$ rpki-client -vvf repo-rpki.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/323430323a343834303a323131333a3a2f34382d3438203d3e20313337333239.roa File: 323430323a343834303a323131333a3a2f34382d3438203d3e20313337333239.roa (raw, json) Hash identifier: v8N5W4vBGPF8ifVtPYc3kUKB1CF/32VLR1fOCHQJLpI= Subject key identifier: D7:69:8F:E8:7F:F3:7D:AB:C8:3F:FF:38:96:C0:68:8C:0E:4B:E3:33 Certificate issuer: /CN=19093F7761A9E337D03405604750BFD4ADC2121E Certificate serial: 202620B47002E37E73EED4CE5364FB49CB3B530A Authority key identifier: 19:09:3F:77:61:A9:E3:37:D0:34:05:60:47:50:BF:D4:AD:C2:12:1E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/19093F7761A9E337D03405604750BFD4ADC2121E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/323430323a343834303a323131333a3a2f34382d3438203d3e20313337333239.roa Signing time: Tue 29 Apr 2025 20:00:03 +0000 ROA not before: Tue 29 Apr 2025 19:55:03 +0000 ROA not after: Tue 28 Apr 2026 20:00:03 +0000 asID: 137329 IP address blocks: 2402:4840:2113::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/19093F7761A9E337D03405604750BFD4ADC2121E.crl rsync://repo-rpki.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/19093F7761A9E337D03405604750BFD4ADC2121E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/19093F7761A9E337D03405604750BFD4ADC2121E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 00:30:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:26:20:b4:70:02:e3:7e:73:ee:d4:ce:53:64:fb:49:cb:3b:53:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=19093F7761A9E337D03405604750BFD4ADC2121E Validity Not Before: Apr 29 19:55:03 2025 GMT Not After : Apr 28 20:00:03 2026 GMT Subject: CN=D7698FE87FF37DABC83FFF3896C0688C0E4BE333 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:da:39:8e:fb:a6:b4:31:55:20:14:a8:3a:8b: 29:be:69:1c:c1:5f:f9:59:42:53:3b:66:75:23:6a: 5d:9a:5a:90:34:28:e0:00:15:3c:8c:13:d3:49:bf: 87:97:84:68:dc:f0:e1:94:ed:13:82:81:dc:7a:56: 5a:d3:db:83:00:39:04:62:af:27:ee:fb:47:2d:34: ae:a6:b6:99:a3:c7:d1:94:e1:5e:1b:f2:ac:1e:97: 06:44:9d:7c:41:a8:e7:49:6b:94:6c:27:61:a5:46: 79:de:50:5c:7d:35:55:59:ba:be:ac:ee:27:73:a3: e4:02:bf:78:ec:ce:bc:57:0f:f2:b8:61:a5:95:72: 54:ef:0c:3f:29:7f:f9:29:ad:28:94:d8:54:e7:66: ef:e7:2f:b9:e4:aa:b1:e3:6f:20:1d:22:72:69:48: ca:cc:af:f2:d5:fc:d4:00:85:e3:7f:d5:94:22:90: 48:7f:b8:a0:d8:c5:d5:c8:6c:e7:b5:cc:8d:71:d4: 85:03:c0:9b:92:e3:fc:e7:f6:c3:97:ee:ae:dc:f8: d0:c8:38:8f:9d:fb:e2:b5:72:1e:de:a8:7c:5c:ab: c4:87:78:c9:62:5e:b6:5f:a4:8f:e0:0d:84:9b:18: 6f:ca:85:db:2a:b3:3d:17:d4:56:69:0b:08:7e:81: 28:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:69:8F:E8:7F:F3:7D:AB:C8:3F:FF:38:96:C0:68:8C:0E:4B:E3:33 X509v3 Authority Key Identifier: keyid:19:09:3F:77:61:A9:E3:37:D0:34:05:60:47:50:BF:D4:AD:C2:12:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/19093F7761A9E337D03405604750BFD4ADC2121E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/19093F7761A9E337D03405604750BFD4ADC2121E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/323430323a343834303a323131333a3a2f34382d3438203d3e20313337333239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:4840:2113::/48 Signature Algorithm: sha256WithRSAEncryption 30:ac:29:97:be:e9:50:da:d7:0d:b8:4a:3d:1f:6a:79:e1:a8: d0:13:8f:73:6d:ef:cb:c4:a3:68:47:7d:64:47:7d:fb:c6:17: 0a:94:cf:ba:ae:27:15:72:65:9a:47:af:fa:b0:83:68:f1:be: 3a:35:cd:80:b3:f0:77:d8:e0:13:a5:71:0a:68:67:de:cc:b2: 82:14:19:00:1a:06:08:06:01:44:bb:46:69:64:e5:59:ea:d0: 12:60:3f:81:aa:5b:a1:85:07:8a:d7:4f:7c:d5:43:51:0d:90: 88:a9:ee:5d:e2:4a:f2:7e:11:5e:8d:d1:fc:5c:d0:1b:c1:f3: 6e:5c:06:67:cc:e9:4f:12:92:c3:23:e6:a1:ab:a4:07:0d:66: 0e:a6:3b:6e:e4:51:6d:46:d7:e2:cd:f5:91:86:6d:c1:11:3c: 38:9a:50:66:8e:1c:6c:d9:41:74:da:81:6a:a2:2a:8d:d0:74: e0:4b:4d:0d:ab:55:54:9e:d5:83:d9:38:2b:8a:42:62:3a:a0: ff:61:d5:e8:d1:bb:e3:47:20:aa:ec:96:1f:e1:f9:35:92:be: 76:45:10:38:26:78:5d:25:e6:78:07:54:c5:86:fd:92:7d:9c: ad:00:6e:8a:49:85:b7:0b:08:72:a6:a5:3e:fe:d2:b4:94:f9: f6:a6:a4:2c -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUICYgtHAC435z7tTOU2T7Scs7UwowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTkwOTNGNzc2MUE5RTMzN0QwMzQwNTYwNDc1MEJGRDRB REMyMTIxRTAeFw0yNTA0MjkxOTU1MDNaFw0yNjA0MjgyMDAwMDNaMDMxMTAvBgNV BAMTKEQ3Njk4RkU4N0ZGMzdEQUJDODNGRkYzODk2QzA2ODhDMEU0QkUzMzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC92jmO+6a0MVUgFKg6iym+aRzB X/lZQlM7ZnUjal2aWpA0KOAAFTyME9NJv4eXhGjc8OGU7ROCgdx6VlrT24MAOQRi ryfu+0ctNK6mtpmjx9GU4V4b8qwelwZEnXxBqOdJa5RsJ2GlRnneUFx9NVVZur6s 7idzo+QCv3jszrxXD/K4YaWVclTvDD8pf/kprSiU2FTnZu/nL7nkqrHjbyAdInJp SMrMr/LV/NQAheN/1ZQikEh/uKDYxdXIbOe1zI1x1IUDwJuS4/zn9sOX7q7c+NDI OI+d++K1ch7eqHxcq8SHeMliXrZfpI/gDYSbGG/Khdsqsz0X1FZpCwh+gSgbAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQU12mP6H/zfavIP/84lsBojA5L4zMwHwYDVR0j BBgwFoAUGQk/d2Gp4zfQNAVgR1C/1K3CEh4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MTdiZDUwMi00MmMyLTQwMGQtYTJhZC1kMTc1NDM2NWE0NWQvMC8xOTA5M0Y3NzYx QTlFMzM3RDAzNDA1NjA0NzUwQkZENEFEQzIxMjFFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTkwOTNGNzc2MUE5RTMzN0QwMzQwNTYwNDc1MEJGRDRBREMy MTIxRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UxN2JkNTAyLTQyYzItNDAwZC1h MmFkLWQxNzU0MzY1YTQ1ZC8wLzMyMzQzMDMyM2EzNDM4MzQzMDNhMzIzMTMxMzMz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzczMzMyMzkucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk AkhAIRMwDQYJKoZIhvcNAQELBQADggEBADCsKZe+6VDa1w24Sj0fannhqNATj3Nt 78vEo2hHfWRHffvGFwqUz7quJxVyZZpHr/qwg2jxvjo1zYCz8HfY4BOlcQpoZ97M soIUGQAaBggGAUS7Rmlk5Vnq0BJgP4GqW6GFB4rXT3zVQ1ENkIip7l3iSvJ+EV6N 0fxc0BvB825cBmfM6U8SksMj5qGrpAcNZg6mO27kUW1G1+LN9ZGGbcERPDiaUGaO HGzZQXTagWqiKo3QdOBLTQ2rVVSe1YPZOCuKQmI6oP9h1ejRu+NHIKrslh/h+TWS vnZFEDgmeF0l5ngHVMWG/ZJ9nK0AbopJhbcLCHKmpT7+0rSU+fampCw= -----END CERTIFICATE-----Generated at Fri May 9 23:44:46 2025 by rpki-client