$ rpki-client -vvf repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/323430303a623038303a343532393a3a2f34382d3438203d3e203435323936.roa File: 323430303a623038303a343532393a3a2f34382d3438203d3e203435323936.roa (raw, json) Hash identifier: nQIMnNv0zD1kzZE1OsmGchXVsI7eh3j6LWcU1vJtAB8= Subject key identifier: 7C:25:D8:29:08:01:61:97:E1:2C:C6:4E:B1:89:E8:B8:4A:8E:7F:BF Certificate issuer: /CN=9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7 Certificate serial: 315D986E77749BB0F718516511D78201DC3252F6 Authority key identifier: 9B:2F:00:47:6D:6A:C1:BA:AB:05:C5:A6:25:DC:00:C2:A5:9F:99:D7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/323430303a623038303a343532393a3a2f34382d3438203d3e203435323936.roa Signing time: Tue 29 Apr 2025 02:00:00 +0000 ROA not before: Tue 29 Apr 2025 01:55:00 +0000 ROA not after: Tue 28 Apr 2026 02:00:00 +0000 asID: 45296 IP address blocks: 2400:b080:4529::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.crl rsync://repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:16:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:5d:98:6e:77:74:9b:b0:f7:18:51:65:11:d7:82:01:dc:32:52:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7 Validity Not Before: Apr 29 01:55:00 2025 GMT Not After : Apr 28 02:00:00 2026 GMT Subject: CN=7C25D82908016197E12CC64EB189E8B84A8E7FBF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:e2:17:c0:3a:0b:66:27:6b:80:42:ac:39:2e: 16:ed:b7:c7:65:f7:f7:66:64:a2:3e:3e:bc:f9:79: 95:f4:98:41:ce:20:8f:a0:12:20:7c:42:49:13:8d: c4:31:3e:75:47:41:db:c5:fe:14:9b:a5:7d:f5:3b: 7b:c0:9f:bd:b5:50:a5:3c:b1:4e:ff:a5:07:cd:cc: 5b:c9:93:80:6c:25:67:84:bc:46:c1:7b:e2:92:aa: b6:e3:44:52:7c:be:7d:97:6b:df:e9:b3:05:9a:5d: af:b7:cc:45:18:f2:80:76:07:85:42:40:2f:1b:fb: b2:f9:87:31:37:41:dd:f0:46:30:48:f4:2f:a7:e0: 8b:8d:70:06:26:f5:08:ed:07:3c:55:33:69:fd:36: a9:0f:5e:59:7a:72:a2:66:de:46:33:57:2c:db:21: 7f:c8:35:4d:87:ee:b0:d5:31:61:14:6f:26:62:01: 3e:a7:16:73:b2:94:0e:bf:5a:17:0b:bc:f9:17:ba: 82:69:30:f0:79:81:9c:22:28:25:16:67:93:8a:c2: a0:e3:15:de:dd:87:6d:86:c4:eb:5f:06:e9:b6:27: 85:d6:11:13:3d:41:11:e3:f4:0a:36:7f:86:50:3a: ae:04:49:20:a8:d1:e7:6d:53:a8:06:48:67:c4:1e: 47:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:25:D8:29:08:01:61:97:E1:2C:C6:4E:B1:89:E8:B8:4A:8E:7F:BF X509v3 Authority Key Identifier: keyid:9B:2F:00:47:6D:6A:C1:BA:AB:05:C5:A6:25:DC:00:C2:A5:9F:99:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/323430303a623038303a343532393a3a2f34382d3438203d3e203435323936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:b080:4529::/48 Signature Algorithm: sha256WithRSAEncryption b7:af:2b:1d:77:ad:4a:35:4a:b0:6b:42:1d:2e:b1:c3:96:a4: 45:c1:12:39:f8:5c:a4:ef:10:77:88:67:3c:14:f0:86:a8:c2: 0e:73:87:b4:53:be:93:11:3e:86:9d:99:0b:49:0f:b0:b7:6d: 8a:e3:20:f5:47:df:bf:7f:5c:1a:a0:41:32:13:a5:d0:37:20: be:b0:95:36:b9:a5:25:58:d0:6f:b5:39:16:c1:4a:65:c4:ff: e1:f3:8e:18:07:28:d4:e0:43:ea:24:d1:c7:78:d9:2c:16:f1: 27:94:5b:43:7b:c0:2b:85:51:59:09:5d:05:df:2d:3b:a2:48: a1:1c:f3:66:66:d1:67:e7:b7:9c:1d:42:0a:7d:a4:6e:6e:7f: 4b:fb:18:dc:eb:45:43:ed:f3:2d:2c:c7:f1:e3:cc:85:0a:9a: 0f:c2:ef:17:33:a6:93:01:63:17:df:b3:25:65:2f:7c:94:bc: 84:1e:6d:51:56:d1:80:07:57:03:4d:79:66:fa:68:18:48:73: b8:87:74:80:49:2f:6b:fa:90:97:bc:a5:ae:7d:a8:cc:7b:22: a2:41:45:2a:40:6e:53:3a:b1:8f:93:05:94:f0:a2:b4:dc:ff: 2b:cd:0f:fd:94:1e:fd:c9:80:1a:01:18:88:5e:65:c0:37:43: 2a:33:03:9f -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUMV2Ybnd0m7D3GFFlEdeCAdwyUvYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUIyRjAwNDc2RDZBQzFCQUFCMDVDNUE2MjVEQzAwQzJB NTlGOTlENzAeFw0yNTA0MjkwMTU1MDBaFw0yNjA0MjgwMjAwMDBaMDMxMTAvBgNV BAMTKDdDMjVEODI5MDgwMTYxOTdFMTJDQzY0RUIxODlFOEI4NEE4RTdGQkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD04hfAOgtmJ2uAQqw5Lhbtt8dl 9/dmZKI+Prz5eZX0mEHOII+gEiB8QkkTjcQxPnVHQdvF/hSbpX31O3vAn721UKU8 sU7/pQfNzFvJk4BsJWeEvEbBe+KSqrbjRFJ8vn2Xa9/pswWaXa+3zEUY8oB2B4VC QC8b+7L5hzE3Qd3wRjBI9C+n4IuNcAYm9QjtBzxVM2n9NqkPXll6cqJm3kYzVyzb IX/INU2H7rDVMWEUbyZiAT6nFnOylA6/WhcLvPkXuoJpMPB5gZwiKCUWZ5OKwqDj Fd7dh22GxOtfBum2J4XWERM9QRHj9Ao2f4ZQOq4ESSCo0edtU6gGSGfEHkcLAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUfCXYKQgBYZfhLMZOsYnouEqOf78wHwYDVR0j BBgwFoAUmy8AR21qwbqrBcWmJdwAwqWfmdcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NjA2NzE4Zi1mNGM2LTQ3NzUtODk1Ny05OWQyYmQ2NjYzNjMvMC85QjJGMDA0NzZE NkFDMUJBQUIwNUM1QTYyNURDMDBDMkE1OUY5OUQ3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUIyRjAwNDc2RDZBQzFCQUFCMDVDNUE2MjVEQzAwQzJBNTlG OTlENy5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I2MDY3MThmLWY0YzYtNDc3NS04 OTU3LTk5ZDJiZDY2NjM2My8wLzMyMzQzMDMwM2E2MjMwMzgzMDNhMzQzNTMyMzkz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzNDM1MzIzOTM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJACw gEUpMA0GCSqGSIb3DQEBCwUAA4IBAQC3rysdd61KNUqwa0IdLrHDlqRFwRI5+Fyk 7xB3iGc8FPCGqMIOc4e0U76TET6GnZkLSQ+wt22K4yD1R9+/f1waoEEyE6XQNyC+ sJU2uaUlWNBvtTkWwUplxP/h844YByjU4EPqJNHHeNksFvEnlFtDe8ArhVFZCV0F 3y07okihHPNmZtFn57ecHUIKfaRubn9L+xjc60VD7fMtLMfx48yFCpoPwu8XM6aT AWMX37MlZS98lLyEHm1RVtGAB1cDTXlm+mgYSHO4h3SASS9r+pCXvKWufajMeyKi QUUqQG5TOrGPkwWU8KK03P8rzQ/9lB79yYAaARiIXmXAN0MqMwOf -----END CERTIFICATE-----Generated at Tue Apr 29 16:37:55 2025 by rpki-client