$ rpki-client -vvf repo-rpki.idnic.net/repo/f9ce0c94-0d6c-45b3-aac6-34d0ce9b1f08/0/323430363a373634303a3a2f33322d3332203d3e20313431303731.roa File: 323430363a373634303a3a2f33322d3332203d3e20313431303731.roa (raw, json) Hash identifier: 6YW7Ywg58/9Y3fL2UyBxi9/3nsJtBUBgtTiZry4s9Zg= Subject key identifier: DC:ED:BD:6F:89:F0:1A:D9:70:25:CF:AC:46:96:8B:75:6B:00:44:AE Certificate issuer: /CN=A532AD36631301388EC939BEB0F099FCDE956410 Certificate serial: 27562261CBBA903C7937A52649A70DDF84437E09 Authority key identifier: A5:32:AD:36:63:13:01:38:8E:C9:39:BE:B0:F0:99:FC:DE:95:64:10 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A532AD36631301388EC939BEB0F099FCDE956410.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f9ce0c94-0d6c-45b3-aac6-34d0ce9b1f08/0/323430363a373634303a3a2f33322d3332203d3e20313431303731.roa Signing time: Wed 15 Jan 2025 19:00:02 +0000 ROA not before: Wed 15 Jan 2025 18:55:02 +0000 ROA not after: Wed 14 Jan 2026 19:00:02 +0000 asID: 141071 IP address blocks: 2406:7640::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f9ce0c94-0d6c-45b3-aac6-34d0ce9b1f08/0/A532AD36631301388EC939BEB0F099FCDE956410.crl rsync://repo-rpki.idnic.net/repo/f9ce0c94-0d6c-45b3-aac6-34d0ce9b1f08/0/A532AD36631301388EC939BEB0F099FCDE956410.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A532AD36631301388EC939BEB0F099FCDE956410.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 12:18:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:56:22:61:cb:ba:90:3c:79:37:a5:26:49:a7:0d:df:84:43:7e:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A532AD36631301388EC939BEB0F099FCDE956410 Validity Not Before: Jan 15 18:55:02 2025 GMT Not After : Jan 14 19:00:02 2026 GMT Subject: CN=DCEDBD6F89F01AD97025CFAC46968B756B0044AE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:3f:6a:07:3d:81:72:ac:b1:02:f6:fa:c3:0a: b8:b9:f1:70:b4:60:02:f4:bb:1c:de:9c:5a:c0:71: 41:0a:73:eb:02:39:dc:4d:1d:1a:7c:db:d5:4f:ab: 3b:8b:3c:99:6a:05:30:01:f7:24:06:0f:4c:e2:7f: cb:55:99:32:60:c9:15:c3:c9:2c:07:e6:97:be:3b: 1e:20:0f:4b:69:74:1f:c1:23:9c:44:23:4a:b7:2e: a3:96:4e:eb:54:f3:a3:3f:0b:09:4e:5e:2e:0e:ca: da:10:31:7d:86:5f:c8:1e:4a:53:79:6e:e8:e2:f3: da:b0:24:98:fc:59:ef:51:09:ea:96:9a:94:cc:b0: 5c:67:7b:82:aa:9f:b2:27:12:88:81:6f:c9:49:42: 4e:65:37:39:aa:ad:9e:ee:fb:ef:e0:0f:2f:b8:56: b2:d7:97:c1:66:d6:7e:c8:4a:44:1b:cb:8f:bd:bc: 5b:09:f0:e5:79:e9:fd:57:a7:6c:ee:f5:12:7b:46: 4c:5b:0e:e9:02:e1:d8:b7:c9:ea:12:e4:e8:6b:ec: 0f:d8:1b:65:ea:11:bc:cc:b5:ee:9a:36:99:df:03: 60:e9:b0:bb:92:09:20:63:eb:56:67:85:3f:54:57: d4:15:6a:b4:ef:aa:9d:d0:14:17:a9:a8:73:de:39: e8:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:ED:BD:6F:89:F0:1A:D9:70:25:CF:AC:46:96:8B:75:6B:00:44:AE X509v3 Authority Key Identifier: keyid:A5:32:AD:36:63:13:01:38:8E:C9:39:BE:B0:F0:99:FC:DE:95:64:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f9ce0c94-0d6c-45b3-aac6-34d0ce9b1f08/0/A532AD36631301388EC939BEB0F099FCDE956410.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A532AD36631301388EC939BEB0F099FCDE956410.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f9ce0c94-0d6c-45b3-aac6-34d0ce9b1f08/0/323430363a373634303a3a2f33322d3332203d3e20313431303731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:7640::/32 Signature Algorithm: sha256WithRSAEncryption ca:a2:5b:ef:f2:53:89:6a:da:ae:89:73:e0:36:02:b8:01:de: a7:ad:f2:b4:62:2f:c1:8f:51:b8:94:08:92:ac:62:d2:21:f7: 1f:15:27:f1:d2:fe:0b:c3:c1:df:c3:8c:0c:66:be:34:95:9d: 8b:aa:d1:dc:00:83:90:3d:3e:e0:31:95:f8:e9:0e:6d:7f:94: b8:d2:73:be:6d:e7:ad:93:d9:79:09:f1:e8:35:5c:c9:a1:dd: 87:97:c7:da:19:35:33:ef:8f:23:fc:e8:be:61:cc:b3:f7:26: c4:8d:ef:0f:11:e1:63:cb:67:59:41:04:ee:00:d5:a4:1f:0d: e0:93:5e:94:a8:2e:7b:95:94:ee:8a:5d:3f:91:88:0a:5d:1b: 81:91:bb:67:47:3f:0d:16:8e:1d:5f:b3:41:24:15:8b:78:4c: 27:64:52:7f:2a:e4:c5:18:6a:70:f2:bd:1d:2d:cf:31:3a:2b: b4:44:4a:51:e4:13:9f:8d:51:ab:c2:2f:57:88:1c:e1:69:9b: 3a:03:23:7e:b7:3e:e7:a0:5c:42:c9:43:6b:bd:0c:9c:a8:58: 0a:91:c3:5b:bc:30:57:04:f5:12:6e:3c:23:fd:4f:43:dc:62: d4:a8:bb:60:75:8e:d3:90:1c:ec:36:77:e5:01:7a:ae:04:83: 83:f9:68:6c -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUJ1YiYcu6kDx5N6UmSacN34RDfgkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTUzMkFEMzY2MzEzMDEzODhFQzkzOUJFQjBGMDk5RkNE RTk1NjQxMDAeFw0yNTAxMTUxODU1MDJaFw0yNjAxMTQxOTAwMDJaMDMxMTAvBgNV BAMTKERDRURCRDZGODlGMDFBRDk3MDI1Q0ZBQzQ2OTY4Qjc1NkIwMDQ0QUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDP2oHPYFyrLEC9vrDCri58XC0 YAL0uxzenFrAcUEKc+sCOdxNHRp829VPqzuLPJlqBTAB9yQGD0zif8tVmTJgyRXD ySwH5pe+Ox4gD0tpdB/BI5xEI0q3LqOWTutU86M/CwlOXi4OytoQMX2GX8geSlN5 buji89qwJJj8We9RCeqWmpTMsFxne4Kqn7InEoiBb8lJQk5lNzmqrZ7u++/gDy+4 VrLXl8Fm1n7ISkQby4+9vFsJ8OV56f1Xp2zu9RJ7RkxbDukC4di3yeoS5Ohr7A/Y G2XqEbzMte6aNpnfA2DpsLuSCSBj61ZnhT9UV9QVarTvqp3QFBepqHPeOehbAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQU3O29b4nwGtlwJc+sRpaLdWsARK4wHwYDVR0j BBgwFoAUpTKtNmMTATiOyTm+sPCZ/N6VZBAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m OWNlMGM5NC0wZDZjLTQ1YjMtYWFjNi0zNGQwY2U5YjFmMDgvMC9BNTMyQUQzNjYz MTMwMTM4OEVDOTM5QkVCMEYwOTlGQ0RFOTU2NDEwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTUzMkFEMzY2MzEzMDEzODhFQzkzOUJFQjBGMDk5RkNERTk1 NjQxMC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y5Y2UwYzk0LTBkNmMtNDViMy1h YWM2LTM0ZDBjZTliMWYwOC8wLzMyMzQzMDM2M2EzNzM2MzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzQzMTMwMzczMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQGdkAwDQYJKoZI hvcNAQELBQADggEBAMqiW+/yU4lq2q6Jc+A2ArgB3qet8rRiL8GPUbiUCJKsYtIh 9x8VJ/HS/gvDwd/DjAxmvjSVnYuq0dwAg5A9PuAxlfjpDm1/lLjSc75t562T2XkJ 8eg1XMmh3YeXx9oZNTPvjyP86L5hzLP3JsSN7w8R4WPLZ1lBBO4A1aQfDeCTXpSo LnuVlO6KXT+RiApdG4GRu2dHPw0Wjh1fs0EkFYt4TCdkUn8q5MUYanDyvR0tzzE6 K7RESlHkE5+NUavCL1eIHOFpmzoDI363PuegXELJQ2u9DJyoWAqRw1u8MFcE9RJu PCP9T0PcYtSou2B1jtOQHOw2d+UBeq4Eg4P5aGw= -----END CERTIFICATE-----Generated at Sun Apr 6 19:02:41 2025 by rpki-client