$ rpki-client -vvf repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a343030343a3a2f34382d3438203d3e20313333383430.roa File: 323430343a653130303a343030343a3a2f34382d3438203d3e20313333383430.roa (raw, json) Hash identifier: OAoO2dWTbE/SL1JVnINzJGkwiJlLGjLGxdLk30W3cM4= Subject key identifier: 1A:12:A2:74:C6:EA:84:21:F3:8C:88:63:66:B4:D1:A7:00:71:D1:60 Certificate issuer: /CN=B6F0131510E62F73E5F29246F9C8F691811A704D Certificate serial: 1DEF79BD2C2104C9671CCD48F80A9BADF3C6C7B0 Authority key identifier: B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a343030343a3a2f34382d3438203d3e20313333383430.roa Signing time: Mon 02 Jun 2025 02:04:47 +0000 ROA not before: Mon 02 Jun 2025 01:59:47 +0000 ROA not after: Mon 01 Jun 2026 02:04:47 +0000 asID: 133840 IP address blocks: 2404:e100:4004::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 22:33:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:ef:79:bd:2c:21:04:c9:67:1c:cd:48:f8:0a:9b:ad:f3:c6:c7:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F0131510E62F73E5F29246F9C8F691811A704D Validity Not Before: Jun 2 01:59:47 2025 GMT Not After : Jun 1 02:04:47 2026 GMT Subject: CN=1A12A274C6EA8421F38C886366B4D1A70071D160 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:8f:ca:bf:03:a8:4a:47:cc:3f:fc:0d:89:b7: 40:92:bc:6b:f6:00:7d:29:c9:0c:b3:94:35:e8:5c: 65:08:88:b9:77:f7:ae:90:d3:3a:44:60:d8:b9:38: cf:b6:27:a2:d6:8c:bd:16:9b:31:6a:29:83:0f:61: 3b:3a:0f:4e:a4:5f:fe:b9:d0:ab:b2:b0:d9:b9:f6: 55:3d:ef:49:35:bf:80:b1:f2:82:a1:7d:0d:98:cf: fc:5d:a6:29:4c:ac:d8:2a:ea:22:22:8f:d1:0e:e4: 3c:b5:80:e2:2d:d6:4e:5c:ce:4a:c5:51:78:99:2a: 88:67:fe:41:79:93:01:bb:ed:bc:f0:9a:e5:c3:e0: cb:77:92:85:38:d8:52:d7:7c:5a:df:70:1e:e8:fe: b8:24:34:bb:6d:cc:c0:25:5e:12:8c:6c:e8:00:7f: 4e:bb:4c:7a:05:44:14:86:24:76:28:c9:a4:3a:a5: 8d:98:79:ca:9c:37:be:17:9c:f4:93:38:41:df:a8: 00:02:bb:83:b4:ec:56:94:18:2b:d0:14:c3:17:d6: b1:d1:10:f1:c2:44:75:71:fc:d8:d1:85:1f:70:d8: 55:4a:a9:f7:fb:01:3f:4e:fd:9a:2f:a4:48:03:b4: 2c:33:32:38:7e:a0:52:9a:ae:00:b2:fa:5f:50:90: 15:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:12:A2:74:C6:EA:84:21:F3:8C:88:63:66:B4:D1:A7:00:71:D1:60 X509v3 Authority Key Identifier: keyid:B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a343030343a3a2f34382d3438203d3e20313333383430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:e100:4004::/48 Signature Algorithm: sha256WithRSAEncryption 1e:41:a7:86:ca:2b:aa:99:1e:fc:82:37:09:22:4a:32:6d:1c: 0e:d8:95:49:3b:a1:46:f7:46:12:16:13:a6:fa:ff:24:0e:27: f2:0d:92:b1:8e:a0:db:1c:85:b3:71:58:24:a9:34:66:f0:6d: 33:7f:3e:a6:3f:e2:27:7b:b4:29:c9:a2:33:ae:95:79:ee:9c: 78:dd:50:bd:68:66:44:18:70:1c:85:7e:e8:44:a6:9a:ab:da: 59:e9:25:aa:c2:55:40:46:dd:ba:8a:be:da:2c:58:e2:c7:3e: 3e:cd:1d:63:b6:53:0e:f0:68:41:11:51:44:d6:28:50:6e:e6: 48:22:a5:5b:d4:c2:dd:8e:0b:c9:97:f0:a4:13:ee:fd:34:de: 56:fd:8d:3a:07:20:a7:46:45:17:7d:29:11:10:ae:74:01:61: 51:c5:b6:20:0f:c2:9c:7b:b5:68:ab:a5:a2:aa:5b:9b:2c:69: e4:06:f3:ea:f7:0e:d3:9c:d8:a8:4d:26:34:e8:5b:87:0e:41: 34:41:69:1a:dc:02:98:08:22:48:4d:75:d4:7b:6a:91:e7:27: 46:eb:3a:ac:35:59:a2:bb:e9:e6:3f:fb:c1:58:57:e8:40:04: d8:34:6a:1b:9d:df:6e:cf:05:bc:5e:78:25:61:47:fc:94:c8: 61:cb:96:ba -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUHe95vSwhBMlnHM1I+AqbrfPGx7AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4 MTFBNzA0RDAeFw0yNTA2MDIwMTU5NDdaFw0yNjA2MDEwMjA0NDdaMDMxMTAvBgNV BAMTKDFBMTJBMjc0QzZFQTg0MjFGMzhDODg2MzY2QjREMUE3MDA3MUQxNjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxj8q/A6hKR8w//A2Jt0CSvGv2 AH0pyQyzlDXoXGUIiLl3966Q0zpEYNi5OM+2J6LWjL0WmzFqKYMPYTs6D06kX/65 0KuysNm59lU970k1v4Cx8oKhfQ2Yz/xdpilMrNgq6iIij9EO5Dy1gOIt1k5czkrF UXiZKohn/kF5kwG77bzwmuXD4Mt3koU42FLXfFrfcB7o/rgkNLttzMAlXhKMbOgA f067THoFRBSGJHYoyaQ6pY2YecqcN74XnPSTOEHfqAACu4O07FaUGCvQFMMX1rHR EPHCRHVx/NjRhR9w2FVKqff7AT9O/ZovpEgDtCwzMjh+oFKargCy+l9QkBUrAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUGhKidMbqhCHzjIhjZrTRpwBx0WAwHwYDVR0j BBgwFoAUtvATFRDmL3Pl8pJG+cj2kYEacE0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWQ4ZGFiNC04YmI2LTRlZDAtOGRhYi01YTQwNjE2N2I5OWQvMC9CNkYwMTMxNTEw RTYyRjczRTVGMjkyNDZGOUM4RjY5MTgxMUE3MDRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4MTFB NzA0RC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMyMzQzMDM0M2E2NTMxMzAzMDNhMzQzMDMwMzQz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzMzODM0MzAucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BOEAQAQwDQYJKoZIhvcNAQELBQADggEBAB5Bp4bKK6qZHvyCNwkiSjJtHA7YlUk7 oUb3RhIWE6b6/yQOJ/INkrGOoNschbNxWCSpNGbwbTN/PqY/4id7tCnJojOulXnu nHjdUL1oZkQYcByFfuhEppqr2lnpJarCVUBG3bqKvtosWOLHPj7NHWO2Uw7waEER UUTWKFBu5kgipVvUwt2OC8mX8KQT7v003lb9jToHIKdGRRd9KREQrnQBYVHFtiAP wpx7tWirpaKqW5ssaeQG8+r3DtOc2KhNJjToW4cOQTRBaRrcApgIIkhNddR7apHn J0brOqw1WaK76eY/+8FYV+hABNg0ahud327PBbxeeCVhR/yUyGHLlro= -----END CERTIFICATE-----Generated at Sun Jun 8 06:40:16 2025 by rpki-client