$ rpki-client -vvf repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/323430303a623038303a3a2f33322d3332203d3e203435323936.roa File: 323430303a623038303a3a2f33322d3332203d3e203435323936.roa (raw, json) Hash identifier: mAhuKWaZwCU2ddZVNRemmjaIEoWPi+10pFfmb3yzyIg= Subject key identifier: D7:F9:8F:74:30:5C:C7:F9:34:F5:64:F4:05:E8:2E:06:8D:1C:98:20 Certificate issuer: /CN=9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7 Certificate serial: 5E718D404F46D91C3149F0E39C3E65940CC506BB Authority key identifier: 9B:2F:00:47:6D:6A:C1:BA:AB:05:C5:A6:25:DC:00:C2:A5:9F:99:D7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/323430303a623038303a3a2f33322d3332203d3e203435323936.roa Signing time: Mon 28 Apr 2025 15:00:00 +0000 ROA not before: Mon 28 Apr 2025 14:55:00 +0000 ROA not after: Mon 27 Apr 2026 15:00:00 +0000 asID: 45296 IP address blocks: 2400:b080::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.crl rsync://repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:16:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:71:8d:40:4f:46:d9:1c:31:49:f0:e3:9c:3e:65:94:0c:c5:06:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7 Validity Not Before: Apr 28 14:55:00 2025 GMT Not After : Apr 27 15:00:00 2026 GMT Subject: CN=D7F98F74305CC7F934F564F405E82E068D1C9820 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ae:da:47:a5:00:b8:d6:c5:76:05:c2:30:e6: c3:a5:1a:a3:63:fb:26:45:e2:7e:64:05:28:58:77: dc:7d:42:ba:07:a4:4e:37:62:bd:40:c8:68:a8:f9: f4:fc:d8:b1:1d:d4:be:3e:b3:31:24:db:d9:e7:2a: 11:77:0e:3d:1b:36:ee:36:3b:ac:70:72:ca:b5:d9: a7:dd:60:a3:cc:0f:0e:75:b5:14:98:9b:1b:3b:d8: 2b:10:bc:5d:81:de:7f:36:fc:73:95:47:72:df:0b: f6:00:7a:8d:1b:b3:05:53:89:cf:f9:92:ce:17:67: 7b:f5:cc:3e:9e:08:cf:ff:72:e9:80:6b:e4:b0:2e: f1:ee:aa:48:ea:1a:71:13:15:8e:e4:1e:37:98:3c: 53:41:40:c0:79:cb:63:ca:91:2d:34:83:1a:d1:c5: 81:a3:ca:29:42:c7:79:20:62:ba:50:91:ae:6e:98: 0d:ed:e1:79:ae:6b:08:f6:bd:a2:f1:c4:2b:5e:44: a5:4b:d1:55:43:d2:21:d0:a7:1b:86:e6:1c:b3:4e: 54:09:12:0e:93:98:01:44:38:df:3b:44:c2:e2:60: 95:56:10:a7:f6:d1:89:8b:a4:ba:b1:88:ec:c6:32: 17:44:e1:1a:f1:5c:53:a5:68:36:ab:e8:9a:dc:20: 21:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:F9:8F:74:30:5C:C7:F9:34:F5:64:F4:05:E8:2E:06:8D:1C:98:20 X509v3 Authority Key Identifier: keyid:9B:2F:00:47:6D:6A:C1:BA:AB:05:C5:A6:25:DC:00:C2:A5:9F:99:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9B2F00476D6AC1BAAB05C5A625DC00C2A59F99D7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b606718f-f4c6-4775-8957-99d2bd666363/0/323430303a623038303a3a2f33322d3332203d3e203435323936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:b080::/32 Signature Algorithm: sha256WithRSAEncryption 60:a7:f0:d9:db:ad:92:77:cb:c3:5f:68:92:84:7a:73:21:07: 1b:c5:35:3b:ec:5a:08:43:3d:26:52:0b:63:80:c1:52:67:71: d0:a5:41:02:60:e6:a7:c4:4c:0e:84:36:11:60:b5:88:67:64: f8:69:0c:d7:f2:df:52:d7:0f:3f:2c:13:21:fa:23:fd:71:12: 9c:b3:60:6a:2d:04:c3:57:06:75:a6:61:07:7e:fd:6c:7d:bb: 0f:a7:c5:cb:e9:9d:fe:85:cd:7f:56:f1:84:0f:08:4a:35:ec: 13:ca:8a:fe:a7:5e:20:27:e2:dd:b0:a3:c4:03:35:4a:9b:b8: c2:59:d9:66:ab:51:fb:87:09:b7:57:f7:14:83:f1:67:1f:31: bc:71:75:45:cc:18:4a:24:cd:7d:3d:2e:4c:e7:4b:39:cf:33: 24:1c:ad:75:f1:83:85:32:34:27:a3:6f:f0:e9:4e:5b:f0:a5: 14:19:3f:19:e9:70:d8:29:46:05:2d:a9:73:6a:38:ad:0f:db: 19:39:28:cf:cc:e4:f0:f1:f3:ad:d4:5d:16:43:fa:0f:b0:c1: fc:5a:7c:1a:a5:d6:d9:5f:99:43:78:d6:c6:e3:71:3b:b6:dc: 57:fb:fa:e0:ac:a7:d1:94:59:9b:ff:80:58:32:b7:6b:aa:1c: ae:fc:5b:3b -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUXnGNQE9G2RwxSfDjnD5llAzFBrswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUIyRjAwNDc2RDZBQzFCQUFCMDVDNUE2MjVEQzAwQzJB NTlGOTlENzAeFw0yNTA0MjgxNDU1MDBaFw0yNjA0MjcxNTAwMDBaMDMxMTAvBgNV BAMTKEQ3Rjk4Rjc0MzA1Q0M3RjkzNEY1NjRGNDA1RTgyRTA2OEQxQzk4MjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvrtpHpQC41sV2BcIw5sOlGqNj +yZF4n5kBShYd9x9QroHpE43Yr1AyGio+fT82LEd1L4+szEk29nnKhF3Dj0bNu42 O6xwcsq12afdYKPMDw51tRSYmxs72CsQvF2B3n82/HOVR3LfC/YAeo0bswVTic/5 ks4XZ3v1zD6eCM//cumAa+SwLvHuqkjqGnETFY7kHjeYPFNBQMB5y2PKkS00gxrR xYGjyilCx3kgYrpQka5umA3t4Xmuawj2vaLxxCteRKVL0VVD0iHQpxuG5hyzTlQJ Eg6TmAFEON87RMLiYJVWEKf20YmLpLqxiOzGMhdE4RrxXFOlaDar6JrcICEHAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQU1/mPdDBcx/k09WT0BeguBo0cmCAwHwYDVR0j BBgwFoAUmy8AR21qwbqrBcWmJdwAwqWfmdcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NjA2NzE4Zi1mNGM2LTQ3NzUtODk1Ny05OWQyYmQ2NjYzNjMvMC85QjJGMDA0NzZE NkFDMUJBQUIwNUM1QTYyNURDMDBDMkE1OUY5OUQ3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUIyRjAwNDc2RDZBQzFCQUFCMDVDNUE2MjVEQzAwQzJBNTlG OTlENy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I2MDY3MThmLWY0YzYtNDc3NS04 OTU3LTk5ZDJiZDY2NjM2My8wLzMyMzQzMDMwM2E2MjMwMzgzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDM0MzUzMjM5MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkALCAMA0GCSqGSIb3 DQEBCwUAA4IBAQBgp/DZ262Sd8vDX2iShHpzIQcbxTU77FoIQz0mUgtjgMFSZ3HQ pUECYOanxEwOhDYRYLWIZ2T4aQzX8t9S1w8/LBMh+iP9cRKcs2BqLQTDVwZ1pmEH fv1sfbsPp8XL6Z3+hc1/VvGEDwhKNewTyor+p14gJ+LdsKPEAzVKm7jCWdlmq1H7 hwm3V/cUg/FnHzG8cXVFzBhKJM19PS5M50s5zzMkHK118YOFMjQno2/w6U5b8KUU GT8Z6XDYKUYFLalzajitD9sZOSjPzOTw8fOt1F0WQ/oPsMH8WnwapdbZX5lDeNbG 43E7ttxX+/rgrKfRlFmb/4BYMrdrqhyu/Fs7 -----END CERTIFICATE-----Generated at Tue Apr 29 18:47:23 2025 by rpki-client