$ rpki-client -vvf repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030313a3a2f34382d3438203d3e203338313536.roa File: 323430353a613534303a313030313a3a2f34382d3438203d3e203338313536.roa (raw, json) Hash identifier: 6OPQcqqoDFu04WFG0tl/52GBkSLHi5KILZE8ppoIeI0= Subject key identifier: 4B:57:7A:C5:54:86:9D:08:8D:AA:71:C1:55:E3:A3:BA:E0:B3:A6:70 Certificate issuer: /CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Certificate serial: 2B0302967AF2DC5A274BF0E6C67A81D4195E6A11 Authority key identifier: 5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030313a3a2f34382d3438203d3e203338313536.roa Signing time: Mon 02 Jun 2025 02:04:13 +0000 ROA not before: Mon 02 Jun 2025 01:59:13 +0000 ROA not after: Mon 01 Jun 2026 02:04:13 +0000 asID: 38156 IP address blocks: 2405:a540:1001::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 09:13:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:03:02:96:7a:f2:dc:5a:27:4b:f0:e6:c6:7a:81:d4:19:5e:6a:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Validity Not Before: Jun 2 01:59:13 2025 GMT Not After : Jun 1 02:04:13 2026 GMT Subject: CN=4B577AC554869D088DAA71C155E3A3BAE0B3A670 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:41:dc:1f:65:6e:61:8a:e9:c2:f6:c4:54:45: 40:8a:e7:a9:0d:73:36:91:e7:2e:7b:89:03:a4:04: ea:73:9c:51:77:80:2d:2b:8f:ba:ea:23:0c:e4:a4: d7:26:65:17:d9:2a:c8:69:ad:1d:a5:35:c7:32:89: 57:e6:1a:2d:bf:22:a5:30:54:b8:14:22:a5:5b:d7: 39:c0:3a:24:cd:bd:11:15:c6:13:b4:c2:08:77:19: 0d:3f:c0:20:b8:3e:c0:9e:f8:1e:ac:a5:ff:3e:af: ff:04:53:d4:f0:5b:e2:7f:5f:4c:3d:bb:52:bf:f2: 2e:22:87:c4:17:38:70:7a:ba:87:7d:f9:73:fb:10: 15:8b:6f:7b:65:b5:0e:39:45:08:78:75:c5:c9:7c: 2d:ac:34:b9:9f:8b:79:34:1a:f3:7c:0f:26:55:c9: fc:e7:f7:0b:1e:7e:17:f1:e9:ae:25:ec:20:64:2e: 9e:4c:45:ea:dc:83:d1:18:e6:f6:24:67:b2:e8:7f: c3:6d:98:15:ec:c7:cf:99:f1:6b:f7:c8:52:a7:4c: ed:c4:d2:5e:b9:fe:8a:46:c6:b1:0b:89:71:07:88: 3b:ff:97:59:e7:ae:77:76:58:0c:b4:f5:0c:db:f0: c0:d5:31:d4:ce:0d:f0:a9:ce:c2:47:1f:c9:34:3d: 22:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:57:7A:C5:54:86:9D:08:8D:AA:71:C1:55:E3:A3:BA:E0:B3:A6:70 X509v3 Authority Key Identifier: keyid:5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030313a3a2f34382d3438203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:a540:1001::/48 Signature Algorithm: sha256WithRSAEncryption 71:7a:71:a2:63:8f:2b:1f:2c:0b:13:f7:c9:47:f7:9d:40:e1: f8:a0:67:d8:11:79:0e:ed:5c:e7:dc:8d:51:eb:a1:67:1a:13: d8:d7:c3:77:64:b6:c6:5e:d5:5f:a6:1b:c4:a2:d5:d4:f2:5e: 1d:8a:60:7a:d8:cc:5b:d7:bf:63:07:97:c0:ed:5c:d0:4d:e2: ec:8d:82:b7:37:95:71:50:c9:0a:03:30:f4:2a:5c:78:8b:9d: c6:53:26:34:57:9d:f9:85:64:a3:be:26:f6:a3:ce:d2:57:8b: 58:fd:7b:91:9d:b8:1f:ba:5c:bb:38:5c:05:76:c1:3e:5a:a9: f4:d0:bf:7e:16:e9:b3:85:4e:b5:bf:59:f5:e7:5b:a8:7c:5f: 0e:a2:91:fd:09:67:7a:7b:d7:cb:5a:fd:8a:7c:30:aa:e8:b8: d5:0a:c2:c4:21:a8:57:1c:7b:93:63:1f:69:68:33:36:1b:a9: 10:be:3c:8e:ef:9c:75:97:89:e7:bb:d2:5f:45:92:4e:be:7d: 31:1b:9f:53:b4:2d:94:85:a9:99:72:3e:d7:c5:16:1e:9d:35: 36:42:13:35:6a:12:b9:06:49:6b:58:2f:79:05:62:d0:4b:67: c8:b2:57:d7:8f:ce:34:98:38:60:7a:0f:6a:f0:4a:10:fa:99: f0:f8:59:07 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUKwMClnry3FonS/DmxnqB1BleahEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2 QTRENThDNDAeFw0yNTA2MDIwMTU5MTNaFw0yNjA2MDEwMjA0MTNaMDMxMTAvBgNV BAMTKDRCNTc3QUM1NTQ4NjlEMDg4REFBNzFDMTU1RTNBM0JBRTBCM0E2NzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrQdwfZW5hiunC9sRURUCK56kN czaR5y57iQOkBOpznFF3gC0rj7rqIwzkpNcmZRfZKshprR2lNccyiVfmGi2/IqUw VLgUIqVb1znAOiTNvREVxhO0wgh3GQ0/wCC4PsCe+B6spf8+r/8EU9TwW+J/X0w9 u1K/8i4ih8QXOHB6uod9+XP7EBWLb3tltQ45RQh4dcXJfC2sNLmfi3k0GvN8DyZV yfzn9wsefhfx6a4l7CBkLp5MRercg9EY5vYkZ7Lof8NtmBXsx8+Z8Wv3yFKnTO3E 0l65/opGxrELiXEHiDv/l1nnrnd2WAy09Qzb8MDVMdTODfCpzsJHH8k0PSIXAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUS1d6xVSGnQiNqnHBVeOjuuCzpnAwHwYDVR0j BBgwFoAUW9D9AOuKzPUJKfaw9Wx1AGpNWMQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NWQzZDIyYS0zMzhiLTQzMDItOTNmNC1jMDIxZWE2YWQ1NDgvMC81QkQwRkQwMEVC OEFDQ0Y1MDkyOUY2QjBGNTZDNzUwMDZBNEQ1OEM0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2QTRE NThDNC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1ZDNkMjJhLTMzOGItNDMwMi05 M2Y0LWMwMjFlYTZhZDU0OC8wLzMyMzQzMDM1M2E2MTM1MzQzMDNhMzEzMDMwMzEz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzEzNTM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAWl QBABMA0GCSqGSIb3DQEBCwUAA4IBAQBxenGiY48rHywLE/fJR/edQOH4oGfYEXkO 7Vzn3I1R66FnGhPY18N3ZLbGXtVfphvEotXU8l4dimB62Mxb179jB5fA7VzQTeLs jYK3N5VxUMkKAzD0Klx4i53GUyY0V535hWSjvib2o87SV4tY/XuRnbgfuly7OFwF dsE+Wqn00L9+FumzhU61v1n151uofF8OopH9CWd6e9fLWv2KfDCq6LjVCsLEIahX HHuTYx9paDM2G6kQvjyO75x1l4nnu9JfRZJOvn0xG59TtC2UhamZcj7XxRYenTU2 QhM1ahK5BklrWC95BWLQS2fIslfXj840mDhgeg9q8EoQ+pnw+FkH -----END CERTIFICATE-----Generated at Thu Jun 5 18:42:40 2025 by rpki-client