$ rpki-client -vvf repo-rpki.idnic.net/repo/026cf28d-ffc7-4351-a8cb-25d19fc43177/0/323430353a336663303a3a2f33322d3332203d3e20313339343031.roa File: 323430353a336663303a3a2f33322d3332203d3e20313339343031.roa (raw, json) Hash identifier: nFTgph+YloLgW+6sxuKRYCRq1ouvahd5GZWPN5dkEg0= Subject key identifier: 50:71:47:24:67:2C:B5:D6:7F:3D:5D:F4:97:D9:F0:E2:14:0C:4A:54 Certificate issuer: /CN=B65D1460ACFC8D91183381DC64E52D2E282D14B0 Certificate serial: 625E61B1786C5DAA72ED012BD28F8556B95F3D77 Authority key identifier: B6:5D:14:60:AC:FC:8D:91:18:33:81:DC:64:E5:2D:2E:28:2D:14:B0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B65D1460ACFC8D91183381DC64E52D2E282D14B0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/026cf28d-ffc7-4351-a8cb-25d19fc43177/0/323430353a336663303a3a2f33322d3332203d3e20313339343031.roa Signing time: Mon 02 Jun 2025 02:04:28 +0000 ROA not before: Mon 02 Jun 2025 01:59:28 +0000 ROA not after: Mon 01 Jun 2026 02:04:28 +0000 asID: 139401 IP address blocks: 2405:3fc0::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/026cf28d-ffc7-4351-a8cb-25d19fc43177/0/B65D1460ACFC8D91183381DC64E52D2E282D14B0.crl rsync://repo-rpki.idnic.net/repo/026cf28d-ffc7-4351-a8cb-25d19fc43177/0/B65D1460ACFC8D91183381DC64E52D2E282D14B0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B65D1460ACFC8D91183381DC64E52D2E282D14B0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 03:08:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:5e:61:b1:78:6c:5d:aa:72:ed:01:2b:d2:8f:85:56:b9:5f:3d:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B65D1460ACFC8D91183381DC64E52D2E282D14B0 Validity Not Before: Jun 2 01:59:28 2025 GMT Not After : Jun 1 02:04:28 2026 GMT Subject: CN=50714724672CB5D67F3D5DF497D9F0E2140C4A54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:06:16:cc:c2:80:aa:6e:fd:25:8b:73:b5:ce: 25:5f:fc:1f:e5:09:2d:7f:d0:f1:58:77:90:79:2a: ac:1c:4d:cd:59:98:de:ab:d5:ec:91:da:13:d3:bd: 13:08:f2:e7:a1:7b:87:95:1b:e1:53:d1:32:98:a6: 0b:48:0b:e1:be:31:f8:a8:b5:e9:2b:c7:e3:ce:00: e0:db:ca:44:47:da:3d:2c:58:6c:71:4e:ee:a9:d2: 6f:6f:5f:02:71:fc:94:91:1d:fe:bc:d2:0a:b4:b0: 72:42:52:05:e8:21:8e:af:a8:53:a1:b5:86:05:ce: a2:9c:a1:d7:c4:a9:c9:b9:8e:79:b1:16:2b:97:2d: 24:bd:1a:b1:e5:0f:5c:81:69:0c:d3:82:e9:85:c6: d8:81:75:c5:23:d3:49:4a:df:31:01:40:da:46:92: b6:21:6b:d0:11:a2:80:65:2b:70:de:d5:df:6f:b2: 55:db:4f:8d:31:86:88:18:b2:17:71:c9:0e:37:52: 38:0e:c2:2e:29:30:c0:ad:98:08:a2:d2:57:c8:a7: 69:96:fc:9e:d8:12:0c:7a:f6:83:bd:e0:87:86:c4: a3:44:13:2f:0a:2b:1b:13:03:fb:8d:41:7a:d2:1f: 9b:19:15:cc:8e:c9:bc:15:74:6a:3f:fa:61:80:78: 63:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:71:47:24:67:2C:B5:D6:7F:3D:5D:F4:97:D9:F0:E2:14:0C:4A:54 X509v3 Authority Key Identifier: keyid:B6:5D:14:60:AC:FC:8D:91:18:33:81:DC:64:E5:2D:2E:28:2D:14:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/026cf28d-ffc7-4351-a8cb-25d19fc43177/0/B65D1460ACFC8D91183381DC64E52D2E282D14B0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B65D1460ACFC8D91183381DC64E52D2E282D14B0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/026cf28d-ffc7-4351-a8cb-25d19fc43177/0/323430353a336663303a3a2f33322d3332203d3e20313339343031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:3fc0::/32 Signature Algorithm: sha256WithRSAEncryption 71:95:9c:e9:76:c4:05:ee:e4:34:2c:ab:46:a3:b7:89:13:c9: 78:b5:d8:c4:d7:43:75:2d:26:49:f4:c7:47:dd:d5:9c:5e:f0: 35:ea:75:9c:0b:99:86:c5:07:53:51:4a:a1:07:de:5a:68:02: 9c:3a:bd:7a:7b:ad:2f:3d:7c:b8:c1:81:45:8d:2f:4a:5c:2e: 25:79:c6:73:ec:96:41:cb:17:36:c6:9d:31:57:4c:31:37:90: b7:2d:32:ea:a2:b2:69:2d:87:61:59:1f:7a:d9:da:06:75:1a: 67:4a:b3:aa:39:83:46:d4:18:56:7a:9c:8b:c3:47:45:bf:cd: 49:09:90:76:e8:80:49:d0:ee:24:be:66:91:df:2a:b2:7d:83: 1a:63:38:e9:50:8b:11:39:89:60:a2:5f:b7:53:58:2c:42:43: f1:c7:90:f6:91:91:b1:ef:24:c3:4e:97:a0:86:7d:ce:b9:66: c9:63:eb:82:8f:ae:6f:77:2e:cd:08:1b:32:16:27:ca:e4:78: f3:25:9d:5b:92:3e:6a:35:47:0e:08:83:74:15:af:4f:2c:7f: 2b:d4:48:8f:e7:e6:5a:51:0e:df:ea:4b:51:1c:00:66:84:d6: 95:91:80:d8:c0:6b:c8:40:11:ee:d1:2a:f9:d4:07:89:e1:0a: 06:a3:c0:09 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUYl5hsXhsXapy7QEr0o+FVrlfPXcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjY1RDE0NjBBQ0ZDOEQ5MTE4MzM4MURDNjRFNTJEMkUy ODJEMTRCMDAeFw0yNTA2MDIwMTU5MjhaFw0yNjA2MDEwMjA0MjhaMDMxMTAvBgNV BAMTKDUwNzE0NzI0NjcyQ0I1RDY3RjNENURGNDk3RDlGMEUyMTQwQzRBNTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBBhbMwoCqbv0li3O1ziVf/B/l CS1/0PFYd5B5KqwcTc1ZmN6r1eyR2hPTvRMI8uehe4eVG+FT0TKYpgtIC+G+Mfio tekrx+POAODbykRH2j0sWGxxTu6p0m9vXwJx/JSRHf680gq0sHJCUgXoIY6vqFOh tYYFzqKcodfEqcm5jnmxFiuXLSS9GrHlD1yBaQzTgumFxtiBdcUj00lK3zEBQNpG krYha9ARooBlK3De1d9vslXbT40xhogYshdxyQ43UjgOwi4pMMCtmAii0lfIp2mW /J7YEgx69oO94IeGxKNEEy8KKxsTA/uNQXrSH5sZFcyOybwVdGo/+mGAeGOPAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUUHFHJGcstdZ/PV30l9nw4hQMSlQwHwYDVR0j BBgwFoAUtl0UYKz8jZEYM4HcZOUtLigtFLAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MjZjZjI4ZC1mZmM3LTQzNTEtYThjYi0yNWQxOWZjNDMxNzcvMC9CNjVEMTQ2MEFD RkM4RDkxMTgzMzgxREM2NEU1MkQyRTI4MkQxNEIwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjY1RDE0NjBBQ0ZDOEQ5MTE4MzM4MURDNjRFNTJEMkUyODJE MTRCMC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAyNmNmMjhkLWZmYzctNDM1MS1h OGNiLTI1ZDE5ZmM0MzE3Ny8wLzMyMzQzMDM1M2EzMzY2NjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzOTM0MzAzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQFP8AwDQYJKoZI hvcNAQELBQADggEBAHGVnOl2xAXu5DQsq0ajt4kTyXi12MTXQ3UtJkn0x0fd1Zxe 8DXqdZwLmYbFB1NRSqEH3lpoApw6vXp7rS89fLjBgUWNL0pcLiV5xnPslkHLFzbG nTFXTDE3kLctMuqismkth2FZH3rZ2gZ1GmdKs6o5g0bUGFZ6nIvDR0W/zUkJkHbo gEnQ7iS+ZpHfKrJ9gxpjOOlQixE5iWCiX7dTWCxCQ/HHkPaRkbHvJMNOl6CGfc65 Zslj64KPrm93Ls0IGzIWJ8rkePMlnVuSPmo1Rw4Ig3QVr08sfyvUSI/n5lpRDt/q S1EcAGaE1pWRgNjAa8hAEe7RKvnUB4nhCgajwAk= -----END CERTIFICATE-----Generated at Sat Jun 7 18:59:42 2025 by rpki-client