$ rpki-client -vvf repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/323430323a3630303a633a3a2f34382d3438203d3e203338353135.roa File: 323430323a3630303a633a3a2f34382d3438203d3e203338353135.roa (raw, json) Hash identifier: MHLvNBBDeKLXnh9zpHXyspbjmbbkMSXMU/LUFMRRAKk= Subject key identifier: 45:F3:70:27:A2:13:C8:CF:F8:5C:14:45:0A:39:35:54:B8:BA:CC:5F Certificate issuer: /CN=935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3 Certificate serial: 5DE6B37B7270D02F87818447E32524482CBEB815 Authority key identifier: 93:5D:B2:D4:48:8F:AE:2C:11:E1:BF:3B:DF:20:D8:2A:2D:DF:D8:F3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/323430323a3630303a633a3a2f34382d3438203d3e203338353135.roa Signing time: Wed 16 Apr 2025 04:15:54 +0000 ROA not before: Wed 16 Apr 2025 04:10:54 +0000 ROA not after: Wed 15 Apr 2026 04:15:54 +0000 asID: 38515 IP address blocks: 2402:600:c::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.crl rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 09 May 2025 16:44:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:e6:b3:7b:72:70:d0:2f:87:81:84:47:e3:25:24:48:2c:be:b8:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3 Validity Not Before: Apr 16 04:10:54 2025 GMT Not After : Apr 15 04:15:54 2026 GMT Subject: CN=45F37027A213C8CFF85C14450A393554B8BACC5F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:63:f0:73:e9:8e:a0:93:f6:37:b2:f1:63:1c: 54:d1:40:05:ed:f8:7a:85:9f:64:73:b8:f2:a9:73: 83:fb:b2:b7:61:03:67:8a:e1:79:70:99:a1:1d:75: e9:fd:05:74:03:2a:b5:e1:b8:93:5f:b6:b2:b8:07: 65:e4:ed:6a:4b:5a:4e:f0:be:45:67:66:45:83:cb: 27:3d:8f:65:24:37:92:2a:16:7e:63:59:6b:82:73: ea:10:19:cb:7a:2c:06:93:a8:5a:74:08:fa:10:97: c7:b2:32:16:17:d6:4a:6e:bb:03:ec:f1:8b:ed:95: 0e:8f:46:32:ce:34:8f:96:b4:6e:7f:44:0f:f5:42: 7e:b9:a7:65:a2:81:9d:57:31:b6:72:7a:f0:2f:94: 85:8b:6e:86:2f:04:92:71:a3:00:40:63:75:d8:21: 73:a7:34:d3:ef:2c:71:d6:85:b1:68:3b:34:3f:c8: 6e:59:92:09:25:0b:ce:a8:c5:fe:7a:c1:a7:58:a7: f4:d9:66:cf:e4:90:08:9e:2f:0c:74:ee:0d:18:ed: cf:e5:c4:3f:9f:66:ef:68:08:c8:7f:ce:5a:dc:27: 61:ff:fa:6e:7b:fe:40:8e:b3:ef:5c:45:73:2a:9d: ae:60:fa:18:d3:86:d3:0b:83:18:16:82:61:c8:59: 4a:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:F3:70:27:A2:13:C8:CF:F8:5C:14:45:0A:39:35:54:B8:BA:CC:5F X509v3 Authority Key Identifier: keyid:93:5D:B2:D4:48:8F:AE:2C:11:E1:BF:3B:DF:20:D8:2A:2D:DF:D8:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/323430323a3630303a633a3a2f34382d3438203d3e203338353135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:600:c::/48 Signature Algorithm: sha256WithRSAEncryption 08:a4:bf:4d:38:fa:ab:9e:f5:3c:2b:a3:33:57:c7:4e:a6:65: 58:6f:af:38:47:6d:d2:1b:74:8b:0c:6e:7d:5f:38:3b:05:ce: 83:1f:18:9f:0e:8e:98:af:94:d7:a9:8b:da:2d:7f:6c:3f:2f: 29:40:f5:ad:a2:f9:97:94:2f:84:13:5f:eb:98:a7:de:7e:64: 79:83:1b:88:71:8f:3f:60:32:e2:cc:88:17:14:4b:c1:c0:21: 66:aa:3f:77:a7:8e:c8:36:e3:c4:e9:f5:8f:22:7f:db:ed:1c: 99:eb:9b:ab:cb:38:a7:03:dc:dc:cb:90:96:36:59:03:37:54: 36:82:ec:1e:60:e4:4b:42:82:ee:1d:36:16:df:dd:45:54:9d: b2:41:fc:59:f4:53:24:65:3e:0a:e8:8d:aa:94:6c:e6:5e:e4: 6c:df:73:88:41:3d:cf:25:e2:c2:70:8c:84:b1:a9:f8:71:1b: 6b:4b:c1:16:40:e8:b3:62:de:eb:5a:f9:49:87:09:24:1b:4a: f9:5a:05:dc:8b:27:03:b5:c7:cc:81:81:85:a3:d5:f8:1c:8c: 19:98:70:84:50:b5:9b:4f:c6:82:ef:d8:aa:b0:ab:ec:b5:e6: 93:1d:48:34:0b:b8:c2:79:cc:a0:af:b0:20:d7:a0:f0:af:79: ee:ef:17:e0 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgIUXeaze3Jw0C+HgYRH4yUkSCy+uBUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTM1REIyRDQ0ODhGQUUyQzExRTFCRjNCREYyMEQ4MkEy RERGRDhGMzAeFw0yNTA0MTYwNDEwNTRaFw0yNjA0MTUwNDE1NTRaMDMxMTAvBgNV BAMTKDQ1RjM3MDI3QTIxM0M4Q0ZGODVDMTQ0NTBBMzkzNTU0QjhCQUNDNUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeY/Bz6Y6gk/Y3svFjHFTRQAXt +HqFn2RzuPKpc4P7srdhA2eK4XlwmaEdden9BXQDKrXhuJNftrK4B2Xk7WpLWk7w vkVnZkWDyyc9j2UkN5IqFn5jWWuCc+oQGct6LAaTqFp0CPoQl8eyMhYX1kpuuwPs 8YvtlQ6PRjLONI+WtG5/RA/1Qn65p2WigZ1XMbZyevAvlIWLboYvBJJxowBAY3XY IXOnNNPvLHHWhbFoOzQ/yG5ZkgklC86oxf56wadYp/TZZs/kkAieLwx07g0Y7c/l xD+fZu9oCMh/zlrcJ2H/+m57/kCOs+9cRXMqna5g+hjThtMLgxgWgmHIWUrHAgMB AAGjggI1MIICMTAdBgNVHQ4EFgQURfNwJ6ITyM/4XBRFCjk1VLi6zF8wHwYDVR0j BBgwFoAUk12y1EiPriwR4b873yDYKi3f2PMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 YzRjNjRhOS0zNTM3LTRiYzctODYxMy04ZTk4MTYyOWU0Y2EvMC85MzVEQjJENDQ4 OEZBRTJDMTFFMUJGM0JERjIwRDgyQTJEREZEOEYzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTM1REIyRDQ0ODhGQUUyQzExRTFCRjNCREYyMEQ4MkEyRERG RDhGMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZjNGM2NGE5LTM1MzctNGJjNy04 NjEzLThlOTgxNjI5ZTRjYS8wLzMyMzQzMDMyM2EzNjMwMzAzYTYzM2EzYTJmMzQz ODJkMzQzODIwM2QzZTIwMzMzODM1MzEzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQCBgAADDANBgkq hkiG9w0BAQsFAAOCAQEACKS/TTj6q571PCujM1fHTqZlWG+vOEdt0ht0iwxufV84 OwXOgx8Ynw6OmK+U16mL2i1/bD8vKUD1raL5l5QvhBNf65in3n5keYMbiHGPP2Ay 4syIFxRLwcAhZqo/d6eOyDbjxOn1jyJ/2+0cmeubq8s4pwPc3MuQljZZAzdUNoLs HmDkS0KC7h02Ft/dRVSdskH8WfRTJGU+CuiNqpRs5l7kbN9ziEE9zyXiwnCMhLGp +HEba0vBFkDos2Le61r5SYcJJBtK+VoF3IsnA7XHzIGBhaPV+ByMGZhwhFC1m0/G gu/YqrCr7LXmkx1INAu4wnnMoK+wINeg8K957u8X4A== -----END CERTIFICATE-----Generated at Thu May 8 04:53:10 2025 by rpki-client