$ rpki-client -vvf repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/323430323a613530303a3a2f33322d3332203d3e2034383231.roa File: 323430323a613530303a3a2f33322d3332203d3e2034383231.roa (raw, json) Hash identifier: moNwAWlPkj0rtokbSnZwVDheKPDbut9HTHNYooRQM7Q= Subject key identifier: 50:36:46:6F:93:46:B8:FC:EC:A9:16:38:58:1C:98:EC:21:86:9B:38 Certificate issuer: /CN=4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787 Certificate serial: 1CD0016F22A38DE398E06F894564296C6F1004AA Authority key identifier: 4B:F1:DC:C0:BC:C5:B1:A4:B6:BE:52:6A:75:FF:33:39:7F:C3:87:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/323430323a613530303a3a2f33322d3332203d3e2034383231.roa Signing time: Mon 02 Jun 2025 02:04:10 +0000 ROA not before: Mon 02 Jun 2025 01:59:10 +0000 ROA not after: Mon 01 Jun 2026 02:04:10 +0000 asID: 4821 IP address blocks: 2402:a500::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.crl rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 22:57:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:d0:01:6f:22:a3:8d:e3:98:e0:6f:89:45:64:29:6c:6f:10:04:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787 Validity Not Before: Jun 2 01:59:10 2025 GMT Not After : Jun 1 02:04:10 2026 GMT Subject: CN=5036466F9346B8FCECA91638581C98EC21869B38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:47:a9:d7:d5:6b:5d:38:d5:d1:e0:2d:10:f5: c9:2b:ad:ef:e3:de:76:95:ff:1f:ee:2b:f3:e8:18: 1a:41:5c:ef:06:c7:03:04:25:b1:9e:1d:e0:01:8f: 16:0f:f5:0d:d4:59:67:a8:54:94:11:a4:da:53:43: b0:4b:d4:6e:b4:3e:3b:eb:59:22:69:a6:b1:a3:66: 42:25:46:70:31:ef:3f:55:79:bd:ad:34:c0:1f:d2: e5:dd:5c:ea:86:25:b8:b7:33:6d:8c:ad:1d:83:75: e7:88:e8:60:6b:a4:e0:d4:dd:34:cc:e1:80:e8:29: b2:01:1b:2a:8b:b7:f9:24:2a:a2:c6:20:9b:b4:ef: 34:ec:dc:01:0a:b4:9e:0b:74:28:af:5b:58:ad:dc: fd:6f:a4:b5:e3:89:16:1e:06:37:92:fb:92:cf:e8: 2a:10:77:78:f5:13:47:0a:b2:0d:9c:ca:ed:e5:57: d8:32:e6:30:fd:72:75:6a:ef:83:41:ac:9a:85:68: 38:9d:f2:65:8b:4d:77:f8:60:00:ed:c0:de:9c:42: 64:42:1f:ac:72:9e:f3:55:7a:49:b8:75:64:94:65: 9c:62:ba:f7:e4:d8:59:b7:c2:c3:e2:6f:76:08:70: fd:44:b2:c7:93:ae:2c:32:3f:f0:cf:65:5b:e7:00: a3:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:36:46:6F:93:46:B8:FC:EC:A9:16:38:58:1C:98:EC:21:86:9B:38 X509v3 Authority Key Identifier: keyid:4B:F1:DC:C0:BC:C5:B1:A4:B6:BE:52:6A:75:FF:33:39:7F:C3:87:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/323430323a613530303a3a2f33322d3332203d3e2034383231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:a500::/32 Signature Algorithm: sha256WithRSAEncryption 7d:bc:b9:d7:87:d8:c5:28:dc:01:9b:59:52:dd:b6:ca:07:07: 76:04:c8:c8:c0:64:aa:98:ae:a1:ba:e3:aa:d0:ad:22:94:7c: 43:1e:eb:19:4a:f5:a7:3e:12:aa:25:cb:77:81:9e:8c:86:f6: 9a:ee:52:03:b8:36:b2:79:6d:e1:6b:5b:75:26:bc:3e:9f:06: c1:b9:dd:ab:72:02:5b:0b:85:25:d1:c1:e7:b8:ff:45:95:ca: 8b:38:bd:fc:3b:97:d9:be:93:4f:be:65:81:85:1a:db:93:c5: 60:26:ee:df:58:5c:ac:04:c2:38:fe:64:87:49:b5:5c:e9:2b: 06:12:b5:73:ff:1f:6b:37:e6:bc:ae:96:c2:d3:25:eb:d6:a2: 14:e4:a6:8c:d2:37:0a:67:a4:00:53:6a:2a:8a:84:60:36:28: 83:97:e8:32:be:ec:e2:e3:16:b2:9f:65:81:ae:ce:fc:b1:18: b3:be:00:02:13:be:59:1c:2d:5b:d5:e2:62:4b:93:78:6b:79: 24:a5:98:57:1c:5e:1f:8c:d7:d2:f8:3f:f4:0d:f1:5b:51:a3: 03:2d:7b:60:23:d8:80:44:3b:70:29:29:3e:3b:bb:ac:36:85: b4:66:91:9f:6d:c8:77:c7:84:1e:0e:ee:20:6a:33:fc:f5:06: b8:55:76:1a -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUHNABbyKjjeOY4G+JRWQpbG8QBKowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEJGMURDQzBCQ0M1QjFBNEI2QkU1MjZBNzVGRjMzMzk3 RkMzODc4NzAeFw0yNTA2MDIwMTU5MTBaFw0yNjA2MDEwMjA0MTBaMDMxMTAvBgNV BAMTKDUwMzY0NjZGOTM0NkI4RkNFQ0E5MTYzODU4MUM5OEVDMjE4NjlCMzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrR6nX1WtdONXR4C0Q9ckrre/j 3naV/x/uK/PoGBpBXO8GxwMEJbGeHeABjxYP9Q3UWWeoVJQRpNpTQ7BL1G60Pjvr WSJpprGjZkIlRnAx7z9Veb2tNMAf0uXdXOqGJbi3M22MrR2DdeeI6GBrpODU3TTM 4YDoKbIBGyqLt/kkKqLGIJu07zTs3AEKtJ4LdCivW1it3P1vpLXjiRYeBjeS+5LP 6CoQd3j1E0cKsg2cyu3lV9gy5jD9cnVq74NBrJqFaDid8mWLTXf4YADtwN6cQmRC H6xynvNVekm4dWSUZZxiuvfk2Fm3wsPib3YIcP1EsseTriwyP/DPZVvnAKNbAgMB AAGjggIuMIICKjAdBgNVHQ4EFgQUUDZGb5NGuPzsqRY4WByY7CGGmzgwHwYDVR0j BBgwFoAUS/HcwLzFsaS2vlJqdf8zOX/Dh4cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZDI1NDQxOS01M2JlLTRhZDQtYmY3Zi0yOWY4OTEyNTIzZDAvMC80QkYxRENDMEJD QzVCMUE0QjZCRTUyNkE3NUZGMzMzOTdGQzM4Nzg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEJGMURDQzBCQ0M1QjFBNEI2QkU1MjZBNzVGRjMzMzk3RkMz ODc4Ny5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOGQyNTQ0MTktNTNiZS00YWQ0LWJm N2YtMjlmODkxMjUyM2QwLzAvMzIzNDMwMzIzYTYxMzUzMDMwM2EzYTJmMzMzMjJk MzMzMjIwM2QzZTIwMzQzODMyMzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAqUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9vLnXh9jFKNwBm1lS3bbKBwd2BMjIwGSqmK6huuOq0K0ilHxDHusZ SvWnPhKqJct3gZ6Mhvaa7lIDuDayeW3ha1t1Jrw+nwbBud2rcgJbC4Ul0cHnuP9F lcqLOL38O5fZvpNPvmWBhRrbk8VgJu7fWFysBMI4/mSHSbVc6SsGErVz/x9rN+a8 rpbC0yXr1qIU5KaM0jcKZ6QAU2oqioRgNiiDl+gyvuzi4xayn2WBrs78sRizvgAC E75ZHC1b1eJiS5N4a3kkpZhXHF4fjNfS+D/0DfFbUaMDLXtgI9iARDtwKSk+O7us NoW0ZpGfbch3x4QeDu4gajP89Qa4VXYa -----END CERTIFICATE-----Generated at Sat Jun 7 04:29:59 2025 by rpki-client