$ rpki-client -vvf repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030383a3a2f34382d3438203d3e203338313536.roa File: 323430353a613534303a313030383a3a2f34382d3438203d3e203338313536.roa (raw, json) Hash identifier: POX2163QBlsvMZA7yZmQCMmyrzPUEJRThAzkDfYbpbA= Subject key identifier: 15:A0:57:52:F8:98:6D:1F:04:9D:97:0D:C9:A4:5E:26:67:45:EA:ED Certificate issuer: /CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Certificate serial: 7F8610F3D46B561EFA25DFB3E443D3AEE6C1C835 Authority key identifier: 5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030383a3a2f34382d3438203d3e203338313536.roa Signing time: Mon 02 Jun 2025 02:04:13 +0000 ROA not before: Mon 02 Jun 2025 01:59:13 +0000 ROA not after: Mon 01 Jun 2026 02:04:13 +0000 asID: 38156 IP address blocks: 2405:a540:1008::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 10:59:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:86:10:f3:d4:6b:56:1e:fa:25:df:b3:e4:43:d3:ae:e6:c1:c8:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4 Validity Not Before: Jun 2 01:59:13 2025 GMT Not After : Jun 1 02:04:13 2026 GMT Subject: CN=15A05752F8986D1F049D970DC9A45E266745EAED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:c1:f4:84:b2:94:9f:28:ca:9a:bc:fb:bd:e9: b1:eb:46:79:de:94:b9:7c:d9:74:ec:7e:02:98:bd: 92:e8:cc:2f:02:1f:7b:ba:46:89:03:c4:6c:c2:24: 26:b3:4f:d1:bb:a5:6c:00:74:07:7f:75:c7:00:72: 9f:bb:be:5a:c4:ab:62:d4:72:dd:11:ec:2b:c0:ad: a1:8c:0d:f0:a6:13:59:29:21:73:f9:01:bf:16:bc: 75:50:55:9a:7c:0d:c2:e0:6b:4c:6d:2d:cf:7d:5e: 7b:88:00:aa:5f:d0:af:4a:70:10:e2:18:7c:d3:d4: a8:2f:26:e7:10:2f:94:69:21:23:63:67:12:3d:e8: 0d:ac:d9:06:0e:01:a4:d2:fc:56:67:e7:45:33:81: 00:07:2c:af:4c:4f:4a:15:4e:14:dd:87:7b:08:cc: ba:75:06:ac:6a:a5:70:6d:4c:51:ef:16:dc:8c:1a: c0:d2:c3:af:d3:ab:8e:e3:b7:93:76:75:24:02:7c: de:7b:f9:73:dc:34:46:a9:37:c6:7d:8d:12:78:9e: 1a:3a:3c:ff:3e:1a:d2:f6:7c:be:af:e6:20:ac:50: d4:62:83:57:99:2b:92:bf:34:13:26:98:1e:4e:50: 77:94:8d:9d:7e:5b:04:94:a4:93:54:31:a0:a2:f3: c5:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:A0:57:52:F8:98:6D:1F:04:9D:97:0D:C9:A4:5E:26:67:45:EA:ED X509v3 Authority Key Identifier: keyid:5B:D0:FD:00:EB:8A:CC:F5:09:29:F6:B0:F5:6C:75:00:6A:4D:58:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD0FD00EB8ACCF50929F6B0F56C75006A4D58C4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c5d3d22a-338b-4302-93f4-c021ea6ad548/0/323430353a613534303a313030383a3a2f34382d3438203d3e203338313536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:a540:1008::/48 Signature Algorithm: sha256WithRSAEncryption 98:79:1b:9d:30:92:6c:d2:f7:ef:8d:69:5b:53:86:bd:f8:d5: 50:54:84:c7:c6:00:8e:1c:02:3e:d0:d5:7e:58:1d:18:da:ec: a9:01:18:f7:70:00:20:04:c9:a3:a2:5c:94:3a:32:30:cc:1a: 7f:f9:d5:5e:dd:70:9d:85:36:10:a9:db:41:30:ac:37:6f:1a: c3:99:42:11:9b:39:6e:29:9d:27:b9:de:7e:df:fc:86:2e:e9: 17:1b:9c:a0:bf:bb:f7:0a:53:6c:5b:b5:40:d1:76:9c:7e:2f: a0:d3:91:1d:19:df:6a:fb:ba:4e:9d:8b:98:31:67:3a:ef:94: 57:d6:d5:20:d7:7f:cd:cb:a5:f4:fc:83:75:2c:a8:8e:a2:74: 41:c8:0b:fe:1b:ae:87:4a:99:9f:be:03:0f:32:b9:47:a6:7a: 5f:b7:3a:4d:01:53:96:f4:a2:e3:d8:57:34:22:fc:c5:c2:0f: 22:b4:3e:fb:3e:07:cc:df:64:cc:23:50:c6:4e:5c:35:6d:27: 20:d3:37:9a:c5:8e:2c:49:f1:41:f9:5b:13:f6:a2:a3:a4:49: 7d:3b:0b:78:8c:40:fc:9f:35:9c:8c:3f:6f:9e:7f:a7:8d:87: 23:15:ee:c5:bd:5f:2e:91:1f:e5:07:84:f4:be:c9:24:a4:bc: 04:d1:18:2c -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUf4YQ89RrVh76Jd+z5EPTrubByDUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2 QTRENThDNDAeFw0yNTA2MDIwMTU5MTNaFw0yNjA2MDEwMjA0MTNaMDMxMTAvBgNV BAMTKDE1QTA1NzUyRjg5ODZEMUYwNDlEOTcwREM5QTQ1RTI2Njc0NUVBRUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1wfSEspSfKMqavPu96bHrRnne lLl82XTsfgKYvZLozC8CH3u6RokDxGzCJCazT9G7pWwAdAd/dccAcp+7vlrEq2LU ct0R7CvAraGMDfCmE1kpIXP5Ab8WvHVQVZp8DcLga0xtLc99XnuIAKpf0K9KcBDi GHzT1KgvJucQL5RpISNjZxI96A2s2QYOAaTS/FZn50UzgQAHLK9MT0oVThTdh3sI zLp1BqxqpXBtTFHvFtyMGsDSw6/Tq47jt5N2dSQCfN57+XPcNEapN8Z9jRJ4nho6 PP8+GtL2fL6v5iCsUNRig1eZK5K/NBMmmB5OUHeUjZ1+WwSUpJNUMaCi88XBAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUFaBXUviYbR8EnZcNyaReJmdF6u0wHwYDVR0j BBgwFoAUW9D9AOuKzPUJKfaw9Wx1AGpNWMQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NWQzZDIyYS0zMzhiLTQzMDItOTNmNC1jMDIxZWE2YWQ1NDgvMC81QkQwRkQwMEVC OEFDQ0Y1MDkyOUY2QjBGNTZDNzUwMDZBNEQ1OEM0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUJEMEZEMDBFQjhBQ0NGNTA5MjlGNkIwRjU2Qzc1MDA2QTRE NThDNC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1ZDNkMjJhLTMzOGItNDMwMi05 M2Y0LWMwMjFlYTZhZDU0OC8wLzMyMzQzMDM1M2E2MTM1MzQzMDNhMzEzMDMwMzgz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzEzNTM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAWl QBAIMA0GCSqGSIb3DQEBCwUAA4IBAQCYeRudMJJs0vfvjWlbU4a9+NVQVITHxgCO HAI+0NV+WB0Y2uypARj3cAAgBMmjolyUOjIwzBp/+dVe3XCdhTYQqdtBMKw3bxrD mUIRmzluKZ0nud5+3/yGLukXG5ygv7v3ClNsW7VA0Xacfi+g05EdGd9q+7pOnYuY MWc675RX1tUg13/Ny6X0/IN1LKiOonRByAv+G66HSpmfvgMPMrlHpnpftzpNAVOW 9KLj2Fc0IvzFwg8itD77PgfM32TMI1DGTlw1bScg0zeaxY4sSfFB+VsT9qKjpEl9 Owt4jED8nzWcjD9vnn+njYcjFe7FvV8ukR/lB4T0vskkpLwE0Rgs -----END CERTIFICATE-----Generated at Fri Jun 6 16:45:20 2025 by rpki-client