$ rpki-client -vvf repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a35323a3a2f34382d3438203d3e20313339393439.roa File: 323430353a616163303a35323a3a2f34382d3438203d3e20313339393439.roa (raw, json) Hash identifier: K5rN2dEqu3kaZAIrXi9HWKyKXHot8xpfvFHNgqyUB3Y= Subject key identifier: 12:E6:BA:C5:64:59:19:46:3C:F6:60:5F:CC:0B:F3:3A:34:3A:45:0F Certificate issuer: /CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Certificate serial: 3CCE676D5CD617A558DDFD3B201E5E189EE8D487 Authority key identifier: DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a35323a3a2f34382d3438203d3e20313339393439.roa Signing time: Mon 02 Jun 2025 01:02:58 +0000 ROA not before: Mon 02 Jun 2025 00:57:58 +0000 ROA not after: Mon 01 Jun 2026 01:02:58 +0000 asID: 139949 IP address blocks: 2405:aac0:52::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 10:03:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:ce:67:6d:5c:d6:17:a5:58:dd:fd:3b:20:1e:5e:18:9e:e8:d4:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Validity Not Before: Jun 2 00:57:58 2025 GMT Not After : Jun 1 01:02:58 2026 GMT Subject: CN=12E6BAC5645919463CF6605FCC0BF33A343A450F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:72:b6:55:38:b6:6b:51:97:77:05:5f:2f:2f: 5c:75:53:11:47:54:c9:a4:2d:a2:61:c5:b7:ca:48: 2f:9c:6b:75:d1:2f:7b:dc:d8:73:8c:e1:02:7e:1c: b3:a9:fe:b3:ff:8d:ba:4d:61:28:0c:46:fd:e6:02: 9e:ee:21:5d:66:50:fb:8f:43:c3:06:60:98:91:ce: 64:fc:cf:21:84:03:ad:3a:bd:69:3b:18:04:9f:bf: 61:c5:79:c1:6a:5c:14:7f:3b:dc:2b:22:f4:38:6b: dd:3e:bd:ca:b8:d0:4d:80:c4:dc:06:3f:26:c1:6a: cb:f0:d7:0d:51:2b:e2:de:d3:39:80:95:ad:23:40: f9:68:82:12:a0:6f:2e:45:bf:9c:d8:14:89:44:a1: 58:7b:73:a7:b8:8d:a6:bf:07:3f:0f:d1:6d:18:af: b9:66:d8:75:39:b5:dc:17:41:21:8f:cd:9c:a5:8b: 5a:a8:f9:a4:53:fa:55:34:e6:c9:02:6d:51:78:19: 43:2d:03:e6:14:dc:f5:ec:54:0d:a0:f7:9f:84:84: d7:b0:2b:ca:78:7e:86:c3:77:3d:03:e0:5f:ff:55: c9:99:42:05:8e:fa:9a:e1:32:3e:88:bf:ab:d6:66: ff:5e:ae:68:d7:ad:2c:60:8b:13:5b:69:3a:17:f5: 32:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:E6:BA:C5:64:59:19:46:3C:F6:60:5F:CC:0B:F3:3A:34:3A:45:0F X509v3 Authority Key Identifier: keyid:DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a35323a3a2f34382d3438203d3e20313339393439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:aac0:52::/48 Signature Algorithm: sha256WithRSAEncryption 0a:fd:21:6e:79:af:4f:ac:6a:98:1a:96:04:79:dd:86:86:64: 1d:95:42:ed:01:55:64:96:7d:05:ac:17:d2:fa:1c:c0:72:9e: 35:98:c2:79:08:5b:b4:ad:60:47:48:e6:5d:89:50:4d:c8:a9: c6:e6:cc:02:5c:41:fc:dc:05:de:0f:46:eb:ef:32:6e:44:50: 2b:25:37:e0:2e:ee:f7:9e:43:55:0a:e7:43:cb:21:fd:5b:a8: d1:ef:d4:3f:27:ef:5b:61:c0:07:f5:10:f0:3a:39:c7:f6:b3: 99:6e:65:25:54:77:ed:9f:2a:b7:27:61:3e:f9:8f:dc:19:a1: ba:e8:e3:3c:50:3e:9d:3e:a9:7c:16:30:81:1c:41:05:3f:55: a0:a0:63:54:d2:9a:bb:26:1b:11:60:91:20:74:1a:2b:e4:45: 7b:86:aa:35:b1:1f:b5:13:fe:7f:fb:85:0d:b3:d1:73:7b:9c: 18:cd:d6:79:18:97:3e:bc:20:39:11:9d:88:51:25:b4:1d:bc: 78:4f:03:34:35:43:7f:f2:a2:78:6a:00:66:05:8f:3b:16:67: 14:de:31:34:ef:35:d9:04:2b:74:52:b6:28:91:58:a8:5c:2f: 08:09:70:a5:b4:60:81:8e:ec:29:48:17:10:44:33:43:0c:75: c7:d1:e2:c2 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUPM5nbVzWF6VY3f07IB5eGJ7o1IcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAx NjRGRTVDRjAeFw0yNTA2MDIwMDU3NThaFw0yNjA2MDEwMTAyNThaMDMxMTAvBgNV BAMTKDEyRTZCQUM1NjQ1OTE5NDYzQ0Y2NjA1RkNDMEJGMzNBMzQzQTQ1MEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDcrZVOLZrUZd3BV8vL1x1UxFH VMmkLaJhxbfKSC+ca3XRL3vc2HOM4QJ+HLOp/rP/jbpNYSgMRv3mAp7uIV1mUPuP Q8MGYJiRzmT8zyGEA606vWk7GASfv2HFecFqXBR/O9wrIvQ4a90+vcq40E2AxNwG PybBasvw1w1RK+Le0zmAla0jQPloghKgby5Fv5zYFIlEoVh7c6e4jaa/Bz8P0W0Y r7lm2HU5tdwXQSGPzZyli1qo+aRT+lU05skCbVF4GUMtA+YU3PXsVA2g95+EhNew K8p4fobDdz0D4F//VcmZQgWO+prhMj6Iv6vWZv9ermjXrSxgixNbaToX9TJ1AgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUEua6xWRZGUY89mBfzAvzOjQ6RQ8wHwYDVR0j BBgwFoAU2odmqQhRrkTXa4Vj2DWG8BZP5c8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZGVkYzAzMy1jZDRkLTQ2MjAtOTM3Mi1lNmUwMzlmYzA2YjkvMC9EQTg3NjZBOTA4 NTFBRTQ0RDc2Qjg1NjNEODM1ODZGMDE2NEZFNUNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAxNjRG RTVDRi5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNkZWRjMDMzLWNkNGQtNDYyMC05 MzcyLWU2ZTAzOWZjMDZiOS8wLzMyMzQzMDM1M2E2MTYxNjMzMDNhMzUzMjNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzOTM5MzQzOS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQFqsAA UjANBgkqhkiG9w0BAQsFAAOCAQEACv0hbnmvT6xqmBqWBHndhoZkHZVC7QFVZJZ9 BawX0vocwHKeNZjCeQhbtK1gR0jmXYlQTcipxubMAlxB/NwF3g9G6+8ybkRQKyU3 4C7u955DVQrnQ8sh/Vuo0e/UPyfvW2HAB/UQ8Do5x/azmW5lJVR37Z8qtydhPvmP 3BmhuujjPFA+nT6pfBYwgRxBBT9VoKBjVNKauyYbEWCRIHQaK+RFe4aqNbEftRP+ f/uFDbPRc3ucGM3WeRiXPrwgORGdiFEltB28eE8DNDVDf/KieGoAZgWPOxZnFN4x NO812QQrdFK2KJFYqFwvCAlwpbRggY7sKUgXEEQzQwx1x9Hiwg== -----END CERTIFICATE-----Generated at Sun Jun 8 23:16:20 2025 by rpki-client