$ rpki-client -vvf repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/323430363a616563303a313a3a2f34382d3438203d3e20313431363038.roa File: 323430363a616563303a313a3a2f34382d3438203d3e20313431363038.roa (raw, json) Hash identifier: zxIHAQ3jCKOFIxWdTSMM3cWD9sEhHL2Fg7RIksdij8M= Subject key identifier: A5:2B:97:68:4B:6C:41:DE:1E:48:6A:3D:8F:AD:93:61:54:75:82:B8 Certificate issuer: /CN=1952B074D19D5AB562D7EE537AD3059EA097353B Certificate serial: 4F1C31128ADBBCD4106741ED2564DA713659EBAA Authority key identifier: 19:52:B0:74:D1:9D:5A:B5:62:D7:EE:53:7A:D3:05:9E:A0:97:35:3B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1952B074D19D5AB562D7EE537AD3059EA097353B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/323430363a616563303a313a3a2f34382d3438203d3e20313431363038.roa Signing time: Thu 08 May 2025 03:00:01 +0000 ROA not before: Thu 08 May 2025 02:55:01 +0000 ROA not after: Thu 07 May 2026 03:00:01 +0000 asID: 141608 IP address blocks: 2406:aec0:1::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/1952B074D19D5AB562D7EE537AD3059EA097353B.crl rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/1952B074D19D5AB562D7EE537AD3059EA097353B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1952B074D19D5AB562D7EE537AD3059EA097353B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 08:52:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:1c:31:12:8a:db:bc:d4:10:67:41:ed:25:64:da:71:36:59:eb:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1952B074D19D5AB562D7EE537AD3059EA097353B Validity Not Before: May 8 02:55:01 2025 GMT Not After : May 7 03:00:01 2026 GMT Subject: CN=A52B97684B6C41DE1E486A3D8FAD9361547582B8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:ad:50:77:bf:b8:b2:c0:5a:b8:1a:25:03:ef: 50:88:00:7d:ac:33:5e:77:8e:5f:08:2d:d8:fe:62: af:c1:75:a0:87:98:fd:f7:5d:0b:c8:1c:46:a1:67: 19:ce:ec:f8:28:15:29:45:f9:6f:14:73:45:23:b5: e6:a6:6e:48:46:ea:b7:0e:aa:6c:28:9f:06:6a:b1: dc:d8:c7:26:6e:69:bb:42:15:32:aa:68:e8:a8:b4: a4:80:e2:b9:1f:7e:83:c1:9f:fe:39:5a:32:0d:d7: a5:9d:b2:41:a7:a8:61:e1:26:26:16:57:8e:7f:53: 29:dc:e8:3d:11:67:38:b1:56:1b:69:01:6e:84:01: 83:6c:13:5c:0c:02:f1:42:18:6d:96:25:e7:c4:c9: 0e:13:6c:3a:11:ec:96:a8:b6:89:86:5b:c7:ee:b8: c0:8f:ee:8f:88:40:3f:57:bc:c7:c1:48:d1:55:0c: 52:fb:cf:46:33:e1:97:e1:c1:af:47:c1:1d:bd:cd: 86:06:37:db:0a:35:01:8b:c7:18:9f:82:f2:8b:ee: 14:00:8e:05:35:aa:47:b4:ab:dc:7c:5e:0d:24:41: 77:dc:8a:89:de:44:17:82:41:11:ee:ab:48:1c:db: 9c:15:c0:74:7f:e9:71:9d:af:d6:59:6b:30:b1:42: 2e:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:2B:97:68:4B:6C:41:DE:1E:48:6A:3D:8F:AD:93:61:54:75:82:B8 X509v3 Authority Key Identifier: keyid:19:52:B0:74:D1:9D:5A:B5:62:D7:EE:53:7A:D3:05:9E:A0:97:35:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/1952B074D19D5AB562D7EE537AD3059EA097353B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1952B074D19D5AB562D7EE537AD3059EA097353B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/323430363a616563303a313a3a2f34382d3438203d3e20313431363038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:aec0:1::/48 Signature Algorithm: sha256WithRSAEncryption 97:f1:76:bf:2b:e6:eb:c9:2c:36:27:04:9e:48:29:e4:a9:1e: 30:2c:ac:7a:39:8d:01:b8:97:51:a8:31:10:21:b3:ba:89:14: c8:23:1f:be:4e:bf:eb:fd:3d:ef:58:a2:a4:aa:22:b9:32:08: ca:8a:d8:39:91:0c:0a:2d:9a:9b:30:44:57:f1:32:58:b3:50: 73:cf:ef:61:82:31:46:e2:78:54:e0:d0:b6:ec:0e:d5:2c:28: 82:0c:ba:bb:f5:d3:8f:6e:46:ef:2c:91:bb:33:60:75:49:cc: 4d:a0:dd:a6:17:77:9d:ab:c6:fd:a5:e4:2b:c9:2a:3f:6d:44: 46:f1:b0:bf:b8:6c:cb:05:54:b6:68:da:5d:8f:34:9a:62:2e: 76:ed:e8:0c:5b:81:f7:96:b7:37:b4:40:ac:ce:1b:f8:38:a2: d7:36:41:79:00:fd:1b:b2:9a:13:63:08:8f:71:b7:0f:19:f3: 37:5f:71:f0:de:bd:e6:e9:f7:3f:da:19:5c:78:61:b4:09:6b: c2:53:c9:96:33:b0:99:e6:6c:41:3e:72:6d:d2:ac:4c:e3:e7: cc:09:ea:fa:7c:3e:f3:f6:ec:b0:e0:ce:33:ae:45:af:94:8b: 70:ae:54:5c:75:a5:21:76:e9:17:5e:40:ae:59:6c:86:07:69: bd:c2:4a:32 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUTxwxEorbvNQQZ0HtJWTacTZZ66owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTk1MkIwNzREMTlENUFCNTYyRDdFRTUzN0FEMzA1OUVB MDk3MzUzQjAeFw0yNTA1MDgwMjU1MDFaFw0yNjA1MDcwMzAwMDFaMDMxMTAvBgNV BAMTKEE1MkI5NzY4NEI2QzQxREUxRTQ4NkEzRDhGQUQ5MzYxNTQ3NTgyQjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDorVB3v7iywFq4GiUD71CIAH2s M153jl8ILdj+Yq/BdaCHmP33XQvIHEahZxnO7PgoFSlF+W8Uc0UjteambkhG6rcO qmwonwZqsdzYxyZuabtCFTKqaOiotKSA4rkffoPBn/45WjIN16WdskGnqGHhJiYW V45/Uync6D0RZzixVhtpAW6EAYNsE1wMAvFCGG2WJefEyQ4TbDoR7JaotomGW8fu uMCP7o+IQD9XvMfBSNFVDFL7z0Yz4Zfhwa9HwR29zYYGN9sKNQGLxxifgvKL7hQA jgU1qke0q9x8Xg0kQXfcioneRBeCQRHuq0gc25wVwHR/6XGdr9ZZazCxQi73AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUpSuXaEtsQd4eSGo9j62TYVR1grgwHwYDVR0j BBgwFoAUGVKwdNGdWrVi1+5TetMFnqCXNTswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NGYyYzAyNS0xZDc2LTRhMzYtODE2MC1hOWU4YWZlMzU3OWYvMC8xOTUyQjA3NEQx OUQ1QUI1NjJEN0VFNTM3QUQzMDU5RUEwOTczNTNCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTk1MkIwNzREMTlENUFCNTYyRDdFRTUzN0FEMzA1OUVBMDk3 MzUzQi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q0ZjJjMDI1LTFkNzYtNGEzNi04 MTYwLWE5ZThhZmUzNTc5Zi8wLzMyMzQzMDM2M2E2MTY1NjMzMDNhMzEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzEzNjMwMzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBq7AAAEw DQYJKoZIhvcNAQELBQADggEBAJfxdr8r5uvJLDYnBJ5IKeSpHjAsrHo5jQG4l1Go MRAhs7qJFMgjH75Ov+v9Pe9YoqSqIrkyCMqK2DmRDAotmpswRFfxMlizUHPP72GC MUbieFTg0LbsDtUsKIIMurv1049uRu8skbszYHVJzE2g3aYXd52rxv2l5CvJKj9t REbxsL+4bMsFVLZo2l2PNJpiLnbt6AxbgfeWtze0QKzOG/g4otc2QXkA/RuymhNj CI9xtw8Z8zdfcfDevebp9z/aGVx4YbQJa8JTyZYzsJnmbEE+cm3SrEzj58wJ6vp8 PvP27LDgzjOuRa+Ui3CuVFx1pSF26RdeQK5ZbIYHab3CSjI= -----END CERTIFICATE-----Generated at Sat May 10 13:14:33 2025 by rpki-client