$ rpki-client -vvf repo-rpki.idnic.net/repo/fc2ab062-8703-4da6-ad72-80d25ae8bf5f/0/323430363a323163303a3a2f33322d3332203d3e20313430343239.roa File: 323430363a323163303a3a2f33322d3332203d3e20313430343239.roa (raw, json) Hash identifier: zzI9rCP/tfewJ6DIUZ/QCdxSlaG3S+TwyllnR3goWuU= Subject key identifier: 94:1A:E8:D3:E1:7F:47:ED:F2:39:C4:C1:33:BF:C0:B0:73:ED:17:C9 Certificate issuer: /CN=C82A80ADCBD836F4D8D5E4E98088C3ECBCAF18D7 Certificate serial: 4A53C5DE92C755D3351EF929BD6E593493EA7230 Authority key identifier: C8:2A:80:AD:CB:D8:36:F4:D8:D5:E4:E9:80:88:C3:EC:BC:AF:18:D7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C82A80ADCBD836F4D8D5E4E98088C3ECBCAF18D7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fc2ab062-8703-4da6-ad72-80d25ae8bf5f/0/323430363a323163303a3a2f33322d3332203d3e20313430343239.roa Signing time: Thu 16 Jan 2025 03:03:01 +0000 ROA not before: Thu 16 Jan 2025 02:58:01 +0000 ROA not after: Thu 15 Jan 2026 03:03:01 +0000 asID: 140429 IP address blocks: 2406:21c0::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fc2ab062-8703-4da6-ad72-80d25ae8bf5f/0/C82A80ADCBD836F4D8D5E4E98088C3ECBCAF18D7.crl rsync://repo-rpki.idnic.net/repo/fc2ab062-8703-4da6-ad72-80d25ae8bf5f/0/C82A80ADCBD836F4D8D5E4E98088C3ECBCAF18D7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C82A80ADCBD836F4D8D5E4E98088C3ECBCAF18D7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 14:57:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:53:c5:de:92:c7:55:d3:35:1e:f9:29:bd:6e:59:34:93:ea:72:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C82A80ADCBD836F4D8D5E4E98088C3ECBCAF18D7 Validity Not Before: Jan 16 02:58:01 2025 GMT Not After : Jan 15 03:03:01 2026 GMT Subject: CN=941AE8D3E17F47EDF239C4C133BFC0B073ED17C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:7e:33:70:eb:5d:35:fc:72:6e:33:42:b3:51: c0:dd:6e:90:41:f7:a3:1b:b2:db:42:56:e1:bb:b8: 95:54:6e:c8:9a:7f:f2:27:a9:9b:fd:44:65:dd:77: 72:74:36:a0:07:23:bd:6f:a7:6f:1e:57:3b:50:c6: 32:03:16:0b:f7:b2:9c:8d:a2:ff:70:c1:e8:2a:b1: 6e:1a:18:72:26:ad:93:30:ea:fa:db:45:1f:02:2a: e5:90:50:df:a0:e8:45:1e:2b:95:dd:00:0f:4f:77: 42:65:5e:c2:17:1a:76:aa:99:01:43:bc:70:04:b7: 66:f1:d4:ab:ae:e9:34:8f:ed:55:cd:58:67:86:36: 60:09:d1:df:78:2d:75:71:45:10:3f:cd:6d:86:04: 9f:77:6a:19:dd:d8:30:35:8c:37:fb:4b:65:e9:23: 4f:ac:13:9a:85:22:45:55:6e:b6:a4:15:f9:67:20: 40:8e:a0:7a:26:42:47:fa:bb:e8:7a:32:1e:5e:a5: 1b:31:59:ab:a7:cc:22:7e:d7:ce:3e:d3:3f:d8:ee: 22:ef:51:5d:bc:a0:57:42:46:b7:5b:c6:a8:d7:6a: d8:87:ee:81:53:3e:8f:f0:64:2f:ef:81:0b:c2:04: c6:c5:36:4c:eb:6c:4a:d9:99:92:01:5b:e1:d8:bc: 30:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:1A:E8:D3:E1:7F:47:ED:F2:39:C4:C1:33:BF:C0:B0:73:ED:17:C9 X509v3 Authority Key Identifier: keyid:C8:2A:80:AD:CB:D8:36:F4:D8:D5:E4:E9:80:88:C3:EC:BC:AF:18:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fc2ab062-8703-4da6-ad72-80d25ae8bf5f/0/C82A80ADCBD836F4D8D5E4E98088C3ECBCAF18D7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C82A80ADCBD836F4D8D5E4E98088C3ECBCAF18D7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fc2ab062-8703-4da6-ad72-80d25ae8bf5f/0/323430363a323163303a3a2f33322d3332203d3e20313430343239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:21c0::/32 Signature Algorithm: sha256WithRSAEncryption 81:dd:74:17:49:bc:2e:d6:c6:e3:01:57:26:fa:b7:0e:bc:7f: 2d:f3:24:c1:28:2c:4b:32:b3:e9:d7:6e:72:00:7a:34:80:29: 68:6a:44:ba:39:8c:47:7c:0f:a0:30:a6:91:9e:66:59:fe:41: 0f:9d:69:38:50:b4:04:61:fa:db:45:42:d8:1a:bf:bf:8b:9c: 0e:32:dc:c4:ea:a1:40:f4:dd:e3:5f:e2:91:60:0e:63:45:db: f1:53:05:03:30:4c:fc:ca:7c:0d:33:cb:fc:99:e4:c4:07:45: 47:72:00:d9:2f:24:a8:d6:f0:da:26:76:86:26:66:ff:82:7d: e9:56:06:b5:4a:11:91:4a:db:a4:ec:f6:32:ec:e5:61:be:fa: 26:89:61:c8:54:b8:7f:6f:15:83:66:3a:fc:90:e9:16:b7:46: d8:10:57:b2:4d:4b:b0:35:97:ba:51:a2:c6:67:09:c7:a0:cb: df:a5:aa:f3:25:ff:1f:4f:5b:66:27:92:f2:7b:d5:7e:28:37: 91:b3:be:03:22:c6:e6:85:4f:d5:a2:5d:58:4f:ed:07:9b:1e: 11:c5:c3:e9:22:aa:be:cf:43:46:e9:5d:9b:51:bc:c1:4b:ec: 12:db:76:a5:bc:a1:1a:4d:f4:95:94:fa:dd:69:b2:0c:ce:33: 45:16:d3:12 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUSlPF3pLHVdM1HvkpvW5ZNJPqcjAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzgyQTgwQURDQkQ4MzZGNEQ4RDVFNEU5ODA4OEMzRUNC Q0FGMThENzAeFw0yNTAxMTYwMjU4MDFaFw0yNjAxMTUwMzAzMDFaMDMxMTAvBgNV BAMTKDk0MUFFOEQzRTE3RjQ3RURGMjM5QzRDMTMzQkZDMEIwNzNFRDE3QzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwfjNw6101/HJuM0KzUcDdbpBB 96MbsttCVuG7uJVUbsiaf/InqZv9RGXdd3J0NqAHI71vp28eVztQxjIDFgv3spyN ov9wwegqsW4aGHImrZMw6vrbRR8CKuWQUN+g6EUeK5XdAA9Pd0JlXsIXGnaqmQFD vHAEt2bx1Kuu6TSP7VXNWGeGNmAJ0d94LXVxRRA/zW2GBJ93ahnd2DA1jDf7S2Xp I0+sE5qFIkVVbrakFflnIECOoHomQkf6u+h6Mh5epRsxWaunzCJ+184+0z/Y7iLv UV28oFdCRrdbxqjXatiH7oFTPo/wZC/vgQvCBMbFNkzrbErZmZIBW+HYvDC7AgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUlBro0+F/R+3yOcTBM7/AsHPtF8kwHwYDVR0j BBgwFoAUyCqArcvYNvTY1eTpgIjD7LyvGNcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YzJhYjA2Mi04NzAzLTRkYTYtYWQ3Mi04MGQyNWFlOGJmNWYvMC9DODJBODBBRENC RDgzNkY0RDhENUU0RTk4MDg4QzNFQ0JDQUYxOEQ3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzgyQTgwQURDQkQ4MzZGNEQ4RDVFNEU5ODA4OEMzRUNCQ0FG MThENy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZjMmFiMDYyLTg3MDMtNGRhNi1h ZDcyLTgwZDI1YWU4YmY1Zi8wLzMyMzQzMDM2M2EzMjMxNjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzQzMDM0MzIzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQGIcAwDQYJKoZI hvcNAQELBQADggEBAIHddBdJvC7WxuMBVyb6tw68fy3zJMEoLEsys+nXbnIAejSA KWhqRLo5jEd8D6AwppGeZln+QQ+daThQtARh+ttFQtgav7+LnA4y3MTqoUD03eNf 4pFgDmNF2/FTBQMwTPzKfA0zy/yZ5MQHRUdyANkvJKjW8NomdoYmZv+CfelWBrVK EZFK26Ts9jLs5WG++iaJYchUuH9vFYNmOvyQ6Ra3RtgQV7JNS7A1l7pRosZnCceg y9+lqvMl/x9PW2YnkvJ71X4oN5GzvgMixuaFT9WiXVhP7QebHhHFw+kiqr7PQ0bp XZtRvMFL7BLbdqW8oRpN9JWU+t1psgzOM0UW0xI= -----END CERTIFICATE-----Generated at Sun Apr 6 10:03:11 2025 by rpki-client