$ rpki-client -vvf repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/323430313a626538303a3a2f33322d3332203d3e20313333373939.roa File: 323430313a626538303a3a2f33322d3332203d3e20313333373939.roa (raw, json) Hash identifier: U1+UJYOPqeG7oUJWUM0ECQEyGoOhn9MsVuuE8ER7syk= Subject key identifier: 15:99:B3:72:E0:18:CB:CD:29:BD:FA:74:85:3A:7E:27:DE:BE:8F:C1 Certificate issuer: /CN=108261B2B5A1F3CC828EF2A532ED94DFC1202853 Certificate serial: 3B702E6F931CDC7FAEA3C3DA40C735D5B4813851 Authority key identifier: 10:82:61:B2:B5:A1:F3:CC:82:8E:F2:A5:32:ED:94:DF:C1:20:28:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/108261B2B5A1F3CC828EF2A532ED94DFC1202853.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/323430313a626538303a3a2f33322d3332203d3e20313333373939.roa Signing time: Sat 05 Apr 2025 17:00:02 +0000 ROA not before: Sat 05 Apr 2025 16:55:02 +0000 ROA not after: Sat 04 Apr 2026 17:00:02 +0000 asID: 133799 IP address blocks: 2401:be80::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/108261B2B5A1F3CC828EF2A532ED94DFC1202853.crl rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/108261B2B5A1F3CC828EF2A532ED94DFC1202853.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/108261B2B5A1F3CC828EF2A532ED94DFC1202853.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 23:01:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:70:2e:6f:93:1c:dc:7f:ae:a3:c3:da:40:c7:35:d5:b4:81:38:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=108261B2B5A1F3CC828EF2A532ED94DFC1202853 Validity Not Before: Apr 5 16:55:02 2025 GMT Not After : Apr 4 17:00:02 2026 GMT Subject: CN=1599B372E018CBCD29BDFA74853A7E27DEBE8FC1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:04:a6:0e:6c:2c:53:ef:af:fc:04:54:60:fd: 2a:f6:7a:d9:a8:e2:52:8d:71:ed:ba:7f:79:7e:48: e3:0c:02:9a:7c:91:b2:69:ad:c6:b6:60:dc:bb:29: c2:7a:7c:b6:b2:e9:37:51:96:40:aa:98:82:e1:27: 4b:54:9d:79:0b:62:e9:20:da:5d:b7:a1:e1:3a:08: 26:6a:9e:fd:96:cb:21:e5:ff:fc:15:76:71:b6:40: e0:95:07:eb:7f:1d:5a:da:68:4d:45:2a:7a:bc:d2: e8:d6:7a:b8:68:0d:08:01:43:a1:2d:c2:91:6c:e4: 39:96:d5:21:07:16:10:26:e7:80:4a:42:e1:83:88: 4c:22:4a:2c:99:a1:44:a7:be:90:bc:0f:f4:b4:1e: 34:e5:c7:d7:2e:e9:aa:5c:a8:56:23:90:8a:a2:b5: 99:9e:b4:33:ee:07:43:31:45:9f:08:4b:b7:a3:0e: f9:ea:36:a2:e2:e9:4a:b8:56:87:44:4f:6c:aa:41: 47:e6:f7:04:b0:dc:01:24:e0:43:1a:8a:58:ef:96: fc:84:68:29:e2:0e:35:7f:96:aa:e9:8f:f5:e1:e1: 0b:a8:b6:33:72:ee:50:54:97:6a:ca:95:92:e2:b8: 5a:ca:d4:15:cb:ea:0f:17:28:51:a5:ff:d5:64:1f: af:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:99:B3:72:E0:18:CB:CD:29:BD:FA:74:85:3A:7E:27:DE:BE:8F:C1 X509v3 Authority Key Identifier: keyid:10:82:61:B2:B5:A1:F3:CC:82:8E:F2:A5:32:ED:94:DF:C1:20:28:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/108261B2B5A1F3CC828EF2A532ED94DFC1202853.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/108261B2B5A1F3CC828EF2A532ED94DFC1202853.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/323430313a626538303a3a2f33322d3332203d3e20313333373939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:be80::/32 Signature Algorithm: sha256WithRSAEncryption dc:9a:5e:b2:45:fc:42:b6:08:67:40:c4:4e:1d:1e:c8:2c:7d: 0d:a0:db:9c:4c:9b:d7:e1:5f:00:8b:6c:e5:f6:ad:4b:03:a6: 6e:df:50:d4:e0:9b:1d:6a:31:12:c1:e5:af:cd:cb:0e:f8:19: 72:d8:0a:3b:78:4b:b9:d8:5a:b8:55:b0:b5:19:1f:76:01:82: e3:fe:ca:9a:1f:82:a4:7b:9a:88:e6:4f:6c:c3:d9:61:fe:78: 72:70:7f:ba:ac:62:02:68:97:b6:ae:f6:92:1a:82:da:33:30: 57:18:9f:55:7c:00:5a:53:39:96:d5:be:70:bf:38:2b:f6:3a: b5:c6:9f:47:b6:46:96:13:2d:fd:c7:91:90:1b:5c:11:19:19: eb:99:d3:76:54:ce:6e:8c:3d:50:d4:66:60:a1:ee:83:6a:d3: bf:d4:01:12:73:81:cb:7b:3a:65:e3:70:94:cc:8f:03:be:41: 52:bf:1a:f6:3b:f2:b5:aa:8e:2e:7b:49:aa:ba:18:11:e0:e5: da:24:2e:3c:e4:d5:92:c5:21:62:24:4d:91:c5:68:9a:16:9b: 67:4f:94:07:c4:d1:cf:f5:35:34:3b:b2:c3:98:06:a1:73:f5: ad:b9:67:6c:2e:b9:94:12:ab:be:46:ae:15:46:2d:6c:64:d2: 0f:d4:09:19 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUO3Aub5Mc3H+uo8PaQMc11bSBOFEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTA4MjYxQjJCNUExRjNDQzgyOEVGMkE1MzJFRDk0REZD MTIwMjg1MzAeFw0yNTA0MDUxNjU1MDJaFw0yNjA0MDQxNzAwMDJaMDMxMTAvBgNV BAMTKDE1OTlCMzcyRTAxOENCQ0QyOUJERkE3NDg1M0E3RTI3REVCRThGQzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD4BKYObCxT76/8BFRg/Sr2etmo 4lKNce26f3l+SOMMApp8kbJprca2YNy7KcJ6fLay6TdRlkCqmILhJ0tUnXkLYukg 2l23oeE6CCZqnv2WyyHl//wVdnG2QOCVB+t/HVraaE1FKnq80ujWerhoDQgBQ6Et wpFs5DmW1SEHFhAm54BKQuGDiEwiSiyZoUSnvpC8D/S0HjTlx9cu6apcqFYjkIqi tZmetDPuB0MxRZ8IS7ejDvnqNqLi6Uq4VodET2yqQUfm9wSw3AEk4EMailjvlvyE aCniDjV/lqrpj/Xh4QuotjNy7lBUl2rKlZLiuFrK1BXL6g8XKFGl/9VkH69dAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUFZmzcuAYy80pvfp0hTp+J96+j8EwHwYDVR0j BBgwFoAUEIJhsrWh88yCjvKlMu2U38EgKFMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j YjYzZjc3MS1hOTVmLTRiNTMtODdiYy04YmZmNTA0ZGExZjQvMC8xMDgyNjFCMkI1 QTFGM0NDODI4RUYyQTUzMkVEOTRERkMxMjAyODUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTA4MjYxQjJCNUExRjNDQzgyOEVGMkE1MzJFRDk0REZDMTIw Mjg1My5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NiNjNmNzcxLWE5NWYtNGI1My04 N2JjLThiZmY1MDRkYTFmNC8wLzMyMzQzMDMxM2E2MjY1MzgzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzMzM3MzkzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQBvoAwDQYJKoZI hvcNAQELBQADggEBANyaXrJF/EK2CGdAxE4dHsgsfQ2g25xMm9fhXwCLbOX2rUsD pm7fUNTgmx1qMRLB5a/Nyw74GXLYCjt4S7nYWrhVsLUZH3YBguP+ypofgqR7mojm T2zD2WH+eHJwf7qsYgJol7au9pIagtozMFcYn1V8AFpTOZbVvnC/OCv2OrXGn0e2 RpYTLf3HkZAbXBEZGeuZ03ZUzm6MPVDUZmCh7oNq07/UARJzgct7OmXjcJTMjwO+ QVK/GvY78rWqji57Saq6GBHg5dokLjzk1ZLFIWIkTZHFaJoWm2dPlAfE0c/1NTQ7 ssOYBqFz9a25Z2wuuZQSq75GrhVGLWxk0g/UCRk= -----END CERTIFICATE-----Generated at Sat May 10 05:18:16 2025 by rpki-client