$ rpki-client -vvf repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a343030393a3a2f34382d3438203d3e20313333383430.roa File: 323430343a653130303a343030393a3a2f34382d3438203d3e20313333383430.roa (raw, json) Hash identifier: l+yBCLF/Lmddpyz8Ls8cNOaOLZVHw2kOThVg8NdU6SM= Subject key identifier: C1:DA:AE:25:70:27:EB:C6:C7:D9:68:BF:FE:93:EF:7C:5B:41:86:0A Certificate issuer: /CN=B6F0131510E62F73E5F29246F9C8F691811A704D Certificate serial: 4786A41C865423A3A8B072EA65E047C257BDB99B Authority key identifier: B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a343030393a3a2f34382d3438203d3e20313333383430.roa Signing time: Mon 02 Jun 2025 02:04:47 +0000 ROA not before: Mon 02 Jun 2025 01:59:47 +0000 ROA not after: Mon 01 Jun 2026 02:04:47 +0000 asID: 133840 IP address blocks: 2404:e100:4009::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 22:33:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:86:a4:1c:86:54:23:a3:a8:b0:72:ea:65:e0:47:c2:57:bd:b9:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F0131510E62F73E5F29246F9C8F691811A704D Validity Not Before: Jun 2 01:59:47 2025 GMT Not After : Jun 1 02:04:47 2026 GMT Subject: CN=C1DAAE257027EBC6C7D968BFFE93EF7C5B41860A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:da:dd:a8:46:72:c1:72:f5:49:9b:6f:ea:94: 7f:bf:cf:e9:eb:d8:05:7c:43:91:23:d6:d8:98:4e: 99:aa:37:4e:fa:e6:37:5e:43:d6:d2:b2:3c:05:44: 40:0c:53:c2:44:e4:b1:ad:13:33:73:f7:ad:e7:72: 53:63:34:3d:4a:4a:a8:25:80:a8:86:1f:b2:05:dd: 77:c8:61:24:7f:23:18:99:25:bc:67:ac:2e:fa:86: ef:37:94:c3:3d:82:19:d2:e7:aa:c8:91:f9:1d:3a: f3:a2:c7:c5:2e:86:9e:fe:c4:62:9c:c9:23:48:1f: 30:dd:20:b6:db:e8:01:27:a7:d3:e2:ab:ae:b1:4a: 4c:0a:6d:b6:2d:d2:fe:bc:6d:b1:34:eb:a1:72:47: 63:7b:0d:da:9e:6e:09:a7:00:10:03:85:45:48:a6: b0:cf:4f:75:9d:0a:7a:a3:7f:08:7b:fe:52:87:9e: 6a:b6:30:2a:a0:2b:91:35:d7:fc:f7:90:46:a9:8b: 5e:44:00:8a:95:39:df:6a:32:8f:d6:e6:88:9d:17: 9d:f4:93:a9:f2:15:d3:09:86:f4:05:3f:c6:85:28: 68:22:29:6e:20:b5:0b:e8:72:ea:c9:86:9c:d4:7d: e4:2c:5e:b3:51:21:c1:ea:e6:49:96:e6:e3:69:b9: 82:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:DA:AE:25:70:27:EB:C6:C7:D9:68:BF:FE:93:EF:7C:5B:41:86:0A X509v3 Authority Key Identifier: keyid:B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a343030393a3a2f34382d3438203d3e20313333383430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:e100:4009::/48 Signature Algorithm: sha256WithRSAEncryption 16:45:17:c2:a3:16:cc:a6:50:48:5f:6f:a5:7b:b7:dc:66:4f: b8:f5:ac:d0:c4:9c:a7:8a:64:e4:a9:55:dc:94:fb:07:6a:8f: 62:1f:fb:63:09:18:f4:2d:04:8c:a9:0c:12:a0:8b:35:c6:74: 70:2a:9e:34:40:18:2b:3a:70:c3:6a:4d:b5:05:b1:3d:23:5c: ec:46:bf:4d:46:7e:9a:b8:91:9c:e7:84:53:27:0b:a9:96:7f: 3c:6c:9d:e4:3c:d6:8d:d7:cd:da:a1:04:4d:86:e4:4a:ca:80: 4c:73:59:07:bb:a9:4d:f2:c1:ca:04:34:a8:6e:63:a3:fa:8e: 2b:bf:0d:55:4e:ca:32:f9:1b:7b:41:2f:f8:ac:b0:b9:f7:86: 99:81:61:29:56:2f:ef:f1:88:35:8b:60:3f:14:6b:cc:53:ba: cc:c0:54:81:6d:ee:2d:e5:c8:05:f3:46:fe:b8:38:bf:2d:3a: fb:3b:37:b3:89:b3:2e:1a:a1:3a:8d:08:36:2a:b8:34:46:82: 0b:b6:55:c0:33:9a:df:81:6f:8f:62:66:95:0a:91:fe:aa:20: 25:14:61:dc:1a:00:5c:e7:bd:d2:f5:90:f8:ad:79:1a:8a:0a: d5:02:0c:fe:da:f7:7c:ab:37:46:35:5b:8d:ef:bc:72:4c:e4: ec:42:37:a7 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUR4akHIZUI6OosHLqZeBHwle9uZswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4 MTFBNzA0RDAeFw0yNTA2MDIwMTU5NDdaFw0yNjA2MDEwMjA0NDdaMDMxMTAvBgNV BAMTKEMxREFBRTI1NzAyN0VCQzZDN0Q5NjhCRkZFOTNFRjdDNUI0MTg2MEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCb2t2oRnLBcvVJm2/qlH+/z+nr 2AV8Q5Ej1tiYTpmqN0765jdeQ9bSsjwFREAMU8JE5LGtEzNz963nclNjND1KSqgl gKiGH7IF3XfIYSR/IxiZJbxnrC76hu83lMM9ghnS56rIkfkdOvOix8Uuhp7+xGKc ySNIHzDdILbb6AEnp9Piq66xSkwKbbYt0v68bbE066FyR2N7DdqebgmnABADhUVI prDPT3WdCnqjfwh7/lKHnmq2MCqgK5E11/z3kEapi15EAIqVOd9qMo/W5oidF530 k6nyFdMJhvQFP8aFKGgiKW4gtQvocurJhpzUfeQsXrNRIcHq5kmW5uNpuYJDAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUwdquJXAn68bH2Wi//pPvfFtBhgowHwYDVR0j BBgwFoAUtvATFRDmL3Pl8pJG+cj2kYEacE0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWQ4ZGFiNC04YmI2LTRlZDAtOGRhYi01YTQwNjE2N2I5OWQvMC9CNkYwMTMxNTEw RTYyRjczRTVGMjkyNDZGOUM4RjY5MTgxMUE3MDRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4MTFB NzA0RC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMyMzQzMDM0M2E2NTMxMzAzMDNhMzQzMDMwMzkz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzMzODM0MzAucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BOEAQAkwDQYJKoZIhvcNAQELBQADggEBABZFF8KjFsymUEhfb6V7t9xmT7j1rNDE nKeKZOSpVdyU+wdqj2If+2MJGPQtBIypDBKgizXGdHAqnjRAGCs6cMNqTbUFsT0j XOxGv01Gfpq4kZznhFMnC6mWfzxsneQ81o3XzdqhBE2G5ErKgExzWQe7qU3ywcoE NKhuY6P6jiu/DVVOyjL5G3tBL/issLn3hpmBYSlWL+/xiDWLYD8Ua8xTuszAVIFt 7i3lyAXzRv64OL8tOvs7N7OJsy4aoTqNCDYquDRGggu2VcAzmt+Bb49iZpUKkf6q ICUUYdwaAFznvdL1kPiteRqKCtUCDP7a93yrN0Y1W43vvHJM5OxCN6c= -----END CERTIFICATE-----Generated at Sat Jun 7 06:02:25 2025 by rpki-client