$ rpki-client -vvf repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a343a3a2f34382d3438203d3e20313430343133.roa File: 323430363a313363303a343a3a2f34382d3438203d3e20313430343133.roa (raw, json) Hash identifier: hUSefMFAZSv+SA3wPW8iCnypYrFgNGsQ492Jx7YTC9s= Subject key identifier: BE:14:ED:B5:49:27:AC:5E:C4:E0:85:6E:4D:21:B8:71:DA:B6:C3:3A Certificate issuer: /CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Certificate serial: 0AC0AD533D60BE3EEE8BAC0A3BF0E255012F7112 Authority key identifier: 5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a343a3a2f34382d3438203d3e20313430343133.roa Signing time: Sun 04 May 2025 15:02:25 +0000 ROA not before: Sun 04 May 2025 14:57:25 +0000 ROA not after: Sun 03 May 2026 15:02:25 +0000 asID: 140413 IP address blocks: 2406:13c0:4::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 20:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:c0:ad:53:3d:60:be:3e:ee:8b:ac:0a:3b:f0:e2:55:01:2f:71:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Validity Not Before: May 4 14:57:25 2025 GMT Not After : May 3 15:02:25 2026 GMT Subject: CN=BE14EDB54927AC5EC4E0856E4D21B871DAB6C33A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:4a:12:4e:df:63:c5:c7:e9:67:a7:27:15:6a: 7c:40:89:d9:0f:84:62:97:13:3d:05:d6:b8:ca:c6: 73:51:97:6f:5a:92:15:ce:7d:bd:e2:39:9a:16:dd: 57:9e:51:9d:19:4e:34:72:86:4c:05:f8:40:b9:8b: ed:2d:30:7d:50:49:3c:f5:0b:00:44:be:ac:27:ee: e4:70:95:72:02:0a:dd:b8:35:ab:93:8c:aa:20:a0: 6d:ba:74:85:73:e8:dc:40:81:d1:4c:a4:e9:d5:cc: 37:f0:eb:99:8b:dc:62:6b:d9:e9:96:eb:5d:c8:75: 89:ee:bf:c4:f2:39:3a:d3:fc:cf:46:26:4b:25:cf: 7f:0d:a1:0e:6c:b8:03:c3:13:c5:b2:9d:a2:b1:70: 81:52:bf:e2:a7:ad:be:79:72:19:89:16:c1:4e:90: 3c:ea:f1:e0:22:8a:cd:1f:33:e0:43:ed:58:5f:3b: 07:91:90:d1:94:63:79:6c:94:37:ac:38:f9:6e:81: 1e:d8:b9:88:b9:96:cf:6e:6e:ad:01:30:ab:9d:a1: 04:0f:44:b9:b8:9e:95:83:bc:d6:36:25:30:ac:da: b5:29:58:cd:42:18:93:96:8c:0f:73:be:d6:d5:ae: f6:1f:f0:d2:6e:47:f4:c7:67:6f:b8:2f:8c:96:6c: c6:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:14:ED:B5:49:27:AC:5E:C4:E0:85:6E:4D:21:B8:71:DA:B6:C3:3A X509v3 Authority Key Identifier: keyid:5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a343a3a2f34382d3438203d3e20313430343133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:13c0:4::/48 Signature Algorithm: sha256WithRSAEncryption 5b:01:12:99:18:fd:91:3e:c9:5a:db:71:39:76:61:fd:d7:b1: e3:49:e5:d1:b6:0e:94:40:21:e3:fe:5b:a1:36:b6:74:5b:9e: 90:ba:93:47:06:8a:f7:00:2b:d8:fa:91:5c:71:d1:a3:24:fc: 76:06:32:04:0f:0d:24:3c:b6:3d:01:19:f9:35:71:40:5d:8f: 1f:6a:3d:9e:49:d6:f7:f2:c8:1c:6a:7c:1a:e4:02:7f:70:a2: 01:4f:67:43:d4:05:a5:a0:1d:67:90:cb:67:15:ad:d7:04:80: 83:7f:60:fc:5a:66:ba:d9:0d:a1:70:38:b8:b8:bf:94:78:b4: d8:0f:29:0f:07:f1:67:4c:05:ea:6a:5b:34:84:19:f9:35:d7: 73:2a:df:76:f5:d1:fd:95:43:c4:88:55:87:ab:ae:fb:f4:13: 06:fa:a3:dd:aa:6c:30:78:bb:df:35:61:90:33:b9:a1:8a:31: 45:74:f9:be:6d:7b:4b:6f:29:ff:21:4f:83:22:7b:42:4e:1d: 5b:e2:1d:5b:11:a4:1c:67:cc:c1:c0:db:0e:c8:4d:0e:02:2b: 99:48:2b:d3:78:da:a9:c5:c8:ca:59:9e:8b:55:b9:03:88:e1: 46:5b:3b:80:4c:f0:0e:65:76:49:7b:af:e4:39:1c:50:ab:e7: de:ed:5a:fe -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUCsCtUz1gvj7ui6wKO/DiVQEvcRIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhB ODFBOTNCRTAeFw0yNTA1MDQxNDU3MjVaFw0yNjA1MDMxNTAyMjVaMDMxMTAvBgNV BAMTKEJFMTRFREI1NDkyN0FDNUVDNEUwODU2RTREMjFCODcxREFCNkMzM0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvShJO32PFx+lnpycVanxAidkP hGKXEz0F1rjKxnNRl29akhXOfb3iOZoW3VeeUZ0ZTjRyhkwF+EC5i+0tMH1QSTz1 CwBEvqwn7uRwlXICCt24NauTjKogoG26dIVz6NxAgdFMpOnVzDfw65mL3GJr2emW 613IdYnuv8TyOTrT/M9GJkslz38NoQ5suAPDE8WynaKxcIFSv+Knrb55chmJFsFO kDzq8eAiis0fM+BD7VhfOweRkNGUY3lslDesOPlugR7YuYi5ls9ubq0BMKudoQQP RLm4npWDvNY2JTCs2rUpWM1CGJOWjA9zvtbVrvYf8NJuR/THZ2+4L4yWbMafAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUvhTttUknrF7E4IVuTSG4cdq2wzowHwYDVR0j BBgwFoAUWrLwSLz51g1jI6cu9yVfOKgak74wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NmQ3ZWRlMS0zZmQwLTQ2MjQtYmVmOC0wZTczZTg0OTk0YmMvMC81QUIyRjA0OEJD RjlENjBENjMyM0E3MkVGNzI1NUYzOEE4MUE5M0JFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhBODFB OTNCRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI2ZDdlZGUxLTNmZDAtNDYyNC1i ZWY4LTBlNzNlODQ5OTRiYy8wLzMyMzQzMDM2M2EzMTMzNjMzMDNhMzQzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMxMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBhPAAAQw DQYJKoZIhvcNAQELBQADggEBAFsBEpkY/ZE+yVrbcTl2Yf3XseNJ5dG2DpRAIeP+ W6E2tnRbnpC6k0cGivcAK9j6kVxx0aMk/HYGMgQPDSQ8tj0BGfk1cUBdjx9qPZ5J 1vfyyBxqfBrkAn9wogFPZ0PUBaWgHWeQy2cVrdcEgIN/YPxaZrrZDaFwOLi4v5R4 tNgPKQ8H8WdMBepqWzSEGfk113Mq33b10f2VQ8SIVYerrvv0Ewb6o92qbDB4u981 YZAzuaGKMUV0+b5te0tvKf8hT4Mie0JOHVviHVsRpBxnzMHA2w7ITQ4CK5lIK9N4 2qnFyMpZnotVuQOI4UZbO4BM8A5ldkl7r+Q5HFCr597tWv4= -----END CERTIFICATE-----Generated at Sun Jun 8 04:08:44 2025 by rpki-client