$ rpki-client -vvf repo-rpki.idnic.net/repo/60e4750e-4393-43ec-9ab5-d247bbc07d86/0/323430353a633563303a666630303a3a2f34302d3438203d3e20313334363534.roa File: 323430353a633563303a666630303a3a2f34302d3438203d3e20313334363534.roa (raw, json) Hash identifier: Q46pxbm+TVjkz99t2lUyFhkKtMbUjt5MtTd3GxK/1m0= Subject key identifier: B7:B4:A9:B5:6D:A7:A3:AC:54:AD:13:86:2B:81:9A:94:80:18:CC:F6 Certificate issuer: /CN=A6C7B1CA0B908855EE58F1991CCC95B57C4C8E0D Certificate serial: 7CB0FAE51D03EFEE4803BAB33974912C5F4A8BC7 Authority key identifier: A6:C7:B1:CA:0B:90:88:55:EE:58:F1:99:1C:CC:95:B5:7C:4C:8E:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A6C7B1CA0B908855EE58F1991CCC95B57C4C8E0D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/60e4750e-4393-43ec-9ab5-d247bbc07d86/0/323430353a633563303a666630303a3a2f34302d3438203d3e20313334363534.roa Signing time: Thu 22 May 2025 07:00:02 +0000 ROA not before: Thu 22 May 2025 06:55:02 +0000 ROA not after: Thu 21 May 2026 07:00:02 +0000 asID: 134654 IP address blocks: 2405:c5c0:ff00::/40 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/60e4750e-4393-43ec-9ab5-d247bbc07d86/0/A6C7B1CA0B908855EE58F1991CCC95B57C4C8E0D.crl rsync://repo-rpki.idnic.net/repo/60e4750e-4393-43ec-9ab5-d247bbc07d86/0/A6C7B1CA0B908855EE58F1991CCC95B57C4C8E0D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A6C7B1CA0B908855EE58F1991CCC95B57C4C8E0D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 10:41:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:b0:fa:e5:1d:03:ef:ee:48:03:ba:b3:39:74:91:2c:5f:4a:8b:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A6C7B1CA0B908855EE58F1991CCC95B57C4C8E0D Validity Not Before: May 22 06:55:02 2025 GMT Not After : May 21 07:00:02 2026 GMT Subject: CN=B7B4A9B56DA7A3AC54AD13862B819A948018CCF6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:64:3a:3d:4c:6c:21:a1:ad:36:91:5b:7e:5e: 52:83:e4:fe:cf:6c:11:ff:03:4a:c1:9e:b4:59:ee: f5:fb:1b:9b:8e:e9:5f:70:8a:9f:cf:f1:9a:ee:83: 8e:54:37:d8:15:1f:91:79:88:c6:c1:a7:f4:60:47: b0:4c:4f:d1:21:43:4d:1f:73:8e:09:bd:8b:80:63: 3f:a2:61:d6:36:53:f7:d6:ab:94:80:d1:ce:bd:f9: 9b:66:62:81:c6:da:f1:db:ce:bf:81:d9:b3:0c:b6: d0:9a:64:e3:f6:26:cf:75:da:b3:be:22:f1:b9:e7: 6e:27:8b:13:fb:b0:f2:2c:a2:57:d6:4d:4d:9b:55: 1f:b6:77:29:ad:bb:de:17:c3:45:5c:3b:44:fe:45: 3c:85:6a:0c:76:6c:2b:4f:00:b7:d2:47:2e:56:e1: 7e:55:db:d1:26:a3:8b:90:a6:65:6e:99:44:a3:8f: d8:27:e5:34:90:5e:04:89:37:73:b2:ac:d6:6f:c4: 28:eb:97:15:00:b5:ca:8c:17:17:be:5a:fe:77:66: 50:27:fd:50:84:5a:a3:ba:20:77:5b:b1:b0:54:1f: 7f:61:7c:58:4e:9f:f1:6d:87:db:a8:7b:75:2f:cc: fd:c5:fb:dd:e3:40:6a:d1:46:65:5d:d5:39:0c:77: 21:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:B4:A9:B5:6D:A7:A3:AC:54:AD:13:86:2B:81:9A:94:80:18:CC:F6 X509v3 Authority Key Identifier: keyid:A6:C7:B1:CA:0B:90:88:55:EE:58:F1:99:1C:CC:95:B5:7C:4C:8E:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/60e4750e-4393-43ec-9ab5-d247bbc07d86/0/A6C7B1CA0B908855EE58F1991CCC95B57C4C8E0D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A6C7B1CA0B908855EE58F1991CCC95B57C4C8E0D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/60e4750e-4393-43ec-9ab5-d247bbc07d86/0/323430353a633563303a666630303a3a2f34302d3438203d3e20313334363534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:c5c0:ff00::/40 Signature Algorithm: sha256WithRSAEncryption 4f:2f:f0:ef:12:33:f4:41:cc:87:ae:79:dd:81:b6:29:ce:b7: 4e:61:c0:a1:5a:f8:7f:c0:02:7b:36:69:d5:09:0e:5a:88:4c: c2:14:ab:09:a9:7a:91:fa:1f:54:69:e3:cd:87:83:b5:4a:7d: c3:6f:fe:87:51:02:00:36:58:d7:d0:01:6c:d4:e7:b8:74:df: c1:14:f6:bc:3b:77:79:55:ea:c5:6d:8a:28:a3:0a:3a:f9:49: 4b:ce:7d:73:c1:4a:08:98:1a:3d:e4:da:e2:66:a5:2e:3e:2e: 19:51:cd:ee:d8:5b:16:86:3a:99:51:2c:df:45:de:f2:54:3a: 10:4f:c7:28:a8:0e:3b:76:db:97:29:92:02:06:db:03:1e:f9: ce:ca:46:77:7c:14:ed:5c:31:42:db:81:9a:10:7f:a0:a6:6c: bb:9e:3c:94:15:3e:7d:fd:2d:a3:82:ca:e3:e1:3e:68:f8:62: 05:f6:9d:68:8d:27:8a:3f:d0:42:47:2f:b0:a6:89:3c:72:2b: 57:aa:36:85:66:b2:6e:08:d4:55:10:97:e2:83:f0:82:6c:35: fc:4f:d2:1a:57:6d:bc:10:52:96:e6:69:6e:98:a8:3a:13:bd: 16:86:4e:e5:f5:b7:7a:93:fc:09:50:29:2d:56:13:a6:69:b6: 4c:4f:50:e4 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUfLD65R0D7+5IA7qzOXSRLF9Ki8cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTZDN0IxQ0EwQjkwODg1NUVFNThGMTk5MUNDQzk1QjU3 QzRDOEUwRDAeFw0yNTA1MjIwNjU1MDJaFw0yNjA1MjEwNzAwMDJaMDMxMTAvBgNV BAMTKEI3QjRBOUI1NkRBN0EzQUM1NEFEMTM4NjJCODE5QTk0ODAxOENDRjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwZDo9TGwhoa02kVt+XlKD5P7P bBH/A0rBnrRZ7vX7G5uO6V9wip/P8Zrug45UN9gVH5F5iMbBp/RgR7BMT9EhQ00f c44JvYuAYz+iYdY2U/fWq5SA0c69+ZtmYoHG2vHbzr+B2bMMttCaZOP2Js912rO+ IvG5524nixP7sPIsolfWTU2bVR+2dymtu94Xw0VcO0T+RTyFagx2bCtPALfSRy5W 4X5V29Emo4uQpmVumUSjj9gn5TSQXgSJN3OyrNZvxCjrlxUAtcqMFxe+Wv53ZlAn /VCEWqO6IHdbsbBUH39hfFhOn/Fth9uoe3UvzP3F+93jQGrRRmVd1TkMdyGXAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUt7SptW2no6xUrROGK4GalIAYzPYwHwYDVR0j BBgwFoAUpsexyguQiFXuWPGZHMyVtXxMjg0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MGU0NzUwZS00MzkzLTQzZWMtOWFiNS1kMjQ3YmJjMDdkODYvMC9BNkM3QjFDQTBC OTA4ODU1RUU1OEYxOTkxQ0NDOTVCNTdDNEM4RTBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTZDN0IxQ0EwQjkwODg1NUVFNThGMTk5MUNDQzk1QjU3QzRD OEUwRC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYwZTQ3NTBlLTQzOTMtNDNlYy05 YWI1LWQyNDdiYmMwN2Q4Ni8wLzMyMzQzMDM1M2E2MzM1NjMzMDNhNjY2NjMwMzAz YTNhMmYzNDMwMmQzNDM4MjAzZDNlMjAzMTMzMzQzNjM1MzQucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgAk BcXA/zANBgkqhkiG9w0BAQsFAAOCAQEATy/w7xIz9EHMh6553YG2Kc63TmHAoVr4 f8ACezZp1QkOWohMwhSrCal6kfofVGnjzYeDtUp9w2/+h1ECADZY19ABbNTnuHTf wRT2vDt3eVXqxW2KKKMKOvlJS859c8FKCJgaPeTa4malLj4uGVHN7thbFoY6mVEs 30Xe8lQ6EE/HKKgOO3bblymSAgbbAx75zspGd3wU7VwxQtuBmhB/oKZsu548lBU+ ff0to4LK4+E+aPhiBfadaI0nij/QQkcvsKaJPHIrV6o2hWaybgjUVRCX4oPwgmw1 /E/SGldtvBBSluZpbpioOhO9FoZO5fW3epP8CVApLVYTpmm2TE9Q5A== -----END CERTIFICATE-----Generated at Sat Jun 7 16:13:26 2025 by rpki-client