$ rpki-client -vvf repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a3235303a3a2f34382d3438203d3e20313338383636.roa File: 323430343a666563303a3235303a3a2f34382d3438203d3e20313338383636.roa (raw, json) Hash identifier: sYsKqli8EUEzTvSQXavM3oM1AVTdmnNeXY5Ib9nTkXk= Subject key identifier: 3C:03:CD:18:C3:68:68:43:6E:87:1F:97:3C:B2:62:29:74:9F:CB:B4 Certificate issuer: /CN=3D64FD900E2E64CB159D0067167853AAFC8A7E97 Certificate serial: 1169595F3A2538F31B7D82F4F5706A70CE55B4D9 Authority key identifier: 3D:64:FD:90:0E:2E:64:CB:15:9D:00:67:16:78:53:AA:FC:8A:7E:97 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a3235303a3a2f34382d3438203d3e20313338383636.roa Signing time: Mon 02 Jun 2025 17:00:02 +0000 ROA not before: Mon 02 Jun 2025 16:55:02 +0000 ROA not after: Mon 01 Jun 2026 17:00:02 +0000 asID: 138866 IP address blocks: 2404:fec0:250::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.crl rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 23:14:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:69:59:5f:3a:25:38:f3:1b:7d:82:f4:f5:70:6a:70:ce:55:b4:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D64FD900E2E64CB159D0067167853AAFC8A7E97 Validity Not Before: Jun 2 16:55:02 2025 GMT Not After : Jun 1 17:00:02 2026 GMT Subject: CN=3C03CD18C36868436E871F973CB26229749FCBB4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:2b:cf:42:b4:e5:fa:6b:d9:7d:43:f7:46:b1: a4:fd:6e:11:0a:37:a9:84:c2:17:ab:be:c8:c0:5e: fe:91:c6:72:9c:bd:ba:7a:0d:7f:07:b6:e8:b8:37: e3:9e:c6:06:19:e2:1c:5e:d4:08:f7:d6:a8:ee:05: 0c:bb:59:39:f4:b9:d7:f7:92:53:b6:d2:36:23:c5: 0d:74:f8:c1:c3:d8:48:e7:cc:d4:a7:e6:97:d0:6d: 2c:6b:26:db:f1:1f:37:2d:95:ed:7c:c0:e7:12:05: 7e:28:9b:aa:8f:04:ff:0d:8e:14:ce:c5:61:bb:0f: d4:71:25:cb:a1:b0:af:94:8d:0a:c2:97:93:1d:35: e6:9a:ab:18:b1:d0:c5:2f:95:62:8c:cf:4b:1c:4c: a5:32:77:d2:26:cd:66:fb:b4:17:c6:39:53:52:19: 30:fa:bc:5e:31:de:45:5f:7e:5d:d3:0f:e0:12:73: e0:67:20:f7:3e:43:f9:b1:d9:60:16:47:d2:96:d9: 81:e5:39:5c:0c:91:c8:a0:c9:b5:3a:d1:11:11:f5: 96:77:c3:e8:07:de:bf:93:87:8e:8d:55:0e:89:5b: 5b:3a:71:20:dc:af:ea:e3:3e:38:0a:97:3c:30:fe: 43:09:57:3a:12:96:78:ad:c4:6e:c8:05:a3:ee:24: 40:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:03:CD:18:C3:68:68:43:6E:87:1F:97:3C:B2:62:29:74:9F:CB:B4 X509v3 Authority Key Identifier: keyid:3D:64:FD:90:0E:2E:64:CB:15:9D:00:67:16:78:53:AA:FC:8A:7E:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a3235303a3a2f34382d3438203d3e20313338383636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fec0:250::/48 Signature Algorithm: sha256WithRSAEncryption bd:99:eb:69:ab:ce:86:07:60:05:7c:16:85:23:24:9b:e3:57: 76:06:6a:71:5c:1f:a7:d9:b1:3a:0e:2a:57:6b:b4:ac:84:e6: 20:4e:ae:4b:d4:15:e0:bc:54:b3:07:28:0a:00:8c:64:85:01: c8:f5:44:7e:b3:91:fa:90:d0:2f:f7:04:63:5c:73:86:da:63: 1f:0b:bf:f5:44:0b:10:45:29:8d:c6:bd:d8:3e:59:29:64:af: 8b:ca:de:f6:ba:a3:21:05:03:19:f6:19:a1:cc:b7:ce:c1:6d: 7f:4a:7e:54:33:3d:6d:b2:e8:f0:62:16:e8:25:ad:02:91:9b: 39:e3:16:04:e0:0a:03:70:fb:47:05:27:1f:55:5f:cf:f7:a1: 05:d9:9c:1d:26:e1:70:6c:81:95:bf:2d:99:6b:07:9d:d6:5d: 91:a5:61:a8:05:dd:4f:69:41:ab:56:88:8a:5e:06:23:b9:36: af:2e:ba:16:99:11:54:a6:11:da:e4:bb:ee:9e:bd:b6:3d:57: 5e:11:9c:26:7b:db:c5:d4:f9:e8:0f:af:db:84:36:71:8d:e4: 5d:ea:27:a0:a3:6a:82:c3:78:50:f1:9c:92:b2:75:90:c3:ab: 2b:ff:a8:cb:ea:1a:ee:62:49:2f:26:62:e5:eb:d1:04:3e:c8: e5:27:bb:e9 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUEWlZXzolOPMbfYL09XBqcM5VtNkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Q2NEZEOTAwRTJFNjRDQjE1OUQwMDY3MTY3ODUzQUFG QzhBN0U5NzAeFw0yNTA2MDIxNjU1MDJaFw0yNjA2MDExNzAwMDJaMDMxMTAvBgNV BAMTKDNDMDNDRDE4QzM2ODY4NDM2RTg3MUY5NzNDQjI2MjI5NzQ5RkNCQjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJK89CtOX6a9l9Q/dGsaT9bhEK N6mEwhervsjAXv6RxnKcvbp6DX8Htui4N+OexgYZ4hxe1Aj31qjuBQy7WTn0udf3 klO20jYjxQ10+MHD2EjnzNSn5pfQbSxrJtvxHzctle18wOcSBX4om6qPBP8NjhTO xWG7D9RxJcuhsK+UjQrCl5MdNeaaqxix0MUvlWKMz0scTKUyd9ImzWb7tBfGOVNS GTD6vF4x3kVffl3TD+ASc+BnIPc+Q/mx2WAWR9KW2YHlOVwMkcigybU60RER9ZZ3 w+gH3r+Th46NVQ6JW1s6cSDcr+rjPjgKlzww/kMJVzoSlnitxG7IBaPuJEDNAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUPAPNGMNoaENuhx+XPLJiKXSfy7QwHwYDVR0j BBgwFoAUPWT9kA4uZMsVnQBnFnhTqvyKfpcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YTUxOWFlYi01YzU2LTRjYjMtOTRhMC0wZjQwMGVhNmEzNzUvMC8zRDY0RkQ5MDBF MkU2NENCMTU5RDAwNjcxNjc4NTNBQUZDOEE3RTk3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0Q2NEZEOTAwRTJFNjRDQjE1OUQwMDY3MTY3ODUzQUFGQzhB N0U5Ny5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhNTE5YWViLTVjNTYtNGNiMy05 NGEwLTBmNDAwZWE2YTM3NS8wLzMyMzQzMDM0M2E2NjY1NjMzMDNhMzIzNTMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM4MzgzNjM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAT+ wAJQMA0GCSqGSIb3DQEBCwUAA4IBAQC9metpq86GB2AFfBaFIySb41d2BmpxXB+n 2bE6DipXa7SshOYgTq5L1BXgvFSzBygKAIxkhQHI9UR+s5H6kNAv9wRjXHOG2mMf C7/1RAsQRSmNxr3YPlkpZK+Lyt72uqMhBQMZ9hmhzLfOwW1/Sn5UMz1tsujwYhbo Ja0CkZs54xYE4AoDcPtHBScfVV/P96EF2ZwdJuFwbIGVvy2Zawed1l2RpWGoBd1P aUGrVoiKXgYjuTavLroWmRFUphHa5Lvunr22PVdeEZwme9vF1PnoD6/bhDZxjeRd 6iego2qCw3hQ8ZySsnWQw6sr/6jL6hruYkkvJmLl69EEPsjlJ7vp -----END CERTIFICATE-----Generated at Sun Jun 8 21:36:04 2025 by rpki-client