$ rpki-client -vvf repo-rpki.idnic.net/repo/8475338d-7acb-4aa7-bedc-d6459fd13504/1/323430313a613565303a3a2f33322d3438203d3e20313532383130.roa File: 323430313a613565303a3a2f33322d3438203d3e20313532383130.roa (raw, json) Hash identifier: P+pivHFq6sWXzePMBy9uzAKbTKafmuscGwm8u/xXNts= Subject key identifier: 13:3B:11:D9:F8:F6:2C:20:9D:D0:E0:86:BB:B1:A1:0B:06:7B:4E:CE Certificate issuer: /CN=F52826976E7EBDBF89B93A42A1682E42B84289FB Certificate serial: 032EF51F53F0420AB8BD874448A47B9DA8F074C0 Authority key identifier: F5:28:26:97:6E:7E:BD:BF:89:B9:3A:42:A1:68:2E:42:B8:42:89:FB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F52826976E7EBDBF89B93A42A1682E42B84289FB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8475338d-7acb-4aa7-bedc-d6459fd13504/1/323430313a613565303a3a2f33322d3438203d3e20313532383130.roa Signing time: Fri 30 May 2025 17:00:01 +0000 ROA not before: Fri 30 May 2025 16:55:01 +0000 ROA not after: Fri 29 May 2026 17:00:01 +0000 asID: 152810 IP address blocks: 2401:a5e0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8475338d-7acb-4aa7-bedc-d6459fd13504/1/F52826976E7EBDBF89B93A42A1682E42B84289FB.crl rsync://repo-rpki.idnic.net/repo/8475338d-7acb-4aa7-bedc-d6459fd13504/1/F52826976E7EBDBF89B93A42A1682E42B84289FB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F52826976E7EBDBF89B93A42A1682E42B84289FB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 16:58:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:2e:f5:1f:53:f0:42:0a:b8:bd:87:44:48:a4:7b:9d:a8:f0:74:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F52826976E7EBDBF89B93A42A1682E42B84289FB Validity Not Before: May 30 16:55:01 2025 GMT Not After : May 29 17:00:01 2026 GMT Subject: CN=133B11D9F8F62C209DD0E086BBB1A10B067B4ECE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:03:95:77:8a:10:ee:4a:fd:33:b4:fb:f1:ac: 31:9e:3c:ed:c4:7d:47:c4:60:24:e0:8e:77:91:f9: 5c:67:74:06:b9:99:3c:92:90:a7:80:31:d0:aa:04: 14:49:e5:49:69:cd:80:5b:84:3b:8f:70:ef:0a:0d: 79:bc:9a:04:f1:e0:0f:3d:7c:77:9f:02:68:cd:5d: 82:d0:b2:4c:61:fd:50:e6:ef:44:b0:a2:1d:1d:83: d6:bb:34:35:8f:65:f6:1e:92:ea:19:25:55:f9:66: 6d:79:0f:6b:74:af:83:57:c8:12:78:8b:f7:d5:73: 47:65:4b:a8:03:b2:c4:c5:88:06:1b:72:93:56:dc: 24:a0:d0:48:35:f9:6b:98:5c:d2:f7:e5:00:fb:1b: cf:85:3b:0e:d0:f6:6b:3f:4a:27:08:54:a9:81:3e: cc:af:10:d8:8a:3f:25:09:b5:4a:b8:08:2f:e5:50: 1c:c3:25:55:be:63:72:ad:aa:ba:9a:e6:db:7e:81: 95:98:e6:4f:15:1d:d6:8b:dd:fe:0c:25:7a:20:4c: c0:59:6c:b1:4f:5a:e7:eb:f6:dd:88:e2:dd:10:f9: f7:a6:c9:26:56:a0:bd:8c:58:87:c6:b4:62:15:79: f5:67:c6:f0:c1:59:95:61:c5:65:dd:05:44:d8:41: 5d:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:3B:11:D9:F8:F6:2C:20:9D:D0:E0:86:BB:B1:A1:0B:06:7B:4E:CE X509v3 Authority Key Identifier: keyid:F5:28:26:97:6E:7E:BD:BF:89:B9:3A:42:A1:68:2E:42:B8:42:89:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8475338d-7acb-4aa7-bedc-d6459fd13504/1/F52826976E7EBDBF89B93A42A1682E42B84289FB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F52826976E7EBDBF89B93A42A1682E42B84289FB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8475338d-7acb-4aa7-bedc-d6459fd13504/1/323430313a613565303a3a2f33322d3438203d3e20313532383130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:a5e0::/32 Signature Algorithm: sha256WithRSAEncryption 7a:40:9c:b7:c2:f8:1a:15:15:62:d9:52:db:68:95:f4:3e:42: a5:55:cb:03:52:cf:6f:47:58:db:c9:64:54:3b:e3:d6:98:62: de:ac:2f:4e:12:c6:b0:89:2b:7a:f7:f8:ad:01:7d:d6:43:cb: 7c:9c:e9:6e:b9:4d:c5:1f:c4:56:e3:a4:62:84:88:37:7d:f5: 0b:45:df:38:2b:0e:dd:89:b7:6e:5e:4f:1a:7a:9d:0b:43:2c: 54:47:18:94:64:bf:49:20:84:38:c9:78:20:39:1e:6b:76:3b: 16:f9:37:b3:3c:0f:43:46:f4:e4:53:01:e6:f6:58:82:fe:43: cf:6e:49:c9:f6:98:cc:89:55:72:76:fb:cd:c6:17:26:85:02: 32:36:e7:34:b1:ff:a4:4b:60:81:74:f6:7d:30:a0:9f:06:9d: 12:a4:aa:b5:2b:e0:b8:88:7c:7d:52:12:42:c4:27:d0:92:98: f3:3e:43:67:9f:dc:96:47:64:d5:0a:42:ca:cc:65:c8:45:f1: 21:b0:1d:e5:1a:37:ac:a5:7a:2b:39:7c:1f:51:99:95:12:51: 43:32:fc:22:9e:34:6c:8c:a2:b2:af:ff:76:5c:74:1a:14:e0: 99:66:4e:dd:4c:e9:fd:a1:34:b0:ff:65:40:20:16:3e:23:e3: aa:ee:8d:ca -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUAy71H1PwQgq4vYdESKR7najwdMAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjUyODI2OTc2RTdFQkRCRjg5QjkzQTQyQTE2ODJFNDJC ODQyODlGQjAeFw0yNTA1MzAxNjU1MDFaFw0yNjA1MjkxNzAwMDFaMDMxMTAvBgNV BAMTKDEzM0IxMUQ5RjhGNjJDMjA5REQwRTA4NkJCQjFBMTBCMDY3QjRFQ0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDtA5V3ihDuSv0ztPvxrDGePO3E fUfEYCTgjneR+VxndAa5mTySkKeAMdCqBBRJ5UlpzYBbhDuPcO8KDXm8mgTx4A89 fHefAmjNXYLQskxh/VDm70Swoh0dg9a7NDWPZfYekuoZJVX5Zm15D2t0r4NXyBJ4 i/fVc0dlS6gDssTFiAYbcpNW3CSg0Eg1+WuYXNL35QD7G8+FOw7Q9ms/SicIVKmB PsyvENiKPyUJtUq4CC/lUBzDJVW+Y3Ktqrqa5tt+gZWY5k8VHdaL3f4MJXogTMBZ bLFPWufr9t2I4t0Q+femySZWoL2MWIfGtGIVefVnxvDBWZVhxWXdBUTYQV1fAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUEzsR2fj2LCCd0OCGu7GhCwZ7Ts4wHwYDVR0j BBgwFoAU9Sgml25+vb+JuTpCoWguQrhCifswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NDc1MzM4ZC03YWNiLTRhYTctYmVkYy1kNjQ1OWZkMTM1MDQvMS9GNTI4MjY5NzZF N0VCREJGODlCOTNBNDJBMTY4MkU0MkI4NDI4OUZCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjUyODI2OTc2RTdFQkRCRjg5QjkzQTQyQTE2ODJFNDJCODQy ODlGQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg0NzUzMzhkLTdhY2ItNGFhNy1i ZWRjLWQ2NDU5ZmQxMzUwNC8xLzMyMzQzMDMxM2E2MTM1NjUzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzUzMjM4MzEzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQBpeAwDQYJKoZI hvcNAQELBQADggEBAHpAnLfC+BoVFWLZUttolfQ+QqVVywNSz29HWNvJZFQ749aY Yt6sL04SxrCJK3r3+K0BfdZDy3yc6W65TcUfxFbjpGKEiDd99QtF3zgrDt2Jt25e Txp6nQtDLFRHGJRkv0kghDjJeCA5Hmt2Oxb5N7M8D0NG9ORTAeb2WIL+Q89uScn2 mMyJVXJ2+83GFyaFAjI25zSx/6RLYIF09n0woJ8GnRKkqrUr4LiIfH1SEkLEJ9CS mPM+Q2ef3JZHZNUKQsrMZchF8SGwHeUaN6yleis5fB9RmZUSUUMy/CKeNGyMorKv /3ZcdBoU4JlmTt1M6f2hNLD/ZUAgFj4j46rujco= -----END CERTIFICATE-----Generated at Sun Jun 8 11:12:16 2025 by rpki-client