$ rpki-client -vvf repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/323430363a626534303a626162653a3a2f34382d3438203d3e20313338383138.roa File: 323430363a626534303a626162653a3a2f34382d3438203d3e20313338383138.roa (raw, json) Hash identifier: uo+i0GPa6EP/s8c5Ny4WiphUzVRwvU6LzzbkX7/CEoU= Subject key identifier: 5A:7E:B0:20:42:54:6F:4D:F7:D4:52:61:2B:49:21:25:3A:38:0D:1E Certificate issuer: /CN=084550E9619FF5ABD20864D9A6383053B59BF91E Certificate serial: 5335E503A3E97739CB1C535B1B4E5CA75EB9C6EA Authority key identifier: 08:45:50:E9:61:9F:F5:AB:D2:08:64:D9:A6:38:30:53:B5:9B:F9:1E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/084550E9619FF5ABD20864D9A6383053B59BF91E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/323430363a626534303a626162653a3a2f34382d3438203d3e20313338383138.roa Signing time: Fri 16 May 2025 06:00:01 +0000 ROA not before: Fri 16 May 2025 05:55:01 +0000 ROA not after: Fri 15 May 2026 06:00:01 +0000 asID: 138818 IP address blocks: 2406:be40:babe::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/084550E9619FF5ABD20864D9A6383053B59BF91E.crl rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/084550E9619FF5ABD20864D9A6383053B59BF91E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/084550E9619FF5ABD20864D9A6383053B59BF91E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 11:14:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:35:e5:03:a3:e9:77:39:cb:1c:53:5b:1b:4e:5c:a7:5e:b9:c6:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=084550E9619FF5ABD20864D9A6383053B59BF91E Validity Not Before: May 16 05:55:01 2025 GMT Not After : May 15 06:00:01 2026 GMT Subject: CN=5A7EB02042546F4DF7D452612B4921253A380D1E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:72:30:f5:71:a4:1b:52:63:78:3f:ca:f3:10: 74:e6:5c:ba:d2:c1:61:ad:b0:7f:c1:f9:a2:e9:a9: 63:fa:9c:10:db:71:58:4c:c2:f2:c1:50:3e:c9:03: 42:1c:48:d2:2b:a4:8f:80:c7:c0:83:d5:99:74:57: d8:ba:c5:ba:b7:5b:d5:7e:f8:75:25:8c:81:fd:0d: 90:ea:33:30:54:f8:d1:08:09:1e:a9:e9:b8:4b:05: 31:5d:74:53:63:b9:81:cb:16:fc:62:23:aa:ad:73: 90:67:08:0a:61:76:12:94:2d:25:e7:67:c5:61:24: 45:a3:31:30:cf:24:83:0f:ed:33:7e:5a:fc:f8:f0: b6:c4:1c:38:26:7d:40:3a:33:b6:d2:2b:6c:22:f2: 29:14:66:bb:e2:0c:eb:a7:ff:7a:d8:bf:40:0a:52: dc:45:ca:3f:9d:71:92:a0:e0:2a:65:db:8e:cc:bf: 1b:33:02:ad:a4:e2:a9:f1:0f:78:1b:5b:4c:e1:f1: bf:1f:3d:03:af:c2:8e:f9:f0:d9:9b:25:7a:f9:16: f0:8f:12:ea:23:dc:33:b1:c4:a0:27:af:66:2a:45: bc:e8:cc:00:df:1a:32:29:b1:5d:bc:b9:1d:2a:fc: 19:fd:42:07:1e:ec:4f:21:d9:15:6c:70:4a:6d:cf: 85:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:7E:B0:20:42:54:6F:4D:F7:D4:52:61:2B:49:21:25:3A:38:0D:1E X509v3 Authority Key Identifier: keyid:08:45:50:E9:61:9F:F5:AB:D2:08:64:D9:A6:38:30:53:B5:9B:F9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/084550E9619FF5ABD20864D9A6383053B59BF91E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/084550E9619FF5ABD20864D9A6383053B59BF91E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/323430363a626534303a626162653a3a2f34382d3438203d3e20313338383138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:be40:babe::/48 Signature Algorithm: sha256WithRSAEncryption 7b:13:03:4a:d3:a3:c6:e9:84:f3:c7:00:cb:30:79:ba:37:6f: 75:76:63:4c:b9:a0:d0:5f:f2:73:5f:cc:9b:b0:28:4c:82:bd: 56:06:1a:fc:35:cf:21:c5:55:d4:a7:84:2b:7f:66:72:cf:81: f7:08:8b:c5:a2:11:3a:b7:3e:68:34:83:fe:fa:f2:7c:de:f4: 4b:ab:ea:26:dd:24:14:1f:fa:0b:c4:ac:f0:bd:8b:89:33:0a: 2f:e0:ff:7e:a4:0f:1e:11:ac:29:e3:be:38:cf:52:de:21:f5: 84:44:61:e8:82:07:12:41:99:b6:a0:ee:03:35:d9:44:08:16: ee:17:67:03:0e:a8:ad:7e:0e:e9:91:7c:26:ce:a6:b8:c3:ed: 4a:a8:3e:8b:35:a4:2d:38:29:3f:e7:5c:8e:8c:89:01:f8:88: 9d:7a:7e:de:af:8b:1c:b3:84:f4:4b:a4:f5:59:73:2e:11:79: e5:c3:3c:c2:cf:93:2e:41:c9:b6:6a:69:9a:74:cf:d7:d9:07: a2:66:8f:ad:bb:94:b7:4e:bb:95:fa:f3:cd:45:e1:47:f3:ac: c0:cd:06:53:30:82:ad:dd:1e:81:d5:3c:a4:47:e8:3d:9d:38: f2:ae:fa:47:d0:a3:c9:0a:c1:1d:3c:1a:39:74:97:11:24:72: 9a:80:c0:d0 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUUzXlA6PpdznLHFNbG05cp165xuowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg0NTUwRTk2MTlGRjVBQkQyMDg2NEQ5QTYzODMwNTNC NTlCRjkxRTAeFw0yNTA1MTYwNTU1MDFaFw0yNjA1MTUwNjAwMDFaMDMxMTAvBgNV BAMTKDVBN0VCMDIwNDI1NDZGNERGN0Q0NTI2MTJCNDkyMTI1M0EzODBEMUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbcjD1caQbUmN4P8rzEHTmXLrS wWGtsH/B+aLpqWP6nBDbcVhMwvLBUD7JA0IcSNIrpI+Ax8CD1Zl0V9i6xbq3W9V+ +HUljIH9DZDqMzBU+NEICR6p6bhLBTFddFNjuYHLFvxiI6qtc5BnCAphdhKULSXn Z8VhJEWjMTDPJIMP7TN+Wvz48LbEHDgmfUA6M7bSK2wi8ikUZrviDOun/3rYv0AK UtxFyj+dcZKg4Cpl247MvxszAq2k4qnxD3gbW0zh8b8fPQOvwo758NmbJXr5FvCP Euoj3DOxxKAnr2YqRbzozADfGjIpsV28uR0q/Bn9Qgce7E8h2RVscEptz4XZAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUWn6wIEJUb0331FJhK0khJTo4DR4wHwYDVR0j BBgwFoAUCEVQ6WGf9avSCGTZpjgwU7Wb+R4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MTE0MTdjMC0zN2JiLTQ0NmQtODdmMi1kODE4NDE3OGMxNDkvMC8wODQ1NTBFOTYx OUZGNUFCRDIwODY0RDlBNjM4MzA1M0I1OUJGOTFFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDg0NTUwRTk2MTlGRjVBQkQyMDg2NEQ5QTYzODMwNTNCNTlC RjkxRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkxMTQxN2MwLTM3YmItNDQ2ZC04 N2YyLWQ4MTg0MTc4YzE0OS8wLzMyMzQzMDM2M2E2MjY1MzQzMDNhNjI2MTYyNjUz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzODMxMzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk Br5Aur4wDQYJKoZIhvcNAQELBQADggEBAHsTA0rTo8bphPPHAMswebo3b3V2Y0y5 oNBf8nNfzJuwKEyCvVYGGvw1zyHFVdSnhCt/ZnLPgfcIi8WiETq3Pmg0g/768nze 9Eur6ibdJBQf+gvErPC9i4kzCi/g/36kDx4RrCnjvjjPUt4h9YREYeiCBxJBmbag 7gM12UQIFu4XZwMOqK1+DumRfCbOprjD7UqoPos1pC04KT/nXI6MiQH4iJ16ft6v ixyzhPRLpPVZcy4ReeXDPMLPky5BybZqaZp0z9fZB6Jmj627lLdOu5X6881F4Ufz rMDNBlMwgq3dHoHVPKRH6D2dOPKu+kfQo8kKwR08Gjl0lxEkcpqAwNA= -----END CERTIFICATE-----Generated at Sat Jun 7 05:35:48 2025 by rpki-client