$ rpki-client -vvf repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a3a2f34372d3438203d3e203535363835.roa File: 323430343a653130303a3a2f34372d3438203d3e203535363835.roa (raw, json) Hash identifier: j7b+c2yQC7xO1yixBZnvGaPoHjrmfBy2VjTTc5gvjtY= Subject key identifier: F3:C1:C7:17:FA:9F:05:48:03:F4:B9:45:9E:17:15:DD:F6:22:2D:A5 Certificate issuer: /CN=B6F0131510E62F73E5F29246F9C8F691811A704D Certificate serial: 0A47C88B78ADE0609CD25D423E0DF9324318DC18 Authority key identifier: B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a3a2f34372d3438203d3e203535363835.roa Signing time: Mon 02 Jun 2025 02:04:46 +0000 ROA not before: Mon 02 Jun 2025 01:59:46 +0000 ROA not after: Mon 01 Jun 2026 02:04:46 +0000 asID: 55685 IP address blocks: 2404:e100::/47 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 22:33:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:47:c8:8b:78:ad:e0:60:9c:d2:5d:42:3e:0d:f9:32:43:18:dc:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F0131510E62F73E5F29246F9C8F691811A704D Validity Not Before: Jun 2 01:59:46 2025 GMT Not After : Jun 1 02:04:46 2026 GMT Subject: CN=F3C1C717FA9F054803F4B9459E1715DDF6222DA5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:71:48:da:6e:ad:bf:2d:8e:7b:3a:6f:c2:de: 1b:28:dd:3d:78:03:2d:d0:3d:f6:ca:30:c5:17:64: 5d:95:d2:90:7d:92:78:94:1d:09:ed:d7:66:73:ef: c1:b6:91:5f:e4:b9:5f:8d:ef:fc:8d:f8:97:17:7e: 9e:35:99:92:f6:7c:3b:30:30:aa:46:76:6b:89:ce: a1:d5:0f:0e:3a:35:fe:ac:ce:ed:89:4b:4f:ff:77: 19:a5:8d:2d:dd:1b:cf:51:85:6d:02:ba:eb:48:4a: 1c:08:6d:c2:76:a8:cd:b5:ca:7b:43:91:71:22:18: 88:28:58:1d:02:b4:34:cd:6e:af:14:f0:b8:d7:1b: 7b:35:a2:ef:a8:29:f1:a4:0a:41:93:a7:89:24:b5: d9:da:41:9d:9a:f1:8a:58:51:11:a8:79:9b:95:44: a2:95:de:57:8b:7f:85:42:aa:7a:93:47:d0:e7:ec: 58:3d:e8:96:f6:53:75:59:f1:50:5c:65:76:c3:c7: 82:bb:9f:a9:6d:83:67:dd:dc:04:58:61:48:79:cb: e6:ed:79:bb:e7:f7:62:3e:88:7d:1c:75:da:12:e6: 8d:a9:03:08:14:5d:09:c4:71:55:9b:dd:ed:af:93: 71:0a:c1:1e:f7:76:93:3f:3c:4c:fe:a7:e9:04:9c: 4f:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:C1:C7:17:FA:9F:05:48:03:F4:B9:45:9E:17:15:DD:F6:22:2D:A5 X509v3 Authority Key Identifier: keyid:B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a3a2f34372d3438203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:e100::/47 Signature Algorithm: sha256WithRSAEncryption 7d:1b:85:26:7d:57:2a:f0:68:5f:2d:63:15:29:91:87:95:5d: 18:d2:14:47:2c:9c:87:02:b2:e3:82:dd:71:77:ed:58:cb:ab: e8:20:b7:93:22:5d:2d:8d:a7:9f:09:b5:69:f7:c2:a3:e7:a0: 59:d1:e9:ce:5a:c0:d0:94:88:6c:a9:65:cd:7b:d8:0a:21:61: 03:be:41:bd:25:41:8a:06:06:e1:c5:59:77:c0:78:4c:a9:b3: af:94:f2:d5:7b:ec:f8:12:ab:2a:9c:c3:30:d4:29:2b:ce:ce: e9:3e:9c:93:96:af:64:cf:c5:6d:c4:6e:66:76:1a:0e:82:c5: 66:0a:7e:e6:f2:53:59:74:39:c1:16:17:df:40:4e:12:b1:f1: 2b:c1:09:53:b8:a9:d7:89:a5:a4:38:cd:d6:33:56:b9:52:0a: 43:b1:16:87:71:19:a3:70:32:d6:21:2a:57:c4:58:ea:9c:ab: ad:7a:c2:be:a0:fd:44:1f:f3:a7:5d:06:c2:74:17:2d:37:f6: b9:ba:5c:47:a3:65:80:ef:0d:08:04:d1:ee:62:76:f8:c1:4a: b7:c0:e1:e9:b0:64:c2:bd:04:d4:6e:05:27:4e:1d:08:68:b9: 68:e1:e8:7f:19:bf:63:5f:1d:c2:80:d8:05:85:86:91:28:1d: fc:74:e0:d6 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUCkfIi3it4GCc0l1CPg35MkMY3BgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4 MTFBNzA0RDAeFw0yNTA2MDIwMTU5NDZaFw0yNjA2MDEwMjA0NDZaMDMxMTAvBgNV BAMTKEYzQzFDNzE3RkE5RjA1NDgwM0Y0Qjk0NTlFMTcxNURERjYyMjJEQTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCWcUjabq2/LY57Om/C3hso3T14 Ay3QPfbKMMUXZF2V0pB9kniUHQnt12Zz78G2kV/kuV+N7/yN+JcXfp41mZL2fDsw MKpGdmuJzqHVDw46Nf6szu2JS0//dxmljS3dG89RhW0CuutIShwIbcJ2qM21yntD kXEiGIgoWB0CtDTNbq8U8LjXG3s1ou+oKfGkCkGTp4kktdnaQZ2a8YpYURGoeZuV RKKV3leLf4VCqnqTR9Dn7Fg96Jb2U3VZ8VBcZXbDx4K7n6ltg2fd3ARYYUh5y+bt ebvn92I+iH0cddoS5o2pAwgUXQnEcVWb3e2vk3EKwR73dpM/PEz+p+kEnE9dAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQU88HHF/qfBUgD9LlFnhcV3fYiLaUwHwYDVR0j BBgwFoAUtvATFRDmL3Pl8pJG+cj2kYEacE0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWQ4ZGFiNC04YmI2LTRlZDAtOGRhYi01YTQwNjE2N2I5OWQvMC9CNkYwMTMxNTEw RTYyRjczRTVGMjkyNDZGOUM4RjY5MTgxMUE3MDRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4MTFB NzA0RC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMyMzQzMDM0M2E2NTMxMzAzMDNhM2EyZjM0Mzcy ZDM0MzgyMDNkM2UyMDM1MzUzNjM4MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwEkBOEAAAAwDQYJKoZI hvcNAQELBQADggEBAH0bhSZ9VyrwaF8tYxUpkYeVXRjSFEcsnIcCsuOC3XF37VjL q+ggt5MiXS2Np58JtWn3wqPnoFnR6c5awNCUiGypZc172AohYQO+Qb0lQYoGBuHF WXfAeEyps6+U8tV77PgSqyqcwzDUKSvOzuk+nJOWr2TPxW3EbmZ2Gg6CxWYKfuby U1l0OcEWF99AThKx8SvBCVO4qdeJpaQ4zdYzVrlSCkOxFodxGaNwMtYhKlfEWOqc q616wr6g/UQf86ddBsJ0Fy039rm6XEejZYDvDQgE0e5idvjBSrfA4emwZMK9BNRu BSdOHQhouWjh6H8Zv2NfHcKA2AWFhpEoHfx04NY= -----END CERTIFICATE-----Generated at Sat Jun 7 15:36:37 2025 by rpki-client