$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a623a3a2f34382d3438203d3e203538353532.roa File: 323430343a666430303a623a3a2f34382d3438203d3e203538353532.roa (raw, json) Hash identifier: YfunpzFMw3vFJsn6XIZ3sIy0GOI0ZTk5lymO8msZgPQ= Subject key identifier: A1:10:7C:7F:EC:8B:65:F5:4C:58:09:4B:DC:98:9F:D1:61:70:3D:60 Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 4AAC0BC2DA72EFA3BB04644CB750F4033D72D08B Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a623a3a2f34382d3438203d3e203538353532.roa Signing time: Fri 09 May 2025 10:00:00 +0000 ROA not before: Fri 09 May 2025 09:55:00 +0000 ROA not after: Fri 08 May 2026 10:00:00 +0000 asID: 58552 IP address blocks: 2404:fd00:b::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 07:29:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:ac:0b:c2:da:72:ef:a3:bb:04:64:4c:b7:50:f4:03:3d:72:d0:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: May 9 09:55:00 2025 GMT Not After : May 8 10:00:00 2026 GMT Subject: CN=A1107C7FEC8B65F54C58094BDC989FD161703D60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:3d:bb:74:41:41:e0:af:64:18:36:2d:3f:3b: bc:4f:61:d3:18:ee:e6:79:d4:66:09:8f:af:ff:7b: 7e:62:33:f4:6e:8a:bc:64:b2:6f:46:03:2c:59:47: 30:83:8a:bc:05:c4:54:37:7f:8b:7e:3f:2f:b8:8b: 75:04:2e:b6:0e:f1:7d:a0:6e:41:b2:8b:0c:7a:ef: 32:12:f2:f7:6a:c4:2a:00:1c:da:3c:6a:11:6c:e6: 02:a3:45:79:12:9f:af:db:01:15:e4:db:0a:7a:02: 99:e4:92:99:ed:0e:a1:d3:c9:8c:d8:6b:86:8d:97: b7:10:a0:8f:34:26:44:be:26:63:29:0c:7c:39:85: d2:fa:75:a0:43:70:34:a2:7d:1f:cc:13:23:b9:be: 25:20:fa:e5:95:48:c3:08:b2:bc:a3:06:97:12:c1: 9a:e0:3e:ce:bd:4c:be:bd:43:5c:d8:ee:1c:ad:5a: 48:00:e4:10:ce:b4:57:07:91:b4:f7:8f:48:8f:a4: 10:32:62:c6:fd:c7:c4:45:f6:5b:15:29:6d:81:3f: 1c:19:59:2b:b4:04:58:2f:04:f9:8d:ce:ce:76:46: 4c:5e:ef:dd:8d:ae:f2:3b:f2:42:8a:8f:cc:08:bd: 6e:20:16:02:88:58:b9:60:21:84:57:88:69:84:e1: d8:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:10:7C:7F:EC:8B:65:F5:4C:58:09:4B:DC:98:9F:D1:61:70:3D:60 X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a623a3a2f34382d3438203d3e203538353532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fd00:b::/48 Signature Algorithm: sha256WithRSAEncryption 0d:e0:a3:b7:37:8b:d7:da:04:d5:2e:a1:e8:f9:42:d1:6c:f0: a4:ca:be:8d:9b:82:96:bf:0c:10:4d:97:38:07:90:c8:44:4d: a9:b3:54:c0:ec:6f:0f:c7:95:2b:6b:3e:7e:c7:da:57:4b:1f: 2c:04:d5:3d:1f:69:20:61:e8:f2:92:1e:ab:3e:fb:36:9a:1f: 18:0d:62:8f:a0:57:16:ce:e6:6c:e1:11:ad:3c:66:c6:d0:86: eb:a1:1d:78:6d:0d:ff:38:86:97:ba:4b:57:45:a8:dd:80:27: 7d:25:04:02:40:32:10:bc:d0:c9:d1:3b:d8:70:f8:c7:32:7a: a9:ac:b3:70:8f:e8:a9:c5:b8:ca:77:05:e9:5a:ab:9c:28:85: fc:29:6b:96:4c:17:20:85:61:c0:57:e1:49:51:ae:d7:88:13: 2d:83:13:e9:a5:9f:a0:b8:17:8d:f0:b2:b3:92:74:93:9d:dd: 53:f1:9d:e0:6a:93:e4:e4:a9:b6:ca:50:6c:2b:fd:4e:a3:ed: 86:d9:1a:47:cd:cf:e1:29:e2:5c:66:56:f9:b6:75:be:25:e9: a4:06:b4:d7:80:d1:4a:e7:b3:a6:76:a2:84:cb:77:9c:ff:2d: c3:86:ac:91:ec:e1:f8:75:92:91:0a:55:d3:52:a4:dc:29:a2: dc:0c:d7:df -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUSqwLwtpy76O7BGRMt1D0Az1y0IswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yNTA1MDkwOTU1MDBaFw0yNjA1MDgxMDAwMDBaMDMxMTAvBgNV BAMTKEExMTA3QzdGRUM4QjY1RjU0QzU4MDk0QkRDOTg5RkQxNjE3MDNENjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHPbt0QUHgr2QYNi0/O7xPYdMY 7uZ51GYJj6//e35iM/Ruirxksm9GAyxZRzCDirwFxFQ3f4t+Py+4i3UELrYO8X2g bkGyiwx67zIS8vdqxCoAHNo8ahFs5gKjRXkSn6/bARXk2wp6ApnkkpntDqHTyYzY a4aNl7cQoI80JkS+JmMpDHw5hdL6daBDcDSifR/MEyO5viUg+uWVSMMIsryjBpcS wZrgPs69TL69Q1zY7hytWkgA5BDOtFcHkbT3j0iPpBAyYsb9x8RF9lsVKW2BPxwZ WSu0BFgvBPmNzs52Rkxe792NrvI78kKKj8wIvW4gFgKIWLlgIYRXiGmE4diVAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUoRB8f+yLZfVMWAlL3Jif0WFwPWAwHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMyMzQzMDM0M2E2NjY0MzAzMDNhNjIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzNTM4MzUzNTMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAT9AAALMA0G CSqGSIb3DQEBCwUAA4IBAQAN4KO3N4vX2gTVLqHo+ULRbPCkyr6Nm4KWvwwQTZc4 B5DIRE2ps1TA7G8Px5Uraz5+x9pXSx8sBNU9H2kgYejykh6rPvs2mh8YDWKPoFcW zuZs4RGtPGbG0IbroR14bQ3/OIaXuktXRajdgCd9JQQCQDIQvNDJ0TvYcPjHMnqp rLNwj+ipxbjKdwXpWqucKIX8KWuWTBcghWHAV+FJUa7XiBMtgxPppZ+guBeN8LKz knSTnd1T8Z3gapPk5Km2ylBsK/1Oo+2G2RpHzc/hKeJcZlb5tnW+JemkBrTXgNFK 57OmdqKEy3ec/y3DhqyR7OH4dZKRClXTUqTcKaLcDNff -----END CERTIFICATE-----Generated at Sat Jun 7 05:54:41 2025 by rpki-client