$ rpki-client -vvf repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/323430323a666463303a633830303a3a2f34382d3438203d3e20313337333633.roa File: 323430323a666463303a633830303a3a2f34382d3438203d3e20313337333633.roa (raw, json) Hash identifier: Ih2ujo7pvABxXIdfIdlrZdpA6OwzPTPKOakfX3mx57k= Subject key identifier: CE:99:34:36:10:D9:22:80:D8:F1:6D:C7:B0:CA:34:09:19:D4:11:B8 Certificate issuer: /CN=B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3 Certificate serial: 694A16D0DDB1B20450093F74CC02722FD2DD4522 Authority key identifier: B6:EE:1F:61:D6:E8:E9:EE:C6:40:CC:C1:D7:91:DB:A1:24:99:3C:A3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/323430323a666463303a633830303a3a2f34382d3438203d3e20313337333633.roa Signing time: Thu 05 Jun 2025 10:00:02 +0000 ROA not before: Thu 05 Jun 2025 09:55:02 +0000 ROA not after: Thu 04 Jun 2026 10:00:02 +0000 asID: 137363 IP address blocks: 2402:fdc0:c800::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.crl rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 15:16:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:4a:16:d0:dd:b1:b2:04:50:09:3f:74:cc:02:72:2f:d2:dd:45:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3 Validity Not Before: Jun 5 09:55:02 2025 GMT Not After : Jun 4 10:00:02 2026 GMT Subject: CN=CE99343610D92280D8F16DC7B0CA340919D411B8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:5f:3c:68:12:c9:3d:03:6f:b5:fa:e0:e4:a6: 2c:13:68:7e:82:e1:f1:c0:08:d5:39:2f:a5:b0:67: 7b:b8:a4:f5:1d:3e:ac:10:68:da:08:d7:a0:f7:c6: cd:9b:f4:96:8d:c4:9d:9d:74:ef:68:0c:96:c6:3a: 99:9f:9f:2f:14:67:91:80:58:38:c4:d5:89:6b:10: 97:aa:c0:1e:16:fa:36:9d:6c:80:ea:a1:5c:e7:db: 23:95:80:b5:a1:31:59:30:f2:fe:d9:4a:96:c7:a2: 4d:5c:32:85:33:bd:b4:31:db:ba:e6:1e:76:aa:77: c4:8e:92:23:2f:b9:fd:08:ef:b8:3a:7e:e9:69:59: d8:c2:e7:cc:d6:8a:65:a5:50:62:29:ce:6f:b4:2e: 3a:a6:ed:c3:fc:13:53:d3:78:20:c0:ea:61:b2:d8: 75:3f:f3:c5:1a:6a:44:70:c8:08:2c:6e:dc:5c:57: e8:67:81:42:63:9d:98:15:bd:25:eb:2f:88:45:a2: 56:d3:19:50:3d:b5:1f:b4:7e:5e:72:e7:95:f2:f8: 0d:c4:d2:b9:f5:1d:86:f0:5b:d0:d5:08:7e:d5:f3: ac:f1:ae:4d:b4:5b:e2:12:74:f3:1a:e0:4f:d8:27: 2f:67:f5:d9:e7:f5:8a:7f:1d:33:fd:8d:03:91:8e: 2a:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:99:34:36:10:D9:22:80:D8:F1:6D:C7:B0:CA:34:09:19:D4:11:B8 X509v3 Authority Key Identifier: keyid:B6:EE:1F:61:D6:E8:E9:EE:C6:40:CC:C1:D7:91:DB:A1:24:99:3C:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/323430323a666463303a633830303a3a2f34382d3438203d3e20313337333633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:fdc0:c800::/48 Signature Algorithm: sha256WithRSAEncryption 6b:35:1e:73:02:31:7f:43:62:2f:f6:95:0f:bf:31:df:44:97: a9:4e:dc:ac:3b:ac:cf:76:c6:91:11:3c:bc:31:ac:06:13:74: 6f:3d:e7:e3:75:ab:54:79:c6:e2:30:dc:e9:c3:43:1e:91:64: f8:66:41:ed:f6:e9:94:55:69:80:0d:1f:74:11:6b:07:df:75: 63:e9:53:58:3d:29:88:48:76:c0:c0:55:73:93:c5:ee:ac:41: 39:fe:2c:29:79:a8:e7:25:c0:95:8e:48:a7:68:70:4b:c2:d9: 77:c3:eb:c5:30:f9:32:1c:c1:91:17:a1:f8:47:e5:3c:0f:24: aa:16:47:45:67:13:63:59:40:8e:db:0d:3e:c2:68:90:e7:28: 08:a6:ad:0a:71:18:2d:96:84:92:8b:bd:54:b3:10:1c:26:ed: 8d:21:63:da:24:ef:5f:8d:48:1d:0e:78:98:46:c4:2a:98:4a: 55:f7:ac:13:7e:81:53:0d:3f:08:4b:bd:f0:24:cc:56:d3:09: a1:97:d8:8b:6d:fd:11:ca:26:bc:bb:99:6e:35:ee:ea:8d:08: e5:76:26:89:29:0c:63:62:4c:54:61:fb:40:5e:09:35:dd:12: 26:0c:c9:cb:0f:5f:e5:ae:90:e4:ea:aa:6f:94:54:e7:69:29: 89:a2:54:6c -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUaUoW0N2xsgRQCT90zAJyL9LdRSIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZFRTFGNjFENkU4RTlFRUM2NDBDQ0MxRDc5MURCQTEy NDk5M0NBMzAeFw0yNTA2MDUwOTU1MDJaFw0yNjA2MDQxMDAwMDJaMDMxMTAvBgNV BAMTKENFOTkzNDM2MTBEOTIyODBEOEYxNkRDN0IwQ0EzNDA5MTlENDExQjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoXzxoEsk9A2+1+uDkpiwTaH6C 4fHACNU5L6WwZ3u4pPUdPqwQaNoI16D3xs2b9JaNxJ2ddO9oDJbGOpmfny8UZ5GA WDjE1YlrEJeqwB4W+jadbIDqoVzn2yOVgLWhMVkw8v7ZSpbHok1cMoUzvbQx27rm Hnaqd8SOkiMvuf0I77g6fulpWdjC58zWimWlUGIpzm+0Ljqm7cP8E1PTeCDA6mGy 2HU/88UaakRwyAgsbtxcV+hngUJjnZgVvSXrL4hFolbTGVA9tR+0fl5y55Xy+A3E 0rn1HYbwW9DVCH7V86zxrk20W+ISdPMa4E/YJy9n9dnn9Yp/HTP9jQORjirjAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUzpk0NhDZIoDY8W3HsMo0CRnUEbgwHwYDVR0j BBgwFoAUtu4fYdbo6e7GQMzB15HboSSZPKMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MTA4NWI0YS1mNTczLTQyZjMtODI1Yy0xY2YwYzg3MmIxNTIvMC9CNkVFMUY2MUQ2 RThFOUVFQzY0MENDQzFENzkxREJBMTI0OTkzQ0EzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZFRTFGNjFENkU4RTlFRUM2NDBDQ0MxRDc5MURCQTEyNDk5 M0NBMy5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxMDg1YjRhLWY1NzMtNDJmMy04 MjVjLTFjZjBjODcyYjE1Mi8wLzMyMzQzMDMyM2E2NjY0NjMzMDNhNjMzODMwMzAz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzczMzM2MzMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk Av3AyAAwDQYJKoZIhvcNAQELBQADggEBAGs1HnMCMX9DYi/2lQ+/Md9El6lO3Kw7 rM92xpERPLwxrAYTdG895+N1q1R5xuIw3OnDQx6RZPhmQe326ZRVaYANH3QRawff dWPpU1g9KYhIdsDAVXOTxe6sQTn+LCl5qOclwJWOSKdocEvC2XfD68Uw+TIcwZEX ofhH5TwPJKoWR0VnE2NZQI7bDT7CaJDnKAimrQpxGC2WhJKLvVSzEBwm7Y0hY9ok 71+NSB0OeJhGxCqYSlX3rBN+gVMNPwhLvfAkzFbTCaGX2Itt/RHKJry7mW417uqN COV2JokpDGNiTFRh+0BeCTXdEiYMycsPX+WukOTqqm+UVOdpKYmiVGw= -----END CERTIFICATE-----Generated at Thu Jun 5 18:34:16 2025 by rpki-client