$ rpki-client -vvf repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a3430303a3a2f34382d3438203d3e20313336303838.roa File: 323430303a643934303a3430303a3a2f34382d3438203d3e20313336303838.roa (raw, json) Hash identifier: 5O6lNVyD/C/5OKP6UYKpCdBH3i5ncEPG5K/VMMXfd54= Subject key identifier: 86:05:FE:E4:57:B6:68:09:F4:3F:AE:10:10:A6:ED:5F:AC:F5:FD:7E Certificate issuer: /CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Certificate serial: 0B05FD51BDDE493F06AC5340584D8F7406D78CE9 Authority key identifier: D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a3430303a3a2f34382d3438203d3e20313336303838.roa Signing time: Mon 02 Jun 2025 02:03:22 +0000 ROA not before: Mon 02 Jun 2025 01:58:22 +0000 ROA not after: Mon 01 Jun 2026 02:03:22 +0000 asID: 136088 IP address blocks: 2400:d940:400::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 05:47:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:05:fd:51:bd:de:49:3f:06:ac:53:40:58:4d:8f:74:06:d7:8c:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Validity Not Before: Jun 2 01:58:22 2025 GMT Not After : Jun 1 02:03:22 2026 GMT Subject: CN=8605FEE457B66809F43FAE1010A6ED5FACF5FD7E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:b7:7c:68:24:aa:18:2b:4c:25:9c:fb:a4:14: 8d:c0:b6:85:d3:19:18:fc:e3:47:11:5b:d8:b1:29: 31:3c:1d:c2:0f:0f:7f:b6:42:b5:d2:df:57:7c:06: 4b:82:1f:b7:9c:4f:40:1c:8f:c9:f7:e6:66:1c:00: f9:ed:87:f8:5b:cd:54:86:b1:b7:02:dd:53:5e:16: 29:c5:d5:a3:8a:1b:d6:41:46:63:d9:10:73:40:10: aa:52:04:ca:d6:33:d8:0f:aa:a7:e7:f8:09:e4:18: fd:6e:75:94:b6:2a:85:98:f8:bd:ac:42:7e:c6:53: 55:b5:23:38:16:4c:31:1b:f2:8b:a1:d1:1c:a8:99: 5a:f1:2e:d8:c8:b2:57:24:71:ef:b5:ef:33:22:50: 3a:a6:f5:76:4a:d1:3f:93:5a:34:93:3e:d3:a5:ea: 70:e3:33:31:cf:b6:9b:ad:5b:2a:3f:d8:33:60:98: f5:db:74:e2:ee:26:9d:0d:79:b0:07:37:ab:dd:0c: 58:ce:15:51:ac:60:34:ef:4b:7e:83:d4:23:0c:02: 2a:9b:56:a4:62:a4:ce:75:3c:67:6b:71:ce:ac:8f: 63:e2:46:09:31:7a:c0:fb:5f:33:3a:83:e2:d4:b9: e8:8a:06:76:65:2f:9d:9a:b1:21:8b:74:45:3e:38: 44:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:05:FE:E4:57:B6:68:09:F4:3F:AE:10:10:A6:ED:5F:AC:F5:FD:7E X509v3 Authority Key Identifier: keyid:D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a3430303a3a2f34382d3438203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d940:400::/48 Signature Algorithm: sha256WithRSAEncryption 26:61:e9:18:3f:5b:17:16:e9:b6:1e:92:80:fe:f9:4c:b4:5c: 9a:3a:f1:45:a0:34:d8:af:32:a6:25:e1:61:2a:fa:8f:94:2e: 0a:38:29:fd:5a:02:89:0c:29:e6:e3:c0:ac:6d:b2:4d:04:b1: 61:35:1c:8a:a5:9c:a4:6d:7d:43:03:29:96:87:0a:95:55:2d: 85:52:3b:13:5d:31:5d:32:6c:6e:4f:58:9a:1f:46:d9:43:6e: 54:c9:14:06:d2:ce:45:31:9e:60:32:6f:39:00:3c:e9:c5:28: b0:16:12:4e:bf:8b:d4:83:00:8b:5d:f9:7d:07:ac:0d:b8:6c: 3a:64:7d:8b:3b:c0:94:1d:87:0f:1c:4e:3f:94:f9:a6:57:74: aa:c0:ed:61:52:aa:d4:63:3c:5b:ba:06:d7:a4:42:a4:11:38: a3:c3:ce:86:9b:20:e8:1e:d6:b1:9f:1f:52:30:12:da:5c:d1: c7:e5:6a:3f:9e:a7:0a:17:a3:c8:b9:58:e7:e1:97:d3:34:bb: ed:f8:96:3b:5a:d7:3f:96:a3:86:e8:3e:6d:e3:b8:c8:6a:41: 33:96:3c:93:da:4d:19:34:42:42:3f:3a:01:a3:14:f4:cb:a1: 48:83:f5:cf:5f:bb:7f:33:7e:df:ef:a6:d0:87:65:12:7a:4c: 17:db:46:f7 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUCwX9Ub3eST8GrFNAWE2PdAbXjOkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhE MEJFOTIzRjAeFw0yNTA2MDIwMTU4MjJaFw0yNjA2MDEwMjAzMjJaMDMxMTAvBgNV BAMTKDg2MDVGRUU0NTdCNjY4MDlGNDNGQUUxMDEwQTZFRDVGQUNGNUZEN0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCRt3xoJKoYK0wlnPukFI3AtoXT GRj840cRW9ixKTE8HcIPD3+2QrXS31d8BkuCH7ecT0Acj8n35mYcAPnth/hbzVSG sbcC3VNeFinF1aOKG9ZBRmPZEHNAEKpSBMrWM9gPqqfn+AnkGP1udZS2KoWY+L2s Qn7GU1W1IzgWTDEb8ouh0RyomVrxLtjIslckce+17zMiUDqm9XZK0T+TWjSTPtOl 6nDjMzHPtputWyo/2DNgmPXbdOLuJp0NebAHN6vdDFjOFVGsYDTvS36D1CMMAiqb VqRipM51PGdrcc6sj2PiRgkxesD7XzM6g+LUueiKBnZlL52asSGLdEU+OETXAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUhgX+5Fe2aAn0P64QEKbtX6z1/X4wHwYDVR0j BBgwFoAU0/th10akR2fUUY1un9H72NC+kj8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2Y0ZWMxYy05NTM1LTRjYmYtOWM3YS1mZDMyYzgzMGVkYmEvMC9EM0ZCNjFENzQ2 QTQ0NzY3RDQ1MThENkU5RkQxRkJEOEQwQkU5MjNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhEMEJF OTIzRi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczZjRlYzFjLTk1MzUtNGNiZi05 YzdhLWZkMzJjODMwZWRiYS8wLzMyMzQzMDMwM2E2NDM5MzQzMDNhMzQzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM2MzAzODM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJADZ QAQAMA0GCSqGSIb3DQEBCwUAA4IBAQAmYekYP1sXFum2HpKA/vlMtFyaOvFFoDTY rzKmJeFhKvqPlC4KOCn9WgKJDCnm48CsbbJNBLFhNRyKpZykbX1DAymWhwqVVS2F UjsTXTFdMmxuT1iaH0bZQ25UyRQG0s5FMZ5gMm85ADzpxSiwFhJOv4vUgwCLXfl9 B6wNuGw6ZH2LO8CUHYcPHE4/lPmmV3SqwO1hUqrUYzxbugbXpEKkETijw86GmyDo Htaxnx9SMBLaXNHH5Wo/nqcKF6PIuVjn4ZfTNLvt+JY7Wtc/lqOG6D5t47jIakEz ljyT2k0ZNEJCPzoBoxT0y6FIg/XPX7t/M37f76bQh2USekwX20b3 -----END CERTIFICATE-----Generated at Sun Jun 8 06:35:17 2025 by rpki-client