$ rpki-client -vvf repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/323430333a653063303a323a3a2f34382d3438203d3e20313338303839.roa File: 323430333a653063303a323a3a2f34382d3438203d3e20313338303839.roa (raw, json) Hash identifier: 7qX9WcxP/RC8tMcJg/P60OwjJ/UboqeJrbX2Ange7f0= Subject key identifier: EF:CB:4A:0E:98:AA:C0:D2:E9:64:18:28:C2:71:1E:E2:13:FE:4A:A2 Certificate issuer: /CN=7D4F0D007B60134996AC3198B9E5B71EAF70E733 Certificate serial: 681716FCF655C70BC54DFF5C8148AD51D9D7EB23 Authority key identifier: 7D:4F:0D:00:7B:60:13:49:96:AC:31:98:B9:E5:B7:1E:AF:70:E7:33 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/323430333a653063303a323a3a2f34382d3438203d3e20313338303839.roa Signing time: Tue 01 Apr 2025 02:00:00 +0000 ROA not before: Tue 01 Apr 2025 01:55:00 +0000 ROA not after: Tue 31 Mar 2026 02:00:00 +0000 asID: 138089 IP address blocks: 2403:e0c0:2::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.crl rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 05:37:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:17:16:fc:f6:55:c7:0b:c5:4d:ff:5c:81:48:ad:51:d9:d7:eb:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D4F0D007B60134996AC3198B9E5B71EAF70E733 Validity Not Before: Apr 1 01:55:00 2025 GMT Not After : Mar 31 02:00:00 2026 GMT Subject: CN=EFCB4A0E98AAC0D2E9641828C2711EE213FE4AA2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:02:f9:43:0a:99:d7:c0:da:47:ae:07:a1:72: a4:a5:7f:09:9f:b0:00:60:04:3b:05:10:da:92:26: 15:9a:61:56:a5:a0:e1:51:a2:96:01:1a:f5:f3:44: a5:76:df:ca:1b:0c:db:5b:e0:0e:75:b2:69:5e:20: b5:41:63:a4:d9:1c:28:78:60:6f:cf:c4:74:06:a0: 38:03:ff:f9:9b:ad:a8:dd:cf:24:04:01:91:6f:49: 10:0e:cf:5a:73:6f:ff:a9:e7:fe:59:ec:6c:d1:c7: ee:3d:28:6b:6e:71:56:5c:41:32:e7:2c:9e:53:b2: 27:b6:40:9e:93:83:9f:1a:57:b9:b6:62:4b:8a:3a: c0:ce:c3:bd:a1:a8:d4:58:18:da:f0:15:35:c8:6e: 4f:dd:2b:30:1e:26:b5:10:1e:4a:ab:9d:a7:aa:c3: 4f:eb:49:21:9c:6e:bc:5d:18:c0:8c:d0:d5:81:f9: ff:74:60:41:c5:06:ca:69:1a:08:22:da:b5:51:2f: 08:b5:30:5d:7c:d1:99:60:fa:f7:61:93:46:1c:37: 4c:a1:87:2f:c9:58:24:a5:dc:c8:a7:17:64:de:9a: b5:8f:05:0d:6f:f5:54:bd:0c:0a:03:f3:aa:3e:15: 7c:14:f8:75:d4:40:a8:68:5a:18:32:6f:d5:e4:74: 65:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:CB:4A:0E:98:AA:C0:D2:E9:64:18:28:C2:71:1E:E2:13:FE:4A:A2 X509v3 Authority Key Identifier: keyid:7D:4F:0D:00:7B:60:13:49:96:AC:31:98:B9:E5:B7:1E:AF:70:E7:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/323430333a653063303a323a3a2f34382d3438203d3e20313338303839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:e0c0:2::/48 Signature Algorithm: sha256WithRSAEncryption 30:53:63:3c:72:29:07:93:d7:05:1f:d0:d4:ef:da:76:0d:6f: 18:7c:5f:a7:d1:25:cd:da:f2:07:2c:8d:fa:3a:a9:78:56:ac: 0c:2b:45:b8:13:90:fc:75:4b:ad:72:d8:94:3e:fa:9e:f6:19: 32:2c:01:79:4b:c2:49:0e:70:9b:1c:6b:4f:67:19:53:50:c4: 63:83:65:b3:14:29:fd:16:c3:79:20:f2:76:30:ba:1d:a0:85: 86:c9:0d:c6:e8:70:89:a4:32:48:94:4d:27:24:5f:cb:82:ac: f8:a0:5e:6c:ea:0c:81:33:41:fd:30:c6:71:46:d8:6d:02:29: 04:7c:0a:2b:3a:f3:d4:4b:62:b0:89:1e:b9:f0:b4:7c:97:bf: 23:56:47:b3:a9:92:de:98:9a:a9:f0:d3:ad:75:2d:6e:c6:0e: b7:43:ba:f5:d0:3c:4f:2e:54:6f:54:38:b6:c9:94:d6:91:12: d6:ea:35:34:12:9b:31:a1:d5:7e:0d:d9:ea:21:6c:0a:ba:57: 9f:eb:c6:8c:1e:06:18:66:16:84:3d:64:b5:dd:57:89:a1:d9: 9a:90:98:c7:ad:35:23:26:0a:a6:c0:10:a9:a7:77:ff:8b:01: ff:15:fb:ad:73:23:5d:61:b7:fb:d2:6d:da:83:09:99:85:f7: 53:f2:f8:94 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUaBcW/PZVxwvFTf9cgUitUdnX6yMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0Q0RjBEMDA3QjYwMTM0OTk2QUMzMTk4QjlFNUI3MUVB RjcwRTczMzAeFw0yNTA0MDEwMTU1MDBaFw0yNjAzMzEwMjAwMDBaMDMxMTAvBgNV BAMTKEVGQ0I0QTBFOThBQUMwRDJFOTY0MTgyOEMyNzExRUUyMTNGRTRBQTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3AvlDCpnXwNpHrgehcqSlfwmf sABgBDsFENqSJhWaYValoOFRopYBGvXzRKV238obDNtb4A51smleILVBY6TZHCh4 YG/PxHQGoDgD//mbrajdzyQEAZFvSRAOz1pzb/+p5/5Z7GzRx+49KGtucVZcQTLn LJ5Tsie2QJ6Tg58aV7m2YkuKOsDOw72hqNRYGNrwFTXIbk/dKzAeJrUQHkqrnaeq w0/rSSGcbrxdGMCM0NWB+f90YEHFBsppGggi2rVRLwi1MF180Zlg+vdhk0YcN0yh hy/JWCSl3MinF2TemrWPBQ1v9VS9DAoD86o+FXwU+HXUQKhoWhgyb9XkdGUdAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQU78tKDpiqwNLpZBgownEe4hP+SqIwHwYDVR0j BBgwFoAUfU8NAHtgE0mWrDGYueW3Hq9w5zMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YWJhNGU1OS1mYjMxLTQxYjUtODhlNy0wYjJjZWQxZjIwMWMvMC83RDRGMEQwMDdC NjAxMzQ5OTZBQzMxOThCOUU1QjcxRUFGNzBFNzMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0Q0RjBEMDA3QjYwMTM0OTk2QUMzMTk4QjlFNUI3MUVBRjcw RTczMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhYmE0ZTU5LWZiMzEtNDFiNS04 OGU3LTBiMmNlZDFmMjAxYy8wLzMyMzQzMDMzM2E2NTMwNjMzMDNhMzIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzMDM4Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkA+DAAAIw DQYJKoZIhvcNAQELBQADggEBADBTYzxyKQeT1wUf0NTv2nYNbxh8X6fRJc3a8gcs jfo6qXhWrAwrRbgTkPx1S61y2JQ++p72GTIsAXlLwkkOcJsca09nGVNQxGODZbMU Kf0Ww3kg8nYwuh2ghYbJDcbocImkMkiUTSckX8uCrPigXmzqDIEzQf0wxnFG2G0C KQR8Cis689RLYrCJHrnwtHyXvyNWR7Opkt6Ymqnw0611LW7GDrdDuvXQPE8uVG9U OLbJlNaREtbqNTQSmzGh1X4N2eohbAq6V5/rxoweBhhmFoQ9ZLXdV4mh2ZqQmMet NSMmCqbAEKmnd/+LAf8V+61zI11ht/vSbdqDCZmF91Py+JQ= -----END CERTIFICATE-----Generated at Tue Apr 29 09:29:26 2025 by rpki-client