$ rpki-client -vvf repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/323430363a616563303a3a2f34382d3438203d3e20313431363038.roa File: 323430363a616563303a3a2f34382d3438203d3e20313431363038.roa (raw, json) Hash identifier: 7P5WsAuD0KiX7NL7qmh5sk2mJCsjh2OlkcqmEGLkrEI= Subject key identifier: C7:9D:36:24:AA:9F:F4:90:77:F0:35:2B:FE:D7:A0:C1:0C:3C:4D:8A Certificate issuer: /CN=1952B074D19D5AB562D7EE537AD3059EA097353B Certificate serial: 4FA0CE8D12A237FF472004B9701C16A88B1DE774 Authority key identifier: 19:52:B0:74:D1:9D:5A:B5:62:D7:EE:53:7A:D3:05:9E:A0:97:35:3B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1952B074D19D5AB562D7EE537AD3059EA097353B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/323430363a616563303a3a2f34382d3438203d3e20313431363038.roa Signing time: Thu 08 May 2025 03:00:02 +0000 ROA not before: Thu 08 May 2025 02:55:02 +0000 ROA not after: Thu 07 May 2026 03:00:02 +0000 asID: 141608 IP address blocks: 2406:aec0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/1952B074D19D5AB562D7EE537AD3059EA097353B.crl rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/1952B074D19D5AB562D7EE537AD3059EA097353B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1952B074D19D5AB562D7EE537AD3059EA097353B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 08:52:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:a0:ce:8d:12:a2:37:ff:47:20:04:b9:70:1c:16:a8:8b:1d:e7:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1952B074D19D5AB562D7EE537AD3059EA097353B Validity Not Before: May 8 02:55:02 2025 GMT Not After : May 7 03:00:02 2026 GMT Subject: CN=C79D3624AA9FF49077F0352BFED7A0C10C3C4D8A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:14:bc:f6:76:38:7f:15:0e:5a:c0:42:56:61: f9:46:3a:7f:66:fe:3f:eb:24:bb:68:d1:67:07:c2: 19:21:e8:5c:de:74:d9:44:6d:93:31:06:b8:9d:2f: 78:22:98:0a:5e:87:3e:67:dd:58:16:48:15:85:39: 6f:db:e0:9f:29:ec:b3:16:dd:54:5f:8c:53:80:81: 7d:e5:a3:13:d3:63:12:10:29:08:48:85:aa:17:c1: b4:0d:21:b4:b3:e3:38:78:79:f9:c9:18:2f:86:9a: aa:21:19:a0:86:b7:ec:29:56:75:f6:6e:de:f5:02: b8:a3:b5:0c:94:97:ad:14:7c:18:14:b9:a6:c1:a8: 00:6e:a1:a7:5a:14:ff:e0:fd:50:62:67:d2:de:68: 2d:90:25:d2:c9:1a:a9:70:ac:bc:45:19:90:03:6e: 93:1e:6c:e6:39:9d:9b:e3:c4:3a:01:4f:7c:5d:b7: 70:10:89:ba:b8:ad:14:25:33:dd:ef:b3:8e:f2:90: 2d:8f:32:a8:2b:55:bb:f0:a1:6b:52:bd:16:bf:8a: 12:a0:dd:c6:7f:d0:86:c0:fc:9f:4a:15:ff:37:72: de:a4:90:ba:ee:6c:18:de:f9:ef:3b:f1:8c:fd:8d: 46:95:2b:ab:a1:b5:7f:91:94:94:31:07:9d:97:1f: 66:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:9D:36:24:AA:9F:F4:90:77:F0:35:2B:FE:D7:A0:C1:0C:3C:4D:8A X509v3 Authority Key Identifier: keyid:19:52:B0:74:D1:9D:5A:B5:62:D7:EE:53:7A:D3:05:9E:A0:97:35:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/1952B074D19D5AB562D7EE537AD3059EA097353B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1952B074D19D5AB562D7EE537AD3059EA097353B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/323430363a616563303a3a2f34382d3438203d3e20313431363038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:aec0::/48 Signature Algorithm: sha256WithRSAEncryption 25:08:c2:72:e6:b3:d2:e7:64:a8:c4:58:45:0e:15:e9:0a:54: c1:0d:e8:16:54:33:55:2f:48:76:cc:dc:f1:47:43:2d:68:90: dc:ab:72:0f:08:87:fc:ad:39:45:9f:61:9a:93:14:d2:c1:b3: d5:d7:ea:96:69:4f:d6:a6:79:c2:e3:d7:4d:16:d8:2d:d1:94: 8f:39:df:b0:68:ad:56:73:d0:d3:39:e1:15:f4:13:6d:f9:c8: 9f:8a:0b:4b:bf:2b:a4:49:5c:d9:06:35:7b:d4:81:25:39:2c: 0e:01:ad:30:1a:49:87:e1:be:6c:99:b2:1b:a2:ff:e8:8e:1f: 0a:2b:81:40:ce:b2:7a:16:44:de:4b:a6:f7:ec:32:f2:92:2a: 0f:6c:b6:83:e4:9c:a4:ab:23:23:9a:3d:f7:da:ba:e6:a4:7a: 9b:31:71:61:d7:44:d4:3b:f7:9a:c6:d2:6e:e0:8b:3d:c9:c8: 93:41:df:8b:1f:9a:0c:20:59:06:a3:dc:20:be:4c:87:ea:18: a9:b3:69:ff:18:4f:ff:5e:a8:6c:56:66:9b:86:22:bd:7e:06: ef:f2:37:c0:96:d3:30:ea:43:15:9d:3b:4d:43:71:60:7b:91: 7b:f6:31:c0:dd:2c:08:09:93:4c:75:60:12:69:77:9c:d6:b5: a4:fb:1e:a1 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgIUT6DOjRKiN/9HIAS5cBwWqIsd53QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTk1MkIwNzREMTlENUFCNTYyRDdFRTUzN0FEMzA1OUVB MDk3MzUzQjAeFw0yNTA1MDgwMjU1MDJaFw0yNjA1MDcwMzAwMDJaMDMxMTAvBgNV BAMTKEM3OUQzNjI0QUE5RkY0OTA3N0YwMzUyQkZFRDdBMEMxMEMzQzREOEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD0FLz2djh/FQ5awEJWYflGOn9m /j/rJLto0WcHwhkh6FzedNlEbZMxBridL3gimApehz5n3VgWSBWFOW/b4J8p7LMW 3VRfjFOAgX3loxPTYxIQKQhIhaoXwbQNIbSz4zh4efnJGC+GmqohGaCGt+wpVnX2 bt71ArijtQyUl60UfBgUuabBqABuoadaFP/g/VBiZ9LeaC2QJdLJGqlwrLxFGZAD bpMebOY5nZvjxDoBT3xdt3AQibq4rRQlM93vs47ykC2PMqgrVbvwoWtSvRa/ihKg 3cZ/0IbA/J9KFf83ct6kkLrubBje+e878Yz9jUaVK6uhtX+RlJQxB52XH2ZbAgMB AAGjggI1MIICMTAdBgNVHQ4EFgQUx502JKqf9JB38DUr/tegwQw8TYowHwYDVR0j BBgwFoAUGVKwdNGdWrVi1+5TetMFnqCXNTswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NGYyYzAyNS0xZDc2LTRhMzYtODE2MC1hOWU4YWZlMzU3OWYvMC8xOTUyQjA3NEQx OUQ1QUI1NjJEN0VFNTM3QUQzMDU5RUEwOTczNTNCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTk1MkIwNzREMTlENUFCNTYyRDdFRTUzN0FEMzA1OUVBMDk3 MzUzQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q0ZjJjMDI1LTFkNzYtNGEzNi04 MTYwLWE5ZThhZmUzNTc5Zi8wLzMyMzQzMDM2M2E2MTY1NjMzMDNhM2EyZjM0Mzgy ZDM0MzgyMDNkM2UyMDMxMzQzMTM2MzAzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQGrsAAADANBgkq hkiG9w0BAQsFAAOCAQEAJQjCcuaz0udkqMRYRQ4V6QpUwQ3oFlQzVS9Idszc8UdD LWiQ3KtyDwiH/K05RZ9hmpMU0sGz1dfqlmlP1qZ5wuPXTRbYLdGUjznfsGitVnPQ 0znhFfQTbfnIn4oLS78rpElc2QY1e9SBJTksDgGtMBpJh+G+bJmyG6L/6I4fCiuB QM6yehZE3kum9+wy8pIqD2y2g+ScpKsjI5o999q65qR6mzFxYddE1Dv3msbSbuCL PcnIk0Hfix+aDCBZBqPcIL5Mh+oYqbNp/xhP/16obFZmm4YivX4G7/I3wJbTMOpD FZ07TUNxYHuRe/YxwN0sCAmTTHVgEml3nNa1pPseoQ== -----END CERTIFICATE-----Generated at Sat May 10 13:59:26 2025 by rpki-client