$ rpki-client -vvf repo-rpki.idnic.net/repo/ad918b15-e63e-4b38-a05c-650fb49f0594/0/323430333a666338303a383030303a3a2f33332d3333203d3e203633353031.roa File: 323430333a666338303a383030303a3a2f33332d3333203d3e203633353031.roa (raw, json) Hash identifier: fju+gxaFPeIwaOTSNCqBv+8eqOAX1OUY7wjCt+CkzuA= Subject key identifier: 19:B4:6B:0D:BD:B9:62:D3:C0:E1:49:44:E2:5C:67:B6:41:1C:55:A3 Certificate issuer: /CN=455696A81F434F9A36D66F455F4B3C43855A18E1 Certificate serial: 0CD7A9C7C6611B2E117D7EA526BD711ABFFC8C95 Authority key identifier: 45:56:96:A8:1F:43:4F:9A:36:D6:6F:45:5F:4B:3C:43:85:5A:18:E1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/455696A81F434F9A36D66F455F4B3C43855A18E1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ad918b15-e63e-4b38-a05c-650fb49f0594/0/323430333a666338303a383030303a3a2f33332d3333203d3e203633353031.roa Signing time: Thu 05 Jun 2025 02:02:53 +0000 ROA not before: Thu 05 Jun 2025 01:57:53 +0000 ROA not after: Thu 04 Jun 2026 02:02:53 +0000 asID: 63501 IP address blocks: 2403:fc80:8000::/33 maxlen: 33 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ad918b15-e63e-4b38-a05c-650fb49f0594/0/455696A81F434F9A36D66F455F4B3C43855A18E1.crl rsync://repo-rpki.idnic.net/repo/ad918b15-e63e-4b38-a05c-650fb49f0594/0/455696A81F434F9A36D66F455F4B3C43855A18E1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/455696A81F434F9A36D66F455F4B3C43855A18E1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 10:41:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:d7:a9:c7:c6:61:1b:2e:11:7d:7e:a5:26:bd:71:1a:bf:fc:8c:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=455696A81F434F9A36D66F455F4B3C43855A18E1 Validity Not Before: Jun 5 01:57:53 2025 GMT Not After : Jun 4 02:02:53 2026 GMT Subject: CN=19B46B0DBDB962D3C0E14944E25C67B6411C55A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:8f:bc:ef:10:a1:23:ec:87:ff:94:98:28:e9: 0c:32:56:a6:84:68:32:80:76:94:d4:e3:f0:91:89: 94:25:41:e2:4f:b0:f3:d6:29:0e:0e:8e:fe:61:4b: 08:8a:cf:d9:6c:ad:01:7c:09:d4:f4:90:8e:6a:99: 8f:1b:4c:93:77:af:26:fd:76:20:58:05:d7:a3:23: 24:09:f4:94:96:88:22:9a:c6:93:0b:9a:1d:3d:ff: 61:33:4f:38:0a:3a:a3:48:a9:84:37:2a:a1:7f:37: b0:e7:4f:2c:95:64:b6:0b:3f:06:48:07:4d:a2:e5: b7:29:60:88:1e:93:57:1a:d7:d4:4a:20:c2:0f:c5: 9a:2b:fa:dc:53:02:07:00:f6:f1:6c:22:e7:df:3f: ae:7e:5e:55:33:bd:08:aa:35:6a:7a:9c:09:c0:78: 42:85:ad:f1:d9:72:3d:ed:62:15:d8:c0:84:38:e9: 99:c1:38:63:e6:ab:f8:89:f1:2b:fe:05:a1:eb:7e: e5:eb:70:b2:cf:40:b0:6a:61:0b:c5:4c:34:04:d5: 2f:2e:8f:d8:27:69:6b:37:b4:39:1d:b5:eb:99:91: d3:26:40:10:5e:5b:e1:40:df:22:6a:23:e6:7f:60: 3c:5c:f5:c4:51:26:0c:6f:4b:66:09:93:fe:21:d0: c9:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:B4:6B:0D:BD:B9:62:D3:C0:E1:49:44:E2:5C:67:B6:41:1C:55:A3 X509v3 Authority Key Identifier: keyid:45:56:96:A8:1F:43:4F:9A:36:D6:6F:45:5F:4B:3C:43:85:5A:18:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ad918b15-e63e-4b38-a05c-650fb49f0594/0/455696A81F434F9A36D66F455F4B3C43855A18E1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/455696A81F434F9A36D66F455F4B3C43855A18E1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ad918b15-e63e-4b38-a05c-650fb49f0594/0/323430333a666338303a383030303a3a2f33332d3333203d3e203633353031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:fc80:8000::/33 Signature Algorithm: sha256WithRSAEncryption 20:dd:40:55:2a:42:84:8e:36:25:13:98:c3:d4:0a:e2:44:8c: 6d:99:38:b6:a4:9b:37:b0:d3:8c:2f:a6:c2:42:03:26:a9:75: da:dd:61:05:66:1a:ae:63:a2:3f:2f:53:39:ac:99:f1:18:d9: 9a:a8:45:7b:ce:99:22:1a:6d:98:41:2a:74:97:1d:87:47:97: 31:dd:20:e3:26:fb:20:d7:85:d1:8d:0f:7c:59:ce:28:18:63: 50:d2:b1:8f:de:ba:d2:7c:e0:77:39:e5:8a:d3:06:e4:5b:a4: 01:06:47:9e:1a:cf:7b:ac:31:ef:e1:1a:f0:88:22:5a:48:84: ba:31:33:51:cb:e7:ad:2d:02:79:18:b8:c6:a0:57:3c:bc:f9: fd:9d:c7:b7:ad:1f:2f:46:ba:fe:40:42:64:da:09:84:23:b3: 94:7e:21:b8:cd:d8:f9:71:bf:a5:45:78:5a:ff:41:08:a2:d2: 00:b2:a5:c1:6c:33:a5:aa:7e:62:15:36:81:cb:d8:b4:27:3b: 67:56:c4:c6:fe:39:35:9a:9c:78:ec:65:48:3f:eb:38:bc:b8: 89:ba:84:d6:7e:0a:12:88:b7:45:30:3a:56:93:8b:06:15:95: 8f:1d:4c:f5:f5:b6:06:a7:59:11:2c:72:31:af:91:44:ac:42: a8:fa:aa:53 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUDNepx8ZhGy4RfX6lJr1xGr/8jJUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDU1Njk2QTgxRjQzNEY5QTM2RDY2RjQ1NUY0QjNDNDM4 NTVBMThFMTAeFw0yNTA2MDUwMTU3NTNaFw0yNjA2MDQwMjAyNTNaMDMxMTAvBgNV BAMTKDE5QjQ2QjBEQkRCOTYyRDNDMEUxNDk0NEUyNUM2N0I2NDExQzU1QTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3j7zvEKEj7If/lJgo6QwyVqaE aDKAdpTU4/CRiZQlQeJPsPPWKQ4Ojv5hSwiKz9lsrQF8CdT0kI5qmY8bTJN3ryb9 diBYBdejIyQJ9JSWiCKaxpMLmh09/2EzTzgKOqNIqYQ3KqF/N7DnTyyVZLYLPwZI B02i5bcpYIgek1ca19RKIMIPxZor+txTAgcA9vFsIuffP65+XlUzvQiqNWp6nAnA eEKFrfHZcj3tYhXYwIQ46ZnBOGPmq/iJ8Sv+BaHrfuXrcLLPQLBqYQvFTDQE1S8u j9gnaWs3tDkdteuZkdMmQBBeW+FA3yJqI+Z/YDxc9cRRJgxvS2YJk/4h0MkNAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUGbRrDb25YtPA4UlE4lxntkEcVaMwHwYDVR0j BBgwFoAURVaWqB9DT5o21m9FX0s8Q4VaGOEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZDkxOGIxNS1lNjNlLTRiMzgtYTA1Yy02NTBmYjQ5ZjA1OTQvMC80NTU2OTZBODFG NDM0RjlBMzZENjZGNDU1RjRCM0M0Mzg1NUExOEUxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDU1Njk2QTgxRjQzNEY5QTM2RDY2RjQ1NUY0QjNDNDM4NTVB MThFMS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FkOTE4YjE1LWU2M2UtNGIzOC1h MDVjLTY1MGZiNDlmMDU5NC8wLzMyMzQzMDMzM2E2NjYzMzgzMDNhMzgzMDMwMzAz YTNhMmYzMzMzMmQzMzMzMjAzZDNlMjAzNjMzMzUzMDMxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYHJAP8 gIAwDQYJKoZIhvcNAQELBQADggEBACDdQFUqQoSONiUTmMPUCuJEjG2ZOLakmzew 04wvpsJCAyapddrdYQVmGq5joj8vUzmsmfEY2ZqoRXvOmSIabZhBKnSXHYdHlzHd IOMm+yDXhdGND3xZzigYY1DSsY/eutJ84Hc55YrTBuRbpAEGR54az3usMe/hGvCI IlpIhLoxM1HL560tAnkYuMagVzy8+f2dx7etHy9Guv5AQmTaCYQjs5R+IbjN2Plx v6VFeFr/QQii0gCypcFsM6WqfmIVNoHL2LQnO2dWxMb+OTWanHjsZUg/6zi8uIm6 hNZ+ChKIt0UwOlaTiwYVlY8dTPX1tganWREscjGvkUSsQqj6qlM= -----END CERTIFICATE-----Generated at Sat Jun 7 11:47:54 2025 by rpki-client