$ rpki-client -vvf repo-rpki.idnic.net/repo/b0d880d4-c33e-401e-b468-a5a6a8aaf3d7/0/323430343a616663303a3a2f33322d3438203d3e20313338383239.roa File: 323430343a616663303a3a2f33322d3438203d3e20313338383239.roa (raw, json) Hash identifier: ZX6Ox+wx5nbIu1GT16bLGXKsL0RQ4fgAjbd+X3UIku8= Subject key identifier: A6:22:0C:34:BC:DE:B6:F2:1C:71:45:EE:7F:BB:0C:70:4E:10:58:30 Certificate issuer: /CN=6DBEA32A7EE18535066521365EFB05C4148698C9 Certificate serial: 55C95821CE8F8D1FE98B654D3584133216EF7A29 Authority key identifier: 6D:BE:A3:2A:7E:E1:85:35:06:65:21:36:5E:FB:05:C4:14:86:98:C9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DBEA32A7EE18535066521365EFB05C4148698C9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b0d880d4-c33e-401e-b468-a5a6a8aaf3d7/0/323430343a616663303a3a2f33322d3438203d3e20313338383239.roa Signing time: Mon 02 Jun 2025 02:02:58 +0000 ROA not before: Mon 02 Jun 2025 01:57:58 +0000 ROA not after: Mon 01 Jun 2026 02:02:58 +0000 asID: 138829 IP address blocks: 2404:afc0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b0d880d4-c33e-401e-b468-a5a6a8aaf3d7/0/6DBEA32A7EE18535066521365EFB05C4148698C9.crl rsync://repo-rpki.idnic.net/repo/b0d880d4-c33e-401e-b468-a5a6a8aaf3d7/0/6DBEA32A7EE18535066521365EFB05C4148698C9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DBEA32A7EE18535066521365EFB05C4148698C9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 21:09:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:c9:58:21:ce:8f:8d:1f:e9:8b:65:4d:35:84:13:32:16:ef:7a:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6DBEA32A7EE18535066521365EFB05C4148698C9 Validity Not Before: Jun 2 01:57:58 2025 GMT Not After : Jun 1 02:02:58 2026 GMT Subject: CN=A6220C34BCDEB6F21C7145EE7FBB0C704E105830 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:ec:af:c1:c0:f7:05:ce:1d:ef:58:60:8a:e2: e5:ec:38:37:11:81:e3:ca:95:41:f6:88:90:3f:1a: d5:ca:a8:c2:a1:a7:7c:b3:f4:51:65:ae:5d:0a:4d: 6a:60:fb:54:7a:73:4e:ff:c9:5c:d8:0c:3f:34:73: 37:26:fe:d8:4a:e1:fa:ab:53:76:ea:bb:5f:72:40: 00:b9:92:1d:2e:a2:ee:b9:57:61:eb:6d:aa:83:be: 9c:9d:98:70:f1:9e:1e:78:b8:ae:fc:d3:b7:7b:04: 1e:5b:7f:9f:0f:66:72:d8:2e:65:fc:5b:d4:41:93: 96:25:f2:3b:55:ba:39:0b:f3:a2:cb:1c:04:95:74: 40:a4:ef:47:53:d3:c5:6e:8e:1a:8e:a5:72:d5:2e: 34:35:ef:30:f1:61:3a:28:01:94:b9:b5:36:d4:7f: 3a:3f:93:f8:80:34:38:ee:22:fa:cd:9b:4b:de:5e: 7c:e6:a8:44:f1:f1:f5:dc:3c:05:75:5d:57:62:5f: 81:8a:bc:0e:c5:b6:5f:67:cb:a6:79:32:0b:2d:d1: 17:cd:b6:d8:a7:9d:63:d4:9f:69:4e:d0:69:0d:a1: d4:46:40:94:d6:44:b7:f2:e6:6e:ea:1d:32:26:38: 5b:e5:96:84:79:33:0a:33:a4:7d:f4:47:ce:fd:f5: c8:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:22:0C:34:BC:DE:B6:F2:1C:71:45:EE:7F:BB:0C:70:4E:10:58:30 X509v3 Authority Key Identifier: keyid:6D:BE:A3:2A:7E:E1:85:35:06:65:21:36:5E:FB:05:C4:14:86:98:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b0d880d4-c33e-401e-b468-a5a6a8aaf3d7/0/6DBEA32A7EE18535066521365EFB05C4148698C9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DBEA32A7EE18535066521365EFB05C4148698C9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b0d880d4-c33e-401e-b468-a5a6a8aaf3d7/0/323430343a616663303a3a2f33322d3438203d3e20313338383239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:afc0::/32 Signature Algorithm: sha256WithRSAEncryption 29:b6:66:b1:0e:c6:4d:3a:df:87:ae:9f:b2:e6:01:d6:4a:a8: 7d:af:9b:43:72:a8:78:1f:13:1a:0e:db:84:89:e6:23:ea:32: 0a:a8:3f:d3:9e:cd:14:29:73:dd:e4:31:5c:22:0d:ce:48:83: c5:b6:fe:1c:bf:39:be:54:e6:a4:d9:39:a5:9c:f8:4a:e4:34: 8e:d5:ba:59:82:e9:68:69:31:63:f4:78:af:48:21:db:63:3e: 80:70:e9:68:36:d8:97:cb:0e:9d:c1:9f:43:f8:df:84:08:71: b4:49:f4:67:6a:61:25:bc:d6:36:d4:2b:a4:c1:22:34:94:a9: 60:87:a2:dd:0e:94:63:13:00:89:e2:a0:e1:cd:a2:9c:d5:84: a9:cf:e5:61:f2:9f:bb:01:2f:50:31:c3:db:09:9b:a8:a2:20: f0:23:9d:e7:8c:cb:a1:85:2f:2b:2c:8a:fa:88:79:a9:1e:13: cc:dd:6c:52:db:99:24:fb:2a:cc:24:8d:f4:c8:19:c0:33:f3: 42:a5:ff:78:12:87:52:6e:cd:18:05:63:67:fa:bc:11:32:09: b6:f6:ff:46:4c:ce:7e:96:c3:82:0c:5f:2d:e9:7e:81:8a:d6: b7:20:96:6a:46:43:ac:21:ac:3a:ae:41:67:cf:5a:bd:c3:c9: 84:7a:d3:85 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUVclYIc6PjR/pi2VNNYQTMhbveikwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkRCRUEzMkE3RUUxODUzNTA2NjUyMTM2NUVGQjA1QzQx NDg2OThDOTAeFw0yNTA2MDIwMTU3NThaFw0yNjA2MDEwMjAyNThaMDMxMTAvBgNV BAMTKEE2MjIwQzM0QkNERUI2RjIxQzcxNDVFRTdGQkIwQzcwNEUxMDU4MzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDW7K/BwPcFzh3vWGCK4uXsODcR gePKlUH2iJA/GtXKqMKhp3yz9FFlrl0KTWpg+1R6c07/yVzYDD80czcm/thK4fqr U3bqu19yQAC5kh0uou65V2HrbaqDvpydmHDxnh54uK7807d7BB5bf58PZnLYLmX8 W9RBk5Yl8jtVujkL86LLHASVdECk70dT08VujhqOpXLVLjQ17zDxYTooAZS5tTbU fzo/k/iANDjuIvrNm0veXnzmqETx8fXcPAV1XVdiX4GKvA7Ftl9ny6Z5Mgst0RfN ttinnWPUn2lO0GkNodRGQJTWRLfy5m7qHTImOFvlloR5MwozpH30R8799chvAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUpiIMNLzetvIccUXuf7sMcE4QWDAwHwYDVR0j BBgwFoAUbb6jKn7hhTUGZSE2XvsFxBSGmMkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MGQ4ODBkNC1jMzNlLTQwMWUtYjQ2OC1hNWE2YThhYWYzZDcvMC82REJFQTMyQTdF RTE4NTM1MDY2NTIxMzY1RUZCMDVDNDE0ODY5OEM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkRCRUEzMkE3RUUxODUzNTA2NjUyMTM2NUVGQjA1QzQxNDg2 OThDOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IwZDg4MGQ0LWMzM2UtNDAxZS1i NDY4LWE1YTZhOGFhZjNkNy8wLzMyMzQzMDM0M2E2MTY2NjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzODM4MzIzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQEr8AwDQYJKoZI hvcNAQELBQADggEBACm2ZrEOxk0634eun7LmAdZKqH2vm0NyqHgfExoO24SJ5iPq MgqoP9OezRQpc93kMVwiDc5Ig8W2/hy/Ob5U5qTZOaWc+ErkNI7VulmC6WhpMWP0 eK9IIdtjPoBw6Wg22JfLDp3Bn0P434QIcbRJ9GdqYSW81jbUK6TBIjSUqWCHot0O lGMTAInioOHNopzVhKnP5WHyn7sBL1Axw9sJm6iiIPAjneeMy6GFLyssivqIeake E8zdbFLbmST7KswkjfTIGcAz80Kl/3gSh1JuzRgFY2f6vBEyCbb2/0ZMzn6Ww4IM Xy3pfoGK1rcglmpGQ6whrDquQWfPWr3DyYR604U= -----END CERTIFICATE-----Generated at Thu Jun 5 18:19:52 2025 by rpki-client