$ rpki-client -vvf repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/323430323a666463303a633830313a3a2f34382d3438203d3e20313337333633.roa File: 323430323a666463303a633830313a3a2f34382d3438203d3e20313337333633.roa (raw, json) Hash identifier: VONMn5fIO30lRT5TNxNJEclAWC+FxhI3fBqb3mzNwEc= Subject key identifier: 5A:1D:85:EE:6F:66:01:8D:51:92:F6:E1:C9:27:9F:45:7A:DA:23:2C Certificate issuer: /CN=B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3 Certificate serial: 2BBF73D762419579AA909FE1FD139CF5219CA135 Authority key identifier: B6:EE:1F:61:D6:E8:E9:EE:C6:40:CC:C1:D7:91:DB:A1:24:99:3C:A3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/323430323a666463303a633830313a3a2f34382d3438203d3e20313337333633.roa Signing time: Thu 05 Jun 2025 10:00:01 +0000 ROA not before: Thu 05 Jun 2025 09:55:01 +0000 ROA not after: Thu 04 Jun 2026 10:00:01 +0000 asID: 137363 IP address blocks: 2402:fdc0:c801::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.crl rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 15:16:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:bf:73:d7:62:41:95:79:aa:90:9f:e1:fd:13:9c:f5:21:9c:a1:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3 Validity Not Before: Jun 5 09:55:01 2025 GMT Not After : Jun 4 10:00:01 2026 GMT Subject: CN=5A1D85EE6F66018D5192F6E1C9279F457ADA232C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:2c:d3:5a:61:9e:64:72:8b:c7:ac:c0:d8:ae: 11:43:e2:f1:93:99:a1:7f:1c:79:31:9a:35:7f:52: d8:88:f9:3b:6d:95:47:e5:03:2c:50:6e:77:3f:7a: 90:0e:54:0f:3e:61:9a:19:65:98:38:c4:38:e6:28: 22:ca:56:68:24:3a:22:fb:87:0f:4e:19:6b:b7:ef: 4f:15:bd:12:91:d3:50:87:e9:dc:be:d4:9d:41:99: d7:87:1d:e6:90:a5:3d:48:2f:45:59:8b:3c:4e:c0: 48:6e:db:44:11:06:c3:6a:09:57:d5:20:98:cb:d9: a8:d1:d9:b8:62:bf:37:64:3f:9f:69:40:d0:d8:7f: c9:68:f0:54:c7:97:ad:4f:9b:d5:2b:f2:24:e8:61: cb:a8:5e:25:d2:0f:a7:a0:29:9a:40:0e:b2:7d:ac: 9c:ef:84:e8:ce:0b:db:c9:38:14:fd:f5:fb:51:50: 03:5e:7b:aa:e2:94:6c:f6:aa:3f:04:2e:90:2b:22: 28:61:ad:a8:d8:8a:a0:dd:cf:8b:48:f0:6c:b0:91: 26:5c:c4:ec:ef:25:f3:d0:7e:6d:f5:6a:e0:bb:08: f7:91:36:4b:0a:d4:4c:88:89:bf:18:a6:bc:82:d4: 05:84:d8:e1:d9:ec:8e:cf:3d:42:09:92:f8:d4:00: 91:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:1D:85:EE:6F:66:01:8D:51:92:F6:E1:C9:27:9F:45:7A:DA:23:2C X509v3 Authority Key Identifier: keyid:B6:EE:1F:61:D6:E8:E9:EE:C6:40:CC:C1:D7:91:DB:A1:24:99:3C:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/323430323a666463303a633830313a3a2f34382d3438203d3e20313337333633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:fdc0:c801::/48 Signature Algorithm: sha256WithRSAEncryption 2d:da:da:47:eb:87:b2:94:55:84:ff:26:c9:e1:f6:e5:d3:52: 6e:6f:34:fa:1e:3b:8d:51:d5:ef:1c:a5:d7:67:61:1e:e5:ef: 2c:6a:66:15:64:e0:29:b2:41:fa:f9:ca:6f:66:db:a5:ba:67: d5:84:66:68:02:91:0e:74:c9:19:2b:bc:33:ff:22:f3:0f:c3: 00:e7:41:84:29:25:4d:e6:9d:99:c4:5f:df:cd:7d:b2:38:e5: 7d:98:ae:72:b7:24:95:98:87:b8:ca:28:69:25:37:4b:87:10: 8d:0f:be:27:1a:ac:08:e1:92:9e:57:86:b8:e7:d8:fd:24:ea: c6:d2:da:b9:f6:df:e2:4f:7a:94:b0:02:9f:a1:4d:ef:e3:0f: d4:c4:7b:4b:38:be:f2:3e:8e:f9:38:7f:bd:c3:7c:ae:74:b1: 2e:91:74:90:5f:b7:a9:4c:08:b1:64:15:fe:6c:69:6c:ab:0a: 11:8e:ec:89:47:3d:4a:0f:ee:ca:b7:5b:e6:e6:fd:62:ca:9b: 48:e8:82:2c:86:1e:db:da:15:6c:e4:81:ba:e6:fe:9d:83:c8: e1:87:e3:29:c2:67:84:dd:93:5b:87:26:9c:bf:88:c5:30:4c: e4:f3:1f:76:62:3f:1b:83:5b:d0:c7:cc:04:9a:5a:fa:0f:04: cb:b1:7a:6e -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUK79z12JBlXmqkJ/h/ROc9SGcoTUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZFRTFGNjFENkU4RTlFRUM2NDBDQ0MxRDc5MURCQTEy NDk5M0NBMzAeFw0yNTA2MDUwOTU1MDFaFw0yNjA2MDQxMDAwMDFaMDMxMTAvBgNV BAMTKDVBMUQ4NUVFNkY2NjAxOEQ1MTkyRjZFMUM5Mjc5RjQ1N0FEQTIzMkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZLNNaYZ5kcovHrMDYrhFD4vGT maF/HHkxmjV/UtiI+TttlUflAyxQbnc/epAOVA8+YZoZZZg4xDjmKCLKVmgkOiL7 hw9OGWu3708VvRKR01CH6dy+1J1BmdeHHeaQpT1IL0VZizxOwEhu20QRBsNqCVfV IJjL2ajR2bhivzdkP59pQNDYf8lo8FTHl61Pm9Ur8iToYcuoXiXSD6egKZpADrJ9 rJzvhOjOC9vJOBT99ftRUANee6rilGz2qj8ELpArIihhrajYiqDdz4tI8GywkSZc xOzvJfPQfm31auC7CPeRNksK1EyIib8YpryC1AWE2OHZ7I7PPUIJkvjUAJG7AgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUWh2F7m9mAY1RkvbhySefRXraIywwHwYDVR0j BBgwFoAUtu4fYdbo6e7GQMzB15HboSSZPKMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MTA4NWI0YS1mNTczLTQyZjMtODI1Yy0xY2YwYzg3MmIxNTIvMC9CNkVFMUY2MUQ2 RThFOUVFQzY0MENDQzFENzkxREJBMTI0OTkzQ0EzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZFRTFGNjFENkU4RTlFRUM2NDBDQ0MxRDc5MURCQTEyNDk5 M0NBMy5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxMDg1YjRhLWY1NzMtNDJmMy04 MjVjLTFjZjBjODcyYjE1Mi8wLzMyMzQzMDMyM2E2NjY0NjMzMDNhNjMzODMwMzEz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzczMzM2MzMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk Av3AyAEwDQYJKoZIhvcNAQELBQADggEBAC3a2kfrh7KUVYT/Jsnh9uXTUm5vNPoe O41R1e8cpddnYR7l7yxqZhVk4CmyQfr5ym9m26W6Z9WEZmgCkQ50yRkrvDP/IvMP wwDnQYQpJU3mnZnEX9/NfbI45X2YrnK3JJWYh7jKKGklN0uHEI0PvicarAjhkp5X hrjn2P0k6sbS2rn23+JPepSwAp+hTe/jD9TEe0s4vvI+jvk4f73DfK50sS6RdJBf t6lMCLFkFf5saWyrChGO7IlHPUoP7sq3W+bm/WLKm0jogiyGHtvaFWzkgbrm/p2D yOGH4ynCZ4Tdk1uHJpy/iMUwTOTzH3ZiPxuDW9DHzASaWvoPBMuxem4= -----END CERTIFICATE-----Generated at Thu Jun 5 18:27:25 2025 by rpki-client