$ rpki-client -vvf repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a313a3a2f34382d3438203d3e20313338383636.roa File: 323430343a666563303a313a3a2f34382d3438203d3e20313338383636.roa (raw, json) Hash identifier: /v/t0LVvwP8ItAgvAEV4d3ird2OFydIuyNvk7Hjv9rU= Subject key identifier: 63:58:F3:36:26:FA:C2:F9:74:77:33:38:B7:3A:7C:CF:E7:0A:6E:9F Certificate issuer: /CN=3D64FD900E2E64CB159D0067167853AAFC8A7E97 Certificate serial: 60009E6750DC4E3E6649E692947B2F2A9307A20A Authority key identifier: 3D:64:FD:90:0E:2E:64:CB:15:9D:00:67:16:78:53:AA:FC:8A:7E:97 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a313a3a2f34382d3438203d3e20313338383636.roa Signing time: Mon 02 Jun 2025 17:00:01 +0000 ROA not before: Mon 02 Jun 2025 16:55:01 +0000 ROA not after: Mon 01 Jun 2026 17:00:01 +0000 asID: 138866 IP address blocks: 2404:fec0:1::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.crl rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 Oct 2025 07:44:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:00:9e:67:50:dc:4e:3e:66:49:e6:92:94:7b:2f:2a:93:07:a2:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D64FD900E2E64CB159D0067167853AAFC8A7E97 Validity Not Before: Jun 2 16:55:01 2025 GMT Not After : Jun 1 17:00:01 2026 GMT Subject: CN=6358F33626FAC2F974773338B73A7CCFE70A6E9F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:48:71:b2:c6:77:42:1a:2b:1f:82:00:e0:bc: 38:5a:42:a2:a5:6a:e1:e9:2a:a6:2b:89:04:21:52: ee:48:fc:cb:2d:16:60:c2:05:38:95:55:4b:47:73: 2e:d4:b7:89:a3:c1:64:14:4c:57:d1:a1:c6:12:d5: 64:f8:6c:eb:9b:c9:1c:81:d2:8f:36:6a:ea:a8:dc: 53:d4:3e:5f:81:48:4b:67:20:32:c3:e5:4b:ba:77: 7b:a7:f9:de:cb:75:8e:9e:cb:7c:cc:38:48:2c:6c: 4c:93:a4:51:cd:89:84:b8:66:45:ef:6c:71:9d:64: ca:61:8f:f4:b5:1d:9e:a4:96:1e:78:21:c5:b6:f4: dd:86:98:9e:82:c1:81:a7:2c:e6:90:e0:c6:72:ad: e3:a4:c7:ad:25:f6:bb:ae:25:91:af:6b:8d:a5:e0: 11:a7:01:d1:24:ef:dc:f1:05:72:98:06:e8:b6:40: 9a:b8:d9:59:3b:9c:ca:9c:95:58:64:c3:ee:6a:43: 48:84:ce:c6:a2:ff:73:94:ae:8d:d4:d9:e6:d5:35: 70:dd:7f:2f:3f:08:d5:97:e2:93:6e:db:ba:23:23: f3:79:a4:26:e7:bd:7b:8f:ae:ba:d2:41:b4:43:c9: 2a:0f:34:e0:f4:26:69:70:a6:7e:59:79:a8:dc:3e: dc:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:58:F3:36:26:FA:C2:F9:74:77:33:38:B7:3A:7C:CF:E7:0A:6E:9F X509v3 Authority Key Identifier: keyid:3D:64:FD:90:0E:2E:64:CB:15:9D:00:67:16:78:53:AA:FC:8A:7E:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a313a3a2f34382d3438203d3e20313338383636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fec0:1::/48 Signature Algorithm: sha256WithRSAEncryption 5a:b0:a1:60:ef:2d:1c:89:21:47:20:a8:62:eb:c1:45:84:7f: 53:d3:f0:5d:6c:43:8e:5e:3b:f7:13:31:21:49:f6:3a:56:4c: c4:84:15:16:dd:be:92:66:b1:a4:dc:13:cf:c5:31:e3:dc:4a: e4:66:21:2a:6e:a4:ba:0d:1a:75:d8:d3:70:7b:6a:a3:71:6a: 5e:97:58:0a:e7:ad:a7:c6:b8:92:d2:0d:06:05:6b:0c:f8:93: 06:e2:3c:06:bc:6e:6f:ef:8e:12:c6:05:c6:fb:1d:6d:a3:55: 0b:41:cc:e7:5e:1f:2a:57:96:a7:a7:f1:b8:e7:32:66:8c:39: f1:a1:08:e7:3d:ad:68:09:d3:17:4d:23:2e:de:a1:7e:5a:d8: 78:e6:a3:eb:77:f5:a8:b0:8f:32:4a:60:f0:1a:51:b6:63:8e: 91:84:61:0d:c0:33:83:d5:00:92:a5:a8:79:1b:5a:91:b6:0e: 00:db:e9:96:ea:7d:93:4b:92:77:3a:cd:10:e7:ef:82:ac:56: 63:ee:d2:c7:5d:8c:55:9b:1d:47:b2:51:1f:f0:b9:83:a9:4e: 3d:ef:13:2d:da:24:77:2b:f0:b8:1a:67:85:b5:6f:b9:77:51: 30:7e:31:08:64:de:a4:55:db:87:82:26:83:5b:d2:13:dd:fc: a4:cf:d3:85 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUYACeZ1DcTj5mSeaSlHsvKpMHogowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Q2NEZEOTAwRTJFNjRDQjE1OUQwMDY3MTY3ODUzQUFG QzhBN0U5NzAeFw0yNTA2MDIxNjU1MDFaFw0yNjA2MDExNzAwMDFaMDMxMTAvBgNV BAMTKDYzNThGMzM2MjZGQUMyRjk3NDc3MzMzOEI3M0E3Q0NGRTcwQTZFOUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPSHGyxndCGisfggDgvDhaQqKl auHpKqYriQQhUu5I/MstFmDCBTiVVUtHcy7Ut4mjwWQUTFfRocYS1WT4bOubyRyB 0o82auqo3FPUPl+BSEtnIDLD5Uu6d3un+d7LdY6ey3zMOEgsbEyTpFHNiYS4ZkXv bHGdZMphj/S1HZ6klh54IcW29N2GmJ6CwYGnLOaQ4MZyreOkx60l9ruuJZGva42l 4BGnAdEk79zxBXKYBui2QJq42Vk7nMqclVhkw+5qQ0iEzsai/3OUro3U2ebVNXDd fy8/CNWX4pNu27ojI/N5pCbnvXuPrrrSQbRDySoPNOD0Jmlwpn5ZeajcPtxtAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUY1jzNib6wvl0dzM4tzp8z+cKbp8wHwYDVR0j BBgwFoAUPWT9kA4uZMsVnQBnFnhTqvyKfpcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YTUxOWFlYi01YzU2LTRjYjMtOTRhMC0wZjQwMGVhNmEzNzUvMC8zRDY0RkQ5MDBF MkU2NENCMTU5RDAwNjcxNjc4NTNBQUZDOEE3RTk3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0Q2NEZEOTAwRTJFNjRDQjE1OUQwMDY3MTY3ODUzQUFGQzhB N0U5Ny5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhNTE5YWViLTVjNTYtNGNiMy05 NGEwLTBmNDAwZWE2YTM3NS8wLzMyMzQzMDM0M2E2NjY1NjMzMDNhMzEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzODM2MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP7AAAEw DQYJKoZIhvcNAQELBQADggEBAFqwoWDvLRyJIUcgqGLrwUWEf1PT8F1sQ45eO/cT MSFJ9jpWTMSEFRbdvpJmsaTcE8/FMePcSuRmISpupLoNGnXY03B7aqNxal6XWArn rafGuJLSDQYFawz4kwbiPAa8bm/vjhLGBcb7HW2jVQtBzOdeHypXlqen8bjnMmaM OfGhCOc9rWgJ0xdNIy7eoX5a2Hjmo+t39aiwjzJKYPAaUbZjjpGEYQ3AM4PVAJKl qHkbWpG2DgDb6ZbqfZNLknc6zRDn74KsVmPu0sddjFWbHUeyUR/wuYOpTj3vEy3a JHcr8LgaZ4W1b7l3UTB+MQhk3qRV24eCJoNb0hPd/KTP04U= -----END CERTIFICATE-----Generated at Wed Oct 29 13:52:20 2025 by rpki-client