$ rpki-client -vvf repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a663a3a2f34382d3438203d3e20313430343133.roa File: 323430363a313363303a663a3a2f34382d3438203d3e20313430343133.roa (raw, json) Hash identifier: 1JMzXaJrugo1xCZjzMePjdBBw5qjt3/pxwhlGnC/exU= Subject key identifier: 31:33:EB:C3:26:A6:8A:B2:BD:C1:AD:76:C2:0B:38:3F:9F:E9:D6:0E Certificate issuer: /CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Certificate serial: 6CB5F8D3A44789CE72E17BDDEB180438DE015D97 Authority key identifier: 5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a663a3a2f34382d3438203d3e20313430343133.roa Signing time: Sun 04 May 2025 15:02:25 +0000 ROA not before: Sun 04 May 2025 14:57:25 +0000 ROA not after: Sun 03 May 2026 15:02:25 +0000 asID: 140413 IP address blocks: 2406:13c0:f::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 20:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:b5:f8:d3:a4:47:89:ce:72:e1:7b:dd:eb:18:04:38:de:01:5d:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Validity Not Before: May 4 14:57:25 2025 GMT Not After : May 3 15:02:25 2026 GMT Subject: CN=3133EBC326A68AB2BDC1AD76C20B383F9FE9D60E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:86:69:45:d7:fc:ec:af:f5:a9:84:62:2d:ee: e4:67:08:d0:b0:41:c6:18:b2:8a:1a:94:bb:bb:5b: ac:64:f9:69:dc:2d:6f:19:bc:95:3a:01:ae:03:8a: f3:7b:19:5f:8e:f6:75:11:bf:4f:cb:f4:03:e6:3f: 5e:8c:95:5e:b7:d8:ee:0d:b5:41:bd:a5:de:92:20: 27:a8:44:66:1f:09:44:d0:73:7c:8c:15:8a:8b:67: 35:52:32:1c:e7:e7:11:22:a2:59:9a:8f:76:9c:0a: d3:d0:b9:38:07:7f:64:b5:c2:75:bb:0c:14:46:67: ae:ca:06:b5:2b:ea:35:8c:4f:b8:95:7a:48:78:1e: 53:f9:eb:d0:b0:a3:72:6f:d3:d5:d6:78:b0:a8:5a: a4:60:e1:e1:97:ba:23:10:35:47:bf:c3:c7:fa:e9: 92:5d:4a:d4:4d:d1:27:10:ec:40:db:44:a8:c5:f4: c2:f6:15:92:c8:e4:37:95:f7:91:0b:d4:4f:a3:ef: a9:56:c2:e5:1d:ce:c5:32:ed:1e:44:7c:09:e3:34: ee:6f:2f:71:2d:71:d3:54:f8:dd:f5:9a:39:45:1d: 79:cf:08:7e:a3:d7:33:f0:8f:6e:6a:89:77:04:3e: ad:4a:4b:aa:43:1e:c1:12:28:51:ae:65:45:dc:3a: ab:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:33:EB:C3:26:A6:8A:B2:BD:C1:AD:76:C2:0B:38:3F:9F:E9:D6:0E X509v3 Authority Key Identifier: keyid:5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a663a3a2f34382d3438203d3e20313430343133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:13c0:f::/48 Signature Algorithm: sha256WithRSAEncryption 04:ed:a2:f8:06:36:d1:cc:37:75:06:9f:af:6b:fa:89:5d:2e: 73:bc:54:1c:e8:b1:d1:11:75:06:19:4a:54:70:e2:ae:ef:16: 06:71:2f:69:b1:3a:85:4d:37:8b:70:c3:f6:de:a0:e1:78:ef: a1:d8:93:00:77:aa:dd:5b:dc:ba:c9:be:13:b1:8c:08:b4:66: f4:c4:c6:9d:5c:3f:38:4d:e9:7b:dc:7b:c6:cc:d7:cf:cf:76: 6c:40:d4:ac:46:43:b1:79:bb:79:35:5d:78:30:27:9f:66:5e: bd:6f:51:ac:04:0b:29:17:3b:43:c5:d4:af:3a:89:31:38:ad: 84:9f:7e:bf:aa:31:df:4a:7f:95:de:a0:16:33:1c:d6:01:2b: 43:2f:2e:a3:8c:fd:3b:ca:03:d0:79:f0:24:43:cd:15:46:17: dd:e7:52:5c:23:de:8b:e2:76:12:9b:48:0b:60:db:fd:8a:d3: e9:1b:40:6f:ba:30:24:cb:d9:1e:3a:ff:8e:72:cd:95:f9:43: 7c:d5:d3:ca:4e:03:61:73:a5:1f:bd:38:74:e7:8b:17:1f:78: a9:82:a4:03:65:09:1a:1c:2e:b9:3a:25:f9:26:a7:0c:9f:7e: 19:c1:fb:2a:a0:60:d4:2d:87:82:cd:bd:36:65:00:d5:d7:84: 90:c2:a4:79 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUbLX406RHic5y4Xvd6xgEON4BXZcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhB ODFBOTNCRTAeFw0yNTA1MDQxNDU3MjVaFw0yNjA1MDMxNTAyMjVaMDMxMTAvBgNV BAMTKDMxMzNFQkMzMjZBNjhBQjJCREMxQUQ3NkMyMEIzODNGOUZFOUQ2MEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDChmlF1/zsr/WphGIt7uRnCNCw QcYYsooalLu7W6xk+WncLW8ZvJU6Aa4DivN7GV+O9nURv0/L9APmP16MlV632O4N tUG9pd6SICeoRGYfCUTQc3yMFYqLZzVSMhzn5xEiolmaj3acCtPQuTgHf2S1wnW7 DBRGZ67KBrUr6jWMT7iVekh4HlP569Cwo3Jv09XWeLCoWqRg4eGXuiMQNUe/w8f6 6ZJdStRN0ScQ7EDbRKjF9ML2FZLI5DeV95EL1E+j76lWwuUdzsUy7R5EfAnjNO5v L3EtcdNU+N31mjlFHXnPCH6j1zPwj25qiXcEPq1KS6pDHsESKFGuZUXcOqtBAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUMTPrwyamirK9wa12wgs4P5/p1g4wHwYDVR0j BBgwFoAUWrLwSLz51g1jI6cu9yVfOKgak74wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NmQ3ZWRlMS0zZmQwLTQ2MjQtYmVmOC0wZTczZTg0OTk0YmMvMC81QUIyRjA0OEJD RjlENjBENjMyM0E3MkVGNzI1NUYzOEE4MUE5M0JFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhBODFB OTNCRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI2ZDdlZGUxLTNmZDAtNDYyNC1i ZWY4LTBlNzNlODQ5OTRiYy8wLzMyMzQzMDM2M2EzMTMzNjMzMDNhNjYzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMxMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBhPAAA8w DQYJKoZIhvcNAQELBQADggEBAATtovgGNtHMN3UGn69r+oldLnO8VBzosdERdQYZ SlRw4q7vFgZxL2mxOoVNN4tww/beoOF476HYkwB3qt1b3LrJvhOxjAi0ZvTExp1c PzhN6Xvce8bM18/PdmxA1KxGQ7F5u3k1XXgwJ59mXr1vUawECykXO0PF1K86iTE4 rYSffr+qMd9Kf5XeoBYzHNYBK0MvLqOM/TvKA9B58CRDzRVGF93nUlwj3ovidhKb SAtg2/2K0+kbQG+6MCTL2R46/45yzZX5Q3zV08pOA2FzpR+9OHTnixcfeKmCpANl CRocLrk6JfkmpwyffhnB+yqgYNQth4LNvTZlANXXhJDCpHk= -----END CERTIFICATE-----Generated at Sun Jun 8 04:09:10 2025 by rpki-client