$ rpki-client -vvf repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a333a3a2f34382d3438203d3e20313430343133.roa File: 323430363a313363303a333a3a2f34382d3438203d3e20313430343133.roa (raw, json) Hash identifier: IFLXJKN/cIbd/Oh+HOkULz+7XgZ+889cBvLbuXP+Xf8= Subject key identifier: 84:7B:98:77:1A:EA:CD:F0:6E:21:96:6D:A0:71:72:8C:22:8D:6E:7F Certificate issuer: /CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Certificate serial: 1D2ABC81CA4161632D1632B16D339F4896EA486A Authority key identifier: 5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a333a3a2f34382d3438203d3e20313430343133.roa Signing time: Sun 04 May 2025 15:02:24 +0000 ROA not before: Sun 04 May 2025 14:57:24 +0000 ROA not after: Sun 03 May 2026 15:02:24 +0000 asID: 140413 IP address blocks: 2406:13c0:3::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 20:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:2a:bc:81:ca:41:61:63:2d:16:32:b1:6d:33:9f:48:96:ea:48:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Validity Not Before: May 4 14:57:24 2025 GMT Not After : May 3 15:02:24 2026 GMT Subject: CN=847B98771AEACDF06E21966DA071728C228D6E7F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:9d:26:98:08:b5:d3:8b:97:0a:40:22:de:0e: 08:aa:af:8a:42:16:16:8d:d8:90:4b:b9:14:01:0c: 1d:c9:26:26:99:95:99:f5:f8:87:0d:79:27:e8:51: 73:1a:cf:1d:4b:3b:bb:b0:c9:b8:03:84:41:48:84: 0f:b3:99:76:82:92:67:d4:97:56:02:75:2f:35:41: 66:88:c2:5f:d4:38:ba:06:62:94:6b:39:07:57:ed: 47:51:8a:63:6e:c2:59:1f:de:1b:68:4a:7e:d6:e4: 08:15:70:10:58:d0:04:ab:46:7b:5c:d5:09:46:ff: 17:7e:22:15:75:4c:70:62:81:c8:21:bc:81:0c:01: 6a:4b:85:76:23:44:c3:9c:ed:b9:9a:c7:16:c0:8d: f7:f5:6c:2b:45:73:99:e1:e1:92:36:8f:0e:2e:6c: 2a:3d:fc:c5:d4:0c:5a:d6:50:ef:fd:ed:b0:8c:07: f8:43:98:0a:81:71:7d:5f:80:66:63:ad:fc:5f:ea: 32:92:a2:ee:86:13:84:ec:17:e4:73:d4:3b:49:15: 58:ef:7e:79:d5:94:b4:36:7c:37:9a:69:33:3e:0d: ec:18:e7:9a:44:4e:60:a9:e2:55:6d:50:67:65:cd: fe:20:59:07:06:b1:fd:7b:ab:3e:23:8c:16:4f:cc: 56:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:7B:98:77:1A:EA:CD:F0:6E:21:96:6D:A0:71:72:8C:22:8D:6E:7F X509v3 Authority Key Identifier: keyid:5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a333a3a2f34382d3438203d3e20313430343133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:13c0:3::/48 Signature Algorithm: sha256WithRSAEncryption 42:cc:b2:69:12:a4:a7:4d:5c:d5:e3:07:2e:32:19:a3:69:d0: 9f:31:b7:2b:3b:3b:39:4d:2a:e3:1d:05:ab:ca:d3:c3:45:a2: 5f:f4:39:1a:ea:8f:9c:85:34:a0:fa:0e:5b:de:fa:d3:b5:7c: 3e:c8:08:3e:64:25:a6:1d:0b:db:6d:c2:15:4f:5d:b4:57:96: 30:44:2a:19:12:79:ba:06:b1:38:7d:57:87:16:6d:03:e2:9b: 0c:09:d2:25:70:05:6c:83:2d:eb:0d:c8:b6:8b:6b:f7:a1:b4: 2e:92:03:62:89:86:3e:bd:df:42:9c:fd:09:51:a2:49:03:1e: 86:7c:10:7c:97:3d:62:ff:72:15:ee:a8:be:9b:d0:c8:03:40: 63:6b:ab:aa:5d:a5:2b:33:82:c5:e3:36:64:e0:a2:8f:a3:a7: f5:47:a0:5c:6c:cb:04:5c:5f:79:dd:5d:05:18:ad:21:e6:53: 9f:b7:4a:ac:7a:91:1a:ef:44:1c:36:d2:ca:bf:f0:9d:ba:9b: 72:1b:1f:bf:3f:96:e7:6f:73:8b:e9:e9:84:c6:93:4e:40:c8: 76:80:c2:3f:6d:12:42:e5:64:7d:26:c1:ce:1a:23:19:1a:47: c6:a4:d2:ac:3e:9a:b6:67:3c:53:a0:b8:cb:2c:91:ff:b5:d5: 21:74:96:bc -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUHSq8gcpBYWMtFjKxbTOfSJbqSGowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhB ODFBOTNCRTAeFw0yNTA1MDQxNDU3MjRaFw0yNjA1MDMxNTAyMjRaMDMxMTAvBgNV BAMTKDg0N0I5ODc3MUFFQUNERjA2RTIxOTY2REEwNzE3MjhDMjI4RDZFN0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBnSaYCLXTi5cKQCLeDgiqr4pC FhaN2JBLuRQBDB3JJiaZlZn1+IcNeSfoUXMazx1LO7uwybgDhEFIhA+zmXaCkmfU l1YCdS81QWaIwl/UOLoGYpRrOQdX7UdRimNuwlkf3htoSn7W5AgVcBBY0ASrRntc 1QlG/xd+IhV1THBigcghvIEMAWpLhXYjRMOc7bmaxxbAjff1bCtFc5nh4ZI2jw4u bCo9/MXUDFrWUO/97bCMB/hDmAqBcX1fgGZjrfxf6jKSou6GE4TsF+Rz1DtJFVjv fnnVlLQ2fDeaaTM+DewY55pETmCp4lVtUGdlzf4gWQcGsf17qz4jjBZPzFavAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUhHuYdxrqzfBuIZZtoHFyjCKNbn8wHwYDVR0j BBgwFoAUWrLwSLz51g1jI6cu9yVfOKgak74wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NmQ3ZWRlMS0zZmQwLTQ2MjQtYmVmOC0wZTczZTg0OTk0YmMvMC81QUIyRjA0OEJD RjlENjBENjMyM0E3MkVGNzI1NUYzOEE4MUE5M0JFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhBODFB OTNCRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI2ZDdlZGUxLTNmZDAtNDYyNC1i ZWY4LTBlNzNlODQ5OTRiYy8wLzMyMzQzMDM2M2EzMTMzNjMzMDNhMzMzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMxMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBhPAAAMw DQYJKoZIhvcNAQELBQADggEBAELMsmkSpKdNXNXjBy4yGaNp0J8xtys7OzlNKuMd BavK08NFol/0ORrqj5yFNKD6Dlve+tO1fD7ICD5kJaYdC9ttwhVPXbRXljBEKhkS eboGsTh9V4cWbQPimwwJ0iVwBWyDLesNyLaLa/ehtC6SA2KJhj6930Kc/QlRokkD HoZ8EHyXPWL/chXuqL6b0MgDQGNrq6pdpSszgsXjNmTgoo+jp/VHoFxsywRcX3nd XQUYrSHmU5+3Sqx6kRrvRBw20sq/8J26m3IbH78/ludvc4vp6YTGk05AyHaAwj9t EkLlZH0mwc4aIxkaR8ak0qw+mrZnPFOguMsskf+11SF0lrw= -----END CERTIFICATE-----Generated at Sun Jun 8 04:10:28 2025 by rpki-client