$ rpki-client -vvf repo-rpki.idnic.net/repo/50c773c8-fb56-449f-8649-112d6e1686b3/0/323430353a336463303a3a2f33322d3438203d3e20313332363432.roa File: 323430353a336463303a3a2f33322d3438203d3e20313332363432.roa (raw, json) Hash identifier: klLZJtnV+xWW7YQzH2mIJ1a0TeqcgHLxJAezwqgVxkg= Subject key identifier: FB:4D:A6:CB:BB:7E:BA:A4:CB:55:CA:39:49:06:E9:BD:DA:16:FD:10 Certificate issuer: /CN=818823B50F8D63E9D953C4B752F04DB0437CA8E9 Certificate serial: 41B1832C9DD6E457A1CF41CEEF01181A1F148F35 Authority key identifier: 81:88:23:B5:0F:8D:63:E9:D9:53:C4:B7:52:F0:4D:B0:43:7C:A8:E9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/818823B50F8D63E9D953C4B752F04DB0437CA8E9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/50c773c8-fb56-449f-8649-112d6e1686b3/0/323430353a336463303a3a2f33322d3438203d3e20313332363432.roa Signing time: Mon 02 Jun 2025 01:02:27 +0000 ROA not before: Mon 02 Jun 2025 00:57:27 +0000 ROA not after: Mon 01 Jun 2026 01:02:27 +0000 asID: 132642 IP address blocks: 2405:3dc0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/50c773c8-fb56-449f-8649-112d6e1686b3/0/818823B50F8D63E9D953C4B752F04DB0437CA8E9.crl rsync://repo-rpki.idnic.net/repo/50c773c8-fb56-449f-8649-112d6e1686b3/0/818823B50F8D63E9D953C4B752F04DB0437CA8E9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/818823B50F8D63E9D953C4B752F04DB0437CA8E9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 01:36:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:b1:83:2c:9d:d6:e4:57:a1:cf:41:ce:ef:01:18:1a:1f:14:8f:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=818823B50F8D63E9D953C4B752F04DB0437CA8E9 Validity Not Before: Jun 2 00:57:27 2025 GMT Not After : Jun 1 01:02:27 2026 GMT Subject: CN=FB4DA6CBBB7EBAA4CB55CA394906E9BDDA16FD10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:5a:5e:b6:ac:76:1c:e4:3a:ca:af:bf:4a:3a: 80:e5:3c:d5:62:f8:ed:b5:bb:18:5f:7c:87:97:94: 4d:1c:89:14:4f:00:ff:92:07:e6:69:74:01:ab:06: 5d:77:69:b3:48:bb:0a:02:6a:05:68:f0:13:6e:e0: e0:56:7d:d3:fc:5f:b0:87:ec:50:07:6a:ce:91:55: 06:5e:83:6b:7a:32:61:6d:20:3c:55:5f:c5:39:54: 94:5b:ad:b7:0e:2f:db:f6:c6:c8:fc:98:0d:27:3b: 4b:a4:8c:dd:1f:cf:ae:0e:26:30:13:2b:5a:5e:cb: e7:9c:dd:89:ae:24:b5:43:f3:6b:08:61:ff:c7:64: e1:ad:8d:17:25:6c:eb:e0:6f:44:97:e1:a9:de:23: 6f:f4:8d:90:10:73:29:e6:f7:af:6a:c4:40:1c:c5: 94:24:5e:de:f9:9c:56:65:9e:3e:3e:a6:fb:08:83: ca:2c:24:30:ce:b2:45:6f:37:85:c0:20:28:fd:30: 36:f3:14:04:11:ab:b0:74:c1:69:db:c1:34:ed:59: e8:0f:31:fe:8f:07:ff:28:26:45:35:e1:81:af:58: 9f:f0:a3:36:92:47:77:97:bf:d5:d1:bf:ad:1c:26: ea:33:28:84:cf:6d:da:72:96:95:69:73:f9:20:ee: 1f:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:4D:A6:CB:BB:7E:BA:A4:CB:55:CA:39:49:06:E9:BD:DA:16:FD:10 X509v3 Authority Key Identifier: keyid:81:88:23:B5:0F:8D:63:E9:D9:53:C4:B7:52:F0:4D:B0:43:7C:A8:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/50c773c8-fb56-449f-8649-112d6e1686b3/0/818823B50F8D63E9D953C4B752F04DB0437CA8E9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/818823B50F8D63E9D953C4B752F04DB0437CA8E9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/50c773c8-fb56-449f-8649-112d6e1686b3/0/323430353a336463303a3a2f33322d3438203d3e20313332363432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:3dc0::/32 Signature Algorithm: sha256WithRSAEncryption 0d:a7:e1:c7:e3:7d:f1:44:45:64:c4:ef:cc:f8:12:3d:22:c2: 35:69:8d:16:f0:a9:82:26:0b:83:52:d8:f7:5e:99:68:ec:57: 52:47:26:61:bc:5f:6b:41:9f:e1:fe:52:51:7f:91:9f:a8:03: ff:f5:44:04:55:83:e2:a6:d7:77:bb:ff:cf:5e:75:c2:92:d6: 1c:12:bc:61:29:2d:0b:f0:29:53:90:da:c0:b7:27:ce:17:c5: b5:49:45:38:98:8b:da:1c:82:6e:9f:cf:4a:03:49:96:f7:65: 2e:40:e8:45:f4:50:b9:a8:97:b1:26:61:28:16:45:e7:6d:dc: f3:27:27:85:55:f9:51:c5:0f:96:66:ae:83:fc:74:b6:3c:9d: c4:64:91:e6:00:da:42:f9:02:81:41:80:20:d6:0b:10:e0:cb: d3:2e:47:17:6f:e3:3e:16:06:a3:52:aa:5e:b9:3a:47:8d:b5: d2:72:0e:b9:10:0d:21:00:11:60:32:27:8e:ec:09:41:c2:e2: a0:5d:58:bf:e4:03:56:cb:58:62:45:f3:ad:1a:15:ac:7c:4b: 2f:cb:50:de:ab:24:3b:d3:42:ad:5d:31:0d:ed:d4:e1:2d:7e: be:73:d9:d4:d1:03:84:3f:b4:99:0c:f4:c7:93:3e:ba:84:81: d9:1a:d4:45 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUQbGDLJ3W5Fehz0HO7wEYGh8UjzUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODE4ODIzQjUwRjhENjNFOUQ5NTNDNEI3NTJGMDREQjA0 MzdDQThFOTAeFw0yNTA2MDIwMDU3MjdaFw0yNjA2MDEwMTAyMjdaMDMxMTAvBgNV BAMTKEZCNERBNkNCQkI3RUJBQTRDQjU1Q0EzOTQ5MDZFOUJEREExNkZEMTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClWl62rHYc5DrKr79KOoDlPNVi +O21uxhffIeXlE0ciRRPAP+SB+ZpdAGrBl13abNIuwoCagVo8BNu4OBWfdP8X7CH 7FAHas6RVQZeg2t6MmFtIDxVX8U5VJRbrbcOL9v2xsj8mA0nO0ukjN0fz64OJjAT K1pey+ec3YmuJLVD82sIYf/HZOGtjRclbOvgb0SX4aneI2/0jZAQcynm969qxEAc xZQkXt75nFZlnj4+pvsIg8osJDDOskVvN4XAICj9MDbzFAQRq7B0wWnbwTTtWegP Mf6PB/8oJkU14YGvWJ/wozaSR3eXv9XRv60cJuozKITPbdpylpVpc/kg7h8dAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQU+02my7t+uqTLVco5SQbpvdoW/RAwHwYDVR0j BBgwFoAUgYgjtQ+NY+nZU8S3UvBNsEN8qOkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MGM3NzNjOC1mYjU2LTQ0OWYtODY0OS0xMTJkNmUxNjg2YjMvMC84MTg4MjNCNTBG OEQ2M0U5RDk1M0M0Qjc1MkYwNERCMDQzN0NBOEU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODE4ODIzQjUwRjhENjNFOUQ5NTNDNEI3NTJGMDREQjA0MzdD QThFOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUwYzc3M2M4LWZiNTYtNDQ5Zi04 NjQ5LTExMmQ2ZTE2ODZiMy8wLzMyMzQzMDM1M2EzMzY0NjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzMjM2MzQzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQFPcAwDQYJKoZI hvcNAQELBQADggEBAA2n4cfjffFERWTE78z4Ej0iwjVpjRbwqYImC4NS2PdemWjs V1JHJmG8X2tBn+H+UlF/kZ+oA//1RARVg+Km13e7/89edcKS1hwSvGEpLQvwKVOQ 2sC3J84XxbVJRTiYi9ocgm6fz0oDSZb3ZS5A6EX0ULmol7EmYSgWRedt3PMnJ4VV +VHFD5ZmroP8dLY8ncRkkeYA2kL5AoFBgCDWCxDgy9MuRxdv4z4WBqNSql65OkeN tdJyDrkQDSEAEWAyJ47sCUHC4qBdWL/kA1bLWGJF860aFax8Sy/LUN6rJDvTQq1d MQ3t1OEtfr5z2dTRA4Q/tJkM9MeTPrqEgdka1EU= -----END CERTIFICATE-----Generated at Sat Jun 7 09:37:00 2025 by rpki-client