$ rpki-client -vvf repo-rpki.idnic.net/repo/fc7e8081-63af-49e7-9646-76c25a5e97ca/0/323430343a663630303a3a2f33322d3438203d3e203234323037.roa File: 323430343a663630303a3a2f33322d3438203d3e203234323037.roa (raw, json) Hash identifier: xDimJNI1Twl7hCA1S5QHDj3z6dVO53eSr1zwPr1dzLg= Subject key identifier: DF:AE:E5:A1:FD:24:4A:48:E1:DE:2B:BD:38:03:7B:1A:E2:41:D9:9A Certificate issuer: /CN=3C790FE4AB82A2C15017D265714B1245BF0AFB0F Certificate serial: 42AAFDE76BE3229E875BAE992973265916999854 Authority key identifier: 3C:79:0F:E4:AB:82:A2:C1:50:17:D2:65:71:4B:12:45:BF:0A:FB:0F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3C790FE4AB82A2C15017D265714B1245BF0AFB0F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fc7e8081-63af-49e7-9646-76c25a5e97ca/0/323430343a663630303a3a2f33322d3438203d3e203234323037.roa Signing time: Wed 12 Feb 2025 04:00:02 +0000 ROA not before: Wed 12 Feb 2025 03:55:02 +0000 ROA not after: Wed 11 Feb 2026 04:00:02 +0000 asID: 24207 IP address blocks: 2404:f600::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fc7e8081-63af-49e7-9646-76c25a5e97ca/0/3C790FE4AB82A2C15017D265714B1245BF0AFB0F.crl rsync://repo-rpki.idnic.net/repo/fc7e8081-63af-49e7-9646-76c25a5e97ca/0/3C790FE4AB82A2C15017D265714B1245BF0AFB0F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3C790FE4AB82A2C15017D265714B1245BF0AFB0F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 15:42:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:aa:fd:e7:6b:e3:22:9e:87:5b:ae:99:29:73:26:59:16:99:98:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3C790FE4AB82A2C15017D265714B1245BF0AFB0F Validity Not Before: Feb 12 03:55:02 2025 GMT Not After : Feb 11 04:00:02 2026 GMT Subject: CN=DFAEE5A1FD244A48E1DE2BBD38037B1AE241D99A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:de:06:78:39:b0:ad:1a:0e:57:66:4b:ca:a4: c7:d5:a8:33:9c:72:7b:f1:c6:4b:f7:65:56:33:cd: e9:c5:7b:62:6c:6b:29:8f:25:1a:1d:5b:d2:d5:85: b2:53:ba:f3:03:40:a8:2d:73:19:25:96:f9:57:e4: 54:c3:19:02:bc:0f:8d:7a:79:84:06:cc:2e:89:5d: 4a:4a:28:19:a7:50:9f:58:02:9d:ac:fd:ac:b0:3b: c1:60:32:5b:8c:08:d1:70:cf:2d:84:16:4f:da:a3: 5f:84:40:7c:78:e3:53:5e:c6:92:c1:87:40:9a:a8: ff:50:21:7f:ce:16:68:2b:0a:f2:78:03:b1:82:3c: 22:6f:36:0d:fd:5d:b1:54:1b:3d:fc:c2:19:df:4e: 16:67:2a:f9:9a:86:b7:2e:f5:1b:f0:54:1d:31:c3: e7:33:c0:00:6a:9a:98:10:2a:e5:70:89:89:2c:e3: 4f:94:54:60:63:76:87:54:0c:cd:1c:cf:50:d4:aa: e5:86:10:6f:5a:4d:5a:cd:fb:ea:aa:cb:a9:34:27: 45:81:ec:25:3d:b4:9a:64:27:3e:5d:34:41:4f:7d: a9:77:66:56:cb:65:69:06:85:f4:e1:6f:8b:79:95: 99:28:ad:be:f1:1c:89:50:34:64:42:76:e3:33:f2: cc:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:AE:E5:A1:FD:24:4A:48:E1:DE:2B:BD:38:03:7B:1A:E2:41:D9:9A X509v3 Authority Key Identifier: keyid:3C:79:0F:E4:AB:82:A2:C1:50:17:D2:65:71:4B:12:45:BF:0A:FB:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fc7e8081-63af-49e7-9646-76c25a5e97ca/0/3C790FE4AB82A2C15017D265714B1245BF0AFB0F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3C790FE4AB82A2C15017D265714B1245BF0AFB0F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fc7e8081-63af-49e7-9646-76c25a5e97ca/0/323430343a663630303a3a2f33322d3438203d3e203234323037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:f600::/32 Signature Algorithm: sha256WithRSAEncryption 20:88:69:3f:0e:33:c1:0c:e3:51:e2:b9:6c:ac:ca:f1:82:8b: 5a:68:89:65:8d:27:c7:60:22:10:d6:23:c6:b5:05:b7:fc:97: bc:a9:61:6d:48:41:ea:02:f5:86:85:f9:45:5d:64:74:e4:29: 27:b9:ff:01:b3:16:d4:e2:d6:dc:f0:b6:0b:fe:4f:40:05:8d: e4:07:c2:6e:d0:a5:e5:0f:fb:a2:81:86:3f:f8:a9:12:2a:c7: 06:70:86:12:00:5b:30:5a:57:ce:9a:21:08:cb:86:b3:aa:b6: e9:66:ed:b1:c6:7d:1b:35:81:50:3e:f8:39:ea:b2:9e:5f:37: 1e:82:50:ca:86:42:e7:6e:be:c4:5b:08:9e:61:43:82:96:de: e3:92:48:01:39:e8:fb:e3:d9:61:56:98:4f:c5:0f:08:e7:ae: 2d:87:a5:47:3f:ba:ae:5f:ca:ab:0f:d0:0b:47:5d:82:90:d8: 70:08:ec:7c:e3:99:9b:82:48:66:af:0e:60:52:19:38:16:4a: 66:f2:b6:bc:75:f5:d4:9d:de:a6:9f:58:c5:ed:06:92:0c:21: 60:06:fd:69:64:08:e2:61:05:1b:db:b4:24:88:ae:15:ef:e1: 4f:f1:f6:fc:e9:82:4f:23:cb:f9:84:4f:2a:2b:63:d8:39:e7: 93:03:83:81 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUQqr952vjIp6HW66ZKXMmWRaZmFQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0M3OTBGRTRBQjgyQTJDMTUwMTdEMjY1NzE0QjEyNDVC RjBBRkIwRjAeFw0yNTAyMTIwMzU1MDJaFw0yNjAyMTEwNDAwMDJaMDMxMTAvBgNV BAMTKERGQUVFNUExRkQyNDRBNDhFMURFMkJCRDM4MDM3QjFBRTI0MUQ5OUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDS3gZ4ObCtGg5XZkvKpMfVqDOc cnvxxkv3ZVYzzenFe2JsaymPJRodW9LVhbJTuvMDQKgtcxkllvlX5FTDGQK8D416 eYQGzC6JXUpKKBmnUJ9YAp2s/aywO8FgMluMCNFwzy2EFk/ao1+EQHx441NexpLB h0CaqP9QIX/OFmgrCvJ4A7GCPCJvNg39XbFUGz38whnfThZnKvmahrcu9RvwVB0x w+czwABqmpgQKuVwiYks40+UVGBjdodUDM0cz1DUquWGEG9aTVrN++qqy6k0J0WB 7CU9tJpkJz5dNEFPfal3ZlbLZWkGhfThb4t5lZkorb7xHIlQNGRCduMz8sxdAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQU367lof0kSkjh3iu9OAN7GuJB2ZowHwYDVR0j BBgwFoAUPHkP5KuCosFQF9JlcUsSRb8K+w8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YzdlODA4MS02M2FmLTQ5ZTctOTY0Ni03NmMyNWE1ZTk3Y2EvMC8zQzc5MEZFNEFC ODJBMkMxNTAxN0QyNjU3MTRCMTI0NUJGMEFGQjBGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0M3OTBGRTRBQjgyQTJDMTUwMTdEMjY1NzE0QjEyNDVCRjBB RkIwRi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZjN2U4MDgxLTYzYWYtNDllNy05 NjQ2LTc2YzI1YTVlOTdjYS8wLzMyMzQzMDM0M2E2NjM2MzAzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMyMzQzMjMwMzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBPYAMA0GCSqGSIb3 DQEBCwUAA4IBAQAgiGk/DjPBDONR4rlsrMrxgotaaIlljSfHYCIQ1iPGtQW3/Je8 qWFtSEHqAvWGhflFXWR05Cknuf8BsxbU4tbc8LYL/k9ABY3kB8Ju0KXlD/uigYY/ +KkSKscGcIYSAFswWlfOmiEIy4azqrbpZu2xxn0bNYFQPvg56rKeXzceglDKhkLn br7EWwieYUOClt7jkkgBOej749lhVphPxQ8I564th6VHP7quX8qrD9ALR12CkNhw COx845mbgkhmrw5gUhk4Fkpm8ra8dfXUnd6mn1jF7QaSDCFgBv1pZAjiYQUb27Qk iK4V7+FP8fb86YJPI8v5hE8qK2PYOeeTA4OB -----END CERTIFICATE-----Generated at Sun Apr 6 13:39:04 2025 by rpki-client