$ rpki-client -vvf repo-rpki.idnic.net/repo/edaec66c-9e1d-4321-b069-eeab4793a00b/0/323430353a363634303a3a2f33322d3332203d3e20313430343732.roa File: 323430353a363634303a3a2f33322d3332203d3e20313430343732.roa (raw, json) Hash identifier: uU+9x3F5Wh10f2yBN/1eDuWO0H9Ms5DAoMSr38lZ7RI= Subject key identifier: 77:8C:C7:19:AA:ED:02:6A:96:72:DD:9F:71:22:30:2A:26:17:98:21 Certificate issuer: /CN=14C8CB97FD381190392EF58B2A9CD8D566A51FD6 Certificate serial: 66AD2A1BA4BFE6B7112182572F8A3E655CCD0822 Authority key identifier: 14:C8:CB:97:FD:38:11:90:39:2E:F5:8B:2A:9C:D8:D5:66:A5:1F:D6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14C8CB97FD381190392EF58B2A9CD8D566A51FD6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/edaec66c-9e1d-4321-b069-eeab4793a00b/0/323430353a363634303a3a2f33322d3332203d3e20313430343732.roa Signing time: Wed 19 Feb 2025 17:00:01 +0000 ROA not before: Wed 19 Feb 2025 16:55:01 +0000 ROA not after: Wed 18 Feb 2026 17:00:01 +0000 asID: 140472 IP address blocks: 2405:6640::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/edaec66c-9e1d-4321-b069-eeab4793a00b/0/14C8CB97FD381190392EF58B2A9CD8D566A51FD6.crl rsync://repo-rpki.idnic.net/repo/edaec66c-9e1d-4321-b069-eeab4793a00b/0/14C8CB97FD381190392EF58B2A9CD8D566A51FD6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14C8CB97FD381190392EF58B2A9CD8D566A51FD6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 10:09:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:ad:2a:1b:a4:bf:e6:b7:11:21:82:57:2f:8a:3e:65:5c:cd:08:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=14C8CB97FD381190392EF58B2A9CD8D566A51FD6 Validity Not Before: Feb 19 16:55:01 2025 GMT Not After : Feb 18 17:00:01 2026 GMT Subject: CN=778CC719AAED026A9672DD9F7122302A26179821 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:71:78:0b:e9:ae:68:d0:6e:07:e6:fd:b6:4e: 61:02:0d:f0:2a:a7:bf:92:59:ec:ea:57:66:93:82: 5a:b0:bb:ab:21:f4:9a:2f:76:32:36:48:51:eb:6c: d3:3b:43:58:1a:b2:62:a0:8b:ff:d7:65:12:cf:f1: 3d:46:8d:f1:cd:ff:41:1a:6f:ad:46:b8:f3:fd:58: 0e:9c:c5:d0:30:7e:56:1d:f4:76:94:28:1d:f5:ef: 80:74:22:d2:cf:99:93:de:19:aa:f2:c2:1c:0d:76: 8e:a1:c3:dd:3a:bc:07:c5:b1:58:6b:3b:40:bd:54: e2:83:26:3c:20:01:4b:9f:28:dc:a0:05:6a:48:95: 9b:76:cf:d6:e7:7c:d9:8c:61:0b:33:ba:52:66:4e: 2f:85:ce:cf:4b:8c:6a:e6:78:cf:e2:4d:48:ce:07: a5:9b:4c:ce:57:09:e1:b4:66:47:e3:d5:80:62:5b: f8:65:b3:89:ad:10:6f:f6:49:e5:ce:e8:0e:25:45: 54:a2:ac:16:b1:c4:25:d6:14:d8:c5:60:bb:b0:ae: 34:46:ff:6d:13:9f:0c:23:31:21:06:02:c5:9c:16: d7:1f:4b:16:d8:fa:e8:ef:32:2d:97:31:0e:04:6d: 1c:cc:9a:e9:26:26:56:ff:0d:0f:69:bc:66:f9:da: 84:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:8C:C7:19:AA:ED:02:6A:96:72:DD:9F:71:22:30:2A:26:17:98:21 X509v3 Authority Key Identifier: keyid:14:C8:CB:97:FD:38:11:90:39:2E:F5:8B:2A:9C:D8:D5:66:A5:1F:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/edaec66c-9e1d-4321-b069-eeab4793a00b/0/14C8CB97FD381190392EF58B2A9CD8D566A51FD6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14C8CB97FD381190392EF58B2A9CD8D566A51FD6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/edaec66c-9e1d-4321-b069-eeab4793a00b/0/323430353a363634303a3a2f33322d3332203d3e20313430343732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:6640::/32 Signature Algorithm: sha256WithRSAEncryption b6:63:61:8c:2b:c8:a6:d0:5c:bb:8e:3c:71:e8:bc:a8:c5:81: 36:7d:be:be:bd:d9:ec:69:4b:bf:51:0c:39:d1:3a:7c:44:23: ed:ac:ef:9b:d2:92:d9:39:06:02:b3:a3:b9:73:86:29:df:61: 90:72:3d:4d:ed:4f:81:31:59:61:17:7d:c8:9a:11:b3:3f:32: 56:a3:a4:04:09:fa:3a:34:3d:29:84:51:19:bd:fa:cd:79:bf: 60:10:5e:f9:19:a8:47:47:62:89:97:b8:c7:ea:3c:18:bc:62: 02:25:4f:77:6e:e0:43:d0:6c:bb:21:f5:c2:35:8b:f0:a0:09: 37:da:56:36:51:5d:ef:dc:50:6f:57:40:f2:01:e3:28:cf:44: c0:a5:ef:04:e2:07:da:5e:6b:9f:54:d4:1e:94:8b:28:85:63: 4d:cd:e0:75:76:30:38:9e:6c:c0:08:d7:ef:b6:a5:19:81:ea: dd:cb:d4:ba:91:08:00:00:3c:81:5f:ef:53:2b:58:37:ff:56: 70:a8:a3:09:c6:d4:13:e0:db:2d:e8:eb:1c:40:8d:91:2e:f3: bb:88:b3:c6:35:a5:1a:57:6a:c9:11:ca:89:08:77:bd:fb:54: f9:34:4e:53:0d:9c:d9:a9:bf:c3:da:b4:53:cb:e2:a0:93:69: ce:04:6b:0f -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUZq0qG6S/5rcRIYJXL4o+ZVzNCCIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTRDOENCOTdGRDM4MTE5MDM5MkVGNThCMkE5Q0Q4RDU2 NkE1MUZENjAeFw0yNTAyMTkxNjU1MDFaFw0yNjAyMTgxNzAwMDFaMDMxMTAvBgNV BAMTKDc3OENDNzE5QUFFRDAyNkE5NjcyREQ5RjcxMjIzMDJBMjYxNzk4MjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCUcXgL6a5o0G4H5v22TmECDfAq p7+SWezqV2aTglqwu6sh9JovdjI2SFHrbNM7Q1gasmKgi//XZRLP8T1GjfHN/0Ea b61GuPP9WA6cxdAwflYd9HaUKB3174B0ItLPmZPeGarywhwNdo6hw906vAfFsVhr O0C9VOKDJjwgAUufKNygBWpIlZt2z9bnfNmMYQszulJmTi+Fzs9LjGrmeM/iTUjO B6WbTM5XCeG0Zkfj1YBiW/hls4mtEG/2SeXO6A4lRVSirBaxxCXWFNjFYLuwrjRG /20TnwwjMSEGAsWcFtcfSxbY+ujvMi2XMQ4EbRzMmukmJlb/DQ9pvGb52oQfAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUd4zHGartAmqWct2fcSIwKiYXmCEwHwYDVR0j BBgwFoAUFMjLl/04EZA5LvWLKpzY1WalH9YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZGFlYzY2Yy05ZTFkLTQzMjEtYjA2OS1lZWFiNDc5M2EwMGIvMC8xNEM4Q0I5N0ZE MzgxMTkwMzkyRUY1OEIyQTlDRDhENTY2QTUxRkQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTRDOENCOTdGRDM4MTE5MDM5MkVGNThCMkE5Q0Q4RDU2NkE1 MUZENi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VkYWVjNjZjLTllMWQtNDMyMS1i MDY5LWVlYWI0NzkzYTAwYi8wLzMyMzQzMDM1M2EzNjM2MzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzQzMDM0MzczMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQFZkAwDQYJKoZI hvcNAQELBQADggEBALZjYYwryKbQXLuOPHHovKjFgTZ9vr692expS79RDDnROnxE I+2s75vSktk5BgKzo7lzhinfYZByPU3tT4ExWWEXfciaEbM/MlajpAQJ+jo0PSmE URm9+s15v2AQXvkZqEdHYomXuMfqPBi8YgIlT3du4EPQbLsh9cI1i/CgCTfaVjZR Xe/cUG9XQPIB4yjPRMCl7wTiB9pea59U1B6UiyiFY03N4HV2MDiebMAI1++2pRmB 6t3L1LqRCAAAPIFf71MrWDf/VnCoownG1BPg2y3o6xxAjZEu87uIs8Y1pRpXaskR yokId737VPk0TlMNnNmpv8PatFPL4qCTac4Eaw8= -----END CERTIFICATE-----Generated at Sun Apr 6 18:58:17 2025 by rpki-client