$ rpki-client -vvf repo-rpki.idnic.net/repo/2bf71c91-1624-4fc0-8c63-2efafd46fbc1/0/323430353a383734303a3a2f33322d3438203d3e203436303139.roa File: 323430353a383734303a3a2f33322d3438203d3e203436303139.roa (raw, json) Hash identifier: tWUdaCi6USMMsgIMwxNhIvyYJg4UE5mGg0yF8mZruBw= Subject key identifier: 52:C4:31:38:85:95:61:CF:CA:79:54:59:3A:78:74:B7:B4:D4:32:68 Certificate issuer: /CN=9F56EC50DA14D13D149F5145D62AFC5A3F0B70B5 Certificate serial: 47B4B584B03BB719C4E2D65BC796F449CB3A81C6 Authority key identifier: 9F:56:EC:50:DA:14:D1:3D:14:9F:51:45:D6:2A:FC:5A:3F:0B:70:B5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F56EC50DA14D13D149F5145D62AFC5A3F0B70B5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2bf71c91-1624-4fc0-8c63-2efafd46fbc1/0/323430353a383734303a3a2f33322d3438203d3e203436303139.roa Signing time: Mon 02 Jun 2025 01:02:31 +0000 ROA not before: Mon 02 Jun 2025 00:57:31 +0000 ROA not after: Mon 01 Jun 2026 01:02:31 +0000 asID: 46019 IP address blocks: 2405:8740::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2bf71c91-1624-4fc0-8c63-2efafd46fbc1/0/9F56EC50DA14D13D149F5145D62AFC5A3F0B70B5.crl rsync://repo-rpki.idnic.net/repo/2bf71c91-1624-4fc0-8c63-2efafd46fbc1/0/9F56EC50DA14D13D149F5145D62AFC5A3F0B70B5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F56EC50DA14D13D149F5145D62AFC5A3F0B70B5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 23:15:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:b4:b5:84:b0:3b:b7:19:c4:e2:d6:5b:c7:96:f4:49:cb:3a:81:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9F56EC50DA14D13D149F5145D62AFC5A3F0B70B5 Validity Not Before: Jun 2 00:57:31 2025 GMT Not After : Jun 1 01:02:31 2026 GMT Subject: CN=52C43138859561CFCA7954593A7874B7B4D43268 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:e1:a4:14:db:2a:84:a9:fe:96:ae:b9:5f:9e: 6a:e6:c9:86:f2:99:63:35:d1:16:79:b3:2f:ed:2b: e3:f3:8d:61:e5:77:c7:10:c2:8e:84:6b:4b:d0:43: ae:2c:93:88:9d:37:2a:6d:d9:8b:5f:fe:45:39:c8: d6:ff:e4:d8:c8:94:0b:d1:cd:f6:20:f2:f8:3e:69: 5c:a7:60:43:82:ed:2b:e7:5b:93:a2:bd:1a:86:38: 77:de:88:6f:4c:62:41:57:70:78:ec:e0:40:71:d0: 55:01:d2:c4:5f:1c:1e:de:da:36:6f:56:2e:9e:6c: 6f:0f:5d:e4:71:ee:93:67:15:eb:b7:9c:90:a5:3d: 38:fd:d7:52:bb:ad:39:c0:72:9c:14:4f:a2:58:aa: a3:6d:99:f8:b7:b2:02:73:d4:30:a8:02:05:ba:b6: 6d:6d:60:fd:fd:58:46:a6:2e:0e:de:12:2d:f6:07: 91:e4:f6:12:86:37:ea:51:a5:b8:3f:c9:57:f8:35: 86:27:8a:16:63:37:ef:1b:91:d5:00:e1:a7:da:f5: 2f:32:fc:fe:e6:45:85:90:18:e9:52:de:8b:f4:cd: d0:7d:b6:3b:d9:0a:db:1e:07:66:30:d4:d9:9c:b9: e9:2c:48:bd:68:1c:79:66:cb:e6:6a:c2:c1:89:06: 19:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:C4:31:38:85:95:61:CF:CA:79:54:59:3A:78:74:B7:B4:D4:32:68 X509v3 Authority Key Identifier: keyid:9F:56:EC:50:DA:14:D1:3D:14:9F:51:45:D6:2A:FC:5A:3F:0B:70:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2bf71c91-1624-4fc0-8c63-2efafd46fbc1/0/9F56EC50DA14D13D149F5145D62AFC5A3F0B70B5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F56EC50DA14D13D149F5145D62AFC5A3F0B70B5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2bf71c91-1624-4fc0-8c63-2efafd46fbc1/0/323430353a383734303a3a2f33322d3438203d3e203436303139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:8740::/32 Signature Algorithm: sha256WithRSAEncryption 2d:32:93:3d:52:93:e6:b9:78:4d:91:bc:59:ae:c9:a4:74:73: bc:f0:60:0f:7f:be:71:80:dd:4f:68:c5:d5:93:fe:ee:5f:71: eb:62:77:a7:ec:91:16:71:d4:1d:7a:31:85:00:5f:c3:7b:c1: be:54:f8:e9:46:89:d6:62:0f:4a:dc:b2:c7:07:51:3f:c7:da: 30:a9:81:b2:bc:47:d5:1c:47:96:97:e4:d7:13:30:c6:30:d0: ca:2d:95:6e:45:55:83:bd:3f:60:cb:42:fe:f6:f9:e5:80:7d: e3:7f:29:e1:f4:b0:32:65:00:0a:71:29:56:b8:c6:8c:4b:04: 80:12:bc:88:9d:94:35:e2:61:51:ee:12:f3:01:7c:b0:e5:be: 39:86:78:ce:c2:35:d9:68:cf:3f:4b:1f:90:95:4e:ac:99:39: fe:03:8b:db:f5:f0:a3:fb:66:99:33:44:ec:b9:96:8b:8c:6e: 3a:5b:bd:a2:ed:96:79:e2:19:23:08:47:e8:96:8a:64:54:dd: 9b:a4:5e:58:70:88:88:4d:91:f2:de:6c:8e:6b:46:be:fc:93: 35:d3:23:be:6b:3d:ed:1e:76:17:cf:a2:b8:ac:b8:b2:86:fd: e0:a3:b4:46:06:c2:6f:41:28:72:90:f8:34:e1:43:a3:8b:d7: f4:8d:2e:ca -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUR7S1hLA7txnE4tZbx5b0Scs6gcYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUY1NkVDNTBEQTE0RDEzRDE0OUY1MTQ1RDYyQUZDNUEz RjBCNzBCNTAeFw0yNTA2MDIwMDU3MzFaFw0yNjA2MDEwMTAyMzFaMDMxMTAvBgNV BAMTKDUyQzQzMTM4ODU5NTYxQ0ZDQTc5NTQ1OTNBNzg3NEI3QjRENDMyNjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCc4aQU2yqEqf6WrrlfnmrmyYby mWM10RZ5sy/tK+PzjWHld8cQwo6Ea0vQQ64sk4idNypt2Ytf/kU5yNb/5NjIlAvR zfYg8vg+aVynYEOC7SvnW5OivRqGOHfeiG9MYkFXcHjs4EBx0FUB0sRfHB7e2jZv Vi6ebG8PXeRx7pNnFeu3nJClPTj911K7rTnAcpwUT6JYqqNtmfi3sgJz1DCoAgW6 tm1tYP39WEamLg7eEi32B5Hk9hKGN+pRpbg/yVf4NYYnihZjN+8bkdUA4afa9S8y /P7mRYWQGOlS3ov0zdB9tjvZCtseB2Yw1NmcueksSL1oHHlmy+ZqwsGJBhlnAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUUsQxOIWVYc/KeVRZOnh0t7TUMmgwHwYDVR0j BBgwFoAUn1bsUNoU0T0Un1FF1ir8Wj8LcLUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YmY3MWM5MS0xNjI0LTRmYzAtOGM2My0yZWZhZmQ0NmZiYzEvMC85RjU2RUM1MERB MTREMTNEMTQ5RjUxNDVENjJBRkM1QTNGMEI3MEI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUY1NkVDNTBEQTE0RDEzRDE0OUY1MTQ1RDYyQUZDNUEzRjBC NzBCNS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJiZjcxYzkxLTE2MjQtNGZjMC04 YzYzLTJlZmFmZDQ2ZmJjMS8wLzMyMzQzMDM1M2EzODM3MzQzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDM0MzYzMDMxMzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBYdAMA0GCSqGSIb3 DQEBCwUAA4IBAQAtMpM9UpPmuXhNkbxZrsmkdHO88GAPf75xgN1PaMXVk/7uX3Hr Ynen7JEWcdQdejGFAF/De8G+VPjpRonWYg9K3LLHB1E/x9owqYGyvEfVHEeWl+TX EzDGMNDKLZVuRVWDvT9gy0L+9vnlgH3jfynh9LAyZQAKcSlWuMaMSwSAEryInZQ1 4mFR7hLzAXyw5b45hnjOwjXZaM8/Sx+QlU6smTn+A4vb9fCj+2aZM0TsuZaLjG46 W72i7ZZ54hkjCEfolopkVN2bpF5YcIiITZHy3myOa0a+/JM10yO+az3tHnYXz6K4 rLiyhv3go7RGBsJvQShykPg04UOji9f0jS7K -----END CERTIFICATE-----Generated at Sat Jun 7 13:58:15 2025 by rpki-client