$ rpki-client -vvf repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/323430373a396363303a3a2f33322d3332203d3e20313431393833.roa File: 323430373a396363303a3a2f33322d3332203d3e20313431393833.roa (raw, json) Hash identifier: X3XCCURHmUEWOKsujokS9KRQ2ATuG6WfjZ6Xo/ilPmk= Subject key identifier: DC:F4:0C:8A:2C:18:77:6E:AB:8D:EA:9C:0F:95:F5:7F:68:6A:7F:94 Certificate issuer: /CN=D85F6D41E807D8825356A681A7518FA27664A965 Certificate serial: 6AB4037A2C5B52B41C73FE9582C1112EAD5368DE Authority key identifier: D8:5F:6D:41:E8:07:D8:82:53:56:A6:81:A7:51:8F:A2:76:64:A9:65 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D85F6D41E807D8825356A681A7518FA27664A965.cer Subject info access: rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/323430373a396363303a3a2f33322d3332203d3e20313431393833.roa Signing time: Fri 02 May 2025 04:10:12 +0000 ROA not before: Fri 02 May 2025 04:05:12 +0000 ROA not after: Fri 01 May 2026 04:10:12 +0000 asID: 141983 IP address blocks: 2407:9cc0::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.crl rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D85F6D41E807D8825356A681A7518FA27664A965.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 14 May 2025 14:57:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:b4:03:7a:2c:5b:52:b4:1c:73:fe:95:82:c1:11:2e:ad:53:68:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D85F6D41E807D8825356A681A7518FA27664A965 Validity Not Before: May 2 04:05:12 2025 GMT Not After : May 1 04:10:12 2026 GMT Subject: CN=DCF40C8A2C18776EAB8DEA9C0F95F57F686A7F94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:ee:55:06:a6:46:a2:6e:d1:d0:ee:ca:d1:1b: e1:7c:df:f0:66:f3:07:0a:11:a0:44:8b:d2:aa:f5: 73:67:93:1c:54:50:84:c3:54:38:69:a0:7f:de:04: ca:b4:04:58:0e:24:d6:95:60:f7:fe:42:c5:69:3d: 29:f2:c7:9a:f0:23:e8:d6:94:c7:7e:ec:f4:35:7c: 95:46:3c:5d:e2:c3:60:2d:31:43:72:88:33:37:b4: d2:79:86:1c:56:9b:67:d3:8d:b5:37:00:85:1e:be: bf:7f:70:fc:77:a7:f0:46:da:3c:1e:f3:9a:31:f2: 1c:82:d9:64:79:be:3f:bc:65:a6:ff:78:48:7c:c9: de:52:39:37:c7:e1:0a:be:dc:31:cc:3e:c5:43:81: b2:53:f1:b6:ad:82:14:5e:45:77:8c:70:73:a2:af: 4f:8c:e0:a0:f4:f3:39:ff:d6:ed:e9:87:ef:10:c0: ab:19:56:54:23:fb:ae:04:b3:54:fb:1f:84:60:4c: d1:7c:c5:08:dc:f8:c0:46:99:c8:7e:dc:15:a3:50: 2d:db:f8:cf:ed:fd:6f:c5:52:75:84:2c:39:99:fa: 49:89:4c:7c:61:d4:29:5a:01:8a:11:bc:fb:fc:7c: db:b1:3c:e0:e3:24:c1:ac:ff:2b:a1:67:da:87:e3: 22:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:F4:0C:8A:2C:18:77:6E:AB:8D:EA:9C:0F:95:F5:7F:68:6A:7F:94 X509v3 Authority Key Identifier: keyid:D8:5F:6D:41:E8:07:D8:82:53:56:A6:81:A7:51:8F:A2:76:64:A9:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D85F6D41E807D8825356A681A7518FA27664A965.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/323430373a396363303a3a2f33322d3332203d3e20313431393833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:9cc0::/32 Signature Algorithm: sha256WithRSAEncryption cf:4b:df:06:eb:87:59:f5:74:54:9e:24:f9:f0:99:52:1a:6a: 3f:b1:b1:0a:0a:96:ec:67:95:45:1d:7e:a4:4d:b7:b7:5d:0d: 0d:7f:76:c7:ad:cf:f0:a0:5c:01:cc:46:5b:5c:3f:c9:4c:64: de:4d:fe:61:a2:6c:be:af:84:d5:9e:d2:43:30:bf:b4:c4:21: 84:a3:e6:07:d7:43:95:26:7d:77:60:eb:e6:f5:f0:a4:c5:b1: e4:98:84:c9:47:42:9a:10:86:d8:f5:18:73:16:be:50:4c:9a: a5:8f:ef:f6:70:5a:6d:e6:01:4d:f3:ce:17:c4:33:19:bc:dd: de:c7:9f:2c:b5:f8:5b:c2:e6:8a:9b:b0:92:6e:b9:3a:74:23: 0f:59:46:32:2b:90:de:1d:3d:a2:fb:b9:b9:d4:fb:c6:e0:7a: a6:f1:c4:d7:19:d7:9f:5e:f7:5f:40:c2:cc:9a:a5:19:84:f1: 1a:90:b1:38:e5:fa:6c:d3:b3:0c:5d:f2:22:42:17:6e:50:5a: 63:32:89:bc:a3:00:29:fc:09:a5:f7:00:86:ef:de:1e:7e:cf: b8:a7:eb:ed:31:eb:bc:b9:62:97:93:ee:1a:b8:e5:89:bc:61: f6:26:b8:d8:7d:5e:ef:f2:f2:34:2a:24:77:f9:7f:98:40:31: ae:10:9d:4a -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUarQDeixbUrQcc/6VgsERLq1TaN4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDg1RjZENDFFODA3RDg4MjUzNTZBNjgxQTc1MThGQTI3 NjY0QTk2NTAeFw0yNTA1MDIwNDA1MTJaFw0yNjA1MDEwNDEwMTJaMDMxMTAvBgNV BAMTKERDRjQwQzhBMkMxODc3NkVBQjhERUE5QzBGOTVGNTdGNjg2QTdGOTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDR7lUGpkaibtHQ7srRG+F83/Bm 8wcKEaBEi9Kq9XNnkxxUUITDVDhpoH/eBMq0BFgOJNaVYPf+QsVpPSnyx5rwI+jW lMd+7PQ1fJVGPF3iw2AtMUNyiDM3tNJ5hhxWm2fTjbU3AIUevr9/cPx3p/BG2jwe 85ox8hyC2WR5vj+8Zab/eEh8yd5SOTfH4Qq+3DHMPsVDgbJT8batghReRXeMcHOi r0+M4KD08zn/1u3ph+8QwKsZVlQj+64Es1T7H4RgTNF8xQjc+MBGmch+3BWjUC3b +M/t/W/FUnWELDmZ+kmJTHxh1ClaAYoRvPv8fNuxPODjJMGs/yuhZ9qH4yLZAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQU3PQMiiwYd26rjeqcD5X1f2hqf5QwHwYDVR0j BBgwFoAU2F9tQegH2IJTVqaBp1GPonZkqWUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NmJlZGYzYS1kN2QxLTQ5YTYtOTNlZC1iMjc3ZjFmN2E2ZWIvMC9EODVGNkQ0MUU4 MDdEODgyNTM1NkE2ODFBNzUxOEZBMjc2NjRBOTY1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDg1RjZENDFFODA3RDg4MjUzNTZBNjgxQTc1MThGQTI3NjY0 QTk2NS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2YmVkZjNhLWQ3ZDEtNDlhNi05 M2VkLWIyNzdmMWY3YTZlYi8wLzMyMzQzMDM3M2EzOTYzNjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzQzMTM5MzgzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQHnMAwDQYJKoZI hvcNAQELBQADggEBAM9L3wbrh1n1dFSeJPnwmVIaaj+xsQoKluxnlUUdfqRNt7dd DQ1/dsetz/CgXAHMRltcP8lMZN5N/mGibL6vhNWe0kMwv7TEIYSj5gfXQ5UmfXdg 6+b18KTFseSYhMlHQpoQhtj1GHMWvlBMmqWP7/ZwWm3mAU3zzhfEMxm83d7Hnyy1 +FvC5oqbsJJuuTp0Iw9ZRjIrkN4dPaL7ubnU+8bgeqbxxNcZ159e919AwsyapRmE 8RqQsTjl+mzTswxd8iJCF25QWmMyibyjACn8CaX3AIbv3h5+z7in6+0x67y5YpeT 7hq45Ym8YfYmuNh9Xu/y8jQqJHf5f5hAMa4QnUo= -----END CERTIFICATE-----Generated at Tue May 13 13:25:52 2025 by rpki-client