$ rpki-client -vvf repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/323430343a326363303a323a3a2f34382d3438203d3e20313331373336.roa File: 323430343a326363303a323a3a2f34382d3438203d3e20313331373336.roa (raw, json) Hash identifier: zPirjw68goF9ylHxOtcUqyoIsGV38h/23WQgUJ1Ori8= Subject key identifier: 85:1E:52:5E:5B:52:C7:A9:2B:F3:E5:40:EC:A7:7D:C5:30:DE:DA:C8 Certificate issuer: /CN=DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A Certificate serial: 35E0EBB987A17A34FE14404E596A328FF4BC79ED Authority key identifier: DF:8E:F2:99:4C:B5:42:09:F2:C2:A3:9A:7B:CE:7D:A0:D9:C3:4E:4A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/323430343a326363303a323a3a2f34382d3438203d3e20313331373336.roa Signing time: Wed 04 Jun 2025 06:00:01 +0000 ROA not before: Wed 04 Jun 2025 05:55:01 +0000 ROA not after: Wed 03 Jun 2026 06:00:01 +0000 asID: 131736 IP address blocks: 2404:2cc0:2::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.crl rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 07:45:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:e0:eb:b9:87:a1:7a:34:fe:14:40:4e:59:6a:32:8f:f4:bc:79:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A Validity Not Before: Jun 4 05:55:01 2025 GMT Not After : Jun 3 06:00:01 2026 GMT Subject: CN=851E525E5B52C7A92BF3E540ECA77DC530DEDAC8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:cd:51:10:5d:03:5d:4d:4a:db:25:85:0e:24: f7:c6:4d:b2:68:33:ae:c3:b8:10:ba:e8:35:bf:fc: d1:19:31:cb:b1:7d:d3:9d:1b:0b:c7:d4:03:64:05: 07:c7:18:de:bb:c2:11:9f:d2:c9:31:d4:fc:63:16: 76:75:11:36:f7:52:20:f1:cf:98:fe:d3:68:d4:1b: 84:71:f1:f3:2e:67:73:f4:51:80:ac:e0:a2:ab:a6: d8:8c:d5:31:4d:63:0a:da:7b:89:a1:de:0d:36:e3: 4b:f7:bb:4f:74:38:cb:8a:4b:54:95:c3:70:1e:8a: d3:b7:ad:9f:24:80:0e:ca:9b:f7:fe:9a:68:b0:9b: 91:cc:79:13:a6:6b:c6:90:4b:b0:28:38:ef:db:df: 3c:8f:02:1e:a8:42:a7:27:d8:fe:94:4f:fb:35:76: c5:24:b6:23:d7:98:d4:b1:fe:3a:12:cb:b9:bd:b1: ac:61:de:a2:d7:47:0d:53:98:61:76:de:a4:51:91: f8:b9:2a:c7:3a:e7:73:99:48:a8:8b:44:5e:d5:b6: 2f:ff:31:da:e0:a5:04:75:76:8b:c8:e0:59:ad:2a: a3:96:15:22:d8:69:16:26:1e:e7:62:9b:37:72:81: 98:56:c1:b8:18:5d:05:c7:3a:70:a1:b0:5c:54:46: 88:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:1E:52:5E:5B:52:C7:A9:2B:F3:E5:40:EC:A7:7D:C5:30:DE:DA:C8 X509v3 Authority Key Identifier: keyid:DF:8E:F2:99:4C:B5:42:09:F2:C2:A3:9A:7B:CE:7D:A0:D9:C3:4E:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/323430343a326363303a323a3a2f34382d3438203d3e20313331373336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:2cc0:2::/48 Signature Algorithm: sha256WithRSAEncryption 0d:d8:2f:e3:45:99:22:3e:84:7b:38:3b:6f:76:7a:e1:03:97: 60:7d:99:75:5e:8d:9f:fb:8f:84:fb:e9:b7:a0:8b:02:73:01: 1e:16:d4:25:61:77:4b:09:5c:ee:51:1f:4a:fc:16:a0:48:90: 43:a0:96:4c:db:46:3a:07:60:3f:d4:64:70:30:29:5b:78:f0: ec:9d:19:d7:33:21:68:41:a2:a2:2f:00:a4:e1:02:77:8b:2b: a2:52:34:d4:b1:0c:33:b2:d4:39:3b:ce:f3:3d:e9:e6:c2:32: a5:9e:58:cc:e6:e3:10:a4:db:ee:7d:cf:c1:a9:d4:02:3f:6e: 79:5a:a2:75:16:14:fc:a6:96:6f:71:28:84:8e:83:80:3e:be: 32:17:4e:31:90:92:cb:ca:b4:93:f0:d2:4b:9e:d5:8b:3b:2b: 34:59:c1:d3:6d:44:99:26:72:bb:d3:70:d0:42:ca:05:0b:5d: 0a:37:9e:95:64:cd:2c:4a:ee:4d:32:43:68:23:de:a3:9e:99: 97:98:3f:9e:77:61:13:94:94:b6:af:9d:ef:d2:42:53:76:58: 03:c0:74:8c:97:de:44:56:9e:39:a4:8d:d7:e7:33:bb:e3:ef: 65:3c:80:14:1e:3c:3f:0d:19:7e:05:39:47:62:2c:6a:e1:e5: c1:47:e5:88 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUNeDruYehejT+FEBOWWoyj/S8ee0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREY4RUYyOTk0Q0I1NDIwOUYyQzJBMzlBN0JDRTdEQTBE OUMzNEU0QTAeFw0yNTA2MDQwNTU1MDFaFw0yNjA2MDMwNjAwMDFaMDMxMTAvBgNV BAMTKDg1MUU1MjVFNUI1MkM3QTkyQkYzRTU0MEVDQTc3REM1MzBERURBQzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8zVEQXQNdTUrbJYUOJPfGTbJo M67DuBC66DW//NEZMcuxfdOdGwvH1ANkBQfHGN67whGf0skx1PxjFnZ1ETb3UiDx z5j+02jUG4Rx8fMuZ3P0UYCs4KKrptiM1TFNYwrae4mh3g0240v3u090OMuKS1SV w3AeitO3rZ8kgA7Km/f+mmiwm5HMeROma8aQS7AoOO/b3zyPAh6oQqcn2P6UT/s1 dsUktiPXmNSx/joSy7m9saxh3qLXRw1TmGF23qRRkfi5Ksc653OZSKiLRF7Vti// MdrgpQR1dovI4FmtKqOWFSLYaRYmHudimzdygZhWwbgYXQXHOnChsFxURojBAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUhR5SXltSx6kr8+VA7Kd9xTDe2sgwHwYDVR0j BBgwFoAU347ymUy1QgnywqOae859oNnDTkowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MjVjZGEzNi02OTNhLTRjMWEtYmE5ZS1lMGUxNzgxMTIxNDAvMC9ERjhFRjI5OTRD QjU0MjA5RjJDMkEzOUE3QkNFN0RBMEQ5QzM0RTRBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREY4RUYyOTk0Q0I1NDIwOUYyQzJBMzlBN0JDRTdEQTBEOUMz NEU0QS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkyNWNkYTM2LTY5M2EtNGMxYS1i YTllLWUwZTE3ODExMjE0MC8wLzMyMzQzMDM0M2EzMjYzNjMzMDNhMzIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzEzNzMzMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBCzAAAIw DQYJKoZIhvcNAQELBQADggEBAA3YL+NFmSI+hHs4O292euEDl2B9mXVejZ/7j4T7 6begiwJzAR4W1CVhd0sJXO5RH0r8FqBIkEOglkzbRjoHYD/UZHAwKVt48OydGdcz IWhBoqIvAKThAneLK6JSNNSxDDOy1Dk7zvM96ebCMqWeWMzm4xCk2+59z8Gp1AI/ bnlaonUWFPymlm9xKISOg4A+vjIXTjGQksvKtJPw0kue1Ys7KzRZwdNtRJkmcrvT cNBCygULXQo3npVkzSxK7k0yQ2gj3qOemZeYP553YROUlLavne/SQlN2WAPAdIyX 3kRWnjmkjdfnM7vj72U8gBQePD8NGX4FOUdiLGrh5cFH5Yg= -----END CERTIFICATE-----Generated at Thu Jun 5 19:14:29 2025 by rpki-client