$ rpki-client -vvf repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a353a3a2f34382d3438203d3e20313338383636.roa File: 323430343a666563303a353a3a2f34382d3438203d3e20313338383636.roa (raw, json) Hash identifier: QBM9H9rd8+lS4gn1TV/zjjSpwBwL7sSfYx4yVL1I50s= Subject key identifier: 1B:3E:02:FA:53:09:B5:33:63:54:8C:76:3B:31:26:4B:4B:9D:FC:04 Certificate issuer: /CN=3D64FD900E2E64CB159D0067167853AAFC8A7E97 Certificate serial: 1E2F04382875ECC8E4992D2B6BC2C8E1FC201380 Authority key identifier: 3D:64:FD:90:0E:2E:64:CB:15:9D:00:67:16:78:53:AA:FC:8A:7E:97 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a353a3a2f34382d3438203d3e20313338383636.roa Signing time: Mon 02 Jun 2025 17:00:02 +0000 ROA not before: Mon 02 Jun 2025 16:55:02 +0000 ROA not after: Mon 01 Jun 2026 17:00:02 +0000 asID: 138866 IP address blocks: 2404:fec0:5::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.crl rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 23:14:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:2f:04:38:28:75:ec:c8:e4:99:2d:2b:6b:c2:c8:e1:fc:20:13:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D64FD900E2E64CB159D0067167853AAFC8A7E97 Validity Not Before: Jun 2 16:55:02 2025 GMT Not After : Jun 1 17:00:02 2026 GMT Subject: CN=1B3E02FA5309B53363548C763B31264B4B9DFC04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:a7:99:21:8c:4b:f1:f0:83:c9:34:82:c2:26: a2:39:ae:35:1f:dc:74:48:74:2c:5d:c2:43:05:77: 0d:d1:4a:8d:c1:af:a4:31:1b:8e:07:88:40:57:12: 70:1b:5e:6f:94:03:a4:1f:c4:e3:f1:d1:89:a2:20: 52:7f:1c:14:08:fe:4e:b6:15:c6:02:ba:62:6b:aa: 92:16:3b:10:4a:5b:6d:58:07:29:98:fd:02:b2:ec: ff:7e:68:d9:6d:31:3b:5a:28:85:bd:2e:d6:4a:53: 3e:78:b6:c0:af:b4:22:97:b9:23:75:01:b5:98:c0: f2:b7:1a:9d:a4:57:7f:c4:55:a4:82:36:17:19:f1: 4e:a1:21:4d:07:a3:47:17:cc:51:79:1f:99:4a:9c: 93:64:05:1e:c6:fb:ca:40:e0:98:13:84:51:db:8e: d7:f9:71:6f:bb:af:75:56:5e:af:b1:df:18:8e:1c: 90:5d:4a:5c:a0:e2:0d:8f:b7:79:ed:e3:db:ee:b8: 63:72:20:af:e4:45:9b:0a:87:5d:de:c2:49:f7:63: c8:ae:1b:9c:58:2d:7f:96:86:ff:9d:2f:93:52:aa: 95:da:d6:ad:f2:f0:11:20:2b:91:45:dc:33:32:91: 78:ef:b1:18:fe:21:f4:b3:83:d8:54:b7:53:24:74: 8f:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:3E:02:FA:53:09:B5:33:63:54:8C:76:3B:31:26:4B:4B:9D:FC:04 X509v3 Authority Key Identifier: keyid:3D:64:FD:90:0E:2E:64:CB:15:9D:00:67:16:78:53:AA:FC:8A:7E:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a353a3a2f34382d3438203d3e20313338383636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fec0:5::/48 Signature Algorithm: sha256WithRSAEncryption c9:95:46:2a:68:5b:28:44:85:58:1e:31:8b:0c:6c:6b:3d:6f: 30:07:dd:b9:84:5d:c4:7e:ab:20:ee:d7:35:be:41:40:78:b6: 4e:fb:48:75:9b:25:7a:53:4c:7f:37:bd:5d:16:ec:28:b8:36: bd:3c:64:aa:21:16:f4:99:5c:f7:5c:ac:1f:c5:e5:45:89:54: 6c:6f:56:ca:9e:59:82:01:73:d9:62:74:2a:da:c4:45:e7:d6: bc:45:f6:50:4a:02:d2:8f:35:37:36:c5:1a:05:46:ec:a0:51: 36:03:ac:89:00:fa:e2:88:fe:81:b8:01:a4:82:1b:a7:b1:6b: 93:2c:8d:90:3a:f7:44:c3:e2:c4:ce:e8:47:ea:7e:32:85:ff: f8:f9:7d:05:8a:6a:32:94:e6:5b:d0:bc:ef:df:29:17:7e:c2: ce:b7:83:0f:61:db:ff:e0:e9:1f:c7:ad:42:60:7f:8e:68:58: 6a:bb:e3:78:57:89:85:2b:f3:d3:94:55:e2:93:12:c4:53:a5: fd:01:ba:56:a3:1f:d7:f6:2c:d5:9e:2f:b2:83:95:0f:9e:4b: 15:67:ce:e1:27:1e:df:50:57:02:51:a0:a6:87:9c:93:97:fd: 1c:0e:da:dc:e3:5a:c6:34:35:cc:dd:b3:06:b8:cd:46:8b:b6: 57:95:1b:b8 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUHi8EOCh17MjkmS0ra8LI4fwgE4AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Q2NEZEOTAwRTJFNjRDQjE1OUQwMDY3MTY3ODUzQUFG QzhBN0U5NzAeFw0yNTA2MDIxNjU1MDJaFw0yNjA2MDExNzAwMDJaMDMxMTAvBgNV BAMTKDFCM0UwMkZBNTMwOUI1MzM2MzU0OEM3NjNCMzEyNjRCNEI5REZDMDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDp5khjEvx8IPJNILCJqI5rjUf 3HRIdCxdwkMFdw3RSo3Br6QxG44HiEBXEnAbXm+UA6QfxOPx0YmiIFJ/HBQI/k62 FcYCumJrqpIWOxBKW21YBymY/QKy7P9+aNltMTtaKIW9LtZKUz54tsCvtCKXuSN1 AbWYwPK3Gp2kV3/EVaSCNhcZ8U6hIU0Ho0cXzFF5H5lKnJNkBR7G+8pA4JgThFHb jtf5cW+7r3VWXq+x3xiOHJBdSlyg4g2Pt3nt49vuuGNyIK/kRZsKh13ewkn3Y8iu G5xYLX+Whv+dL5NSqpXa1q3y8BEgK5FF3DMykXjvsRj+IfSzg9hUt1MkdI+LAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUGz4C+lMJtTNjVIx2OzEmS0ud/AQwHwYDVR0j BBgwFoAUPWT9kA4uZMsVnQBnFnhTqvyKfpcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YTUxOWFlYi01YzU2LTRjYjMtOTRhMC0wZjQwMGVhNmEzNzUvMC8zRDY0RkQ5MDBF MkU2NENCMTU5RDAwNjcxNjc4NTNBQUZDOEE3RTk3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0Q2NEZEOTAwRTJFNjRDQjE1OUQwMDY3MTY3ODUzQUFGQzhB N0U5Ny5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhNTE5YWViLTVjNTYtNGNiMy05 NGEwLTBmNDAwZWE2YTM3NS8wLzMyMzQzMDM0M2E2NjY1NjMzMDNhMzUzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzODM2MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP7AAAUw DQYJKoZIhvcNAQELBQADggEBAMmVRipoWyhEhVgeMYsMbGs9bzAH3bmEXcR+qyDu 1zW+QUB4tk77SHWbJXpTTH83vV0W7Ci4Nr08ZKohFvSZXPdcrB/F5UWJVGxvVsqe WYIBc9lidCraxEXn1rxF9lBKAtKPNTc2xRoFRuygUTYDrIkA+uKI/oG4AaSCG6ex a5MsjZA690TD4sTO6EfqfjKF//j5fQWKajKU5lvQvO/fKRd+ws63gw9h2//g6R/H rUJgf45oWGq743hXiYUr89OUVeKTEsRTpf0BulajH9f2LNWeL7KDlQ+eSxVnzuEn Ht9QVwJRoKaHnJOX/RwO2tzjWsY0Nczdswa4zUaLtleVG7g= -----END CERTIFICATE-----Generated at Sat Jun 7 19:51:01 2025 by rpki-client