$ rpki-client -vvf repo-rpki.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/323430323a343834303a313131333a3a2f34382d3438203d3e20313337333239.roa File: 323430323a343834303a313131333a3a2f34382d3438203d3e20313337333239.roa (raw, json) Hash identifier: 9NzWf8ibKIq24emIKFXn5dlc1dEEoPdQWvq5hw5Txm8= Subject key identifier: 8B:ED:D0:83:3D:BF:11:23:E6:66:20:73:0B:A1:D2:01:C9:F0:F6:22 Certificate issuer: /CN=19093F7761A9E337D03405604750BFD4ADC2121E Certificate serial: 3A4D71CA4A81FBDDC9F1EA2D4BD4D0353C2D91C1 Authority key identifier: 19:09:3F:77:61:A9:E3:37:D0:34:05:60:47:50:BF:D4:AD:C2:12:1E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/19093F7761A9E337D03405604750BFD4ADC2121E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/323430323a343834303a313131333a3a2f34382d3438203d3e20313337333239.roa Signing time: Tue 29 Apr 2025 20:00:03 +0000 ROA not before: Tue 29 Apr 2025 19:55:03 +0000 ROA not after: Tue 28 Apr 2026 20:00:03 +0000 asID: 137329 IP address blocks: 2402:4840:1113::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/19093F7761A9E337D03405604750BFD4ADC2121E.crl rsync://repo-rpki.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/19093F7761A9E337D03405604750BFD4ADC2121E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/19093F7761A9E337D03405604750BFD4ADC2121E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 09 May 2025 17:39:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:4d:71:ca:4a:81:fb:dd:c9:f1:ea:2d:4b:d4:d0:35:3c:2d:91:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=19093F7761A9E337D03405604750BFD4ADC2121E Validity Not Before: Apr 29 19:55:03 2025 GMT Not After : Apr 28 20:00:03 2026 GMT Subject: CN=8BEDD0833DBF1123E66620730BA1D201C9F0F622 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:e8:61:6f:b9:de:f9:84:19:21:45:65:dc:b3: 19:ca:73:cc:c0:70:63:8d:b2:a4:f0:6f:f6:71:16: c6:00:b3:dd:f6:3a:5a:9d:1d:32:1f:0b:df:34:0e: 3e:16:69:2f:42:86:23:e2:d2:29:de:75:1c:9d:5b: 80:15:fe:93:38:e3:32:ec:bb:2a:6e:a1:96:67:11: ef:f8:75:5f:32:59:06:23:45:df:42:ef:88:4b:76: b5:6b:af:da:e3:63:1e:5b:13:5a:9f:90:6a:54:a1: 16:63:f9:a3:cc:e7:30:9d:e9:94:0b:9d:56:68:71: 3f:2b:4f:7b:99:c9:06:43:bb:14:d9:f5:be:27:31: 9d:59:ef:fe:3f:57:e0:ce:ed:b1:23:f9:de:8b:30: 24:6a:d9:73:4a:c5:9a:a4:62:ed:10:59:cb:a6:9f: f3:ed:ca:68:12:1c:6e:b5:ef:df:10:44:60:4c:d5: b7:cb:5b:44:01:03:e6:32:e5:3a:68:e6:50:db:d8: a4:b6:c4:5c:7d:df:9a:7e:7c:13:72:7b:c3:53:a3: ff:99:04:ce:e0:f6:d9:f1:c4:2a:d3:e7:ae:d9:f1: 20:d7:f7:c9:49:e7:47:e1:d6:18:5c:6c:b1:fe:63: 47:1f:9e:79:d1:8a:73:92:88:dc:78:99:7b:fc:33: 74:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:ED:D0:83:3D:BF:11:23:E6:66:20:73:0B:A1:D2:01:C9:F0:F6:22 X509v3 Authority Key Identifier: keyid:19:09:3F:77:61:A9:E3:37:D0:34:05:60:47:50:BF:D4:AD:C2:12:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/19093F7761A9E337D03405604750BFD4ADC2121E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/19093F7761A9E337D03405604750BFD4ADC2121E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/323430323a343834303a313131333a3a2f34382d3438203d3e20313337333239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:4840:1113::/48 Signature Algorithm: sha256WithRSAEncryption 46:34:06:56:b3:15:48:f0:c8:ed:24:87:6b:ae:92:52:21:9e: 3d:64:07:62:21:8c:cc:66:24:19:d9:e0:d0:19:3c:51:89:c2: 57:d3:f6:37:f3:93:d9:96:20:12:c3:80:56:47:fc:bc:0a:d9: 7e:76:3c:01:5a:41:6f:4c:09:1a:83:53:51:5f:3c:36:61:69: f9:1e:70:66:88:ca:27:d3:14:0e:44:cb:0d:22:33:e4:98:f6: 8f:d6:96:e6:5f:36:75:3f:46:11:7e:f1:c4:10:16:da:d0:9b: 94:09:1a:91:82:89:9d:a6:b2:5a:38:cc:39:4e:a8:23:04:1b: 86:6b:17:86:1f:79:f6:07:14:cb:93:ff:4b:6e:e6:98:8c:91: b5:53:45:4c:a7:c0:58:33:ae:86:e3:58:91:20:e3:65:dd:72: 29:d2:50:fc:85:13:6a:0e:a1:1c:14:25:da:9c:f2:96:8a:7d: 63:04:ff:80:81:f7:bf:62:1b:73:9b:26:35:30:b3:4f:2f:0f: 50:3e:1f:bf:ea:e7:78:a4:95:16:34:6d:2a:3f:b9:5b:9c:51: 63:ba:36:37:de:19:d8:69:d1:2b:a4:8f:c3:35:4a:ff:ee:d5: 2f:cd:aa:9d:ad:68:00:9b:01:72:b8:63:d1:f9:2f:53:a8:34: 8b:d2:b5:51 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUOk1xykqB+93J8eotS9TQNTwtkcEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTkwOTNGNzc2MUE5RTMzN0QwMzQwNTYwNDc1MEJGRDRB REMyMTIxRTAeFw0yNTA0MjkxOTU1MDNaFw0yNjA0MjgyMDAwMDNaMDMxMTAvBgNV BAMTKDhCRUREMDgzM0RCRjExMjNFNjY2MjA3MzBCQTFEMjAxQzlGMEY2MjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDh6GFvud75hBkhRWXcsxnKc8zA cGONsqTwb/ZxFsYAs932OlqdHTIfC980Dj4WaS9ChiPi0inedRydW4AV/pM44zLs uypuoZZnEe/4dV8yWQYjRd9C74hLdrVrr9rjYx5bE1qfkGpUoRZj+aPM5zCd6ZQL nVZocT8rT3uZyQZDuxTZ9b4nMZ1Z7/4/V+DO7bEj+d6LMCRq2XNKxZqkYu0QWcum n/PtymgSHG61798QRGBM1bfLW0QBA+Yy5Tpo5lDb2KS2xFx935p+fBNye8NTo/+Z BM7g9tnxxCrT567Z8SDX98lJ50fh1hhcbLH+Y0cfnnnRinOSiNx4mXv8M3T/AgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUi+3Qgz2/ESPmZiBzC6HSAcnw9iIwHwYDVR0j BBgwFoAUGQk/d2Gp4zfQNAVgR1C/1K3CEh4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MTdiZDUwMi00MmMyLTQwMGQtYTJhZC1kMTc1NDM2NWE0NWQvMC8xOTA5M0Y3NzYx QTlFMzM3RDAzNDA1NjA0NzUwQkZENEFEQzIxMjFFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTkwOTNGNzc2MUE5RTMzN0QwMzQwNTYwNDc1MEJGRDRBREMy MTIxRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UxN2JkNTAyLTQyYzItNDAwZC1h MmFkLWQxNzU0MzY1YTQ1ZC8wLzMyMzQzMDMyM2EzNDM4MzQzMDNhMzEzMTMxMzMz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzczMzMyMzkucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk AkhAERMwDQYJKoZIhvcNAQELBQADggEBAEY0BlazFUjwyO0kh2uuklIhnj1kB2Ih jMxmJBnZ4NAZPFGJwlfT9jfzk9mWIBLDgFZH/LwK2X52PAFaQW9MCRqDU1FfPDZh afkecGaIyifTFA5Eyw0iM+SY9o/WluZfNnU/RhF+8cQQFtrQm5QJGpGCiZ2mslo4 zDlOqCMEG4ZrF4YfefYHFMuT/0tu5piMkbVTRUynwFgzrobjWJEg42XdcinSUPyF E2oOoRwUJdqc8paKfWME/4CB979iG3ObJjUws08vD1A+H7/q53iklRY0bSo/uVuc UWO6NjfeGdhp0Sukj8M1Sv/u1S/Nqp2taACbAXK4Y9H5L1OoNIvStVE= -----END CERTIFICATE-----Generated at Thu May 8 10:13:30 2025 by rpki-client