$ rpki-client -vvf repo-rpki.idnic.net/repo/f96401e3-9f62-4b3c-bffb-783355ae6770/0/323430363a376263303a3a2f33322d3332203d3e20313431303737.roa File: 323430363a376263303a3a2f33322d3332203d3e20313431303737.roa (raw, json) Hash identifier: xp7zh/qogSH8rCdWcuMKx0JZToEc8G2jBx1ZEnG9a9g= Subject key identifier: 24:68:D7:5F:63:94:46:A7:7E:61:AB:96:C9:84:D0:F0:D1:E6:A0:6B Certificate issuer: /CN=C25D5056A69CE0D0685BAD8E48F33A4A62A5C582 Certificate serial: 4BB4224F19485E2F116BFB21BF2B1FA19EC65F52 Authority key identifier: C2:5D:50:56:A6:9C:E0:D0:68:5B:AD:8E:48:F3:3A:4A:62:A5:C5:82 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C25D5056A69CE0D0685BAD8E48F33A4A62A5C582.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f96401e3-9f62-4b3c-bffb-783355ae6770/0/323430363a376263303a3a2f33322d3332203d3e20313431303737.roa Signing time: Sun 05 Jan 2025 19:00:02 +0000 ROA not before: Sun 05 Jan 2025 18:55:02 +0000 ROA not after: Sun 04 Jan 2026 19:00:02 +0000 asID: 141077 IP address blocks: 2406:7bc0::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f96401e3-9f62-4b3c-bffb-783355ae6770/0/C25D5056A69CE0D0685BAD8E48F33A4A62A5C582.crl rsync://repo-rpki.idnic.net/repo/f96401e3-9f62-4b3c-bffb-783355ae6770/0/C25D5056A69CE0D0685BAD8E48F33A4A62A5C582.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C25D5056A69CE0D0685BAD8E48F33A4A62A5C582.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 12:07:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:b4:22:4f:19:48:5e:2f:11:6b:fb:21:bf:2b:1f:a1:9e:c6:5f:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C25D5056A69CE0D0685BAD8E48F33A4A62A5C582 Validity Not Before: Jan 5 18:55:02 2025 GMT Not After : Jan 4 19:00:02 2026 GMT Subject: CN=2468D75F639446A77E61AB96C984D0F0D1E6A06B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:38:57:cf:9b:74:2f:0b:d8:aa:a3:24:69:42: 44:e9:63:70:56:86:6f:6a:06:63:81:ce:86:b4:f2: 1b:9c:f1:e8:df:3f:7f:99:0e:e8:a2:7c:f5:d4:d7: 3c:d2:64:88:a7:15:bc:9b:e9:e9:f5:cc:ea:bb:7b: 34:81:bb:2b:3b:86:f1:98:3e:f7:37:23:22:79:5c: fb:68:a8:5f:f8:fa:81:dc:d8:be:7e:6d:d9:6e:f5: 7f:c7:77:d3:11:d6:97:1f:f2:7c:89:05:47:c6:9f: 0f:c3:4a:5b:e7:b7:e2:5b:ad:63:44:08:59:86:94: 34:b2:9b:94:bd:80:f9:62:c2:f8:9b:b8:05:04:33: c9:36:42:b0:63:f6:6f:26:dd:94:87:4f:41:5c:09: f1:37:ba:c3:99:1e:df:69:54:45:f7:7d:dc:12:07: 5e:ff:bc:c2:d4:50:1c:ee:8a:c0:77:52:d7:6a:81: 96:33:bc:1b:e3:49:0b:90:5b:70:85:d5:29:bd:7b: 8c:c4:c3:1f:22:3e:80:a9:46:9a:3d:3f:5f:52:1f: 4b:ef:12:e9:7d:93:e9:47:8e:50:69:41:93:fc:c6: e0:16:7e:10:1a:f9:ad:3a:d9:7d:d3:8d:36:ca:cc: 72:0b:b1:66:f3:53:71:44:1b:47:15:ff:0d:63:78: c1:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:68:D7:5F:63:94:46:A7:7E:61:AB:96:C9:84:D0:F0:D1:E6:A0:6B X509v3 Authority Key Identifier: keyid:C2:5D:50:56:A6:9C:E0:D0:68:5B:AD:8E:48:F3:3A:4A:62:A5:C5:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f96401e3-9f62-4b3c-bffb-783355ae6770/0/C25D5056A69CE0D0685BAD8E48F33A4A62A5C582.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C25D5056A69CE0D0685BAD8E48F33A4A62A5C582.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f96401e3-9f62-4b3c-bffb-783355ae6770/0/323430363a376263303a3a2f33322d3332203d3e20313431303737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:7bc0::/32 Signature Algorithm: sha256WithRSAEncryption 2c:e2:a9:b1:5b:46:bc:8d:9d:5a:f9:17:43:bc:a3:67:f1:6e: a7:8b:54:ae:7b:12:61:8e:e6:c1:9b:55:84:de:5b:69:73:66: 42:b4:be:71:da:94:71:2f:a5:cc:7f:d8:44:40:63:49:bf:21: 4f:41:53:79:33:e8:a0:ea:c8:f9:06:2c:76:0c:24:e2:b4:52: 52:17:c3:65:c6:f7:0d:78:2a:0a:ed:4c:73:9b:f9:7a:90:0c: 2a:77:55:cf:13:1e:16:79:d9:c4:20:d7:5e:17:12:48:dc:d8: dc:10:63:f9:71:fa:84:44:d4:72:fd:8c:61:4d:cc:b7:66:4d: 0e:2d:1d:0b:9e:2b:80:ec:2f:d0:f8:1f:43:3a:3b:e0:d3:51: 75:ff:68:24:78:14:a5:96:21:3c:d1:d1:2a:a4:14:18:a5:51: be:03:46:ae:d4:af:5c:b5:0e:fa:01:ad:fd:69:3c:87:12:d0: 89:c2:35:68:73:3c:0e:38:e4:3a:82:c1:64:96:58:f6:74:0a: b1:ad:cf:3f:17:0a:50:1e:eb:7f:24:f3:53:46:c0:36:e8:5a: 1e:8c:56:72:45:06:ca:ac:77:ae:50:34:a1:94:4d:8a:d1:c7: 41:28:f1:59:e0:d5:0e:26:62:8a:34:1d:05:f0:de:d6:73:2c: 6e:44:1e:39 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUS7QiTxlIXi8Ra/shvysfoZ7GX1IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzI1RDUwNTZBNjlDRTBEMDY4NUJBRDhFNDhGMzNBNEE2 MkE1QzU4MjAeFw0yNTAxMDUxODU1MDJaFw0yNjAxMDQxOTAwMDJaMDMxMTAvBgNV BAMTKDI0NjhENzVGNjM5NDQ2QTc3RTYxQUI5NkM5ODREMEYwRDFFNkEwNkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjOFfPm3QvC9iqoyRpQkTpY3BW hm9qBmOBzoa08huc8ejfP3+ZDuiifPXU1zzSZIinFbyb6en1zOq7ezSBuys7hvGY Pvc3IyJ5XPtoqF/4+oHc2L5+bdlu9X/Hd9MR1pcf8nyJBUfGnw/DSlvnt+JbrWNE CFmGlDSym5S9gPliwvibuAUEM8k2QrBj9m8m3ZSHT0FcCfE3usOZHt9pVEX3fdwS B17/vMLUUBzuisB3UtdqgZYzvBvjSQuQW3CF1Sm9e4zEwx8iPoCpRpo9P19SH0vv Eul9k+lHjlBpQZP8xuAWfhAa+a062X3TjTbKzHILsWbzU3FEG0cV/w1jeMENAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUJGjXX2OURqd+YauWyYTQ8NHmoGswHwYDVR0j BBgwFoAUwl1QVqac4NBoW62OSPM6SmKlxYIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m OTY0MDFlMy05ZjYyLTRiM2MtYmZmYi03ODMzNTVhZTY3NzAvMC9DMjVENTA1NkE2 OUNFMEQwNjg1QkFEOEU0OEYzM0E0QTYyQTVDNTgyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzI1RDUwNTZBNjlDRTBEMDY4NUJBRDhFNDhGMzNBNEE2MkE1 QzU4Mi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y5NjQwMWUzLTlmNjItNGIzYy1i ZmZiLTc4MzM1NWFlNjc3MC8wLzMyMzQzMDM2M2EzNzYyNjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzQzMTMwMzczNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQGe8AwDQYJKoZI hvcNAQELBQADggEBACziqbFbRryNnVr5F0O8o2fxbqeLVK57EmGO5sGbVYTeW2lz ZkK0vnHalHEvpcx/2ERAY0m/IU9BU3kz6KDqyPkGLHYMJOK0UlIXw2XG9w14Kgrt THOb+XqQDCp3Vc8THhZ52cQg114XEkjc2NwQY/lx+oRE1HL9jGFNzLdmTQ4tHQue K4DsL9D4H0M6O+DTUXX/aCR4FKWWITzR0SqkFBilUb4DRq7Ur1y1DvoBrf1pPIcS 0InCNWhzPA445DqCwWSWWPZ0CrGtzz8XClAe638k81NGwDboWh6MVnJFBsqsd65Q NKGUTYrRx0Eo8Vng1Q4mYoo0HQXw3tZzLG5EHjk= -----END CERTIFICATE-----Generated at Sun Apr 6 11:13:27 2025 by rpki-client