$ rpki-client -vvf repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a323a3a2f34382d3438203d3e20313338383636.roa File: 323430343a666563303a323a3a2f34382d3438203d3e20313338383636.roa (raw, json) Hash identifier: oP5w04R+DVBIXz7VN32/pUudJby5Bdnn9OzpJHzqMrY= Subject key identifier: 64:DF:AE:C3:1D:69:22:4A:B3:5D:C0:16:33:5C:DD:D7:A4:97:F1:34 Certificate issuer: /CN=3D64FD900E2E64CB159D0067167853AAFC8A7E97 Certificate serial: 2A611199C2D6264D056B314A235A00FF408F4609 Authority key identifier: 3D:64:FD:90:0E:2E:64:CB:15:9D:00:67:16:78:53:AA:FC:8A:7E:97 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a323a3a2f34382d3438203d3e20313338383636.roa Signing time: Mon 02 Jun 2025 17:00:02 +0000 ROA not before: Mon 02 Jun 2025 16:55:02 +0000 ROA not after: Mon 01 Jun 2026 17:00:02 +0000 asID: 138866 IP address blocks: 2404:fec0:2::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.crl rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 23:14:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:61:11:99:c2:d6:26:4d:05:6b:31:4a:23:5a:00:ff:40:8f:46:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D64FD900E2E64CB159D0067167853AAFC8A7E97 Validity Not Before: Jun 2 16:55:02 2025 GMT Not After : Jun 1 17:00:02 2026 GMT Subject: CN=64DFAEC31D69224AB35DC016335CDDD7A497F134 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:0a:9c:c1:58:d8:aa:cd:1f:09:1b:ce:10:0d: 79:e9:78:12:36:e0:d7:ea:a0:7f:a3:00:32:6d:06: fa:9d:27:8f:da:c1:e4:36:68:43:0d:de:15:22:f9: c3:a1:1b:7e:bc:20:25:b3:44:a4:7e:19:1c:ff:01: 58:62:7a:be:bd:c3:73:67:cb:4f:8e:3d:d7:f6:e2: 88:96:3f:4c:51:02:f4:42:91:92:8b:c0:f6:01:ff: 21:04:70:29:bd:49:1b:1e:a5:ae:9a:1c:9d:54:23: b9:26:0c:b0:9a:42:83:29:62:31:91:9b:1b:fc:5e: 97:3b:0c:79:69:da:15:70:19:0e:24:27:ef:4a:0c: a0:91:6c:08:8c:f7:86:17:a7:e5:3b:6e:9f:15:10: 16:eb:9e:84:b5:9c:2c:36:da:86:a7:ab:6c:7f:13: 1a:a0:9f:57:37:28:ab:76:77:ed:69:4a:f2:26:e4: 2d:81:a8:87:c2:1e:c0:ca:8c:46:6d:e1:b5:d4:85: 12:61:58:e9:08:e5:9f:90:94:2e:f9:c3:a4:70:72: 10:e4:81:5f:ad:ff:2b:ee:2f:c3:bb:22:e6:8b:88: 7b:e5:ff:36:48:60:f7:85:06:00:70:c7:e7:a3:de: c0:b2:d2:07:52:b9:ea:06:96:ea:67:2e:53:81:fa: 9b:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:DF:AE:C3:1D:69:22:4A:B3:5D:C0:16:33:5C:DD:D7:A4:97:F1:34 X509v3 Authority Key Identifier: keyid:3D:64:FD:90:0E:2E:64:CB:15:9D:00:67:16:78:53:AA:FC:8A:7E:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a323a3a2f34382d3438203d3e20313338383636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fec0:2::/48 Signature Algorithm: sha256WithRSAEncryption 02:ae:14:f3:dc:44:13:92:1c:cd:b7:17:94:f4:cd:c8:98:1c: f1:af:c6:a0:90:cd:7b:b3:5a:df:a6:3f:3c:29:81:37:47:1e: 44:8f:be:39:2f:1f:27:9a:be:47:a4:14:7b:27:65:96:a5:f7: ca:1f:c7:1b:c0:dd:90:32:f1:79:d3:c8:8f:84:1a:28:3d:f3: 40:d1:f2:81:33:95:b8:2b:2e:a2:0a:29:f3:77:f4:7c:0d:95: 4d:7f:68:f7:7a:1f:c9:dc:a2:4d:4b:9c:8a:ef:16:7a:4e:6a: 22:1c:c5:4f:ef:23:50:67:f1:1c:94:0a:09:23:50:8c:5c:21: 96:38:98:c6:9d:c9:ee:45:97:e3:ce:c9:ca:96:40:64:5e:60: 91:6c:43:21:fb:8f:08:2f:53:b8:79:59:50:e7:4c:ab:06:71: ff:2f:6a:64:59:3d:42:a6:42:41:58:fb:42:26:bc:17:48:06: 10:64:63:a4:13:2d:39:82:6b:2c:b3:34:8e:a2:a7:b7:1a:92: b1:e4:6a:a0:d9:d6:a7:6b:9e:d7:e7:60:2f:3b:1a:c7:ac:ad: 4c:f1:87:77:52:bf:cd:83:c0:12:1b:0d:c0:e2:3c:7c:ee:38: b1:3f:67:17:39:cf:bf:7a:1f:2e:74:2a:96:4e:1e:3a:a4:53: 9a:2e:f6:ed -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUKmERmcLWJk0FazFKI1oA/0CPRgkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Q2NEZEOTAwRTJFNjRDQjE1OUQwMDY3MTY3ODUzQUFG QzhBN0U5NzAeFw0yNTA2MDIxNjU1MDJaFw0yNjA2MDExNzAwMDJaMDMxMTAvBgNV BAMTKDY0REZBRUMzMUQ2OTIyNEFCMzVEQzAxNjMzNUNEREQ3QTQ5N0YxMzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6CpzBWNiqzR8JG84QDXnpeBI2 4NfqoH+jADJtBvqdJ4/aweQ2aEMN3hUi+cOhG368ICWzRKR+GRz/AVhier69w3Nn y0+OPdf24oiWP0xRAvRCkZKLwPYB/yEEcCm9SRsepa6aHJ1UI7kmDLCaQoMpYjGR mxv8Xpc7DHlp2hVwGQ4kJ+9KDKCRbAiM94YXp+U7bp8VEBbrnoS1nCw22oanq2x/ Exqgn1c3KKt2d+1pSvIm5C2BqIfCHsDKjEZt4bXUhRJhWOkI5Z+QlC75w6RwchDk gV+t/yvuL8O7IuaLiHvl/zZIYPeFBgBwx+ej3sCy0gdSueoGlupnLlOB+pu5AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUZN+uwx1pIkqzXcAWM1zd16SX8TQwHwYDVR0j BBgwFoAUPWT9kA4uZMsVnQBnFnhTqvyKfpcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YTUxOWFlYi01YzU2LTRjYjMtOTRhMC0wZjQwMGVhNmEzNzUvMC8zRDY0RkQ5MDBF MkU2NENCMTU5RDAwNjcxNjc4NTNBQUZDOEE3RTk3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0Q2NEZEOTAwRTJFNjRDQjE1OUQwMDY3MTY3ODUzQUFGQzhB N0U5Ny5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhNTE5YWViLTVjNTYtNGNiMy05 NGEwLTBmNDAwZWE2YTM3NS8wLzMyMzQzMDM0M2E2NjY1NjMzMDNhMzIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzODM2MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP7AAAIw DQYJKoZIhvcNAQELBQADggEBAAKuFPPcRBOSHM23F5T0zciYHPGvxqCQzXuzWt+m PzwpgTdHHkSPvjkvHyeavkekFHsnZZal98ofxxvA3ZAy8XnTyI+EGig980DR8oEz lbgrLqIKKfN39HwNlU1/aPd6H8ncok1LnIrvFnpOaiIcxU/vI1Bn8RyUCgkjUIxc IZY4mMadye5Fl+POycqWQGReYJFsQyH7jwgvU7h5WVDnTKsGcf8vamRZPUKmQkFY +0ImvBdIBhBkY6QTLTmCayyzNI6ip7cakrHkaqDZ1qdrntfnYC87GsesrUzxh3dS v82DwBIbDcDiPHzuOLE/Zxc5z796Hy50KpZOHjqkU5ou9u0= -----END CERTIFICATE-----Generated at Sat Jun 7 19:56:39 2025 by rpki-client