$ rpki-client -vvf repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/323430373a623463303a63633a3a2f34382d3438203d3e20313432333636.roa File: 323430373a623463303a63633a3a2f34382d3438203d3e20313432333636.roa (raw, json) Hash identifier: keDZ5dqo7QpwKbY9EEgBghaBvUKpvyvuxTWbyrg58Eo= Subject key identifier: 1E:A5:C9:51:C9:6A:C5:3A:72:AF:8E:0D:2B:C9:D9:EB:BF:67:79:C8 Certificate issuer: /CN=0110A7C2C5E7B74C89B036FFF78974619577D31C Certificate serial: 3876EBE11B7EC30155AC3B92AD466DC2616C682D Authority key identifier: 01:10:A7:C2:C5:E7:B7:4C:89:B0:36:FF:F7:89:74:61:95:77:D3:1C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0110A7C2C5E7B74C89B036FFF78974619577D31C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/323430373a623463303a63633a3a2f34382d3438203d3e20313432333636.roa Signing time: Wed 28 May 2025 12:00:01 +0000 ROA not before: Wed 28 May 2025 11:55:01 +0000 ROA not after: Wed 27 May 2026 12:00:01 +0000 asID: 142366 IP address blocks: 2407:b4c0:cc::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/0110A7C2C5E7B74C89B036FFF78974619577D31C.crl rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/0110A7C2C5E7B74C89B036FFF78974619577D31C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0110A7C2C5E7B74C89B036FFF78974619577D31C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 13:14:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:76:eb:e1:1b:7e:c3:01:55:ac:3b:92:ad:46:6d:c2:61:6c:68:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0110A7C2C5E7B74C89B036FFF78974619577D31C Validity Not Before: May 28 11:55:01 2025 GMT Not After : May 27 12:00:01 2026 GMT Subject: CN=1EA5C951C96AC53A72AF8E0D2BC9D9EBBF6779C8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ec:bb:65:bd:e5:3b:45:0c:54:cd:7a:f7:38: 19:6f:67:d7:6d:4b:e9:b8:2a:80:16:90:89:dc:0d: a9:61:30:07:c8:00:8a:d9:36:f9:33:b2:e3:7c:09: 0d:76:ab:c9:82:61:5a:cf:7b:da:8d:67:76:40:ac: 9a:13:28:df:6b:8c:96:da:2f:12:47:08:c2:ef:72: 2f:17:80:9f:87:c5:5e:29:b0:cf:86:b0:3c:17:b7: e8:cb:6e:5b:1a:5f:51:9f:ff:a9:70:9e:79:96:87: 06:cd:e4:a1:f1:68:12:1c:97:8d:72:4f:6a:be:6f: 5a:0f:95:04:a8:80:d9:2f:27:35:2c:b0:96:2f:ae: 9f:a5:c0:05:2f:4a:13:cc:9b:15:c6:d3:af:dd:e2: f4:a1:02:af:8c:aa:d1:59:8f:0c:50:b9:c6:5c:a7: f9:0e:2b:6f:d1:33:e1:4d:a4:ce:bd:36:10:db:cb: 16:97:cd:fb:06:11:88:4e:71:33:78:d7:25:b8:8b: d5:73:00:33:11:57:63:0d:63:32:9f:bd:14:26:9a: 10:9a:0f:96:a2:0c:ac:95:ea:8c:f9:b3:f1:9e:bf: 13:80:cc:57:1d:45:a2:74:5f:8f:75:c6:a4:d6:b0: 98:90:c5:c1:9b:43:60:bb:da:4b:9d:24:be:d9:46: 99:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:A5:C9:51:C9:6A:C5:3A:72:AF:8E:0D:2B:C9:D9:EB:BF:67:79:C8 X509v3 Authority Key Identifier: keyid:01:10:A7:C2:C5:E7:B7:4C:89:B0:36:FF:F7:89:74:61:95:77:D3:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/0110A7C2C5E7B74C89B036FFF78974619577D31C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0110A7C2C5E7B74C89B036FFF78974619577D31C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/323430373a623463303a63633a3a2f34382d3438203d3e20313432333636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:b4c0:cc::/48 Signature Algorithm: sha256WithRSAEncryption 91:ff:b4:2c:14:be:34:ef:95:b0:5e:c2:f3:07:08:c7:a1:fc: d0:36:08:55:82:e3:eb:79:f7:2e:df:5d:8c:16:0d:18:80:3b: b8:0f:d1:ec:a7:bd:03:1c:80:84:9f:a8:c4:ab:29:53:26:1c: 08:d3:b2:ac:0c:18:0e:92:97:a2:29:31:5b:4d:71:2d:15:40: 5b:e9:ae:1e:2d:d0:c9:8c:8e:a3:b1:91:9d:e0:85:5b:91:8c: 78:1b:69:1a:fd:a3:55:e5:7b:67:98:5d:52:d6:9e:a1:a9:2a: 1b:7c:70:97:4a:87:32:c1:c2:3b:3e:eb:11:89:69:67:69:ea: f0:9f:36:21:f6:c0:82:6a:0f:a9:05:bc:21:e4:5a:b2:13:fe: f6:a4:ab:da:5d:69:dd:38:87:60:41:b7:ff:41:d9:e5:67:86: 7a:ba:93:93:f4:01:ba:94:e3:59:f1:b7:32:72:96:8c:49:52: 76:4e:a2:69:87:d6:d5:5d:06:e7:e7:9c:4e:58:f4:b0:f2:91: c8:57:e9:86:05:c4:94:cd:c0:a8:ec:26:39:04:3d:20:42:86: 06:74:3f:0b:e0:cb:dd:f7:6c:6d:b5:55:d5:8e:ea:21:12:1f: 64:11:6b:63:47:9b:8b:a0:48:c6:ca:64:9b:36:11:b5:da:d9: 78:91:45:c0 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUOHbr4Rt+wwFVrDuSrUZtwmFsaC0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDExMEE3QzJDNUU3Qjc0Qzg5QjAzNkZGRjc4OTc0NjE5 NTc3RDMxQzAeFw0yNTA1MjgxMTU1MDFaFw0yNjA1MjcxMjAwMDFaMDMxMTAvBgNV BAMTKDFFQTVDOTUxQzk2QUM1M0E3MkFGOEUwRDJCQzlEOUVCQkY2Nzc5QzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC17LtlveU7RQxUzXr3OBlvZ9dt S+m4KoAWkIncDalhMAfIAIrZNvkzsuN8CQ12q8mCYVrPe9qNZ3ZArJoTKN9rjJba LxJHCMLvci8XgJ+HxV4psM+GsDwXt+jLblsaX1Gf/6lwnnmWhwbN5KHxaBIcl41y T2q+b1oPlQSogNkvJzUssJYvrp+lwAUvShPMmxXG06/d4vShAq+MqtFZjwxQucZc p/kOK2/RM+FNpM69NhDbyxaXzfsGEYhOcTN41yW4i9VzADMRV2MNYzKfvRQmmhCa D5aiDKyV6oz5s/GevxOAzFcdRaJ0X491xqTWsJiQxcGbQ2C72kudJL7ZRpmDAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUHqXJUclqxTpyr44NK8nZ679necgwHwYDVR0j BBgwFoAUARCnwsXnt0yJsDb/94l0YZV30xwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NzBkZmI1YS04NDVlLTRkZGYtYWNhNy1hOWIzMWMzMWRmZjQvMC8wMTEwQTdDMkM1 RTdCNzRDODlCMDM2RkZGNzg5NzQ2MTk1NzdEMzFDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDExMEE3QzJDNUU3Qjc0Qzg5QjAzNkZGRjc4OTc0NjE5NTc3 RDMxQy5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3MGRmYjVhLTg0NWUtNGRkZi1h Y2E3LWE5YjMxYzMxZGZmNC8wLzMyMzQzMDM3M2E2MjM0NjMzMDNhNjM2MzNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzQzMjMzMzYzNi5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQHtMAA zDANBgkqhkiG9w0BAQsFAAOCAQEAkf+0LBS+NO+VsF7C8wcIx6H80DYIVYLj63n3 Lt9djBYNGIA7uA/R7Ke9AxyAhJ+oxKspUyYcCNOyrAwYDpKXoikxW01xLRVAW+mu Hi3QyYyOo7GRneCFW5GMeBtpGv2jVeV7Z5hdUtaeoakqG3xwl0qHMsHCOz7rEYlp Z2nq8J82IfbAgmoPqQW8IeRashP+9qSr2l1p3TiHYEG3/0HZ5WeGerqTk/QBupTj WfG3MnKWjElSdk6iaYfW1V0G5+ecTlj0sPKRyFfphgXElM3AqOwmOQQ9IEKGBnQ/ C+DL3fdsbbVV1Y7qIRIfZBFrY0ebi6BIxspkmzYRtdrZeJFFwA== -----END CERTIFICATE-----Generated at Thu Jun 5 18:15:50 2025 by rpki-client