$ rpki-client -vvf repo-rpki.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/323430323a343834303a313030333a3a2f34382d3438203d3e20313337333239.roa File: 323430323a343834303a313030333a3a2f34382d3438203d3e20313337333239.roa (raw, json) Hash identifier: LO6MPJjKWemlUPi4+oxONCOZfPyfc9fE6EVbhP2nAoE= Subject key identifier: 2A:52:29:D1:57:06:30:9B:11:BF:CB:6D:3E:C3:5C:E7:7E:62:AE:67 Certificate issuer: /CN=19093F7761A9E337D03405604750BFD4ADC2121E Certificate serial: 183D9B2955E8FF76BC78AA3B8F0C51091AEA6775 Authority key identifier: 19:09:3F:77:61:A9:E3:37:D0:34:05:60:47:50:BF:D4:AD:C2:12:1E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/19093F7761A9E337D03405604750BFD4ADC2121E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/323430323a343834303a313030333a3a2f34382d3438203d3e20313337333239.roa Signing time: Tue 29 Apr 2025 20:00:03 +0000 ROA not before: Tue 29 Apr 2025 19:55:03 +0000 ROA not after: Tue 28 Apr 2026 20:00:03 +0000 asID: 137329 IP address blocks: 2402:4840:1003::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/19093F7761A9E337D03405604750BFD4ADC2121E.crl rsync://repo-rpki.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/19093F7761A9E337D03405604750BFD4ADC2121E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/19093F7761A9E337D03405604750BFD4ADC2121E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 00:30:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:3d:9b:29:55:e8:ff:76:bc:78:aa:3b:8f:0c:51:09:1a:ea:67:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=19093F7761A9E337D03405604750BFD4ADC2121E Validity Not Before: Apr 29 19:55:03 2025 GMT Not After : Apr 28 20:00:03 2026 GMT Subject: CN=2A5229D15706309B11BFCB6D3EC35CE77E62AE67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:8e:56:f4:ad:4a:2a:9a:00:36:cc:90:b2:a3: 37:8e:f6:c5:99:a1:f8:72:0b:49:c6:9d:41:2d:8c: ec:f9:45:36:39:83:c7:5c:b9:2e:8b:91:0e:ab:f9: 06:a8:04:6d:67:15:30:84:fe:98:7b:10:0b:f4:86: 3b:29:fb:61:88:08:83:15:20:31:71:ca:f8:ba:0e: 2d:cf:42:d9:14:dd:d5:42:5f:86:b2:39:a4:ec:95: 98:29:e3:37:aa:2c:b3:0d:ad:3b:2d:90:fe:e5:f6: 85:fe:3a:a5:ba:20:16:23:8f:94:2e:11:34:c8:72: e9:f9:a2:ea:05:9b:f9:13:72:04:c7:59:00:9d:2a: dc:ed:36:fc:55:b5:42:57:4b:5d:49:6a:05:c8:23: 58:73:26:7d:2d:0c:e4:68:fb:14:3e:7e:29:24:e9: 08:cf:2c:31:bd:41:54:ef:33:28:44:96:1f:e4:96: 9a:99:36:60:0b:bf:ec:23:d8:3e:59:a8:c5:39:f2: 46:6a:36:47:77:6c:8c:5c:aa:92:84:e4:3a:bb:d0: a8:8e:89:a9:7b:66:51:cd:aa:78:dc:7f:60:4e:01: 7d:0b:59:2e:b6:22:b0:7d:23:6e:e9:4f:b2:5e:73: d2:ca:a5:63:e5:a8:1f:75:26:a8:bd:67:4f:4c:ff: 06:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:52:29:D1:57:06:30:9B:11:BF:CB:6D:3E:C3:5C:E7:7E:62:AE:67 X509v3 Authority Key Identifier: keyid:19:09:3F:77:61:A9:E3:37:D0:34:05:60:47:50:BF:D4:AD:C2:12:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/19093F7761A9E337D03405604750BFD4ADC2121E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/19093F7761A9E337D03405604750BFD4ADC2121E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/323430323a343834303a313030333a3a2f34382d3438203d3e20313337333239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:4840:1003::/48 Signature Algorithm: sha256WithRSAEncryption 3d:c6:5b:ee:1a:1c:c5:04:fd:b1:3a:db:fb:19:ea:ac:1e:97: af:53:b0:2f:1b:7a:ab:12:b8:c3:b2:0e:66:bb:6c:3c:2b:1b: 42:6c:f8:f9:c9:70:3f:7d:2f:54:e3:8d:84:83:61:96:fa:5d: 6c:08:03:84:6c:66:59:03:ab:f2:46:5d:d3:b1:fe:2c:f9:ce: c7:65:80:80:3f:f8:2f:cb:96:6f:9c:46:ae:42:c1:e5:ff:54: 86:46:e0:fc:93:65:c0:05:99:89:92:24:d9:01:f6:f5:5c:99: 89:42:8d:49:13:df:5b:94:b8:1b:88:fe:4e:5c:1f:ac:93:b0: 9f:e7:5e:90:36:b1:43:d0:88:21:13:09:6c:06:46:46:1c:29: 50:f9:09:a2:c8:71:d1:57:28:08:c1:a0:8a:61:36:96:1d:da: df:9f:84:be:05:98:1b:43:56:ac:de:2d:a4:59:78:88:fc:c6: 9a:16:54:d5:8e:01:f9:ed:97:12:6d:92:9c:d3:42:d7:60:0c: 99:0c:24:e1:3d:ae:ff:7e:10:50:ec:cf:cc:b2:71:9c:c9:ec: 63:90:dd:e2:a7:2f:ab:39:39:d3:61:4d:55:02:09:87:6e:50: 68:c3:3a:53:f5:bc:19:91:c7:f7:69:f4:26:4b:f5:7c:bd:91: 94:c8:98:2c -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUGD2bKVXo/3a8eKo7jwxRCRrqZ3UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTkwOTNGNzc2MUE5RTMzN0QwMzQwNTYwNDc1MEJGRDRB REMyMTIxRTAeFw0yNTA0MjkxOTU1MDNaFw0yNjA0MjgyMDAwMDNaMDMxMTAvBgNV BAMTKDJBNTIyOUQxNTcwNjMwOUIxMUJGQ0I2RDNFQzM1Q0U3N0U2MkFFNjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzjlb0rUoqmgA2zJCyozeO9sWZ ofhyC0nGnUEtjOz5RTY5g8dcuS6LkQ6r+QaoBG1nFTCE/ph7EAv0hjsp+2GICIMV IDFxyvi6Di3PQtkU3dVCX4ayOaTslZgp4zeqLLMNrTstkP7l9oX+OqW6IBYjj5Qu ETTIcun5ouoFm/kTcgTHWQCdKtztNvxVtUJXS11JagXII1hzJn0tDORo+xQ+fikk 6QjPLDG9QVTvMyhElh/klpqZNmALv+wj2D5ZqMU58kZqNkd3bIxcqpKE5Dq70KiO ial7ZlHNqnjcf2BOAX0LWS62IrB9I27pT7Jec9LKpWPlqB91Jqi9Z09M/wZxAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUKlIp0VcGMJsRv8ttPsNc535irmcwHwYDVR0j BBgwFoAUGQk/d2Gp4zfQNAVgR1C/1K3CEh4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MTdiZDUwMi00MmMyLTQwMGQtYTJhZC1kMTc1NDM2NWE0NWQvMC8xOTA5M0Y3NzYx QTlFMzM3RDAzNDA1NjA0NzUwQkZENEFEQzIxMjFFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTkwOTNGNzc2MUE5RTMzN0QwMzQwNTYwNDc1MEJGRDRBREMy MTIxRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UxN2JkNTAyLTQyYzItNDAwZC1h MmFkLWQxNzU0MzY1YTQ1ZC8wLzMyMzQzMDMyM2EzNDM4MzQzMDNhMzEzMDMwMzMz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzczMzMyMzkucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk AkhAEAMwDQYJKoZIhvcNAQELBQADggEBAD3GW+4aHMUE/bE62/sZ6qwel69TsC8b eqsSuMOyDma7bDwrG0Js+PnJcD99L1TjjYSDYZb6XWwIA4RsZlkDq/JGXdOx/iz5 zsdlgIA/+C/Llm+cRq5CweX/VIZG4PyTZcAFmYmSJNkB9vVcmYlCjUkT31uUuBuI /k5cH6yTsJ/nXpA2sUPQiCETCWwGRkYcKVD5CaLIcdFXKAjBoIphNpYd2t+fhL4F mBtDVqzeLaRZeIj8xpoWVNWOAfntlxJtkpzTQtdgDJkMJOE9rv9+EFDsz8yycZzJ 7GOQ3eKnL6s5OdNhTVUCCYduUGjDOlP1vBmRx/dp9CZL9Xy9kZTImCw= -----END CERTIFICATE-----Generated at Fri May 9 05:18:44 2025 by rpki-client