$ rpki-client -vvf repo-rpki.idnic.net/repo/6be578d0-d3aa-4f0f-bb9d-f74b49c6a655/0/323430303a663334303a3a2f33322d3438203d3e20313331373436.roa File: 323430303a663334303a3a2f33322d3438203d3e20313331373436.roa (raw, json) Hash identifier: 3L/LuNQCHJ1QppGAGjYDYBbeNVsrf3Si2Cax6eMLnCM= Subject key identifier: F2:3C:03:0D:8D:F7:C0:73:33:CC:D5:71:60:20:8D:D7:FB:2C:EB:6E Certificate issuer: /CN=CB8106D827747D008C9DE9181B4EC6739C8EE800 Certificate serial: 37C709B2BD62B6D2F1A39F409284D0A2C80C520E Authority key identifier: CB:81:06:D8:27:74:7D:00:8C:9D:E9:18:1B:4E:C6:73:9C:8E:E8:00 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CB8106D827747D008C9DE9181B4EC6739C8EE800.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6be578d0-d3aa-4f0f-bb9d-f74b49c6a655/0/323430303a663334303a3a2f33322d3438203d3e20313331373436.roa Signing time: Mon 02 Jun 2025 02:04:40 +0000 ROA not before: Mon 02 Jun 2025 01:59:40 +0000 ROA not after: Mon 01 Jun 2026 02:04:40 +0000 asID: 131746 IP address blocks: 2400:f340::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6be578d0-d3aa-4f0f-bb9d-f74b49c6a655/0/CB8106D827747D008C9DE9181B4EC6739C8EE800.crl rsync://repo-rpki.idnic.net/repo/6be578d0-d3aa-4f0f-bb9d-f74b49c6a655/0/CB8106D827747D008C9DE9181B4EC6739C8EE800.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CB8106D827747D008C9DE9181B4EC6739C8EE800.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 15:24:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:c7:09:b2:bd:62:b6:d2:f1:a3:9f:40:92:84:d0:a2:c8:0c:52:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CB8106D827747D008C9DE9181B4EC6739C8EE800 Validity Not Before: Jun 2 01:59:40 2025 GMT Not After : Jun 1 02:04:40 2026 GMT Subject: CN=F23C030D8DF7C07333CCD57160208DD7FB2CEB6E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:8d:47:63:c7:a7:7d:a5:9a:ec:b6:8d:fa:e5: 2e:04:9c:9e:b2:52:b5:0b:86:fb:3b:8e:13:15:3c: 99:d0:ac:88:0c:9e:13:24:bc:49:fb:8b:92:d0:da: f5:80:99:78:aa:51:75:2d:72:7b:b3:47:a1:73:d8: 5f:94:b9:42:3c:f3:75:aa:3c:b9:34:10:f8:55:04: cd:27:65:fb:29:98:47:03:f3:3c:fd:df:8a:d2:c3: 02:8c:d5:db:ea:e6:b2:7a:a6:d0:f4:67:58:4d:a1: df:70:ed:55:77:c0:99:9c:e0:e5:ae:f7:37:1b:40: 4d:f6:75:6c:06:cf:50:f6:73:94:86:bf:d5:00:28: 49:e3:56:57:f1:72:2f:d2:fb:1d:e0:43:ec:84:78: 9e:04:82:9c:de:ff:1a:46:17:09:d7:66:68:32:98: 84:74:60:ef:02:f4:1f:5b:f2:13:4e:3c:c2:de:99: cb:34:af:2e:03:c9:4f:cf:d1:f6:0e:09:1a:76:8b: e1:7f:92:71:84:29:7f:1d:bd:b6:4e:dc:55:69:65: 6b:8d:84:44:7e:74:ca:77:13:4d:6f:fd:9f:ee:ca: 20:5a:eb:06:e7:35:6a:d4:9f:83:0e:59:6e:e8:28: 4d:86:39:b7:2f:88:f2:16:f5:25:bc:67:4a:22:cb: ae:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:3C:03:0D:8D:F7:C0:73:33:CC:D5:71:60:20:8D:D7:FB:2C:EB:6E X509v3 Authority Key Identifier: keyid:CB:81:06:D8:27:74:7D:00:8C:9D:E9:18:1B:4E:C6:73:9C:8E:E8:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6be578d0-d3aa-4f0f-bb9d-f74b49c6a655/0/CB8106D827747D008C9DE9181B4EC6739C8EE800.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CB8106D827747D008C9DE9181B4EC6739C8EE800.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6be578d0-d3aa-4f0f-bb9d-f74b49c6a655/0/323430303a663334303a3a2f33322d3438203d3e20313331373436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:f340::/32 Signature Algorithm: sha256WithRSAEncryption a2:31:43:f9:1e:52:df:51:a1:62:55:d4:8c:a3:2b:71:74:d4: 67:79:9f:05:fb:28:05:42:d5:02:91:c6:f9:bb:3e:aa:a3:f4: fd:c9:50:a7:eb:55:dd:6f:92:b1:a9:a3:be:ed:bd:b8:1c:cf: 48:ba:44:32:35:b8:47:39:5d:6a:c4:70:1f:b7:04:9a:c3:eb: 38:6c:10:2c:8f:1c:11:8c:65:9d:ed:52:21:2c:7f:c1:3e:92: fc:35:04:e1:f4:75:39:0d:25:28:a3:4b:ab:97:8b:af:6d:d3: 7a:55:14:f8:f6:e4:35:f5:3b:a4:17:8a:e7:d2:f8:fd:35:e5: da:fe:a9:91:af:88:11:b1:13:69:13:5e:7b:68:55:0e:9e:b3: e5:02:d2:49:db:e6:5c:84:e4:34:53:14:61:c1:ab:82:3d:b2: 77:0a:98:cc:b8:9c:e5:eb:e7:cb:3b:0b:4e:df:f5:4a:08:2f: aa:84:b3:e4:88:53:34:e2:77:cb:e2:0f:6a:21:50:37:19:da: 8f:37:4d:aa:3b:cc:f3:9d:cc:aa:cf:8a:d2:5b:e3:fb:f9:2f: bd:8a:67:1a:6e:12:7e:ec:a0:a0:b8:9c:06:98:53:96:74:bd: 8d:ed:65:07:c7:46:95:a3:06:13:ad:95:f2:b3:36:cd:46:3c: 2b:d8:23:57 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUN8cJsr1ittLxo59AkoTQosgMUg4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0I4MTA2RDgyNzc0N0QwMDhDOURFOTE4MUI0RUM2NzM5 QzhFRTgwMDAeFw0yNTA2MDIwMTU5NDBaFw0yNjA2MDEwMjA0NDBaMDMxMTAvBgNV BAMTKEYyM0MwMzBEOERGN0MwNzMzM0NDRDU3MTYwMjA4REQ3RkIyQ0VCNkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOjUdjx6d9pZrsto365S4EnJ6y UrULhvs7jhMVPJnQrIgMnhMkvEn7i5LQ2vWAmXiqUXUtcnuzR6Fz2F+UuUI883Wq PLk0EPhVBM0nZfspmEcD8zz934rSwwKM1dvq5rJ6ptD0Z1hNod9w7VV3wJmc4OWu 9zcbQE32dWwGz1D2c5SGv9UAKEnjVlfxci/S+x3gQ+yEeJ4Egpze/xpGFwnXZmgy mIR0YO8C9B9b8hNOPMLemcs0ry4DyU/P0fYOCRp2i+F/knGEKX8dvbZO3FVpZWuN hER+dMp3E01v/Z/uyiBa6wbnNWrUn4MOWW7oKE2GObcviPIW9SW8Z0oiy66/AgMB AAGjggIzMIICLzAdBgNVHQ4EFgQU8jwDDY33wHMzzNVxYCCN1/ss624wHwYDVR0j BBgwFoAUy4EG2Cd0fQCMnekYG07Gc5yO6AAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 YmU1NzhkMC1kM2FhLTRmMGYtYmI5ZC1mNzRiNDljNmE2NTUvMC9DQjgxMDZEODI3 NzQ3RDAwOEM5REU5MTgxQjRFQzY3MzlDOEVFODAwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0I4MTA2RDgyNzc0N0QwMDhDOURFOTE4MUI0RUM2NzM5QzhF RTgwMC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZiZTU3OGQwLWQzYWEtNGYwZi1i YjlkLWY3NGI0OWM2YTY1NS8wLzMyMzQzMDMwM2E2NjMzMzQzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzMTM3MzQzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQA80AwDQYJKoZI hvcNAQELBQADggEBAKIxQ/keUt9RoWJV1IyjK3F01Gd5nwX7KAVC1QKRxvm7Pqqj 9P3JUKfrVd1vkrGpo77tvbgcz0i6RDI1uEc5XWrEcB+3BJrD6zhsECyPHBGMZZ3t UiEsf8E+kvw1BOH0dTkNJSijS6uXi69t03pVFPj25DX1O6QXiufS+P015dr+qZGv iBGxE2kTXntoVQ6es+UC0knb5lyE5DRTFGHBq4I9sncKmMy4nOXr58s7C07f9UoI L6qEs+SIUzTid8viD2ohUDcZ2o83Tao7zPOdzKrPitJb4/v5L72KZxpuEn7soKC4 nAaYU5Z0vY3tZQfHRpWjBhOtlfKzNs1GPCvYI1c= -----END CERTIFICATE-----Generated at Thu Jun 5 18:24:10 2025 by rpki-client