$ rpki-client -vvf repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/323430353a6334303a3a2f33332d3333203d3e20313338383837.roa File: 323430353a6334303a3a2f33332d3333203d3e20313338383837.roa (raw, json) Hash identifier: wp6HGRFsjrQsDDxYN+2VcMhnqzQCe6fyQbIqHpdg2Os= Subject key identifier: 46:3F:1B:DE:69:10:9C:B8:CD:38:F0:52:13:0B:6A:59:3F:A6:AE:F1 Certificate issuer: /CN=80F9ED59290AD77DE2856ECFD8340E28FF858E3D Certificate serial: 087B408BD7257FD1C0CB49A95B507B3A9D6E2B66 Authority key identifier: 80:F9:ED:59:29:0A:D7:7D:E2:85:6E:CF:D8:34:0E:28:FF:85:8E:3D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/323430353a6334303a3a2f33332d3333203d3e20313338383837.roa Signing time: Thu 01 May 2025 11:00:01 +0000 ROA not before: Thu 01 May 2025 10:55:01 +0000 ROA not after: Thu 30 Apr 2026 11:00:01 +0000 asID: 138887 IP address blocks: 2405:c40::/33 maxlen: 33 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.crl rsync://repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 13:28:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:7b:40:8b:d7:25:7f:d1:c0:cb:49:a9:5b:50:7b:3a:9d:6e:2b:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=80F9ED59290AD77DE2856ECFD8340E28FF858E3D Validity Not Before: May 1 10:55:01 2025 GMT Not After : Apr 30 11:00:01 2026 GMT Subject: CN=463F1BDE69109CB8CD38F052130B6A593FA6AEF1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:bf:ad:6c:cf:a6:f6:87:31:65:0a:36:0e:b9: 15:e9:15:f2:1b:ba:73:55:ee:24:c1:6c:15:18:0e: f0:15:76:78:d0:97:ff:2b:66:d0:34:43:e9:72:a9: 19:42:98:49:6a:5e:1b:84:06:73:13:8a:27:9a:3c: bf:a2:39:60:fb:a9:f2:18:27:34:f0:b3:44:62:85: e4:71:62:99:6a:14:98:58:a1:8d:00:b9:1a:11:80: d6:08:49:3b:94:5f:46:26:bd:1c:c1:c9:95:c7:86: b2:dc:7c:b7:33:0f:2a:b2:a8:a5:8b:d2:71:df:24: d6:45:e1:7d:e8:a8:ed:6e:cd:d4:5f:7e:fd:4a:9d: c4:e8:28:af:8f:8a:e4:68:b2:7f:50:33:98:65:16: 8e:62:8d:00:93:bb:47:06:ff:df:6d:7c:1c:19:f2: 7f:28:d7:40:71:40:03:70:75:79:e1:93:5a:3b:cc: c4:05:41:6b:7f:e7:83:3b:b1:4e:53:31:5f:07:2c: 01:cc:3f:ff:36:d3:d7:de:87:df:e6:63:12:43:a5: 19:71:31:6d:78:95:1b:db:08:35:01:dd:34:16:6f: 56:ca:6c:ad:4a:01:c5:0f:73:a3:e9:50:0a:25:30: 3a:3c:0e:85:19:9d:74:ae:14:3c:d3:f4:a4:28:62: 72:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:3F:1B:DE:69:10:9C:B8:CD:38:F0:52:13:0B:6A:59:3F:A6:AE:F1 X509v3 Authority Key Identifier: keyid:80:F9:ED:59:29:0A:D7:7D:E2:85:6E:CF:D8:34:0E:28:FF:85:8E:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/323430353a6334303a3a2f33332d3333203d3e20313338383837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:c40::/33 Signature Algorithm: sha256WithRSAEncryption a3:54:5c:63:10:7b:53:3c:ee:f3:45:64:85:d5:bc:31:4b:6d: e5:73:61:5d:02:7b:0d:0d:81:0f:2b:9f:f4:eb:cd:7a:d0:b5: 38:c6:1f:ed:53:2d:e2:1a:63:7a:7f:82:48:d2:04:25:00:f2: 12:7e:8d:78:8e:8c:72:da:7f:b6:ae:5d:b2:d7:f5:86:95:ce: 76:ff:75:7c:88:6c:bb:06:45:52:97:44:b4:a1:9b:5f:24:04: b8:00:97:ac:99:c2:a8:04:f9:83:c7:f6:57:24:87:a9:7f:b8: 9c:4b:3a:d8:9f:f0:d9:b0:99:51:0e:fc:3f:87:e4:8e:1a:d8: c1:0c:cf:17:19:33:3a:ac:54:3d:69:c5:2c:46:ae:d1:ab:58: 2c:7b:b4:b1:61:f3:ce:e2:7d:ca:d6:c3:71:ae:1a:a0:11:c1: b3:31:13:26:78:1f:cf:2e:c7:1f:3e:f4:2a:35:c5:20:f6:37: 28:bf:6d:f9:d2:28:1e:be:8f:5b:89:ac:a8:41:7f:c2:2e:9d: 2b:8b:21:31:e5:e6:9e:db:dc:e1:55:2a:25:3e:43:fa:29:58: 93:ca:30:ca:fe:f7:4f:ad:e2:cd:b4:a8:fa:b4:a7:68:a5:9c: 76:2b:39:92:12:3e:16:ff:8d:4e:d8:1d:2f:21:e1:06:fe:60: db:e7:65:ac -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUCHtAi9clf9HAy0mpW1B7Op1uK2YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODBGOUVENTkyOTBBRDc3REUyODU2RUNGRDgzNDBFMjhG Rjg1OEUzRDAeFw0yNTA1MDExMDU1MDFaFw0yNjA0MzAxMTAwMDFaMDMxMTAvBgNV BAMTKDQ2M0YxQkRFNjkxMDlDQjhDRDM4RjA1MjEzMEI2QTU5M0ZBNkFFRjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMv61sz6b2hzFlCjYOuRXpFfIb unNV7iTBbBUYDvAVdnjQl/8rZtA0Q+lyqRlCmElqXhuEBnMTiieaPL+iOWD7qfIY JzTws0RiheRxYplqFJhYoY0AuRoRgNYISTuUX0YmvRzByZXHhrLcfLczDyqyqKWL 0nHfJNZF4X3oqO1uzdRffv1KncToKK+PiuRosn9QM5hlFo5ijQCTu0cG/99tfBwZ 8n8o10BxQANwdXnhk1o7zMQFQWt/54M7sU5TMV8HLAHMP/8209feh9/mYxJDpRlx MW14lRvbCDUB3TQWb1bKbK1KAcUPc6PpUAolMDo8DoUZnXSuFDzT9KQoYnJ/AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQURj8b3mkQnLjNOPBSEwtqWT+mrvEwHwYDVR0j BBgwFoAUgPntWSkK133ihW7P2DQOKP+Fjj0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MDdjODhkYS0yYjU2LTQ4N2UtOWVmZS01NzExNzBiMTAyODYvMC84MEY5RUQ1OTI5 MEFENzdERTI4NTZFQ0ZEODM0MEUyOEZGODU4RTNELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODBGOUVENTkyOTBBRDc3REUyODU2RUNGRDgzNDBFMjhGRjg1 OEUzRC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MwN2M4OGRhLTJiNTYtNDg3ZS05 ZWZlLTU3MTE3MGIxMDI4Ni8wLzMyMzQzMDM1M2E2MzM0MzAzYTNhMmYzMzMzMmQz MzMzMjAzZDNlMjAzMTMzMzgzODM4Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgckBQxAADANBgkqhkiG 9w0BAQsFAAOCAQEAo1RcYxB7Uzzu80VkhdW8MUtt5XNhXQJ7DQ2BDyuf9OvNetC1 OMYf7VMt4hpjen+CSNIEJQDyEn6NeI6Mctp/tq5dstf1hpXOdv91fIhsuwZFUpdE tKGbXyQEuACXrJnCqAT5g8f2VySHqX+4nEs62J/w2bCZUQ78P4fkjhrYwQzPFxkz OqxUPWnFLEau0atYLHu0sWHzzuJ9ytbDca4aoBHBszETJngfzy7HHz70KjXFIPY3 KL9t+dIoHr6PW4msqEF/wi6dK4shMeXmntvc4VUqJT5D+ilYk8owyv73T63izbSo +rSnaKWcdis5khI+Fv+NTtgdLyHhBv5g2+dlrA== -----END CERTIFICATE-----Generated at Fri May 9 02:48:59 2025 by rpki-client