rxauvi/1hu4QuxfIe6HDfhEWnx6 PURM3faqAJ5t4Mr4bQ3EMbW9gw8wI3I/42mpTNxegXQCDJo2h36ArAO5mW+8Duby GaGH9aBaJBY/BWNM3KMyQZKYJmLxlpdOdbj708CskI1hqg== -----END CERTIFICATE-----Generated at Sun Apr 6 07:20:20 2025 by rpki-client