$ rpki-client -vvf repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a3a2f33322d3332203d3e20313338383636.roa File: 323430343a666563303a3a2f33322d3332203d3e20313338383636.roa (raw, json) Hash identifier: 7h+0gopoSFJ2M48QEyz8CL99eJtVxfcZjzTpUAYVTZo= Subject key identifier: 20:26:11:96:FD:0C:43:C3:FD:DF:E1:4F:A9:0F:67:12:CF:0C:E1:72 Certificate issuer: /CN=3D64FD900E2E64CB159D0067167853AAFC8A7E97 Certificate serial: 0C44FA8F9AD9454E11D70611209CFDF77F8853FC Authority key identifier: 3D:64:FD:90:0E:2E:64:CB:15:9D:00:67:16:78:53:AA:FC:8A:7E:97 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a3a2f33322d3332203d3e20313338383636.roa Signing time: Mon 02 Jun 2025 17:00:02 +0000 ROA not before: Mon 02 Jun 2025 16:55:02 +0000 ROA not after: Mon 01 Jun 2026 17:00:02 +0000 asID: 138866 IP address blocks: 2404:fec0::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.crl rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 23:14:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:44:fa:8f:9a:d9:45:4e:11:d7:06:11:20:9c:fd:f7:7f:88:53:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D64FD900E2E64CB159D0067167853AAFC8A7E97 Validity Not Before: Jun 2 16:55:02 2025 GMT Not After : Jun 1 17:00:02 2026 GMT Subject: CN=20261196FD0C43C3FDDFE14FA90F6712CF0CE172 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:5d:81:5b:2b:e8:83:39:6b:7c:3e:7d:ee:0b: 1b:15:87:43:b1:13:f4:48:67:58:27:2b:96:fc:08: 23:3e:98:6d:8d:16:0f:f3:a0:1b:ea:4e:1f:61:ff: be:26:dc:1a:d0:a2:d1:5c:03:50:41:49:eb:62:bb: 05:14:b3:96:f4:01:6a:cb:cc:25:e1:f2:58:93:41: 0e:82:34:cd:ea:4d:1e:c4:ba:16:c9:c1:4b:0d:5b: d3:9f:7f:71:57:a5:f2:f0:18:d1:60:97:f5:38:36: 72:19:6a:75:a1:ff:6b:23:64:33:5c:42:9e:b7:a3: 49:a8:ad:73:59:f7:8b:dd:06:ee:64:03:7d:5b:d1: b6:06:02:47:e1:34:9b:41:27:54:1f:46:35:cf:cf: 67:86:8e:91:25:1d:35:1c:0b:1a:88:08:d8:b0:49: 10:b5:a0:54:aa:b9:52:90:73:5d:5d:b2:ef:b4:33: 40:6c:2a:ee:36:4f:8c:56:09:96:fc:ad:f3:5d:06: cd:19:d5:01:0f:98:da:62:54:29:f4:9b:2a:16:87: 9b:07:e3:7e:95:0b:fd:fa:99:56:54:de:d9:91:39: f5:32:e0:de:e8:ab:95:4f:60:5a:33:59:97:51:9e: dc:8b:36:03:2d:88:81:2a:18:a7:af:84:27:8e:81: d7:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:26:11:96:FD:0C:43:C3:FD:DF:E1:4F:A9:0F:67:12:CF:0C:E1:72 X509v3 Authority Key Identifier: keyid:3D:64:FD:90:0E:2E:64:CB:15:9D:00:67:16:78:53:AA:FC:8A:7E:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a3a2f33322d3332203d3e20313338383636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fec0::/32 Signature Algorithm: sha256WithRSAEncryption d0:03:ea:47:71:1c:27:d6:fa:38:ef:4c:16:b0:34:60:d0:49: a8:0f:fc:ce:f6:3a:0e:2d:80:61:5e:48:e5:b3:e8:40:3d:86: 36:fe:ab:6e:14:95:0c:bc:34:5f:72:e0:63:ce:ba:e9:60:d1: f1:52:c6:4e:5a:a9:60:20:33:e5:db:6e:f0:3e:5f:02:ce:95: 84:df:65:82:c4:fc:be:b5:56:8e:02:bd:01:00:e1:70:70:2e: 88:35:3b:76:a9:9a:ed:01:20:43:80:7b:a3:16:0d:94:98:64: b5:34:da:6d:2e:d8:4a:74:73:25:17:a2:55:88:e1:0a:66:2a: 1b:52:81:7d:ea:2f:9b:7b:28:4b:2c:ee:ea:d2:99:5d:d5:1e: 56:3b:b8:1f:a7:e4:41:55:f3:39:17:32:32:d7:ff:f6:1e:c7: 98:c7:30:92:4b:c2:a0:f4:3b:eb:09:53:19:76:6a:76:3f:67: ea:a0:d6:5a:8a:06:87:7a:da:9a:5d:02:6c:bc:3e:16:9a:49: 80:99:27:a6:b4:51:db:d8:56:d9:81:8e:7f:40:e7:e0:78:89: c3:d4:92:4d:48:86:4e:65:88:a9:63:22:d9:13:ab:0a:6c:da: a7:2e:22:d3:60:4f:dd:1a:f2:26:22:c1:cd:32:f8:9d:a6:0b: 20:72:41:7b -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUDET6j5rZRU4R1wYRIJz993+IU/wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Q2NEZEOTAwRTJFNjRDQjE1OUQwMDY3MTY3ODUzQUFG QzhBN0U5NzAeFw0yNTA2MDIxNjU1MDJaFw0yNjA2MDExNzAwMDJaMDMxMTAvBgNV BAMTKDIwMjYxMTk2RkQwQzQzQzNGRERGRTE0RkE5MEY2NzEyQ0YwQ0UxNzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeXYFbK+iDOWt8Pn3uCxsVh0Ox E/RIZ1gnK5b8CCM+mG2NFg/zoBvqTh9h/74m3BrQotFcA1BBSetiuwUUs5b0AWrL zCXh8liTQQ6CNM3qTR7EuhbJwUsNW9Off3FXpfLwGNFgl/U4NnIZanWh/2sjZDNc Qp63o0morXNZ94vdBu5kA31b0bYGAkfhNJtBJ1QfRjXPz2eGjpElHTUcCxqICNiw SRC1oFSquVKQc11dsu+0M0BsKu42T4xWCZb8rfNdBs0Z1QEPmNpiVCn0myoWh5sH 436VC/36mVZU3tmROfUy4N7oq5VPYFozWZdRntyLNgMtiIEqGKevhCeOgdcVAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUICYRlv0MQ8P93+FPqQ9nEs8M4XIwHwYDVR0j BBgwFoAUPWT9kA4uZMsVnQBnFnhTqvyKfpcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YTUxOWFlYi01YzU2LTRjYjMtOTRhMC0wZjQwMGVhNmEzNzUvMC8zRDY0RkQ5MDBF MkU2NENCMTU5RDAwNjcxNjc4NTNBQUZDOEE3RTk3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0Q2NEZEOTAwRTJFNjRDQjE1OUQwMDY3MTY3ODUzQUFGQzhB N0U5Ny5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhNTE5YWViLTVjNTYtNGNiMy05 NGEwLTBmNDAwZWE2YTM3NS8wLzMyMzQzMDM0M2E2NjY1NjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzODM4MzYzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQE/sAwDQYJKoZI hvcNAQELBQADggEBANAD6kdxHCfW+jjvTBawNGDQSagP/M72Og4tgGFeSOWz6EA9 hjb+q24UlQy8NF9y4GPOuulg0fFSxk5aqWAgM+XbbvA+XwLOlYTfZYLE/L61Vo4C vQEA4XBwLog1O3apmu0BIEOAe6MWDZSYZLU02m0u2Ep0cyUXolWI4QpmKhtSgX3q L5t7KEss7urSmV3VHlY7uB+n5EFV8zkXMjLX//Yex5jHMJJLwqD0O+sJUxl2anY/ Z+qg1lqKBod62ppdAmy8PhaaSYCZJ6a0UdvYVtmBjn9A5+B4icPUkk1Ihk5liKlj ItkTqwps2qcuItNgT90a8iYiwc0y+J2mCyByQXs= -----END CERTIFICATE-----Generated at Sun Jun 8 23:23:28 2025 by rpki-client