$ rpki-client -vvf repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/323430323a666463303a313337333a3a2f34382d3438203d3e20313337333633.roa File: 323430323a666463303a313337333a3a2f34382d3438203d3e20313337333633.roa (raw, json) Hash identifier: Ar5/cOpa7lR7Klsqcv8KVTA9NybEjILpd76HZ5Wm55Q= Subject key identifier: 7D:F9:9F:4D:4A:97:FC:6A:E9:1A:C3:0B:E8:6E:F1:0A:72:88:A5:E7 Certificate issuer: /CN=B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3 Certificate serial: 3E61F005552445917042F8D189C15B2ABFD67B98 Authority key identifier: B6:EE:1F:61:D6:E8:E9:EE:C6:40:CC:C1:D7:91:DB:A1:24:99:3C:A3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/323430323a666463303a313337333a3a2f34382d3438203d3e20313337333633.roa Signing time: Thu 05 Jun 2025 10:00:01 +0000 ROA not before: Thu 05 Jun 2025 09:55:01 +0000 ROA not after: Thu 04 Jun 2026 10:00:01 +0000 asID: 137363 IP address blocks: 2402:fdc0:1373::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.crl rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 15:16:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:61:f0:05:55:24:45:91:70:42:f8:d1:89:c1:5b:2a:bf:d6:7b:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3 Validity Not Before: Jun 5 09:55:01 2025 GMT Not After : Jun 4 10:00:01 2026 GMT Subject: CN=7DF99F4D4A97FC6AE91AC30BE86EF10A7288A5E7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:7d:5d:48:1c:85:16:39:e2:8d:50:ad:d4:ff: bd:bd:b2:2b:71:be:9f:98:8d:de:94:30:70:8c:c1: d0:ec:a8:bf:a8:d7:ac:b2:1f:4b:bf:c0:e4:ea:ed: f6:d4:4d:d2:20:2e:60:fc:71:9f:f8:c4:6a:74:69: ce:62:8a:db:2c:a8:e1:e1:d2:39:6e:e9:3e:19:76: dc:2f:aa:53:c5:75:1b:eb:f7:ad:7a:4a:6b:b3:e6: 32:8e:21:42:4c:38:c2:bb:f6:8f:fd:7a:96:07:29: 1b:7d:36:73:69:d1:c9:ea:30:e3:7c:ea:e0:29:d7: 4e:ce:63:ba:2f:5f:0b:60:77:89:ca:0c:59:da:77: 8e:b5:82:a2:67:60:c4:d3:ff:d2:3c:25:65:46:d1: 9b:da:f7:58:73:c9:4a:e7:81:79:51:53:a4:eb:f0: aa:7a:69:6d:50:fa:d3:d5:44:24:0b:e0:75:31:17: e7:c0:79:44:e0:81:c5:21:78:e6:47:69:11:39:78: 2e:bd:c0:e5:15:10:46:69:0c:90:37:39:b8:0f:95: ab:ca:4b:13:64:9b:f4:9e:9d:52:c0:9e:69:35:a6: e3:35:5b:0b:46:42:62:c4:d5:b4:78:03:5a:75:f7: 6c:bc:88:02:d3:5f:18:87:46:03:dc:5f:59:f1:01: 4d:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:F9:9F:4D:4A:97:FC:6A:E9:1A:C3:0B:E8:6E:F1:0A:72:88:A5:E7 X509v3 Authority Key Identifier: keyid:B6:EE:1F:61:D6:E8:E9:EE:C6:40:CC:C1:D7:91:DB:A1:24:99:3C:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/323430323a666463303a313337333a3a2f34382d3438203d3e20313337333633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:fdc0:1373::/48 Signature Algorithm: sha256WithRSAEncryption 78:e1:6d:c9:7c:8f:ff:2a:4e:d8:32:4e:f6:81:44:27:6c:39: 0c:15:f9:80:11:6c:97:57:8b:17:2d:3e:2c:1a:63:4e:71:f7: a2:3d:ac:6c:b4:36:b8:f8:e9:99:5c:65:92:38:23:89:fb:07: 13:88:54:e1:7b:5c:c2:0d:ad:f0:1f:9d:07:93:53:49:0d:a0: 1e:74:a4:51:b2:24:c4:e1:cc:cd:3e:c6:1d:31:fc:0a:34:51: 9b:20:c2:fd:49:4f:9b:19:c5:cb:bf:63:7d:e0:84:97:e1:b6: 07:46:3a:f4:95:a1:2b:f0:81:ba:9c:96:88:6c:b8:3a:b5:b5: 79:7f:1c:f1:ff:b0:dd:0a:51:45:e9:e8:64:02:ae:f4:dc:53: 6d:c1:f3:9f:fd:e3:a2:1c:ee:24:fe:20:4c:7c:f5:1a:f4:ae: da:1b:b1:4e:be:1f:04:27:8a:4b:0c:b7:56:28:0c:fc:7a:97: 02:dd:cf:c8:a4:57:7a:8f:d1:3b:ed:6d:da:3b:6e:f8:8d:36: b9:66:0f:02:a7:76:56:0c:3b:33:e7:33:2f:62:79:0f:c3:cf: f4:83:59:b7:2a:38:25:de:43:31:7c:39:fe:7a:7d:63:db:1b: cd:12:c3:4c:29:08:12:3b:50:2c:4e:4c:38:c7:21:18:4e:e7: dc:7e:2d:60 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUPmHwBVUkRZFwQvjRicFbKr/We5gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZFRTFGNjFENkU4RTlFRUM2NDBDQ0MxRDc5MURCQTEy NDk5M0NBMzAeFw0yNTA2MDUwOTU1MDFaFw0yNjA2MDQxMDAwMDFaMDMxMTAvBgNV BAMTKDdERjk5RjRENEE5N0ZDNkFFOTFBQzMwQkU4NkVGMTBBNzI4OEE1RTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvfV1IHIUWOeKNUK3U/729sitx vp+Yjd6UMHCMwdDsqL+o16yyH0u/wOTq7fbUTdIgLmD8cZ/4xGp0ac5iitssqOHh 0jlu6T4ZdtwvqlPFdRvr9616Smuz5jKOIUJMOMK79o/9epYHKRt9NnNp0cnqMON8 6uAp107OY7ovXwtgd4nKDFnad461gqJnYMTT/9I8JWVG0Zva91hzyUrngXlRU6Tr 8Kp6aW1Q+tPVRCQL4HUxF+fAeUTggcUheOZHaRE5eC69wOUVEEZpDJA3ObgPlavK SxNkm/SenVLAnmk1puM1WwtGQmLE1bR4A1p192y8iALTXxiHRgPcX1nxAU0nAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUffmfTUqX/GrpGsML6G7xCnKIpecwHwYDVR0j BBgwFoAUtu4fYdbo6e7GQMzB15HboSSZPKMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MTA4NWI0YS1mNTczLTQyZjMtODI1Yy0xY2YwYzg3MmIxNTIvMC9CNkVFMUY2MUQ2 RThFOUVFQzY0MENDQzFENzkxREJBMTI0OTkzQ0EzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZFRTFGNjFENkU4RTlFRUM2NDBDQ0MxRDc5MURCQTEyNDk5 M0NBMy5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxMDg1YjRhLWY1NzMtNDJmMy04 MjVjLTFjZjBjODcyYjE1Mi8wLzMyMzQzMDMyM2E2NjY0NjMzMDNhMzEzMzM3MzMz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzczMzM2MzMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk Av3AE3MwDQYJKoZIhvcNAQELBQADggEBAHjhbcl8j/8qTtgyTvaBRCdsOQwV+YAR bJdXixctPiwaY05x96I9rGy0Nrj46ZlcZZI4I4n7BxOIVOF7XMINrfAfnQeTU0kN oB50pFGyJMThzM0+xh0x/Ao0UZsgwv1JT5sZxcu/Y33ghJfhtgdGOvSVoSvwgbqc lohsuDq1tXl/HPH/sN0KUUXp6GQCrvTcU23B85/946Ic7iT+IEx89Rr0rtobsU6+ HwQniksMt1YoDPx6lwLdz8ikV3qP0Tvtbdo7bviNNrlmDwKndlYMOzPnMy9ieQ/D z/SDWbcqOCXeQzF8Of56fWPbG80Sw0wpCBI7UCxOTDjHIRhO59x+LWA= -----END CERTIFICATE-----Generated at Thu Jun 5 18:26:40 2025 by rpki-client