$ rpki-client -vvf repo-rpki.idnic.net/repo/9dacc365-e194-4ac0-953a-4df3a5900b14/0/323430363a316230303a3a2f33322d3438203d3e203435333137.roa File: 323430363a316230303a3a2f33322d3438203d3e203435333137.roa (raw, json) Hash identifier: TjP7GmHfPb+wwoosrfBI6nsarX9S8cjrwBDpRp71p84= Subject key identifier: EB:91:8D:4B:C8:CB:FB:F7:04:C4:C6:88:8B:B8:E9:60:26:E9:DA:F2 Certificate issuer: /CN=20566897603B029812606C25ABC972BAC5BF4AFB Certificate serial: 2156137A4B2966366DA0406996D41BCF08F27816 Authority key identifier: 20:56:68:97:60:3B:02:98:12:60:6C:25:AB:C9:72:BA:C5:BF:4A:FB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20566897603B029812606C25ABC972BAC5BF4AFB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9dacc365-e194-4ac0-953a-4df3a5900b14/0/323430363a316230303a3a2f33322d3438203d3e203435333137.roa Signing time: Tue 27 May 2025 08:00:00 +0000 ROA not before: Tue 27 May 2025 07:55:00 +0000 ROA not after: Tue 26 May 2026 08:00:00 +0000 asID: 45317 IP address blocks: 2406:1b00::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9dacc365-e194-4ac0-953a-4df3a5900b14/0/20566897603B029812606C25ABC972BAC5BF4AFB.crl rsync://repo-rpki.idnic.net/repo/9dacc365-e194-4ac0-953a-4df3a5900b14/0/20566897603B029812606C25ABC972BAC5BF4AFB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20566897603B029812606C25ABC972BAC5BF4AFB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 14:11:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:56:13:7a:4b:29:66:36:6d:a0:40:69:96:d4:1b:cf:08:f2:78:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20566897603B029812606C25ABC972BAC5BF4AFB Validity Not Before: May 27 07:55:00 2025 GMT Not After : May 26 08:00:00 2026 GMT Subject: CN=EB918D4BC8CBFBF704C4C6888BB8E96026E9DAF2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:82:42:b0:34:bd:da:b6:19:49:06:a3:a2:e3: c7:f0:95:fb:02:88:77:05:af:44:4f:9b:a7:af:76: e9:39:2d:8d:dc:a3:09:25:06:0b:d5:ad:1c:36:37: 61:19:6d:f5:7b:ad:e7:03:86:70:02:61:c7:a2:20: cd:51:38:5f:54:91:69:26:dc:a5:e4:ce:c0:19:76: bf:f1:77:c4:fb:61:a2:b9:15:db:af:65:3d:0b:f4: f1:a8:ea:4c:90:a3:72:f1:dd:25:bc:f1:ec:33:b2: 87:4f:c9:09:53:e3:53:2d:6c:02:96:67:13:a0:20: 91:26:fc:55:4b:46:88:82:8e:d6:27:6d:09:ea:4a: 42:1a:17:ec:ab:38:c3:fc:5b:28:a4:e3:a4:1f:cf: 28:95:4a:f8:cb:51:b5:34:b8:ff:56:0c:9e:93:32: 66:6d:83:33:fe:fa:5f:4e:8f:66:64:b7:c2:00:6f: 7c:c1:e7:0d:53:4c:fe:e9:81:68:77:d7:0c:b1:3c: a8:16:f3:5d:2a:9f:5e:8c:b8:f6:7a:84:52:13:43: 00:9f:96:68:ef:a3:76:0e:4d:1c:23:84:57:c9:c4: b1:72:18:2b:05:0c:8a:61:8a:52:6c:36:9a:e9:eb: c4:9e:19:fa:20:bf:50:3d:95:93:f6:b9:8d:96:33: 6a:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:91:8D:4B:C8:CB:FB:F7:04:C4:C6:88:8B:B8:E9:60:26:E9:DA:F2 X509v3 Authority Key Identifier: keyid:20:56:68:97:60:3B:02:98:12:60:6C:25:AB:C9:72:BA:C5:BF:4A:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9dacc365-e194-4ac0-953a-4df3a5900b14/0/20566897603B029812606C25ABC972BAC5BF4AFB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20566897603B029812606C25ABC972BAC5BF4AFB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9dacc365-e194-4ac0-953a-4df3a5900b14/0/323430363a316230303a3a2f33322d3438203d3e203435333137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:1b00::/32 Signature Algorithm: sha256WithRSAEncryption 24:ab:fb:61:90:52:3f:3d:02:4a:bc:e4:c7:65:a0:81:c1:0c: 53:89:7d:04:8e:9e:36:55:e3:d1:e5:08:27:bf:c0:9f:1b:65: f3:38:09:15:2f:65:41:a4:c4:30:9b:1e:51:5c:0a:45:c6:0e: 23:0c:1a:24:de:ce:d7:de:a2:d3:91:1d:64:4b:18:00:7c:cd: 46:cc:aa:52:c6:c2:cc:20:53:c2:0f:59:e6:43:9b:24:3b:43: fc:cf:30:ea:1a:e3:b4:fc:a0:96:d1:ba:c4:3f:0d:a8:97:12: e4:61:85:58:a6:57:b1:5d:33:24:0e:a9:b7:3f:00:33:30:c5: 29:41:c9:d1:07:d8:32:2e:fa:f8:7c:87:62:57:23:30:45:32: b5:79:71:47:39:8d:b5:07:24:e5:3e:f0:28:6b:30:c2:dc:86: 4c:f7:46:cf:f4:be:75:6a:5c:5b:48:f4:12:f2:49:49:15:28: f2:34:f1:db:2f:76:6a:f2:ad:9b:48:2a:94:45:c4:6c:e5:17: 53:e0:3e:9e:2b:a7:18:b6:b9:95:30:fd:42:09:3d:14:0c:8d: c2:63:cb:de:3b:fd:6f:d2:60:f3:42:d7:05:57:f0:e7:07:8f: 37:ad:87:89:26:d3:21:19:4b:b1:fb:7c:d0:ca:ab:a1:3b:f8: 87:97:2e:e9 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUIVYTekspZjZtoEBpltQbzwjyeBYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA1NjY4OTc2MDNCMDI5ODEyNjA2QzI1QUJDOTcyQkFD NUJGNEFGQjAeFw0yNTA1MjcwNzU1MDBaFw0yNjA1MjYwODAwMDBaMDMxMTAvBgNV BAMTKEVCOTE4RDRCQzhDQkZCRjcwNEM0QzY4ODhCQjhFOTYwMjZFOURBRjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlgkKwNL3athlJBqOi48fwlfsC iHcFr0RPm6evduk5LY3cowklBgvVrRw2N2EZbfV7recDhnACYceiIM1ROF9UkWkm 3KXkzsAZdr/xd8T7YaK5FduvZT0L9PGo6kyQo3Lx3SW88ewzsodPyQlT41MtbAKW ZxOgIJEm/FVLRoiCjtYnbQnqSkIaF+yrOMP8Wyik46QfzyiVSvjLUbU0uP9WDJ6T MmZtgzP++l9Oj2Zkt8IAb3zB5w1TTP7pgWh31wyxPKgW810qn16MuPZ6hFITQwCf lmjvo3YOTRwjhFfJxLFyGCsFDIphilJsNprp68SeGfogv1A9lZP2uY2WM2rDAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQU65GNS8jL+/cExMaIi7jpYCbp2vIwHwYDVR0j BBgwFoAUIFZol2A7ApgSYGwlq8lyusW/SvswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZGFjYzM2NS1lMTk0LTRhYzAtOTUzYS00ZGYzYTU5MDBiMTQvMC8yMDU2Njg5NzYw M0IwMjk4MTI2MDZDMjVBQkM5NzJCQUM1QkY0QUZCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjA1NjY4OTc2MDNCMDI5ODEyNjA2QzI1QUJDOTcyQkFDNUJG NEFGQi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlkYWNjMzY1LWUxOTQtNGFjMC05 NTNhLTRkZjNhNTkwMGIxNC8wLzMyMzQzMDM2M2EzMTYyMzAzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDM0MzUzMzMxMzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBhsAMA0GCSqGSIb3 DQEBCwUAA4IBAQAkq/thkFI/PQJKvOTHZaCBwQxTiX0Ejp42VePR5Qgnv8CfG2Xz OAkVL2VBpMQwmx5RXApFxg4jDBok3s7X3qLTkR1kSxgAfM1GzKpSxsLMIFPCD1nm Q5skO0P8zzDqGuO0/KCW0brEPw2olxLkYYVYplexXTMkDqm3PwAzMMUpQcnRB9gy Lvr4fIdiVyMwRTK1eXFHOY21ByTlPvAoazDC3IZM90bP9L51alxbSPQS8klJFSjy NPHbL3Zq8q2bSCqURcRs5RdT4D6eK6cYtrmVMP1CCT0UDI3CY8veO/1v0mDzQtcF V/DnB483rYeJJtMhGUux+3zQyquhO/iHly7p -----END CERTIFICATE-----Generated at Fri Jun 6 17:03:29 2025 by rpki-client