$ rpki-client -vvf repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/323430373a623463303a31323a3a2f34382d3438203d3e20313432333636.roa File: 323430373a623463303a31323a3a2f34382d3438203d3e20313432333636.roa (raw, json) Hash identifier: F5F4og+0ANkMp2eyG+y4uSqqLHGppY2rxvIFdOjz0YY= Subject key identifier: 5A:1E:8E:0C:61:B1:DA:76:E3:73:20:E1:DA:1F:AD:38:E4:D6:05:06 Certificate issuer: /CN=0110A7C2C5E7B74C89B036FFF78974619577D31C Certificate serial: 64BDD3FA4C9ED0AB378372D09157D858F1E7401C Authority key identifier: 01:10:A7:C2:C5:E7:B7:4C:89:B0:36:FF:F7:89:74:61:95:77:D3:1C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0110A7C2C5E7B74C89B036FFF78974619577D31C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/323430373a623463303a31323a3a2f34382d3438203d3e20313432333636.roa Signing time: Sat 17 May 2025 10:00:01 +0000 ROA not before: Sat 17 May 2025 09:55:01 +0000 ROA not after: Sat 16 May 2026 10:00:01 +0000 asID: 142366 IP address blocks: 2407:b4c0:12::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/0110A7C2C5E7B74C89B036FFF78974619577D31C.crl rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/0110A7C2C5E7B74C89B036FFF78974619577D31C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0110A7C2C5E7B74C89B036FFF78974619577D31C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 13:14:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:bd:d3:fa:4c:9e:d0:ab:37:83:72:d0:91:57:d8:58:f1:e7:40:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0110A7C2C5E7B74C89B036FFF78974619577D31C Validity Not Before: May 17 09:55:01 2025 GMT Not After : May 16 10:00:01 2026 GMT Subject: CN=5A1E8E0C61B1DA76E37320E1DA1FAD38E4D60506 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:b0:31:65:81:43:0f:1f:c9:92:03:30:65:6b: 3a:03:be:44:ec:53:4d:4d:d4:59:93:b8:cc:1e:cc: 23:4a:16:3d:4c:5d:ac:49:8c:40:06:3c:3b:6e:29: 96:5c:3c:36:c0:d2:81:00:83:65:f7:77:22:aa:f8: 6a:01:4d:28:81:11:6b:cf:21:32:49:eb:ea:72:ed: bf:5d:30:6a:55:bb:b5:ab:99:9d:27:5a:0e:4b:25: 4f:56:a5:f8:7f:18:87:fc:cf:1f:9b:cf:e5:63:7d: 17:c7:c0:68:67:7e:69:8e:f7:e6:cc:de:95:ee:55: 16:a6:20:aa:2b:89:22:82:17:e0:10:71:d7:73:19: 7a:95:b4:df:55:34:8a:6a:ef:14:de:a3:24:db:55: f9:cc:e5:34:cb:e3:f6:e5:6a:9b:0a:41:3d:e6:c1: 16:d6:84:0f:3d:9f:f4:c3:8b:99:01:fb:ea:ab:0b: d0:8c:d6:63:bc:c3:09:1f:e9:08:13:1c:ef:dc:fc: b2:b6:70:5b:16:16:f2:18:16:8e:6d:79:45:c8:bf: 55:f3:f0:77:de:77:52:fa:45:b1:fb:5c:47:df:50: 6f:e7:7a:e1:9b:50:6b:91:e9:6a:d0:9b:53:72:d0: 06:38:86:54:26:43:f5:83:53:9e:d2:a2:82:14:8a: 8f:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:1E:8E:0C:61:B1:DA:76:E3:73:20:E1:DA:1F:AD:38:E4:D6:05:06 X509v3 Authority Key Identifier: keyid:01:10:A7:C2:C5:E7:B7:4C:89:B0:36:FF:F7:89:74:61:95:77:D3:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/0110A7C2C5E7B74C89B036FFF78974619577D31C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0110A7C2C5E7B74C89B036FFF78974619577D31C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/323430373a623463303a31323a3a2f34382d3438203d3e20313432333636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:b4c0:12::/48 Signature Algorithm: sha256WithRSAEncryption ab:d9:82:f5:d8:bf:a5:f7:18:da:eb:41:db:ae:09:3f:da:be: 90:27:22:1d:cb:5f:b7:9f:f9:58:86:cb:7a:c3:eb:b4:c1:60: 7a:05:65:44:cd:be:5a:20:7b:df:5c:e2:8f:b7:95:44:88:27: e8:16:a9:4f:5e:ec:f3:ca:69:ab:f3:53:42:44:32:90:9c:f5: d8:77:26:c2:f5:aa:d1:7e:f3:e0:11:3d:0b:7c:32:29:b0:5b: 39:1b:b7:44:b9:9e:66:cd:15:bf:98:a4:99:03:83:47:22:bd: 4a:16:7b:05:34:8a:94:43:0b:37:92:5d:6c:9b:ec:07:29:68: 73:5e:46:52:91:02:06:bd:c6:6b:24:4d:86:9e:1f:97:d0:0f: af:3d:07:3c:15:e4:ce:f6:45:e1:cd:61:22:23:f2:0d:a0:4f: bc:2a:01:0b:29:d5:2f:15:96:87:e1:a6:ca:c9:18:00:66:3f: 8d:88:0e:97:51:b3:fd:a2:b7:c9:fd:ce:86:62:ff:a1:39:c8: 88:83:70:b1:b3:e8:8c:71:a8:fc:5c:1a:b7:9f:a9:77:f8:3e: 46:5b:6a:4d:ba:bf:6d:73:63:a9:3b:58:75:aa:7f:05:67:43: ff:1f:3c:33:2b:a8:4c:01:a9:47:53:f2:a5:45:ea:29:6c:45: ea:30:a4:d8 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUZL3T+kye0Ks3g3LQkVfYWPHnQBwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDExMEE3QzJDNUU3Qjc0Qzg5QjAzNkZGRjc4OTc0NjE5 NTc3RDMxQzAeFw0yNTA1MTcwOTU1MDFaFw0yNjA1MTYxMDAwMDFaMDMxMTAvBgNV BAMTKDVBMUU4RTBDNjFCMURBNzZFMzczMjBFMURBMUZBRDM4RTRENjA1MDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDusDFlgUMPH8mSAzBlazoDvkTs U01N1FmTuMwezCNKFj1MXaxJjEAGPDtuKZZcPDbA0oEAg2X3dyKq+GoBTSiBEWvP ITJJ6+py7b9dMGpVu7WrmZ0nWg5LJU9Wpfh/GIf8zx+bz+VjfRfHwGhnfmmO9+bM 3pXuVRamIKoriSKCF+AQcddzGXqVtN9VNIpq7xTeoyTbVfnM5TTL4/blapsKQT3m wRbWhA89n/TDi5kB++qrC9CM1mO8wwkf6QgTHO/c/LK2cFsWFvIYFo5teUXIv1Xz 8Hfed1L6RbH7XEffUG/neuGbUGuR6WrQm1Ny0AY4hlQmQ/WDU57SooIUio9dAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUWh6ODGGx2nbjcyDh2h+tOOTWBQYwHwYDVR0j BBgwFoAUARCnwsXnt0yJsDb/94l0YZV30xwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NzBkZmI1YS04NDVlLTRkZGYtYWNhNy1hOWIzMWMzMWRmZjQvMC8wMTEwQTdDMkM1 RTdCNzRDODlCMDM2RkZGNzg5NzQ2MTk1NzdEMzFDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDExMEE3QzJDNUU3Qjc0Qzg5QjAzNkZGRjc4OTc0NjE5NTc3 RDMxQy5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3MGRmYjVhLTg0NWUtNGRkZi1h Y2E3LWE5YjMxYzMxZGZmNC8wLzMyMzQzMDM3M2E2MjM0NjMzMDNhMzEzMjNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzQzMjMzMzYzNi5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQHtMAA EjANBgkqhkiG9w0BAQsFAAOCAQEAq9mC9di/pfcY2utB264JP9q+kCciHctft5/5 WIbLesPrtMFgegVlRM2+WiB731zij7eVRIgn6BapT17s88ppq/NTQkQykJz12Hcm wvWq0X7z4BE9C3wyKbBbORu3RLmeZs0Vv5ikmQODRyK9ShZ7BTSKlEMLN5JdbJvs Byloc15GUpECBr3GayRNhp4fl9APrz0HPBXkzvZF4c1hIiPyDaBPvCoBCynVLxWW h+GmyskYAGY/jYgOl1Gz/aK3yf3OhmL/oTnIiINwsbPojHGo/Fwat5+pd/g+Rltq Tbq/bXNjqTtYdap/BWdD/x88MyuoTAGpR1PypUXqKWxF6jCk2A== -----END CERTIFICATE-----Generated at Thu Jun 5 18:14:24 2025 by rpki-client