$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a633030303a3a2f34372d3437203d3e203137373237.roa File: 323430343a633030303a633030303a3a2f34372d3437203d3e203137373237.roa (raw, json) Hash identifier: f+xAVu2le98PwLcVcQmQFDuWXRiC18oDM4dotCc0H28= Subject key identifier: 39:90:F6:73:CF:CA:5B:BB:B5:58:A2:1C:97:E0:AE:79:05:41:56:2C Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 50B2BA4ED82748DC51B2C3EB8B2B4FBE72BC3908 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a633030303a3a2f34372d3437203d3e203137373237.roa Signing time: Mon 05 May 2025 05:02:17 +0000 ROA not before: Mon 05 May 2025 04:57:17 +0000 ROA not after: Mon 04 May 2026 05:02:17 +0000 asID: 17727 IP address blocks: 2404:c000:c000::/47 maxlen: 47 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 19:22:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:b2:ba:4e:d8:27:48:dc:51:b2:c3:eb:8b:2b:4f:be:72:bc:39:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: May 5 04:57:17 2025 GMT Not After : May 4 05:02:17 2026 GMT Subject: CN=3990F673CFCA5BBBB558A21C97E0AE790541562C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:08:70:f8:03:78:e4:6a:20:c0:f9:cb:a5:2b: 94:d4:db:57:79:33:c1:a6:0b:d1:ff:c9:af:17:cb: e0:72:35:27:d6:9f:2b:7d:e4:ce:2a:bf:17:a9:30: e6:93:d9:06:20:86:d3:8e:54:a8:c4:70:fd:21:d8: da:70:c8:10:25:22:b1:8e:31:1f:11:bf:df:94:c7: 40:51:40:83:52:1e:e0:5d:ad:18:f8:1f:c0:33:dc: c0:37:9f:09:bd:46:cd:12:a2:ac:f0:08:e0:74:85: 67:31:d2:bd:6b:2f:3b:91:04:df:e5:fc:61:e7:23: d1:95:79:12:ff:9f:b8:08:9f:fa:22:6e:14:ea:95: 25:2e:f6:02:24:f0:84:52:f0:99:a7:83:31:a6:18: 58:6b:4a:08:ae:98:3e:cd:14:81:ea:df:c8:fc:5b: 0e:2d:7c:0a:1f:09:dc:7b:19:10:dc:52:f2:d2:2f: 45:f5:fd:3a:9a:9c:39:93:af:50:da:15:90:e0:ce: 84:30:e0:7b:ee:f8:a1:1f:45:23:c4:b0:eb:ec:81: f6:9b:c9:6a:cd:05:c0:af:2c:ff:95:51:68:f7:a0: 9f:9d:dc:ec:56:2f:1e:59:d6:eb:b9:17:c0:95:5d: 70:78:8e:58:50:c5:b8:ee:4e:2c:02:64:b6:9e:b8: 71:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:90:F6:73:CF:CA:5B:BB:B5:58:A2:1C:97:E0:AE:79:05:41:56:2C X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a633030303a3a2f34372d3437203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:c000:c000::/47 Signature Algorithm: sha256WithRSAEncryption 0a:39:39:3b:0a:bc:ba:b2:75:61:f5:ff:3e:71:d2:99:56:6b: 1f:30:d3:b4:4c:58:c5:26:d6:11:8c:4f:d6:8e:f9:ca:b1:38: f1:30:6d:2a:73:21:8f:11:29:20:ac:fa:f3:53:e9:06:e2:97: fd:2b:aa:ef:5b:14:17:17:8e:6b:cd:6d:4a:b9:14:4f:f8:88: 53:0c:af:c7:71:69:37:5c:3e:81:ff:65:11:6a:91:60:c3:c8: 2d:07:80:92:c0:84:37:98:73:5e:56:6b:f8:33:a7:ad:03:48: df:d0:33:db:cd:51:08:13:85:73:0a:0b:58:e6:cc:06:9d:ac: d4:37:66:d5:cd:93:95:f8:35:11:cd:0c:5b:22:cd:ea:03:8c: c6:30:b0:14:69:9f:0b:28:d4:57:e0:57:ca:2d:f0:cd:ed:2c: e8:ce:64:6c:25:f7:0d:31:53:8e:bc:81:65:88:1e:98:e8:39: d9:0c:d9:b8:71:dc:ac:bb:8f:d9:fe:fb:a1:f5:06:71:71:a1: 7e:a8:32:8f:24:3a:04:0a:23:ee:85:cc:08:d9:32:9d:e7:eb: ac:0a:c3:43:d8:77:ac:ca:88:4e:a1:4d:0c:2d:3f:c1:7b:94: fe:53:d4:1a:ba:2c:4f:c6:53:91:1d:1c:fd:dc:2e:bb:d6:0b: 75:16:90:f0 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUULK6TtgnSNxRssPriytPvnK8OQgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNTA1MDUwNDU3MTdaFw0yNjA1MDQwNTAyMTdaMDMxMTAvBgNV BAMTKDM5OTBGNjczQ0ZDQTVCQkJCNTU4QTIxQzk3RTBBRTc5MDU0MTU2MkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfCHD4A3jkaiDA+culK5TU21d5 M8GmC9H/ya8Xy+ByNSfWnyt95M4qvxepMOaT2QYghtOOVKjEcP0h2NpwyBAlIrGO MR8Rv9+Ux0BRQINSHuBdrRj4H8Az3MA3nwm9Rs0SoqzwCOB0hWcx0r1rLzuRBN/l /GHnI9GVeRL/n7gIn/oibhTqlSUu9gIk8IRS8JmngzGmGFhrSgiumD7NFIHq38j8 Ww4tfAofCdx7GRDcUvLSL0X1/TqanDmTr1DaFZDgzoQw4Hvu+KEfRSPEsOvsgfab yWrNBcCvLP+VUWj3oJ+d3OxWLx5Z1uu5F8CVXXB4jlhQxbjuTiwCZLaeuHHFAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUOZD2c8/KW7u1WKIcl+CueQVBViwwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzQzMDM0M2E2MzMwMzAzMDNhNjMzMDMwMzAz YTNhMmYzNDM3MmQzNDM3MjAzZDNlMjAzMTM3MzczMjM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcBJATA AMAAMA0GCSqGSIb3DQEBCwUAA4IBAQAKOTk7Cry6snVh9f8+cdKZVmsfMNO0TFjF JtYRjE/WjvnKsTjxMG0qcyGPESkgrPrzU+kG4pf9K6rvWxQXF45rzW1KuRRP+IhT DK/HcWk3XD6B/2URapFgw8gtB4CSwIQ3mHNeVmv4M6etA0jf0DPbzVEIE4VzCgtY 5swGnazUN2bVzZOV+DURzQxbIs3qA4zGMLAUaZ8LKNRX4FfKLfDN7SzozmRsJfcN MVOOvIFliB6Y6DnZDNm4cdysu4/Z/vuh9QZxcaF+qDKPJDoECiPuhcwI2TKd5+us CsND2HesyohOoU0MLT/Be5T+U9QauixPxlORHRz93C671gt1FpDw -----END CERTIFICATE-----Generated at Sat May 10 07:38:11 2025 by rpki-client