$ rpki-client -vvf repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a35303a3a2f34382d3438203d3e20313336303838.roa File: 323430303a643934303a35303a3a2f34382d3438203d3e20313336303838.roa (raw, json) Hash identifier: /8JBKRuOu3HmoBk4eXsCkAe6KkGAWuZP1vMK8BDuQfk= Subject key identifier: 1E:EA:BC:B8:CD:78:AE:F9:AE:C5:97:F3:C8:B7:16:F1:64:63:FE:2E Certificate issuer: /CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Certificate serial: 6EA6014E86AF8B644883809CEFB66CC97AC5F2F5 Authority key identifier: D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a35303a3a2f34382d3438203d3e20313336303838.roa Signing time: Mon 02 Jun 2025 02:03:21 +0000 ROA not before: Mon 02 Jun 2025 01:58:21 +0000 ROA not after: Mon 01 Jun 2026 02:03:21 +0000 asID: 136088 IP address blocks: 2400:d940:50::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 05:47:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:a6:01:4e:86:af:8b:64:48:83:80:9c:ef:b6:6c:c9:7a:c5:f2:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Validity Not Before: Jun 2 01:58:21 2025 GMT Not After : Jun 1 02:03:21 2026 GMT Subject: CN=1EEABCB8CD78AEF9AEC597F3C8B716F16463FE2E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:eb:0c:b3:9f:ba:cf:e8:3e:f5:75:55:40:1b: c2:c8:47:ae:a1:ef:89:56:fb:7d:64:fc:5b:f3:b3: a4:c5:d6:92:9c:76:0a:d8:79:f4:45:e8:33:fa:3c: ce:75:3a:61:40:86:2c:26:c8:d4:c9:b5:ae:7b:b8: cb:4c:e0:6a:cd:34:ef:35:5d:ab:b4:14:26:06:51: 3f:b3:28:05:5e:fe:39:c0:fe:c4:6a:70:17:1d:bb: 10:70:d6:ec:91:28:3a:c2:81:c4:4b:d1:0f:e7:d4: 67:4b:6d:41:66:48:9b:ac:56:f6:9d:5c:74:a3:66: fd:d4:5e:ba:3d:0c:b1:1c:40:9c:02:0e:7d:bf:86: 4b:9c:45:c3:5b:e2:0f:d1:a8:98:b5:c9:e9:a4:63: 8f:47:62:ea:70:e4:59:44:25:9b:87:98:ee:5c:43: c0:f7:47:ba:b4:6f:43:27:b5:63:b2:35:cd:87:6a: 31:7a:2b:ed:99:e9:de:ee:b4:57:4f:83:16:c8:7c: 2c:76:87:ee:7e:c3:41:4c:63:21:fb:78:b1:b9:34: 68:4a:9d:5e:82:61:ef:24:ec:83:2e:38:86:4d:30: 7b:da:8d:85:5f:3c:25:2a:d1:3a:96:3a:c5:e4:2d: ce:17:6e:d9:a0:0b:c7:ac:bb:1d:37:48:93:85:16: 58:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:EA:BC:B8:CD:78:AE:F9:AE:C5:97:F3:C8:B7:16:F1:64:63:FE:2E X509v3 Authority Key Identifier: keyid:D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a35303a3a2f34382d3438203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d940:50::/48 Signature Algorithm: sha256WithRSAEncryption 1d:e0:28:7f:c4:4b:df:ad:fe:94:bc:58:d0:07:75:22:0d:97: 8d:81:ea:05:47:36:ee:f3:98:89:b4:ff:c5:b3:2b:10:db:56: 81:2a:b5:a0:34:41:97:4c:46:23:a4:ff:03:a4:69:22:33:fb: dc:23:b8:14:2d:c7:c5:da:b2:a3:be:9b:11:03:b2:b7:b1:89: 89:61:74:3c:64:5a:63:92:40:1e:b2:bf:75:5e:0b:0f:ee:13: ba:85:83:96:ed:1d:72:46:48:f6:ef:28:2c:fd:0c:35:fd:c1: 8d:b3:94:cd:4f:f8:09:df:ec:14:67:4c:70:18:af:63:29:d1: 2f:9f:e4:5e:c4:49:a0:49:e9:d6:22:d0:4e:09:86:a6:5c:c8: 80:51:f4:52:e8:89:25:90:50:f2:81:2d:f1:64:a8:8f:ca:09: 8d:f9:7b:2f:af:47:de:d7:e4:16:21:b4:ed:d7:c1:e9:17:7f: 37:dd:16:cd:94:a0:8e:ee:44:4c:b1:6f:ab:99:a1:ef:f7:01: 09:b6:b1:f5:d8:f4:64:86:a6:71:5e:6b:a1:09:63:ca:ee:86: ca:ed:b3:5a:61:8f:02:46:61:af:14:d0:2d:23:fc:6b:62:d5: b2:22:e4:f6:01:80:ef:f7:ac:a3:83:b4:ed:f6:3b:da:3b:72: 76:e6:5b:05 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUbqYBToavi2RIg4Cc77ZsyXrF8vUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhE MEJFOTIzRjAeFw0yNTA2MDIwMTU4MjFaFw0yNjA2MDEwMjAzMjFaMDMxMTAvBgNV BAMTKDFFRUFCQ0I4Q0Q3OEFFRjlBRUM1OTdGM0M4QjcxNkYxNjQ2M0ZFMkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC86wyzn7rP6D71dVVAG8LIR66h 74lW+31k/Fvzs6TF1pKcdgrYefRF6DP6PM51OmFAhiwmyNTJta57uMtM4GrNNO81 Xau0FCYGUT+zKAVe/jnA/sRqcBcduxBw1uyRKDrCgcRL0Q/n1GdLbUFmSJusVvad XHSjZv3UXro9DLEcQJwCDn2/hkucRcNb4g/RqJi1yemkY49HYupw5FlEJZuHmO5c Q8D3R7q0b0MntWOyNc2HajF6K+2Z6d7utFdPgxbIfCx2h+5+w0FMYyH7eLG5NGhK nV6CYe8k7IMuOIZNMHvajYVfPCUq0TqWOsXkLc4XbtmgC8esux03SJOFFlhzAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUHuq8uM14rvmuxZfzyLcW8WRj/i4wHwYDVR0j BBgwFoAU0/th10akR2fUUY1un9H72NC+kj8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2Y0ZWMxYy05NTM1LTRjYmYtOWM3YS1mZDMyYzgzMGVkYmEvMC9EM0ZCNjFENzQ2 QTQ0NzY3RDQ1MThENkU5RkQxRkJEOEQwQkU5MjNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhEMEJF OTIzRi5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczZjRlYzFjLTk1MzUtNGNiZi05 YzdhLWZkMzJjODMwZWRiYS8wLzMyMzQzMDMwM2E2NDM5MzQzMDNhMzUzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzNjMwMzgzOC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA2UAA UDANBgkqhkiG9w0BAQsFAAOCAQEAHeAof8RL363+lLxY0Ad1Ig2XjYHqBUc27vOY ibT/xbMrENtWgSq1oDRBl0xGI6T/A6RpIjP73CO4FC3Hxdqyo76bEQOyt7GJiWF0 PGRaY5JAHrK/dV4LD+4TuoWDlu0dckZI9u8oLP0MNf3BjbOUzU/4Cd/sFGdMcBiv YynRL5/kXsRJoEnp1iLQTgmGplzIgFH0UuiJJZBQ8oEt8WSoj8oJjfl7L69H3tfk FiG07dfB6Rd/N90WzZSgju5ETLFvq5mh7/cBCbax9dj0ZIamcV5roQljyu6Gyu2z WmGPAkZhrxTQLSP8a2LVsiLk9gGA7/eso4O07fY72jtyduZbBQ== -----END CERTIFICATE-----Generated at Sun Jun 8 06:30:13 2025 by rpki-client