$ rpki-client -vvf repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a323030313a3a2f34382d3438203d3e203535363835.roa File: 323430343a653130303a323030313a3a2f34382d3438203d3e203535363835.roa (raw, json) Hash identifier: Gp4F0xRM/hV9aki2XB5vfVL0Y8NbBvJ8WVzTMemzvwU= Subject key identifier: 81:B1:37:8F:80:08:F3:20:2E:08:90:F0:25:89:90:A9:9E:22:58:55 Certificate issuer: /CN=B6F0131510E62F73E5F29246F9C8F691811A704D Certificate serial: 3CFDB581DC785581882403517CE4410E5F915E4A Authority key identifier: B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a323030313a3a2f34382d3438203d3e203535363835.roa Signing time: Mon 02 Jun 2025 02:04:46 +0000 ROA not before: Mon 02 Jun 2025 01:59:46 +0000 ROA not after: Mon 01 Jun 2026 02:04:46 +0000 asID: 55685 IP address blocks: 2404:e100:2001::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 22:33:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:fd:b5:81:dc:78:55:81:88:24:03:51:7c:e4:41:0e:5f:91:5e:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F0131510E62F73E5F29246F9C8F691811A704D Validity Not Before: Jun 2 01:59:46 2025 GMT Not After : Jun 1 02:04:46 2026 GMT Subject: CN=81B1378F8008F3202E0890F0258990A99E225855 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:19:2c:eb:d2:3f:96:af:60:f0:69:a9:16:2a: f8:f3:01:43:a6:d9:5e:12:6b:44:35:43:3e:7b:c1: f3:bf:c2:d3:6e:02:cd:77:01:66:3d:15:3f:57:49: 36:44:de:17:bc:bd:10:a0:94:b6:a5:8b:4a:4a:48: f2:04:08:46:ef:f1:f3:1e:14:24:35:7a:9b:f5:e3: 46:f3:10:1f:ed:9a:cf:81:9a:40:f8:0d:74:19:ee: 02:3e:1d:8e:99:63:cb:9a:44:38:85:a9:0f:55:05: 09:1c:99:c0:11:ba:5d:cb:e3:73:d1:d2:e8:9d:b7: ef:54:7a:ef:98:34:21:04:81:af:e2:d2:52:6a:bd: 60:3c:9b:61:db:df:c1:3c:f8:0a:d7:88:bf:7e:5f: 5a:97:76:5b:f5:10:5f:8b:b1:bf:f2:f5:ca:24:0a: 6f:e0:fb:35:c7:ef:8c:3b:29:f9:10:94:12:69:42: 46:b4:86:e7:c2:8c:af:be:65:18:e1:c3:aa:16:42: 00:37:79:52:62:d2:dc:b6:7d:2d:0f:bd:73:05:8e: aa:01:07:42:2a:c6:fa:e8:29:10:3b:72:ca:04:9b: a9:86:c4:6f:fb:a1:1a:76:1b:34:37:76:5f:c1:1b: 44:6e:1f:b8:81:23:65:f5:50:1d:be:12:cc:86:59: bc:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:B1:37:8F:80:08:F3:20:2E:08:90:F0:25:89:90:A9:9E:22:58:55 X509v3 Authority Key Identifier: keyid:B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a323030313a3a2f34382d3438203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:e100:2001::/48 Signature Algorithm: sha256WithRSAEncryption 49:96:21:2e:3f:57:8a:35:95:14:e6:a6:6f:3b:1c:f4:b2:bc: ac:2e:26:42:70:67:f6:df:6a:d2:44:ba:ef:aa:80:be:7d:58: 19:b1:b0:f0:3d:14:f6:ae:4f:31:91:64:0f:4b:bf:b7:76:de: f6:b4:ec:c0:be:b5:08:64:68:e4:80:e0:be:fd:b4:66:98:93: b9:21:dd:db:8b:76:24:c8:8d:de:6d:d7:1d:c8:fc:1c:69:1a: ed:fa:03:e8:cf:88:2e:ae:30:66:23:63:a3:ea:e5:77:94:17: 7d:b6:3b:78:97:9b:3e:b0:16:11:53:9e:11:73:e9:d4:87:23: e3:46:da:c9:74:90:29:ce:eb:e1:2b:96:e0:80:c7:85:97:d6: b9:4d:7c:cc:67:f7:d6:ad:8b:09:a9:f1:57:dc:87:ba:7d:4a: 15:e6:4f:31:ad:08:a8:31:69:1e:a8:ff:0c:a0:0c:7f:2f:0f: 3d:8e:87:ee:c7:03:45:01:f7:80:80:47:b1:84:d5:ad:ca:8a: 46:23:dc:41:c7:06:fa:e4:86:db:9e:fe:7f:12:3c:10:ac:84: c4:32:9f:33:42:ac:4d:e2:5c:75:2d:96:b2:af:00:9d:04:06: 57:84:50:a1:2e:71:4c:3b:d6:38:61:a3:74:a6:0b:4a:58:1a: 8f:da:04:f2 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUPP21gdx4VYGIJANRfORBDl+RXkowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4 MTFBNzA0RDAeFw0yNTA2MDIwMTU5NDZaFw0yNjA2MDEwMjA0NDZaMDMxMTAvBgNV BAMTKDgxQjEzNzhGODAwOEYzMjAyRTA4OTBGMDI1ODk5MEE5OUUyMjU4NTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4GSzr0j+Wr2DwaakWKvjzAUOm 2V4Sa0Q1Qz57wfO/wtNuAs13AWY9FT9XSTZE3he8vRCglLali0pKSPIECEbv8fMe FCQ1epv140bzEB/tms+BmkD4DXQZ7gI+HY6ZY8uaRDiFqQ9VBQkcmcARul3L43PR 0uidt+9Ueu+YNCEEga/i0lJqvWA8m2Hb38E8+ArXiL9+X1qXdlv1EF+Lsb/y9cok Cm/g+zXH74w7KfkQlBJpQka0hufCjK++ZRjhw6oWQgA3eVJi0ty2fS0PvXMFjqoB B0IqxvroKRA7csoEm6mGxG/7oRp2GzQ3dl/BG0RuH7iBI2X1UB2+EsyGWbwTAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUgbE3j4AI8yAuCJDwJYmQqZ4iWFUwHwYDVR0j BBgwFoAUtvATFRDmL3Pl8pJG+cj2kYEacE0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWQ4ZGFiNC04YmI2LTRlZDAtOGRhYi01YTQwNjE2N2I5OWQvMC9CNkYwMTMxNTEw RTYyRjczRTVGMjkyNDZGOUM4RjY5MTgxMUE3MDRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4MTFB NzA0RC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMyMzQzMDM0M2E2NTMxMzAzMDNhMzIzMDMwMzEz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzNTM1MzYzODM1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJATh ACABMA0GCSqGSIb3DQEBCwUAA4IBAQBJliEuP1eKNZUU5qZvOxz0srysLiZCcGf2 32rSRLrvqoC+fVgZsbDwPRT2rk8xkWQPS7+3dt72tOzAvrUIZGjkgOC+/bRmmJO5 Id3bi3YkyI3ebdcdyPwcaRrt+gPoz4gurjBmI2Oj6uV3lBd9tjt4l5s+sBYRU54R c+nUhyPjRtrJdJApzuvhK5bggMeFl9a5TXzMZ/fWrYsJqfFX3Ie6fUoV5k8xrQio MWkeqP8MoAx/Lw89jofuxwNFAfeAgEexhNWtyopGI9xBxwb65Ibbnv5/EjwQrITE Mp8zQqxN4lx1LZayrwCdBAZXhFChLnFMO9Y4YaN0pgtKWBqP2gTy -----END CERTIFICATE-----Generated at Sat Jun 7 16:02:15 2025 by rpki-client