$ rpki-client -vvf repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a333a3a2f34382d3438203d3e20313338383636.roa File: 323430343a666563303a333a3a2f34382d3438203d3e20313338383636.roa (raw, json) Hash identifier: KM8HCAE941ny+NeclcPdlUg9VIqsSih6MjHoa5IqXb8= Subject key identifier: 4D:59:51:79:8C:7D:AF:6F:BA:76:C7:1B:45:4F:C5:D8:D2:FD:D2:34 Certificate issuer: /CN=3D64FD900E2E64CB159D0067167853AAFC8A7E97 Certificate serial: 66B682D3B02F391EE32B850C9A7225BC6D355A86 Authority key identifier: 3D:64:FD:90:0E:2E:64:CB:15:9D:00:67:16:78:53:AA:FC:8A:7E:97 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a333a3a2f34382d3438203d3e20313338383636.roa Signing time: Mon 02 Jun 2025 17:00:01 +0000 ROA not before: Mon 02 Jun 2025 16:55:01 +0000 ROA not after: Mon 01 Jun 2026 17:00:01 +0000 asID: 138866 IP address blocks: 2404:fec0:3::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.crl rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 13:41:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:b6:82:d3:b0:2f:39:1e:e3:2b:85:0c:9a:72:25:bc:6d:35:5a:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D64FD900E2E64CB159D0067167853AAFC8A7E97 Validity Not Before: Jun 2 16:55:01 2025 GMT Not After : Jun 1 17:00:01 2026 GMT Subject: CN=4D5951798C7DAF6FBA76C71B454FC5D8D2FDD234 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:17:2a:26:bd:6c:5d:ff:1b:0e:bf:0f:4c:c7: 7d:8d:50:d6:3a:4b:87:45:96:7e:0e:5e:c8:b8:a2: d2:3e:32:46:78:fa:83:f4:e0:97:0d:63:c1:ca:e4: 76:2d:00:28:79:3d:f2:14:1c:51:bf:6b:0f:2f:8d: 47:ab:4a:1f:aa:e3:e9:24:4b:fc:44:9b:29:2d:b0: 8e:05:c2:cb:b7:27:bf:a0:d4:79:7f:fa:4b:79:e4: 12:46:da:32:6d:1e:09:06:f3:3d:4d:09:5b:0f:1a: 70:24:b5:e1:0e:7d:43:6f:35:3a:91:84:91:59:2e: 23:9c:9d:87:36:db:2b:1f:03:38:49:90:98:a9:6f: 56:ae:fc:4a:97:a9:b8:86:1b:ec:50:6f:fc:5c:41: ce:84:0a:c5:f9:0e:b1:19:a6:28:3d:2e:2d:fc:39: 95:fa:8d:a0:d9:8a:72:d4:1d:8c:6b:e5:0e:76:bd: 35:5e:ba:85:e8:86:76:50:8f:37:b9:4b:72:99:eb: e8:66:89:18:03:4d:5f:91:74:fd:90:ad:2b:81:e9: 60:19:20:a0:e7:7e:2c:bb:ce:cc:98:a4:df:48:c2: d8:e5:f9:10:53:66:56:d0:5f:1a:fa:fa:51:c8:4c: c3:da:94:56:91:39:c1:fb:73:f4:9a:6f:64:0c:2d: e6:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:59:51:79:8C:7D:AF:6F:BA:76:C7:1B:45:4F:C5:D8:D2:FD:D2:34 X509v3 Authority Key Identifier: keyid:3D:64:FD:90:0E:2E:64:CB:15:9D:00:67:16:78:53:AA:FC:8A:7E:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a333a3a2f34382d3438203d3e20313338383636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fec0:3::/48 Signature Algorithm: sha256WithRSAEncryption 75:22:6e:a3:77:07:33:bf:c4:4d:7c:df:49:56:0b:0e:9b:2e: 1f:31:b4:9d:ee:05:6e:d4:8b:a8:86:ba:9e:8b:01:ae:42:fd: 5c:24:35:e2:c5:40:84:a8:06:ac:4a:a3:41:03:cb:65:71:4a: c3:c3:e7:73:ce:04:f6:9c:49:09:d5:68:88:94:a6:e2:0b:80: b1:5c:15:9d:e3:20:d5:8b:d6:bf:9d:75:c8:5f:f6:64:75:5c: 2b:9d:08:19:fa:48:6a:96:79:53:f5:ae:96:21:52:a5:13:e7: 1b:d9:91:f6:42:cb:bd:71:66:96:f6:b2:c9:e2:a1:97:17:c4: c1:72:05:cd:af:e3:27:1a:11:a7:63:17:8c:d6:fb:3a:5a:ad: 53:47:fa:cf:6c:99:cc:ec:d1:2e:d7:a1:6e:aa:ad:cd:93:46: 93:77:88:ec:9a:fc:ae:2f:3c:52:9a:f0:15:bc:b3:2e:94:21: 6f:b0:32:bb:9d:ca:c5:09:d1:95:7c:e8:73:56:f6:e1:5e:37: e1:9b:38:67:6e:cb:75:e2:cc:10:43:7f:b7:b3:5c:e0:84:a7: 4c:c9:c0:78:12:5e:57:62:d3:63:28:98:da:2a:5f:48:d2:39: 94:91:76:43:13:0f:d0:8c:8a:25:45:d1:f9:6b:da:95:34:ff: a3:e6:c3:0c -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUZraC07AvOR7jK4UMmnIlvG01WoYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Q2NEZEOTAwRTJFNjRDQjE1OUQwMDY3MTY3ODUzQUFG QzhBN0U5NzAeFw0yNTA2MDIxNjU1MDFaFw0yNjA2MDExNzAwMDFaMDMxMTAvBgNV BAMTKDRENTk1MTc5OEM3REFGNkZCQTc2QzcxQjQ1NEZDNUQ4RDJGREQyMzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjFyomvWxd/xsOvw9Mx32NUNY6 S4dFln4OXsi4otI+MkZ4+oP04JcNY8HK5HYtACh5PfIUHFG/aw8vjUerSh+q4+kk S/xEmyktsI4Fwsu3J7+g1Hl/+kt55BJG2jJtHgkG8z1NCVsPGnAkteEOfUNvNTqR hJFZLiOcnYc22ysfAzhJkJipb1au/EqXqbiGG+xQb/xcQc6ECsX5DrEZpig9Li38 OZX6jaDZinLUHYxr5Q52vTVeuoXohnZQjze5S3KZ6+hmiRgDTV+RdP2QrSuB6WAZ IKDnfiy7zsyYpN9Iwtjl+RBTZlbQXxr6+lHITMPalFaROcH7c/Sab2QMLeYBAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUTVlReYx9r2+6dscbRU/F2NL90jQwHwYDVR0j BBgwFoAUPWT9kA4uZMsVnQBnFnhTqvyKfpcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YTUxOWFlYi01YzU2LTRjYjMtOTRhMC0wZjQwMGVhNmEzNzUvMC8zRDY0RkQ5MDBF MkU2NENCMTU5RDAwNjcxNjc4NTNBQUZDOEE3RTk3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0Q2NEZEOTAwRTJFNjRDQjE1OUQwMDY3MTY3ODUzQUFGQzhB N0U5Ny5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhNTE5YWViLTVjNTYtNGNiMy05 NGEwLTBmNDAwZWE2YTM3NS8wLzMyMzQzMDM0M2E2NjY1NjMzMDNhMzMzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzODM2MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP7AAAMw DQYJKoZIhvcNAQELBQADggEBAHUibqN3BzO/xE1830lWCw6bLh8xtJ3uBW7Ui6iG up6LAa5C/VwkNeLFQISoBqxKo0EDy2VxSsPD53POBPacSQnVaIiUpuILgLFcFZ3j INWL1r+ddchf9mR1XCudCBn6SGqWeVP1rpYhUqUT5xvZkfZCy71xZpb2ssnioZcX xMFyBc2v4ycaEadjF4zW+zparVNH+s9smczs0S7XoW6qrc2TRpN3iOya/K4vPFKa 8BW8sy6UIW+wMrudysUJ0ZV86HNW9uFeN+GbOGduy3XizBBDf7ezXOCEp0zJwHgS Xldi02MomNoqX0jSOZSRdkMTD9CMiiVF0flr2pU0/6Pmwww= -----END CERTIFICATE-----Generated at Fri Jun 6 17:07:18 2025 by rpki-client