$ rpki-client -vvf repo-rpki.idnic.net/repo/48f39bd4-cdac-41cf-8858-d7410f64d155/0/323430353a316534303a313a3a2f34382d3438203d3e203538343735.roa File: 323430353a316534303a313a3a2f34382d3438203d3e203538343735.roa (raw, json) Hash identifier: G9MCrus6eBmyFVS1F9L4fMkSgpj76wB3dQ1SkAm9VJE= Subject key identifier: 90:39:DC:BF:08:4B:B4:AF:D3:9B:F8:69:C8:4D:B5:10:B7:50:B2:8A Certificate issuer: /CN=A51E37523B05B166B7DE977CF4AC6596FDD97B98 Certificate serial: 58A6E598DFBF8A2C5ABF4EB190995AECA377EE1E Authority key identifier: A5:1E:37:52:3B:05:B1:66:B7:DE:97:7C:F4:AC:65:96:FD:D9:7B:98 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A51E37523B05B166B7DE977CF4AC6596FDD97B98.cer Subject info access: rsync://repo-rpki.idnic.net/repo/48f39bd4-cdac-41cf-8858-d7410f64d155/0/323430353a316534303a313a3a2f34382d3438203d3e203538343735.roa Signing time: Mon 02 Jun 2025 02:04:57 +0000 ROA not before: Mon 02 Jun 2025 01:59:57 +0000 ROA not after: Mon 01 Jun 2026 02:04:57 +0000 asID: 58475 IP address blocks: 2405:1e40:1::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/48f39bd4-cdac-41cf-8858-d7410f64d155/0/A51E37523B05B166B7DE977CF4AC6596FDD97B98.crl rsync://repo-rpki.idnic.net/repo/48f39bd4-cdac-41cf-8858-d7410f64d155/0/A51E37523B05B166B7DE977CF4AC6596FDD97B98.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A51E37523B05B166B7DE977CF4AC6596FDD97B98.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 21:31:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:a6:e5:98:df:bf:8a:2c:5a:bf:4e:b1:90:99:5a:ec:a3:77:ee:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A51E37523B05B166B7DE977CF4AC6596FDD97B98 Validity Not Before: Jun 2 01:59:57 2025 GMT Not After : Jun 1 02:04:57 2026 GMT Subject: CN=9039DCBF084BB4AFD39BF869C84DB510B750B28A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:18:8b:ca:a1:f3:a5:5e:19:c7:e1:24:0a:e5: 42:d9:49:24:2a:49:bc:0b:52:9f:0e:eb:63:12:c3: e2:e1:5e:f3:f9:c8:77:84:50:60:c2:90:12:1a:ea: 9d:ae:0d:27:e1:24:a5:df:f3:9f:83:6c:49:f9:61: b6:cf:b7:46:26:59:e3:08:85:36:ed:c6:5c:72:dc: 3d:9d:16:27:ca:0a:5f:05:6c:98:20:63:f6:af:56: df:fb:c4:ff:0a:7c:18:9b:8c:bc:fe:7a:f6:bd:dd: 2d:19:a3:b8:76:96:b1:07:bf:29:ad:06:bc:a2:6a: a5:a3:24:6b:06:59:ae:55:d7:15:17:d6:7f:17:64: 12:88:da:8f:c4:6d:1e:bd:6d:eb:40:2c:81:41:eb: e2:ca:39:e9:7d:45:cb:bd:c0:7c:ce:98:f4:a7:af: cb:1c:80:ca:c9:dd:e8:5c:fb:02:13:1f:c6:16:f6: 70:8e:d8:be:52:6f:17:92:ea:b8:71:8b:08:c8:00: 17:5e:65:64:c4:7c:e0:dd:ba:f1:98:22:a7:78:64: 1d:a7:b4:c4:58:8a:76:76:56:9d:22:24:86:af:5b: 92:3a:a1:4e:c3:bc:13:7d:d3:3c:cb:7e:98:a2:cb: 95:dc:cc:1c:f5:9d:c5:d9:38:b9:16:48:0e:96:6f: a8:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:39:DC:BF:08:4B:B4:AF:D3:9B:F8:69:C8:4D:B5:10:B7:50:B2:8A X509v3 Authority Key Identifier: keyid:A5:1E:37:52:3B:05:B1:66:B7:DE:97:7C:F4:AC:65:96:FD:D9:7B:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/48f39bd4-cdac-41cf-8858-d7410f64d155/0/A51E37523B05B166B7DE977CF4AC6596FDD97B98.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A51E37523B05B166B7DE977CF4AC6596FDD97B98.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/48f39bd4-cdac-41cf-8858-d7410f64d155/0/323430353a316534303a313a3a2f34382d3438203d3e203538343735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:1e40:1::/48 Signature Algorithm: sha256WithRSAEncryption 49:8f:0a:f8:9c:19:89:a3:6c:2b:d2:49:fb:c4:2c:c8:1d:87: 75:00:19:eb:4d:44:a1:2a:be:7a:07:3f:d8:1f:30:44:65:1e: 13:63:d2:de:45:ce:99:c8:2c:e5:bd:bc:29:7b:3e:7e:7e:37: 41:d9:53:c6:57:0b:79:d1:1e:b9:f3:12:6c:3e:dc:87:ad:54: 86:3d:bd:8a:f3:8d:c0:07:1c:4d:3e:fe:d4:05:f9:b4:19:ec: b4:ed:0a:7d:b2:5e:19:b3:ed:cd:44:63:9a:20:44:49:c5:78: 04:db:ed:cf:36:90:1f:f3:50:b8:55:68:68:e4:e6:ae:d2:d2: 7e:20:f9:6c:69:14:38:c9:12:dd:1d:0d:df:87:7d:1c:f6:c5: fd:27:24:30:39:f7:71:2c:57:17:a3:14:83:45:bf:5b:ce:9c: 0f:86:b8:8b:8f:7a:33:b3:a7:7a:7b:46:0a:45:04:2c:eb:f1: c3:f0:a7:6d:d1:7c:36:51:93:ae:22:6d:98:11:ea:13:9b:95: 12:2c:14:96:1b:05:33:b4:56:cc:54:2a:1d:64:04:52:78:18: 2e:83:22:24:90:2e:72:6e:ac:cc:49:d8:c1:d8:4b:35:f5:a5: c5:62:51:9c:03:e6:e2:51:54:b5:6b:57:3e:e1:13:69:88:34: 9d:98:a1:a7 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUWKblmN+/iixav06xkJla7KN37h4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTUxRTM3NTIzQjA1QjE2NkI3REU5NzdDRjRBQzY1OTZG REQ5N0I5ODAeFw0yNTA2MDIwMTU5NTdaFw0yNjA2MDEwMjA0NTdaMDMxMTAvBgNV BAMTKDkwMzlEQ0JGMDg0QkI0QUZEMzlCRjg2OUM4NERCNTEwQjc1MEIyOEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAGIvKofOlXhnH4SQK5ULZSSQq SbwLUp8O62MSw+LhXvP5yHeEUGDCkBIa6p2uDSfhJKXf85+DbEn5YbbPt0YmWeMI hTbtxlxy3D2dFifKCl8FbJggY/avVt/7xP8KfBibjLz+eva93S0Zo7h2lrEHvymt BryiaqWjJGsGWa5V1xUX1n8XZBKI2o/EbR69betALIFB6+LKOel9Rcu9wHzOmPSn r8scgMrJ3ehc+wITH8YW9nCO2L5SbxeS6rhxiwjIABdeZWTEfODduvGYIqd4ZB2n tMRYinZ2Vp0iJIavW5I6oU7DvBN90zzLfpiiy5XczBz1ncXZOLkWSA6Wb6gHAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUkDncvwhLtK/Tm/hpyE21ELdQsoowHwYDVR0j BBgwFoAUpR43UjsFsWa33pd89Kxllv3Ze5gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 OGYzOWJkNC1jZGFjLTQxY2YtODg1OC1kNzQxMGY2NGQxNTUvMC9BNTFFMzc1MjNC MDVCMTY2QjdERTk3N0NGNEFDNjU5NkZERDk3Qjk4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTUxRTM3NTIzQjA1QjE2NkI3REU5NzdDRjRBQzY1OTZGREQ5 N0I5OC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ4ZjM5YmQ0LWNkYWMtNDFjZi04 ODU4LWQ3NDEwZjY0ZDE1NS8wLzMyMzQzMDM1M2EzMTY1MzQzMDNhMzEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzNTM4MzQzNzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAUeQAABMA0G CSqGSIb3DQEBCwUAA4IBAQBJjwr4nBmJo2wr0kn7xCzIHYd1ABnrTUShKr56Bz/Y HzBEZR4TY9LeRc6ZyCzlvbwpez5+fjdB2VPGVwt50R658xJsPtyHrVSGPb2K843A BxxNPv7UBfm0Gey07Qp9sl4Zs+3NRGOaIERJxXgE2+3PNpAf81C4VWho5Oau0tJ+ IPlsaRQ4yRLdHQ3fh30c9sX9JyQwOfdxLFcXoxSDRb9bzpwPhriLj3ozs6d6e0YK RQQs6/HD8Kdt0Xw2UZOuIm2YEeoTm5USLBSWGwUztFbMVCodZARSeBgugyIkkC5y bqzMSdjB2Es19aXFYlGcA+biUVS1a1c+4RNpiDSdmKGn -----END CERTIFICATE-----Generated at Sat Jun 7 15:25:43 2025 by rpki-client