$ rpki-client -vvf repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/323430363a616563303a323a3a2f34382d3438203d3e20313431363038.roa File: 323430363a616563303a323a3a2f34382d3438203d3e20313431363038.roa (raw, json) Hash identifier: mgJSVBQ2rgwz9a6KkaoIBEWtfpM3mDAq+3l5sRQNwVI= Subject key identifier: DA:52:20:2F:B5:D9:71:BB:DC:47:98:0D:A6:85:C6:C9:AB:43:C7:BD Certificate issuer: /CN=1952B074D19D5AB562D7EE537AD3059EA097353B Certificate serial: 2C4E80AA50680EA85A2E5CBA4FE740D70152B64E Authority key identifier: 19:52:B0:74:D1:9D:5A:B5:62:D7:EE:53:7A:D3:05:9E:A0:97:35:3B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1952B074D19D5AB562D7EE537AD3059EA097353B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/323430363a616563303a323a3a2f34382d3438203d3e20313431363038.roa Signing time: Thu 08 May 2025 03:00:02 +0000 ROA not before: Thu 08 May 2025 02:55:02 +0000 ROA not after: Thu 07 May 2026 03:00:02 +0000 asID: 141608 IP address blocks: 2406:aec0:2::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/1952B074D19D5AB562D7EE537AD3059EA097353B.crl rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/1952B074D19D5AB562D7EE537AD3059EA097353B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1952B074D19D5AB562D7EE537AD3059EA097353B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 08:52:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:4e:80:aa:50:68:0e:a8:5a:2e:5c:ba:4f:e7:40:d7:01:52:b6:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1952B074D19D5AB562D7EE537AD3059EA097353B Validity Not Before: May 8 02:55:02 2025 GMT Not After : May 7 03:00:02 2026 GMT Subject: CN=DA52202FB5D971BBDC47980DA685C6C9AB43C7BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:3c:35:32:64:17:b7:0e:18:17:e6:ff:9a:2c: c4:a2:84:40:9d:41:f7:40:d5:21:52:8e:25:1e:2f: 8e:6c:07:c6:6f:cd:09:9a:fb:e4:d2:0c:0e:b8:2a: 11:8f:86:75:fe:eb:35:46:41:ca:8e:18:91:06:9d: 70:da:c0:8a:c7:d3:16:c3:d7:bd:37:ba:05:c5:69: ed:46:8f:98:df:9a:5c:1d:40:b2:ef:70:69:7e:aa: 39:6a:9b:70:e7:91:6a:d3:a1:d8:e2:09:bb:75:12: 82:aa:8e:d6:67:f3:f5:f6:e8:1b:36:ca:82:8f:37: 47:d7:03:b2:59:92:eb:35:ec:a1:82:4f:17:e3:f2: cf:95:b1:16:c7:4c:af:2b:69:6b:98:47:cc:c3:b7: bc:23:b2:5a:c3:d0:19:c1:46:84:71:f3:d5:e0:1b: 03:37:38:aa:7a:70:af:2a:00:20:11:00:67:2b:65: c6:81:d7:29:2b:85:d5:bf:bc:8d:91:1f:ab:08:be: 71:34:28:c3:01:be:e2:f7:50:a9:29:41:e3:65:57: 58:29:63:58:fe:e5:23:af:b1:7d:b6:f6:41:aa:af: 27:dd:96:61:22:f0:6a:f0:4c:b4:94:32:06:e0:c0: b0:fd:86:16:75:1f:6f:38:6f:15:0b:45:cc:ce:cb: ff:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:52:20:2F:B5:D9:71:BB:DC:47:98:0D:A6:85:C6:C9:AB:43:C7:BD X509v3 Authority Key Identifier: keyid:19:52:B0:74:D1:9D:5A:B5:62:D7:EE:53:7A:D3:05:9E:A0:97:35:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/1952B074D19D5AB562D7EE537AD3059EA097353B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1952B074D19D5AB562D7EE537AD3059EA097353B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/323430363a616563303a323a3a2f34382d3438203d3e20313431363038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:aec0:2::/48 Signature Algorithm: sha256WithRSAEncryption 00:3e:7f:29:aa:f0:91:61:ba:fd:b4:89:a9:31:1e:f2:e4:3d: da:0b:cd:93:98:ff:53:87:1a:83:95:70:19:d0:a6:50:c2:ec: ef:93:0e:0e:cf:b9:55:26:6e:7b:5f:99:33:e4:39:77:68:a7: 1c:19:c5:5f:f1:9b:f8:62:08:9f:99:39:07:6c:0f:b2:7a:b2: 75:d6:70:33:71:dd:9f:da:0c:f9:79:36:00:c9:a1:6d:35:62: 31:e9:8d:fb:d6:f5:b9:b0:66:55:e0:eb:c5:98:d1:23:2a:9a: b0:9b:14:6b:31:74:fd:73:81:e3:9f:41:a3:d3:87:1e:5d:51: 50:6d:73:12:a6:f4:f8:92:59:26:2f:8f:99:ef:de:e5:2a:c3: f4:5a:d4:49:9d:71:13:79:44:f5:b5:5b:b1:bd:46:00:65:47: 6e:9b:82:85:96:94:77:14:05:78:58:00:8e:22:d7:35:fe:08: b6:c4:25:1b:3b:29:a0:11:dd:65:77:08:3b:d5:52:82:04:ad: 06:68:d2:4c:a0:01:35:b9:1c:6a:64:04:6c:8a:b9:fd:63:3f: 89:a1:e3:16:2d:64:ae:fa:94:22:83:87:f2:91:3e:d1:4d:a9: 99:08:e6:19:bd:6d:ff:dd:7d:da:20:ac:40:6d:8a:d0:44:b0: 53:b1:5e:0f -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIULE6AqlBoDqhaLly6T+dA1wFStk4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTk1MkIwNzREMTlENUFCNTYyRDdFRTUzN0FEMzA1OUVB MDk3MzUzQjAeFw0yNTA1MDgwMjU1MDJaFw0yNjA1MDcwMzAwMDJaMDMxMTAvBgNV BAMTKERBNTIyMDJGQjVEOTcxQkJEQzQ3OTgwREE2ODVDNkM5QUI0M0M3QkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDoPDUyZBe3DhgX5v+aLMSihECd QfdA1SFSjiUeL45sB8ZvzQma++TSDA64KhGPhnX+6zVGQcqOGJEGnXDawIrH0xbD 1703ugXFae1Gj5jfmlwdQLLvcGl+qjlqm3DnkWrTodjiCbt1EoKqjtZn8/X26Bs2 yoKPN0fXA7JZkus17KGCTxfj8s+VsRbHTK8raWuYR8zDt7wjslrD0BnBRoRx89Xg GwM3OKp6cK8qACARAGcrZcaB1ykrhdW/vI2RH6sIvnE0KMMBvuL3UKkpQeNlV1gp Y1j+5SOvsX229kGqryfdlmEi8GrwTLSUMgbgwLD9hhZ1H284bxULRczOy/+RAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQU2lIgL7XZcbvcR5gNpoXGyatDx70wHwYDVR0j BBgwFoAUGVKwdNGdWrVi1+5TetMFnqCXNTswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NGYyYzAyNS0xZDc2LTRhMzYtODE2MC1hOWU4YWZlMzU3OWYvMC8xOTUyQjA3NEQx OUQ1QUI1NjJEN0VFNTM3QUQzMDU5RUEwOTczNTNCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTk1MkIwNzREMTlENUFCNTYyRDdFRTUzN0FEMzA1OUVBMDk3 MzUzQi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q0ZjJjMDI1LTFkNzYtNGEzNi04 MTYwLWE5ZThhZmUzNTc5Zi8wLzMyMzQzMDM2M2E2MTY1NjMzMDNhMzIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzEzNjMwMzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBq7AAAIw DQYJKoZIhvcNAQELBQADggEBAAA+fymq8JFhuv20iakxHvLkPdoLzZOY/1OHGoOV cBnQplDC7O+TDg7PuVUmbntfmTPkOXdopxwZxV/xm/hiCJ+ZOQdsD7J6snXWcDNx 3Z/aDPl5NgDJoW01YjHpjfvW9bmwZlXg68WY0SMqmrCbFGsxdP1zgeOfQaPThx5d UVBtcxKm9PiSWSYvj5nv3uUqw/Ra1EmdcRN5RPW1W7G9RgBlR26bgoWWlHcUBXhY AI4i1zX+CLbEJRs7KaAR3WV3CDvVUoIErQZo0kygATW5HGpkBGyKuf1jP4mh4xYt ZK76lCKDh/KRPtFNqZkI5hm9bf/dfdogrEBtitBEsFOxXg8= -----END CERTIFICATE-----Generated at Sat May 10 16:48:15 2025 by rpki-client