$ rpki-client -vvf repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a343030363a3a2f34382d3438203d3e20313333383430.roa File: 323430343a653130303a343030363a3a2f34382d3438203d3e20313333383430.roa (raw, json) Hash identifier: m5ACAAjYjziMCH6tomUdbEyW1mC4NgzUgTa/KkeLzZY= Subject key identifier: FF:03:58:25:01:03:E7:6B:38:90:DE:AC:49:97:B8:E0:C8:58:48:85 Certificate issuer: /CN=B6F0131510E62F73E5F29246F9C8F691811A704D Certificate serial: 10A6C20B44DA02262C84AD6C87E4AF48C3254BE2 Authority key identifier: B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a343030363a3a2f34382d3438203d3e20313333383430.roa Signing time: Mon 02 Jun 2025 02:04:47 +0000 ROA not before: Mon 02 Jun 2025 01:59:47 +0000 ROA not after: Mon 01 Jun 2026 02:04:47 +0000 asID: 133840 IP address blocks: 2404:e100:4006::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 22:33:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:a6:c2:0b:44:da:02:26:2c:84:ad:6c:87:e4:af:48:c3:25:4b:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F0131510E62F73E5F29246F9C8F691811A704D Validity Not Before: Jun 2 01:59:47 2025 GMT Not After : Jun 1 02:04:47 2026 GMT Subject: CN=FF0358250103E76B3890DEAC4997B8E0C8584885 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:4a:a2:c9:86:30:cb:7f:14:ff:59:94:1c:3c: 00:a9:b5:9a:bf:3c:3b:88:4b:08:ab:39:10:7b:b9: f9:a1:4b:51:5f:4e:3e:01:c8:cb:da:33:ec:05:3c: ae:25:93:d9:78:48:84:f1:9d:df:1d:5d:cc:9b:91: cc:33:7e:da:96:74:d4:ba:62:c0:1a:af:7e:4a:5a: d0:16:27:df:6f:2f:a4:e7:8c:70:88:d8:cd:23:4b: 3a:3f:b9:ad:63:06:06:ab:78:19:23:5a:45:de:28: 31:5f:19:97:fd:93:38:4f:b7:7e:b0:5f:ae:63:c8: fa:30:40:9e:c0:58:23:8a:d0:60:07:aa:ae:cc:c2: 2f:06:ac:53:e7:41:8d:b8:6a:ed:36:8f:ad:74:58: 87:e7:8a:a3:56:de:2f:a0:ec:91:34:cc:1a:1c:83: f0:26:44:c4:d4:3a:0b:92:58:e2:31:b3:3c:39:c8: 27:42:2c:c7:2e:8c:ca:45:e0:5e:9f:85:b3:fe:69: 09:14:14:8d:b7:b0:3c:69:35:9f:cd:38:88:96:15: 19:bd:5d:4d:12:a9:59:94:a4:72:69:c4:da:68:dc: 8c:f8:35:cb:4d:c0:33:c0:6f:df:b5:85:c4:7b:cd: 98:cd:49:35:3d:bc:f1:e9:9e:fe:18:11:ae:9d:d1: 13:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:03:58:25:01:03:E7:6B:38:90:DE:AC:49:97:B8:E0:C8:58:48:85 X509v3 Authority Key Identifier: keyid:B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a343030363a3a2f34382d3438203d3e20313333383430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:e100:4006::/48 Signature Algorithm: sha256WithRSAEncryption 4a:b4:fc:d8:40:2f:db:10:56:57:de:f0:27:ff:d6:98:32:4e: 8a:24:67:a0:45:05:3c:c3:0d:c3:6e:d6:4e:d1:fb:f0:51:79: a9:38:7b:4c:27:c9:34:e4:c0:82:98:48:bf:61:95:0a:49:bf: 5a:40:b2:d4:46:6d:55:95:c1:f9:f1:39:a8:59:39:4f:26:cb: b1:97:57:79:00:0a:28:13:4e:87:8e:28:03:d7:7a:3a:3c:39: a6:31:59:7f:c6:26:42:3a:70:bf:ad:8f:25:2f:ec:18:0f:0c: eb:e8:7d:ea:5e:b7:ab:f1:5f:cf:cb:0c:ed:ed:7a:83:c9:dd: d8:af:63:96:76:6c:95:6e:f8:b3:8a:01:c5:af:f1:0f:e9:c4: 7d:f8:6e:07:7f:17:25:e6:56:34:ee:3e:c6:cd:f6:87:7d:f2: a7:f6:81:57:af:b9:17:7d:ed:f8:51:a9:f8:e6:5f:a8:91:2b: ca:bf:36:13:30:b9:b5:f8:00:f6:84:e0:71:f6:96:a7:52:ef: 23:26:3f:45:2f:85:fb:9e:fd:02:e9:4c:5a:e2:a7:3d:40:1a: 05:f1:29:26:d8:e3:92:cd:30:fa:17:8c:5e:f1:ea:ba:90:d3: 3a:ca:b1:5e:3a:da:61:13:7e:43:c2:bc:3d:90:39:06:ac:0a: 61:f9:98:1e -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUEKbCC0TaAiYshK1sh+SvSMMlS+IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4 MTFBNzA0RDAeFw0yNTA2MDIwMTU5NDdaFw0yNjA2MDEwMjA0NDdaMDMxMTAvBgNV BAMTKEZGMDM1ODI1MDEwM0U3NkIzODkwREVBQzQ5OTdCOEUwQzg1ODQ4ODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCSqLJhjDLfxT/WZQcPACptZq/ PDuISwirORB7ufmhS1FfTj4ByMvaM+wFPK4lk9l4SITxnd8dXcybkcwzftqWdNS6 YsAar35KWtAWJ99vL6TnjHCI2M0jSzo/ua1jBgareBkjWkXeKDFfGZf9kzhPt36w X65jyPowQJ7AWCOK0GAHqq7Mwi8GrFPnQY24au02j610WIfniqNW3i+g7JE0zBoc g/AmRMTUOguSWOIxszw5yCdCLMcujMpF4F6fhbP+aQkUFI23sDxpNZ/NOIiWFRm9 XU0SqVmUpHJpxNpo3Iz4NctNwDPAb9+1hcR7zZjNSTU9vPHpnv4YEa6d0RM1AgMB AAGjggI/MIICOzAdBgNVHQ4EFgQU/wNYJQED52s4kN6sSZe44MhYSIUwHwYDVR0j BBgwFoAUtvATFRDmL3Pl8pJG+cj2kYEacE0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWQ4ZGFiNC04YmI2LTRlZDAtOGRhYi01YTQwNjE2N2I5OWQvMC9CNkYwMTMxNTEw RTYyRjczRTVGMjkyNDZGOUM4RjY5MTgxMUE3MDRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4MTFB NzA0RC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMyMzQzMDM0M2E2NTMxMzAzMDNhMzQzMDMwMzYz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzMzODM0MzAucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BOEAQAYwDQYJKoZIhvcNAQELBQADggEBAEq0/NhAL9sQVlfe8Cf/1pgyTookZ6BF BTzDDcNu1k7R+/BReak4e0wnyTTkwIKYSL9hlQpJv1pAstRGbVWVwfnxOahZOU8m y7GXV3kACigTToeOKAPXejo8OaYxWX/GJkI6cL+tjyUv7BgPDOvofepet6vxX8/L DO3teoPJ3divY5Z2bJVu+LOKAcWv8Q/pxH34bgd/FyXmVjTuPsbN9od98qf2gVev uRd97fhRqfjmX6iRK8q/NhMwubX4APaE4HH2lqdS7yMmP0Uvhfue/QLpTFripz1A GgXxKSbY45LNMPoXjF7x6rqQ0zrKsV462mETfkPCvD2QOQasCmH5mB4= -----END CERTIFICATE-----Generated at Sun Jun 8 07:44:01 2025 by rpki-client