$ rpki-client -vvf repo-rpki.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/323430323a343834303a323030333a3a2f34382d3438203d3e20313337333239.roa File: 323430323a343834303a323030333a3a2f34382d3438203d3e20313337333239.roa (raw, json) Hash identifier: yu7VVYTmwbbAphSKuxMMCnUsC1g5eRXchMRdKeOy1S8= Subject key identifier: 2B:AF:44:C7:88:26:8B:D1:F9:34:03:79:D8:02:5A:4F:51:29:B2:9B Certificate issuer: /CN=19093F7761A9E337D03405604750BFD4ADC2121E Certificate serial: 10DACC650D2BBDD73A443FEB3B9824172EEE8B22 Authority key identifier: 19:09:3F:77:61:A9:E3:37:D0:34:05:60:47:50:BF:D4:AD:C2:12:1E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/19093F7761A9E337D03405604750BFD4ADC2121E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/323430323a343834303a323030333a3a2f34382d3438203d3e20313337333239.roa Signing time: Tue 29 Apr 2025 20:00:02 +0000 ROA not before: Tue 29 Apr 2025 19:55:02 +0000 ROA not after: Tue 28 Apr 2026 20:00:02 +0000 asID: 137329 IP address blocks: 2402:4840:2003::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/19093F7761A9E337D03405604750BFD4ADC2121E.crl rsync://repo-rpki.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/19093F7761A9E337D03405604750BFD4ADC2121E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/19093F7761A9E337D03405604750BFD4ADC2121E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 00:30:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:da:cc:65:0d:2b:bd:d7:3a:44:3f:eb:3b:98:24:17:2e:ee:8b:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=19093F7761A9E337D03405604750BFD4ADC2121E Validity Not Before: Apr 29 19:55:02 2025 GMT Not After : Apr 28 20:00:02 2026 GMT Subject: CN=2BAF44C788268BD1F9340379D8025A4F5129B29B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:a3:96:9a:0b:56:7c:cc:bc:95:83:98:ad:e2: a0:20:0f:d5:73:0c:e2:1b:64:2b:44:f6:d1:46:dc: 44:83:a4:ee:f7:4f:77:fa:c5:6b:0d:2e:ac:33:49: 59:0a:72:a4:02:84:e0:5c:47:39:27:87:e1:5c:8f: ec:37:dd:ee:63:e7:4a:bc:ee:4f:ac:ca:14:67:c8: 04:ec:e9:9a:6e:53:e4:86:4b:25:2a:d7:e9:88:33: 03:e8:6f:b6:fa:a3:e1:cf:69:4e:0b:c7:6d:f3:bd: 9d:52:4e:78:1b:d4:30:b1:04:11:42:be:78:aa:1d: be:5d:d6:fe:40:d3:ba:bf:12:e6:0b:2f:d8:46:31: 9b:ac:30:ee:88:74:3e:46:ce:91:af:8b:34:2c:cf: 2c:30:3e:f8:ff:51:5e:0a:3b:23:bf:96:78:71:18: a8:4c:b3:cd:37:9f:c8:42:8f:d4:d3:55:a4:71:71: f9:79:a2:69:8a:0c:ab:01:7b:a4:39:fb:d4:56:cb: 95:36:a8:5b:bc:6f:2f:1e:1b:dc:40:90:2a:f3:8b: 92:52:a1:08:56:1c:88:62:b4:a4:f6:5c:e0:fa:38: 40:bf:23:f9:8c:dd:d0:5a:01:bf:2a:88:e5:94:c4: ac:77:bd:ef:f4:f1:b5:1e:a3:21:81:10:0f:be:47: 79:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:AF:44:C7:88:26:8B:D1:F9:34:03:79:D8:02:5A:4F:51:29:B2:9B X509v3 Authority Key Identifier: keyid:19:09:3F:77:61:A9:E3:37:D0:34:05:60:47:50:BF:D4:AD:C2:12:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/19093F7761A9E337D03405604750BFD4ADC2121E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/19093F7761A9E337D03405604750BFD4ADC2121E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/323430323a343834303a323030333a3a2f34382d3438203d3e20313337333239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:4840:2003::/48 Signature Algorithm: sha256WithRSAEncryption 30:56:db:b6:e9:be:ef:a6:7f:a4:eb:bf:47:2b:d3:ca:35:6a: aa:60:64:05:b9:ec:44:90:14:78:61:7e:d6:0f:ec:4b:ea:e9: af:f9:79:06:7e:89:e6:43:aa:36:f4:d0:15:97:89:94:a8:5d: 03:db:8a:55:36:6f:aa:d4:bc:c0:d2:50:99:21:e9:6e:83:41: 48:4f:91:32:8a:da:fa:5a:86:26:5f:ea:2f:00:17:41:bb:a6: ba:10:78:65:86:37:f9:af:ae:3c:f8:4a:d1:2b:7e:de:40:e2: 68:70:7a:f2:ba:b4:68:95:b8:10:60:ca:6a:27:a1:77:6b:49: e4:42:70:a4:91:14:43:77:0d:3b:cc:44:46:1c:d0:e1:f9:fc: 68:fb:b7:c5:95:04:16:f8:6e:77:a0:06:77:2c:0f:56:93:a4: 5f:d2:5d:57:1a:6e:3f:7d:1e:a3:c3:a3:f7:5d:a3:1c:0e:9e: 88:d8:3a:9b:6f:e1:7b:bb:42:b8:c6:23:4a:3d:0d:fc:00:b4: b4:76:94:32:4f:9b:a2:70:70:56:8d:2c:6c:d8:96:bc:3a:8b: a2:7f:ff:0f:fa:36:a8:f4:64:23:32:dd:77:c1:03:24:86:28: 9f:2d:b1:8b:c5:a6:44:3b:5d:0b:92:c8:9b:39:d0:14:2d:a8: 37:e3:4e:b0 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUENrMZQ0rvdc6RD/rO5gkFy7uiyIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTkwOTNGNzc2MUE5RTMzN0QwMzQwNTYwNDc1MEJGRDRB REMyMTIxRTAeFw0yNTA0MjkxOTU1MDJaFw0yNjA0MjgyMDAwMDJaMDMxMTAvBgNV BAMTKDJCQUY0NEM3ODgyNjhCRDFGOTM0MDM3OUQ4MDI1QTRGNTEyOUIyOUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgo5aaC1Z8zLyVg5it4qAgD9Vz DOIbZCtE9tFG3ESDpO73T3f6xWsNLqwzSVkKcqQChOBcRzknh+Fcj+w33e5j50q8 7k+syhRnyATs6ZpuU+SGSyUq1+mIMwPob7b6o+HPaU4Lx23zvZ1STngb1DCxBBFC vniqHb5d1v5A07q/EuYLL9hGMZusMO6IdD5GzpGvizQszywwPvj/UV4KOyO/lnhx GKhMs803n8hCj9TTVaRxcfl5ommKDKsBe6Q5+9RWy5U2qFu8by8eG9xAkCrzi5JS oQhWHIhitKT2XOD6OEC/I/mM3dBaAb8qiOWUxKx3ve/08bUeoyGBEA++R3lfAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUK69Ex4gmi9H5NAN52AJaT1EpspswHwYDVR0j BBgwFoAUGQk/d2Gp4zfQNAVgR1C/1K3CEh4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MTdiZDUwMi00MmMyLTQwMGQtYTJhZC1kMTc1NDM2NWE0NWQvMC8xOTA5M0Y3NzYx QTlFMzM3RDAzNDA1NjA0NzUwQkZENEFEQzIxMjFFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTkwOTNGNzc2MUE5RTMzN0QwMzQwNTYwNDc1MEJGRDRBREMy MTIxRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UxN2JkNTAyLTQyYzItNDAwZC1h MmFkLWQxNzU0MzY1YTQ1ZC8wLzMyMzQzMDMyM2EzNDM4MzQzMDNhMzIzMDMwMzMz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzczMzMyMzkucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk AkhAIAMwDQYJKoZIhvcNAQELBQADggEBADBW27bpvu+mf6Trv0cr08o1aqpgZAW5 7ESQFHhhftYP7Evq6a/5eQZ+ieZDqjb00BWXiZSoXQPbilU2b6rUvMDSUJkh6W6D QUhPkTKK2vpahiZf6i8AF0G7proQeGWGN/mvrjz4StErft5A4mhwevK6tGiVuBBg ymonoXdrSeRCcKSRFEN3DTvMREYc0OH5/Gj7t8WVBBb4bnegBncsD1aTpF/SXVca bj99HqPDo/ddoxwOnojYOptv4Xu7QrjGI0o9DfwAtLR2lDJPm6JwcFaNLGzYlrw6 i6J//w/6Nqj0ZCMy3XfBAySGKJ8tsYvFpkQ7XQuSyJs50BQtqDfjTrA= -----END CERTIFICATE-----Generated at Sat May 10 13:32:30 2025 by rpki-client