$ rpki-client -vvf repo-rpki.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/323430303a396338303a38383a3a2f34382d3438203d3e203538333936.roa File: 323430303a396338303a38383a3a2f34382d3438203d3e203538333936.roa (raw, json) Hash identifier: Hf/g9MH3nDMxR780tzYPjt6Bwd/5JaVDRMU33qx+O9w= Subject key identifier: 0C:89:1E:27:D8:9F:65:5C:6A:C8:1E:61:53:A8:A7:35:8C:CB:D9:6D Certificate issuer: /CN=019C4E26EEC252EA61FBB09FD856CDD057CEAD8C Certificate serial: 44155A82AC0B8D9BC004C29BEFFA9790869AECD4 Authority key identifier: 01:9C:4E:26:EE:C2:52:EA:61:FB:B0:9F:D8:56:CD:D0:57:CE:AD:8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/019C4E26EEC252EA61FBB09FD856CDD057CEAD8C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/323430303a396338303a38383a3a2f34382d3438203d3e203538333936.roa Signing time: Fri 23 May 2025 16:00:02 +0000 ROA not before: Fri 23 May 2025 15:55:02 +0000 ROA not after: Fri 22 May 2026 16:00:02 +0000 asID: 58396 IP address blocks: 2400:9c80:88::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/019C4E26EEC252EA61FBB09FD856CDD057CEAD8C.crl rsync://repo-rpki.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/019C4E26EEC252EA61FBB09FD856CDD057CEAD8C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/019C4E26EEC252EA61FBB09FD856CDD057CEAD8C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 16:10:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:15:5a:82:ac:0b:8d:9b:c0:04:c2:9b:ef:fa:97:90:86:9a:ec:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=019C4E26EEC252EA61FBB09FD856CDD057CEAD8C Validity Not Before: May 23 15:55:02 2025 GMT Not After : May 22 16:00:02 2026 GMT Subject: CN=0C891E27D89F655C6AC81E6153A8A7358CCBD96D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:fa:97:cb:4b:16:21:dc:d6:3f:d2:c1:18:7b: 65:74:f5:fb:8f:a8:59:37:46:f0:4e:03:0a:3c:7f: 13:21:5c:61:68:f2:2c:ae:9d:0f:57:04:06:d9:65: 24:35:2a:d5:d3:7c:d0:fc:e1:a4:37:ed:33:9f:51: 5c:33:c7:11:fd:44:05:ca:52:8c:77:6a:12:79:3c: eb:90:68:59:1d:0e:a1:d5:f8:80:a6:a7:3a:d6:d5: 2e:73:65:05:e1:2c:3b:5d:3d:90:f9:20:7e:d0:83: 7a:29:29:42:ae:8f:ca:a9:29:1a:91:94:2b:a6:f6: 6b:86:4c:38:4c:31:be:19:12:33:8b:5c:73:59:85: 3f:d4:56:c3:e0:a5:b5:01:ee:98:f0:c1:05:e6:24: a5:ed:1e:06:bc:38:9b:31:a4:85:04:83:04:54:77: e1:92:7a:80:d9:79:0b:1f:c3:be:3d:35:09:ed:fb: bd:5e:64:8a:78:69:26:76:72:6d:41:d3:fa:a9:74: bf:48:4f:b7:5b:92:7d:54:20:c8:27:fa:e8:d0:3d: e4:0f:ef:72:08:11:6a:17:43:60:8a:92:5c:df:47: 3d:ac:5c:4e:2f:d9:78:33:4d:32:31:00:56:31:7a: 0a:96:9f:e2:49:c4:57:12:94:90:df:15:78:a4:0f: 2b:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:89:1E:27:D8:9F:65:5C:6A:C8:1E:61:53:A8:A7:35:8C:CB:D9:6D X509v3 Authority Key Identifier: keyid:01:9C:4E:26:EE:C2:52:EA:61:FB:B0:9F:D8:56:CD:D0:57:CE:AD:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/019C4E26EEC252EA61FBB09FD856CDD057CEAD8C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/019C4E26EEC252EA61FBB09FD856CDD057CEAD8C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bd5c4715-282e-457f-b89e-041bf9110af8/0/323430303a396338303a38383a3a2f34382d3438203d3e203538333936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:9c80:88::/48 Signature Algorithm: sha256WithRSAEncryption 22:ef:12:df:28:34:75:57:02:22:ef:80:36:a4:4d:d0:69:09: 60:78:7d:9d:dc:84:4b:33:d6:3c:61:d9:17:d3:38:32:64:18: 34:8c:ac:7b:67:f2:d4:52:90:5a:2b:8d:df:d3:0d:10:41:9d: d7:40:37:d2:d7:6f:ba:80:87:cb:e1:13:19:0b:0f:58:43:a4: 2e:09:75:bc:74:1f:0d:21:a3:0d:f6:8e:65:ed:64:c8:7c:2a: d3:b5:2e:6a:ff:11:7b:9d:70:ad:ff:10:16:92:d0:1e:68:40: 4a:50:12:e9:aa:0c:e9:d3:44:5e:55:cc:6e:e5:db:33:fa:60: c6:54:9e:85:0e:e5:1a:b4:16:5f:d3:2d:91:09:8a:0a:ff:39: 3d:89:d9:f6:a6:89:46:6f:e9:e6:0e:57:c7:33:e7:98:17:43: 6d:83:a0:56:2b:37:04:ea:8a:f0:bd:e9:a0:f4:fe:b6:90:6d: 5e:61:6e:67:70:cf:3d:aa:35:f2:e3:41:9a:71:35:a7:02:c6: 57:17:a8:99:c8:61:d0:b0:7e:49:8b:0b:fe:4e:f6:01:8b:2b: 16:e8:1b:14:c4:6e:e4:5f:49:1e:b4:08:ed:69:17:85:d8:b1: b1:3e:cd:03:ff:53:10:22:99:eb:52:88:7b:70:a8:1a:d6:1b: e9:3c:cc:f6 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIURBVagqwLjZvABMKb7/qXkIaa7NQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDE5QzRFMjZFRUMyNTJFQTYxRkJCMDlGRDg1NkNERDA1 N0NFQUQ4QzAeFw0yNTA1MjMxNTU1MDJaFw0yNjA1MjIxNjAwMDJaMDMxMTAvBgNV BAMTKDBDODkxRTI3RDg5RjY1NUM2QUM4MUU2MTUzQThBNzM1OENDQkQ5NkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9+pfLSxYh3NY/0sEYe2V09fuP qFk3RvBOAwo8fxMhXGFo8iyunQ9XBAbZZSQ1KtXTfND84aQ37TOfUVwzxxH9RAXK Uox3ahJ5POuQaFkdDqHV+ICmpzrW1S5zZQXhLDtdPZD5IH7Qg3opKUKuj8qpKRqR lCum9muGTDhMMb4ZEjOLXHNZhT/UVsPgpbUB7pjwwQXmJKXtHga8OJsxpIUEgwRU d+GSeoDZeQsfw749NQnt+71eZIp4aSZ2cm1B0/qpdL9IT7dbkn1UIMgn+ujQPeQP 73IIEWoXQ2CKklzfRz2sXE4v2XgzTTIxAFYxegqWn+JJxFcSlJDfFXikDyt5AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUDIkeJ9ifZVxqyB5hU6inNYzL2W0wHwYDVR0j BBgwFoAUAZxOJu7CUuph+7Cf2FbN0FfOrYwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZDVjNDcxNS0yODJlLTQ1N2YtYjg5ZS0wNDFiZjkxMTBhZjgvMC8wMTlDNEUyNkVF QzI1MkVBNjFGQkIwOUZEODU2Q0REMDU3Q0VBRDhDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDE5QzRFMjZFRUMyNTJFQTYxRkJCMDlGRDg1NkNERDA1N0NF QUQ4Qy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JkNWM0NzE1LTI4MmUtNDU3Zi1i ODllLTA0MWJmOTExMGFmOC8wLzMyMzQzMDMwM2EzOTYzMzgzMDNhMzgzODNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzgzMzM5MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAJyAAIgw DQYJKoZIhvcNAQELBQADggEBACLvEt8oNHVXAiLvgDakTdBpCWB4fZ3chEsz1jxh 2RfTODJkGDSMrHtn8tRSkForjd/TDRBBnddAN9LXb7qAh8vhExkLD1hDpC4Jdbx0 Hw0how32jmXtZMh8KtO1Lmr/EXudcK3/EBaS0B5oQEpQEumqDOnTRF5VzG7l2zP6 YMZUnoUO5Rq0Fl/TLZEJigr/OT2J2famiUZv6eYOV8cz55gXQ22DoFYrNwTqivC9 6aD0/raQbV5hbmdwzz2qNfLjQZpxNacCxlcXqJnIYdCwfkmLC/5O9gGLKxboGxTE buRfSR60CO1pF4XYsbE+zQP/UxAimetSiHtwqBrWG+k8zPY= -----END CERTIFICATE-----Generated at Sat Jun 7 12:06:16 2025 by rpki-client