$ rpki-client -vvf repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030333a3a2f34382d3438203d3e203338313536.roa File: 323430353a613534303a313030333a3a2f34382d3438203d3e203338313536.roa (raw, json) Hash identifier: IXmQd0MCMak0xkNiWabzoq4oSB1t4BkIeQNR0butMAg= Subject key identifier: F8:A2:1B:06:DA:04:F5:32:85:A7:50:08:4A:B0:86:A0:53:A6:4D:EB Certificate issuer: /CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Certificate serial: 13F67AD7C77C9DDE586A2AEC5FF4758978AC343E Authority key identifier: 5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030333a3a2f34382d3438203d3e203338313536.roa Signing time: Mon 02 Jun 2025 02:04:13 +0000 ROA not before: Mon 02 Jun 2025 01:59:13 +0000 ROA not after: Mon 01 Jun 2026 02:04:13 +0000 asID: 38156 IP address blocks: 2405:a540:1003::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 10:59:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:f6:7a:d7:c7:7c:9d:de:58:6a:2a:ec:5f:f4:75:89:78:ac:34:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Validity Not Before: Jun 2 01:59:13 2025 GMT Not After : Jun 1 02:04:13 2026 GMT Subject: CN=F8A21B06DA04F53285A750084AB086A053A64DEB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:bb:ca:9d:02:d9:7e:d1:8c:bc:7b:21:92:52: 46:6b:d8:94:bd:12:4e:25:e7:5a:7a:05:5b:d5:32: 20:f9:95:79:dc:5e:b6:da:70:0b:78:ba:6f:a7:71: f4:e9:40:d4:0a:a5:ba:a3:c4:80:46:10:27:59:29: 19:5d:0b:0a:7d:0d:93:33:bd:72:05:03:7c:b9:e7: d2:bc:2a:09:0d:45:fd:f8:ff:53:d0:b4:aa:cf:e3: fa:82:27:4c:44:70:26:1e:6f:71:6d:45:a4:da:59: e5:13:29:49:dc:ad:82:06:d2:79:77:42:11:cd:9a: 16:47:1f:ee:03:c6:8b:5a:e4:62:10:c0:66:d1:9e: 7c:70:b2:34:b8:42:32:33:35:a7:30:f5:fd:75:d6: 2b:3e:5a:0b:b9:67:de:39:8c:28:69:61:39:b4:04: 67:ce:f5:7e:e8:0d:b4:c0:f9:b9:43:fc:e8:24:d6: 8b:16:ca:62:c2:81:35:19:cd:12:df:9a:81:4f:70: 27:2f:39:32:77:d3:8e:8b:ed:27:6a:76:f1:c0:18: 90:77:9e:82:b7:26:90:38:84:75:eb:1d:be:ce:49: 84:7f:dd:37:80:f8:e0:b4:85:7a:bb:30:46:e0:26: 8a:33:b6:62:62:01:ce:61:ae:bd:87:3b:d8:2e:c1: 79:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:A2:1B:06:DA:04:F5:32:85:A7:50:08:4A:B0:86:A0:53:A6:4D:EB X509v3 Authority Key Identifier: keyid:5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030333a3a2f34382d3438203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:a540:1003::/48 Signature Algorithm: sha256WithRSAEncryption 0d:d5:5e:41:b3:10:9c:df:b4:cc:10:5f:7e:c9:34:28:44:89: 56:b0:1f:03:bc:99:47:0f:2b:56:61:b6:57:98:5d:d3:bd:50: 0f:42:87:3f:02:4e:f4:bd:66:b2:95:48:31:85:83:c2:f3:5b: 6a:0a:f5:d1:79:72:23:74:83:22:31:71:3c:87:c0:89:cb:d5: bb:a4:ec:d6:1d:2c:5e:6c:86:3f:6e:1b:b3:5d:c9:40:f9:2b: 12:84:61:c2:9c:79:9f:22:e2:73:53:81:6a:02:dd:76:8c:4f: 4d:ed:fd:d5:49:c2:e9:b8:57:21:93:d1:9c:d2:04:76:f3:ab: 2a:38:75:4c:9a:75:75:06:14:42:ee:67:aa:37:87:09:5d:5c: b7:24:24:3d:0e:a7:b9:22:9d:63:6f:78:f4:68:12:2b:28:e3: f7:f0:8a:4b:c6:d9:57:d8:61:ed:8e:c0:a7:81:a5:4f:97:2a: e0:c5:e1:73:1d:60:54:03:12:86:df:41:b5:64:ea:a1:35:44: fa:ba:d0:8a:f1:94:27:8e:d9:ec:63:cd:c4:d9:30:4f:e5:32: 98:1b:f6:74:52:8f:80:6e:18:dd:fb:74:e8:cb:c3:9c:95:dd: 97:70:fb:90:bc:a5:84:92:54:91:73:8c:78:ce:d0:52:74:db: 0d:36:0d:aa -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUE/Z618d8nd5YairsX/R1iXisND4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2 QTRENThDNDAeFw0yNTA2MDIwMTU5MTNaFw0yNjA2MDEwMjA0MTNaMDMxMTAvBgNV BAMTKEY4QTIxQjA2REEwNEY1MzI4NUE3NTAwODRBQjA4NkEwNTNBNjRERUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9u8qdAtl+0Yy8eyGSUkZr2JS9 Ek4l51p6BVvVMiD5lXncXrbacAt4um+ncfTpQNQKpbqjxIBGECdZKRldCwp9DZMz vXIFA3y559K8KgkNRf34/1PQtKrP4/qCJ0xEcCYeb3FtRaTaWeUTKUncrYIG0nl3 QhHNmhZHH+4Dxota5GIQwGbRnnxwsjS4QjIzNacw9f111is+Wgu5Z945jChpYTm0 BGfO9X7oDbTA+blD/Ogk1osWymLCgTUZzRLfmoFPcCcvOTJ3046L7SdqdvHAGJB3 noK3JpA4hHXrHb7OSYR/3TeA+OC0hXq7MEbgJooztmJiAc5hrr2HO9guwXlXAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU+KIbBtoE9TKFp1AISrCGoFOmTeswHwYDVR0j BBgwFoAUW9D9AOuKzPUJKfaw9Wx1AGpNWMQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NWQzZDIyYS0zMzhiLTQzMDItOTNmNC1jMDIxZWE2YWQ1NDgvMC81QkQwRkQwMEVC OEFDQ0Y1MDkyOUY2QjBGNTZDNzUwMDZBNEQ1OEM0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2QTRE NThDNC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1ZDNkMjJhLTMzOGItNDMwMi05 M2Y0LWMwMjFlYTZhZDU0OC8wLzMyMzQzMDM1M2E2MTM1MzQzMDNhMzEzMDMwMzMz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzEzNTM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAWl QBADMA0GCSqGSIb3DQEBCwUAA4IBAQAN1V5BsxCc37TMEF9+yTQoRIlWsB8DvJlH DytWYbZXmF3TvVAPQoc/Ak70vWaylUgxhYPC81tqCvXReXIjdIMiMXE8h8CJy9W7 pOzWHSxebIY/bhuzXclA+SsShGHCnHmfIuJzU4FqAt12jE9N7f3VScLpuFchk9Gc 0gR286sqOHVMmnV1BhRC7meqN4cJXVy3JCQ9Dqe5Ip1jb3j0aBIrKOP38IpLxtlX 2GHtjsCngaVPlyrgxeFzHWBUAxKG30G1ZOqhNUT6utCK8ZQnjtnsY83E2TBP5TKY G/Z0Uo+Abhjd+3Toy8Ocld2XcPuQvKWEklSRc4x4ztBSdNsNNg2q -----END CERTIFICATE-----Generated at Fri Jun 6 16:43:29 2025 by rpki-client