$ rpki-client -vvf repo-rpki.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/323430323a343834303a3231363a3a2f34382d3438203d3e20313337333239.roa File: 323430323a343834303a3231363a3a2f34382d3438203d3e20313337333239.roa (raw, json) Hash identifier: 37dKtLWLzY2g+0icDDx79+9se08OIglhTc54oaTUF8U= Subject key identifier: 15:C7:E8:55:5A:61:E4:7F:C3:03:83:8C:70:34:6D:19:A7:E2:50:C9 Certificate issuer: /CN=19093F7761A9E337D03405604750BFD4ADC2121E Certificate serial: 20E66909DD745D8C5864B5795367F83D11F35A3B Authority key identifier: 19:09:3F:77:61:A9:E3:37:D0:34:05:60:47:50:BF:D4:AD:C2:12:1E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/19093F7761A9E337D03405604750BFD4ADC2121E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/323430323a343834303a3231363a3a2f34382d3438203d3e20313337333239.roa Signing time: Tue 29 Apr 2025 20:00:03 +0000 ROA not before: Tue 29 Apr 2025 19:55:03 +0000 ROA not after: Tue 28 Apr 2026 20:00:03 +0000 asID: 137329 IP address blocks: 2402:4840:216::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/19093F7761A9E337D03405604750BFD4ADC2121E.crl rsync://repo-rpki.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/19093F7761A9E337D03405604750BFD4ADC2121E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/19093F7761A9E337D03405604750BFD4ADC2121E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 00:30:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:e6:69:09:dd:74:5d:8c:58:64:b5:79:53:67:f8:3d:11:f3:5a:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=19093F7761A9E337D03405604750BFD4ADC2121E Validity Not Before: Apr 29 19:55:03 2025 GMT Not After : Apr 28 20:00:03 2026 GMT Subject: CN=15C7E8555A61E47FC303838C70346D19A7E250C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:ab:fc:55:45:f3:b5:45:f4:14:27:30:48:cd: ee:74:c7:ee:7b:8e:75:06:5c:e1:2b:da:60:6e:6a: 41:10:d5:84:c7:4b:e6:9a:da:2e:e3:ce:22:26:ea: b2:f5:51:79:c3:6e:82:bc:10:98:4d:35:dc:54:78: 0c:ac:27:1d:5d:4e:30:f3:e1:50:35:8e:f6:ce:ac: 33:90:8a:d4:39:1b:72:2f:34:2f:8b:e2:5f:24:c6: 13:58:dd:12:b8:96:af:32:cf:59:9b:e7:41:a9:a4: e0:53:0f:ac:06:6a:23:5d:41:5b:36:2e:7b:11:ee: a3:92:e9:24:b1:d6:7f:a2:58:cb:ff:a1:1c:5c:9a: 69:22:88:68:26:50:56:8d:9b:d2:aa:0c:23:82:c4: 27:01:e8:11:f0:d5:40:d0:d8:5c:07:00:44:48:fd: 50:42:32:bb:5a:91:0e:2e:ca:b0:e0:45:82:ef:47: d7:9b:34:19:fa:1c:06:aa:67:fd:14:60:f4:a6:95: 79:a9:55:90:d7:2c:5b:58:d3:12:84:e0:12:02:46: 70:6b:50:d1:42:34:f3:f8:95:2c:d0:c7:d6:89:fa: b7:82:45:5d:97:82:68:d1:4d:32:cf:69:24:50:17: 63:7e:0c:a8:09:f4:c0:6c:67:14:2a:fc:49:2b:f3: 7d:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:C7:E8:55:5A:61:E4:7F:C3:03:83:8C:70:34:6D:19:A7:E2:50:C9 X509v3 Authority Key Identifier: keyid:19:09:3F:77:61:A9:E3:37:D0:34:05:60:47:50:BF:D4:AD:C2:12:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/19093F7761A9E337D03405604750BFD4ADC2121E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/19093F7761A9E337D03405604750BFD4ADC2121E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e17bd502-42c2-400d-a2ad-d1754365a45d/0/323430323a343834303a3231363a3a2f34382d3438203d3e20313337333239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:4840:216::/48 Signature Algorithm: sha256WithRSAEncryption 85:34:85:fc:e3:3f:30:19:3e:af:6c:3b:55:ee:12:84:87:16: 2e:a9:18:52:d3:ed:1c:e2:bb:f6:bd:7f:f8:25:be:9b:44:99: 10:c8:96:06:90:82:3e:31:d7:a7:80:b8:7f:f4:de:de:ea:76: 36:d1:d9:d7:0d:14:d6:f6:40:44:56:cf:e9:da:0e:b0:25:97: f5:a7:f4:1e:67:41:1d:de:99:52:01:9e:90:1b:fd:22:a0:84: b7:2c:6b:47:db:56:87:d9:f3:ad:4f:8a:87:b2:dd:5f:fe:ab: e3:93:2e:78:1c:b2:66:40:2a:8f:a0:75:c9:d3:3d:dc:c5:eb: c7:f7:47:f1:1c:53:37:cd:5a:92:90:94:37:14:fc:c3:c8:9b: cd:bb:6a:a5:d9:f9:86:97:86:69:19:e3:c4:bc:16:22:0f:89: cd:dd:0e:fb:24:ca:5e:c3:fa:90:cb:0c:a5:52:40:e0:a3:51: 77:74:41:1a:7d:c2:07:95:6b:1c:bf:21:5f:44:c1:df:a8:99: ea:9d:2d:07:e2:3b:85:3e:ad:f3:c5:b2:ad:1e:74:e5:24:6b: 4f:ff:8e:20:84:73:e6:dc:80:ba:20:84:9f:0a:f3:57:e5:9f: af:70:71:9b:96:0c:b5:ed:26:ae:f6:cb:41:65:27:3a:be:33: 30:72:8a:48 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUIOZpCd10XYxYZLV5U2f4PRHzWjswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTkwOTNGNzc2MUE5RTMzN0QwMzQwNTYwNDc1MEJGRDRB REMyMTIxRTAeFw0yNTA0MjkxOTU1MDNaFw0yNjA0MjgyMDAwMDNaMDMxMTAvBgNV BAMTKDE1QzdFODU1NUE2MUU0N0ZDMzAzODM4QzcwMzQ2RDE5QTdFMjUwQzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOq/xVRfO1RfQUJzBIze50x+57 jnUGXOEr2mBuakEQ1YTHS+aa2i7jziIm6rL1UXnDboK8EJhNNdxUeAysJx1dTjDz 4VA1jvbOrDOQitQ5G3IvNC+L4l8kxhNY3RK4lq8yz1mb50GppOBTD6wGaiNdQVs2 LnsR7qOS6SSx1n+iWMv/oRxcmmkiiGgmUFaNm9KqDCOCxCcB6BHw1UDQ2FwHAERI /VBCMrtakQ4uyrDgRYLvR9ebNBn6HAaqZ/0UYPSmlXmpVZDXLFtY0xKE4BICRnBr UNFCNPP4lSzQx9aJ+reCRV2XgmjRTTLPaSRQF2N+DKgJ9MBsZxQq/Ekr830RAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUFcfoVVph5H/DA4OMcDRtGafiUMkwHwYDVR0j BBgwFoAUGQk/d2Gp4zfQNAVgR1C/1K3CEh4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MTdiZDUwMi00MmMyLTQwMGQtYTJhZC1kMTc1NDM2NWE0NWQvMC8xOTA5M0Y3NzYx QTlFMzM3RDAzNDA1NjA0NzUwQkZENEFEQzIxMjFFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTkwOTNGNzc2MUE5RTMzN0QwMzQwNTYwNDc1MEJGRDRBREMy MTIxRS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UxN2JkNTAyLTQyYzItNDAwZC1h MmFkLWQxNzU0MzY1YTQ1ZC8wLzMyMzQzMDMyM2EzNDM4MzQzMDNhMzIzMTM2M2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM3MzMzMjM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAJI QAIWMA0GCSqGSIb3DQEBCwUAA4IBAQCFNIX84z8wGT6vbDtV7hKEhxYuqRhS0+0c 4rv2vX/4Jb6bRJkQyJYGkII+MdengLh/9N7e6nY20dnXDRTW9kBEVs/p2g6wJZf1 p/QeZ0Ed3plSAZ6QG/0ioIS3LGtH21aH2fOtT4qHst1f/qvjky54HLJmQCqPoHXJ 0z3cxevH90fxHFM3zVqSkJQ3FPzDyJvNu2ql2fmGl4ZpGePEvBYiD4nN3Q77JMpe w/qQywylUkDgo1F3dEEafcIHlWscvyFfRMHfqJnqnS0H4juFPq3zxbKtHnTlJGtP /44ghHPm3IC6IISfCvNX5Z+vcHGblgy17Sau9stBZSc6vjMwcopI -----END CERTIFICATE-----Generated at Sat May 10 06:33:14 2025 by rpki-client