$ rpki-client -vvf repo-rpki.idnic.net/repo/48f39bd4-cdac-41cf-8858-d7410f64d155/0/323430353a316534303a3a2f34382d3438203d3e203538343735.roa File: 323430353a316534303a3a2f34382d3438203d3e203538343735.roa (raw, json) Hash identifier: sWazp7VEpZS16c0Kq00tpKaEDXaVw9th6CqZ26eXpuE= Subject key identifier: C7:0C:08:FE:0B:5E:7F:21:81:6B:48:D1:2D:2A:28:0B:FB:3A:DE:86 Certificate issuer: /CN=A51E37523B05B166B7DE977CF4AC6596FDD97B98 Certificate serial: 394E9420D5E05E28AED3E4E6795C42BBD525E0BB Authority key identifier: A5:1E:37:52:3B:05:B1:66:B7:DE:97:7C:F4:AC:65:96:FD:D9:7B:98 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A51E37523B05B166B7DE977CF4AC6596FDD97B98.cer Subject info access: rsync://repo-rpki.idnic.net/repo/48f39bd4-cdac-41cf-8858-d7410f64d155/0/323430353a316534303a3a2f34382d3438203d3e203538343735.roa Signing time: Mon 02 Jun 2025 02:04:56 +0000 ROA not before: Mon 02 Jun 2025 01:59:56 +0000 ROA not after: Mon 01 Jun 2026 02:04:56 +0000 asID: 58475 IP address blocks: 2405:1e40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/48f39bd4-cdac-41cf-8858-d7410f64d155/0/A51E37523B05B166B7DE977CF4AC6596FDD97B98.crl rsync://repo-rpki.idnic.net/repo/48f39bd4-cdac-41cf-8858-d7410f64d155/0/A51E37523B05B166B7DE977CF4AC6596FDD97B98.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A51E37523B05B166B7DE977CF4AC6596FDD97B98.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 21:31:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:4e:94:20:d5:e0:5e:28:ae:d3:e4:e6:79:5c:42:bb:d5:25:e0:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A51E37523B05B166B7DE977CF4AC6596FDD97B98 Validity Not Before: Jun 2 01:59:56 2025 GMT Not After : Jun 1 02:04:56 2026 GMT Subject: CN=C70C08FE0B5E7F21816B48D12D2A280BFB3ADE86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a3:ff:2c:c3:91:41:00:0a:89:db:81:12:34: e4:aa:24:cf:0b:70:7d:e1:14:5d:fa:a1:35:c8:b6: 1d:94:7f:c5:2a:47:9e:4a:48:61:28:15:7c:26:99: 41:0c:75:62:93:53:a7:da:52:ec:67:56:b0:c8:16: f2:32:74:91:6f:ba:9b:f2:73:1d:83:49:be:5a:da: 5f:7e:c3:83:bd:d5:be:9f:68:ed:5a:75:da:60:6c: 2e:08:3a:d5:8f:df:e9:99:90:6b:2d:e4:b1:25:05: c6:39:60:02:6a:e6:81:61:27:41:e2:e0:66:6f:3a: ff:ee:07:fb:c3:01:89:ec:e1:45:38:75:64:a8:53: 35:09:10:c3:cf:7b:52:e8:e7:1b:3e:4c:63:40:0d: c9:5b:58:9e:c0:9c:ec:42:ea:5d:73:d2:8f:01:aa: 48:7a:24:b5:cd:fc:da:e6:0f:56:26:60:3c:b9:c0: 19:15:fe:ef:7f:23:6e:c6:08:22:76:16:a3:a3:18: b5:30:22:bd:38:ad:60:39:c4:29:40:28:87:cb:4c: 97:63:e9:5b:5d:0b:e7:12:05:19:a3:89:0d:c7:8e: ba:36:fc:a7:7d:e8:c6:a8:14:c2:49:00:47:44:33: 39:89:20:df:d6:f1:72:85:6d:a9:51:d5:82:0f:90: 2a:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:0C:08:FE:0B:5E:7F:21:81:6B:48:D1:2D:2A:28:0B:FB:3A:DE:86 X509v3 Authority Key Identifier: keyid:A5:1E:37:52:3B:05:B1:66:B7:DE:97:7C:F4:AC:65:96:FD:D9:7B:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/48f39bd4-cdac-41cf-8858-d7410f64d155/0/A51E37523B05B166B7DE977CF4AC6596FDD97B98.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A51E37523B05B166B7DE977CF4AC6596FDD97B98.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/48f39bd4-cdac-41cf-8858-d7410f64d155/0/323430353a316534303a3a2f34382d3438203d3e203538343735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:1e40::/48 Signature Algorithm: sha256WithRSAEncryption 27:c9:d8:3b:fc:8e:d6:a9:d6:15:7b:f7:aa:c1:60:a3:bb:40: f4:64:d9:dc:54:19:0c:8d:21:57:f8:a6:22:ae:e7:1e:e8:7a: c2:57:df:f6:fd:d0:dc:cc:ba:b4:69:40:ff:84:f2:b6:36:0d: 15:aa:53:0b:f1:83:b5:ac:24:1c:64:78:5d:9b:56:6b:90:d3: 8d:1f:7a:cf:d2:14:1d:b8:b3:d9:0c:a2:07:6b:e2:b2:f7:32: 19:15:53:5d:8c:5e:90:03:37:55:73:24:9f:5d:9b:b2:14:14: e9:f8:78:27:e7:cc:67:e4:28:09:dc:40:19:c3:36:15:81:85: 1b:25:eb:9c:69:ed:f0:08:88:6a:dd:5f:63:16:10:28:56:ea: 05:2e:f0:6e:cd:4f:8e:e2:5a:d2:a9:4f:a5:30:80:79:76:8b: ce:38:95:6c:cd:34:ad:a8:fc:61:11:e3:dc:01:ce:54:9a:dc: ec:a9:78:a8:8f:51:5d:34:66:d6:53:a5:7f:06:67:3d:5c:94: 33:7f:cc:79:ed:96:e1:75:8c:e6:d8:67:37:9d:e2:05:aa:d0: d6:01:99:20:67:2e:10:10:8e:9b:88:b8:28:14:b7:b4:2a:8a: 69:5f:8d:c0:9e:a6:83:85:41:fe:26:b1:e6:2c:a8:9d:16:5c: 40:64:54:7a -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUOU6UINXgXiiu0+TmeVxCu9Ul4LswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTUxRTM3NTIzQjA1QjE2NkI3REU5NzdDRjRBQzY1OTZG REQ5N0I5ODAeFw0yNTA2MDIwMTU5NTZaFw0yNjA2MDEwMjA0NTZaMDMxMTAvBgNV BAMTKEM3MEMwOEZFMEI1RTdGMjE4MTZCNDhEMTJEMkEyODBCRkIzQURFODYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyo/8sw5FBAAqJ24ESNOSqJM8L cH3hFF36oTXIth2Uf8UqR55KSGEoFXwmmUEMdWKTU6faUuxnVrDIFvIydJFvupvy cx2DSb5a2l9+w4O91b6faO1addpgbC4IOtWP3+mZkGst5LElBcY5YAJq5oFhJ0Hi 4GZvOv/uB/vDAYns4UU4dWSoUzUJEMPPe1Lo5xs+TGNADclbWJ7AnOxC6l1z0o8B qkh6JLXN/NrmD1YmYDy5wBkV/u9/I27GCCJ2FqOjGLUwIr04rWA5xClAKIfLTJdj 6VtdC+cSBRmjiQ3Hjro2/Kd96MaoFMJJAEdEMzmJIN/W8XKFbalR1YIPkCoTAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUxwwI/gtefyGBa0jRLSooC/s63oYwHwYDVR0j BBgwFoAUpR43UjsFsWa33pd89Kxllv3Ze5gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 OGYzOWJkNC1jZGFjLTQxY2YtODg1OC1kNzQxMGY2NGQxNTUvMC9BNTFFMzc1MjNC MDVCMTY2QjdERTk3N0NGNEFDNjU5NkZERDk3Qjk4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTUxRTM3NTIzQjA1QjE2NkI3REU5NzdDRjRBQzY1OTZGREQ5 N0I5OC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ4ZjM5YmQ0LWNkYWMtNDFjZi04 ODU4LWQ3NDEwZjY0ZDE1NS8wLzMyMzQzMDM1M2EzMTY1MzQzMDNhM2EyZjM0Mzgy ZDM0MzgyMDNkM2UyMDM1MzgzNDM3MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBR5AAAAwDQYJKoZI hvcNAQELBQADggEBACfJ2Dv8jtap1hV796rBYKO7QPRk2dxUGQyNIVf4piKu5x7o esJX3/b90NzMurRpQP+E8rY2DRWqUwvxg7WsJBxkeF2bVmuQ040fes/SFB24s9kM ogdr4rL3MhkVU12MXpADN1VzJJ9dm7IUFOn4eCfnzGfkKAncQBnDNhWBhRsl65xp 7fAIiGrdX2MWEChW6gUu8G7NT47iWtKpT6UwgHl2i844lWzNNK2o/GER49wBzlSa 3OypeKiPUV00ZtZTpX8GZz1clDN/zHntluF1jObYZzed4gWq0NYBmSBnLhAQjpuI uCgUt7QqimlfjcCepoOFQf4mseYsqJ0WXEBkVHo= -----END CERTIFICATE-----Generated at Sat Jun 7 15:33:36 2025 by rpki-client