$ rpki-client -vvf repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/323430363a393330303a3a2f33322d3438203d3e203338353036.roa File: 323430363a393330303a3a2f33322d3438203d3e203338353036.roa (raw, json) Hash identifier: wSzeEeUlQ9dVeDBBx0XlYcJDAiPM7sQsbdx5J/YQ+rE= Subject key identifier: 1F:5A:00:54:83:DD:A0:EF:A5:00:87:71:E0:BE:52:2D:99:E0:A3:93 Certificate issuer: /CN=0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2 Certificate serial: 0237E84693EB41B471F2CFDBBFA6BB978529AFA2 Authority key identifier: 0F:D0:44:D6:13:48:C8:8D:DC:FF:C4:F3:C3:3B:FB:C4:51:BC:17:A2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/323430363a393330303a3a2f33322d3438203d3e203338353036.roa Signing time: Sat 17 May 2025 09:00:00 +0000 ROA not before: Sat 17 May 2025 08:55:00 +0000 ROA not after: Sat 16 May 2026 09:00:00 +0000 asID: 38506 IP address blocks: 2406:9300::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.crl rsync://repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 02:27:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:37:e8:46:93:eb:41:b4:71:f2:cf:db:bf:a6:bb:97:85:29:af:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2 Validity Not Before: May 17 08:55:00 2025 GMT Not After : May 16 09:00:00 2026 GMT Subject: CN=1F5A005483DDA0EFA5008771E0BE522D99E0A393 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:a2:ae:ed:13:65:90:78:3f:10:06:78:2a:ad: 1b:c1:70:e4:38:0f:77:b6:b5:e1:54:64:8e:d6:0f: 21:3c:14:3e:f4:a1:72:46:d6:7c:f9:57:86:0e:5a: 05:63:af:ff:e1:05:15:36:5e:ed:25:41:b9:8c:9d: 9f:dd:0c:d7:8b:a4:35:ed:6f:ba:6d:3b:7c:71:b3: 39:a3:7f:3a:5a:82:20:07:ff:36:64:d1:5b:ac:45: db:fe:81:45:7a:8d:ad:f5:5b:92:50:b5:ef:67:35: 04:94:7d:90:c8:fa:57:e7:a9:ef:74:ad:30:84:e7: 41:f2:06:b2:34:03:8e:de:4c:a0:a5:ef:f9:d3:cc: 8b:06:cd:72:49:95:d1:dc:cb:73:a1:0f:bc:6f:00: 1e:94:14:96:15:2d:65:bb:eb:80:4e:43:42:6b:5d: 4d:32:9f:27:f8:d0:a9:bd:82:1d:65:f7:bd:af:85: 53:ff:56:f8:f6:43:92:d5:85:c5:13:a8:60:c0:51: a7:7d:66:3d:4a:80:e6:6d:02:c0:17:56:55:bc:66: f4:08:8c:fa:a2:63:05:e5:94:d8:e5:9e:14:56:e0: b5:d3:44:f7:9e:83:55:af:e0:38:44:08:de:e2:2d: 63:46:d9:5c:62:fd:4d:28:25:d4:be:55:0b:85:1b: 84:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:5A:00:54:83:DD:A0:EF:A5:00:87:71:E0:BE:52:2D:99:E0:A3:93 X509v3 Authority Key Identifier: keyid:0F:D0:44:D6:13:48:C8:8D:DC:FF:C4:F3:C3:3B:FB:C4:51:BC:17:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/323430363a393330303a3a2f33322d3438203d3e203338353036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:9300::/32 Signature Algorithm: sha256WithRSAEncryption 47:ba:71:81:fb:d2:93:bf:b2:22:fb:36:7d:80:19:88:35:04: d5:a5:d9:c6:f5:b3:50:08:03:c7:32:8d:6e:bb:33:0e:88:36: 4b:e5:e5:38:93:3b:18:22:1e:ad:82:15:14:8f:07:83:49:6d: a9:3d:47:d3:28:8b:fd:69:e3:1d:4a:a0:6f:e1:d4:e0:b8:b4: 90:64:5a:10:fd:64:26:f9:44:7d:35:0a:aa:36:61:ef:b8:a0: a7:4d:5e:71:77:6b:b9:02:7c:3d:d6:78:0a:0f:06:98:1e:77: 2d:f7:81:b2:2d:f1:c8:b3:dc:ba:f0:e8:a4:a8:bd:70:68:d3: 40:49:9f:cc:f2:ef:12:85:57:d1:63:6b:89:b6:56:e7:b4:2f: a0:2a:d8:b8:71:04:ff:bf:1e:a5:ec:b0:32:9c:7e:fb:d5:42: e2:22:f1:73:2d:2b:ca:21:1f:8d:cf:5f:08:b5:c9:5d:b6:87: 74:46:23:a8:23:af:d6:f9:58:7f:d1:a3:ad:08:14:cb:02:62: d9:28:ef:22:a8:80:3f:63:b5:b5:7b:29:b7:a5:f4:6c:45:8b: 8d:18:53:83:9e:5c:2a:3a:59:eb:e5:ac:b0:d7:35:46:d3:60: ea:0d:c7:5f:72:c5:19:d2:ad:f3:07:83:80:5e:f4:fa:35:fa: cb:a2:e4:35 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUAjfoRpPrQbRx8s/bv6a7l4Upr6IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEZEMDQ0RDYxMzQ4Qzg4RERDRkZDNEYzQzMzQkZCQzQ1 MUJDMTdBMjAeFw0yNTA1MTcwODU1MDBaFw0yNjA1MTYwOTAwMDBaMDMxMTAvBgNV BAMTKDFGNUEwMDU0ODNEREEwRUZBNTAwODc3MUUwQkU1MjJEOTlFMEEzOTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+oq7tE2WQeD8QBngqrRvBcOQ4 D3e2teFUZI7WDyE8FD70oXJG1nz5V4YOWgVjr//hBRU2Xu0lQbmMnZ/dDNeLpDXt b7ptO3xxszmjfzpagiAH/zZk0VusRdv+gUV6ja31W5JQte9nNQSUfZDI+lfnqe90 rTCE50HyBrI0A47eTKCl7/nTzIsGzXJJldHcy3OhD7xvAB6UFJYVLWW764BOQ0Jr XU0ynyf40Km9gh1l972vhVP/Vvj2Q5LVhcUTqGDAUad9Zj1KgOZtAsAXVlW8ZvQI jPqiYwXllNjlnhRW4LXTRPeeg1Wv4DhECN7iLWNG2Vxi/U0oJdS+VQuFG4SRAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUH1oAVIPdoO+lAIdx4L5SLZngo5MwHwYDVR0j BBgwFoAUD9BE1hNIyI3c/8Tzwzv7xFG8F6IwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YjU0OGJhZC03ZmVkLTQxZmQtYjQyZS03ODAzNzJjNDUyNTUvMC8wRkQwNDRENjEz NDhDODhERENGRkM0RjNDMzNCRkJDNDUxQkMxN0EyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEZEMDQ0RDYxMzQ4Qzg4RERDRkZDNEYzQzMzQkZCQzQ1MUJD MTdBMi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhiNTQ4YmFkLTdmZWQtNDFmZC1i NDJlLTc4MDM3MmM0NTI1NS8wLzMyMzQzMDM2M2EzOTMzMzAzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMzMzgzNTMwMzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBpMAMA0GCSqGSIb3 DQEBCwUAA4IBAQBHunGB+9KTv7Ii+zZ9gBmINQTVpdnG9bNQCAPHMo1uuzMOiDZL 5eU4kzsYIh6tghUUjweDSW2pPUfTKIv9aeMdSqBv4dTguLSQZFoQ/WQm+UR9NQqq NmHvuKCnTV5xd2u5Anw91ngKDwaYHnct94GyLfHIs9y68OikqL1waNNASZ/M8u8S hVfRY2uJtlbntC+gKti4cQT/vx6l7LAynH771ULiIvFzLSvKIR+Nz18Itcldtod0 RiOoI6/W+Vh/0aOtCBTLAmLZKO8iqIA/Y7W1eym3pfRsRYuNGFODnlwqOlnr5ayw 1zVG02DqDcdfcsUZ0q3zB4OAXvT6NfrLouQ1 -----END CERTIFICATE-----Generated at Sun Jun 8 23:13:45 2025 by rpki-client