$ rpki-client -vvf repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/323430323a666463303a633830323a3a2f34382d3438203d3e20313337333633.roa File: 323430323a666463303a633830323a3a2f34382d3438203d3e20313337333633.roa (raw, json) Hash identifier: zTf2KHECdlF8CivRMKWMy2l8q7k9i66ao4kyK+xS1y8= Subject key identifier: 46:49:64:27:BA:56:F4:17:30:53:30:1B:AA:8C:03:5B:B6:81:1C:82 Certificate issuer: /CN=B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3 Certificate serial: 35D407E0D20FDD64747CBDBF8F8BB357866C3565 Authority key identifier: B6:EE:1F:61:D6:E8:E9:EE:C6:40:CC:C1:D7:91:DB:A1:24:99:3C:A3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/323430323a666463303a633830323a3a2f34382d3438203d3e20313337333633.roa Signing time: Thu 05 Jun 2025 10:00:00 +0000 ROA not before: Thu 05 Jun 2025 09:55:00 +0000 ROA not after: Thu 04 Jun 2026 10:00:00 +0000 asID: 137363 IP address blocks: 2402:fdc0:c802::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.crl rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 15:16:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:d4:07:e0:d2:0f:dd:64:74:7c:bd:bf:8f:8b:b3:57:86:6c:35:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3 Validity Not Before: Jun 5 09:55:00 2025 GMT Not After : Jun 4 10:00:00 2026 GMT Subject: CN=46496427BA56F4173053301BAA8C035BB6811C82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:c0:43:01:8b:40:30:8b:68:ad:8f:b3:44:6a: 14:0f:c8:e5:36:3c:38:41:12:06:ee:11:5f:5a:15: c4:e7:72:6e:ac:a9:b4:6d:85:28:c0:63:46:a1:cd: cf:87:f6:4c:4b:c2:5d:80:53:3e:09:08:1b:8d:cd: da:4f:04:70:b1:ee:01:09:c8:a6:31:35:d7:e5:a3: 88:90:80:45:27:b1:4c:87:b6:67:cd:44:c5:65:a0: e1:22:10:8b:62:ac:e8:5f:64:f9:14:c8:84:b9:81: fd:93:73:f7:3b:61:d2:85:ef:e7:6e:4e:4d:cb:a6: db:e6:a5:fe:96:da:eb:b3:e4:e4:71:fe:8b:30:e2: 71:5e:8f:19:3c:c4:58:b1:cf:21:50:3e:92:37:80: 63:c4:0f:15:74:41:61:8f:0e:e4:b1:80:b1:8d:9e: 8e:a1:58:3d:3c:cf:0b:de:35:60:eb:fa:a5:94:07: 19:b2:b6:1c:bb:ca:e1:5d:5c:7d:75:b1:0f:91:29: 65:61:14:5a:d2:20:c0:bf:3e:cc:7f:21:5e:0f:a1: 55:83:e2:58:7b:5d:a9:6b:a5:5c:46:a0:82:cf:93: 09:48:4f:d2:3e:10:b1:2e:f7:ee:e3:e9:4e:7f:c4: db:92:67:37:17:39:44:6e:80:97:b3:18:59:cc:5f: 52:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:49:64:27:BA:56:F4:17:30:53:30:1B:AA:8C:03:5B:B6:81:1C:82 X509v3 Authority Key Identifier: keyid:B6:EE:1F:61:D6:E8:E9:EE:C6:40:CC:C1:D7:91:DB:A1:24:99:3C:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/323430323a666463303a633830323a3a2f34382d3438203d3e20313337333633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:fdc0:c802::/48 Signature Algorithm: sha256WithRSAEncryption 00:92:20:15:1d:e8:50:ef:10:f2:52:4a:e4:66:77:e4:7d:a4: 9d:59:56:ce:01:9a:91:18:f0:5e:de:b8:ca:19:a9:b3:e8:0c: 51:5d:6a:4e:ee:3e:82:2e:cc:94:ee:f4:db:d3:0a:8f:8e:d5: 8e:ec:5f:bd:13:68:f0:01:03:12:14:a1:2f:00:bf:35:f2:b0: 01:a1:a6:1d:7f:ed:b9:9b:f2:c9:80:9e:47:f3:91:a5:41:b4: 57:48:53:31:98:da:e9:f8:00:97:c2:34:5d:b2:2d:e8:a2:f7: 6c:31:65:1d:6c:54:da:bc:0b:a9:25:7f:25:b4:dd:7b:f8:ce: b0:d9:db:bd:e6:d9:a3:13:f6:86:58:9d:95:51:14:00:c9:af: c1:18:6d:c6:22:5c:d2:cb:12:dc:78:b8:da:89:46:b4:71:70: 7c:7f:a2:04:75:94:2a:e3:eb:57:19:33:f6:b2:09:cd:a4:1e: 46:66:de:29:e3:0b:60:d6:8f:82:ce:18:07:74:36:03:78:c1: bf:ea:72:f9:b9:ff:5e:da:08:ac:a6:28:cc:9f:d2:cd:92:f3: 9f:0b:76:7d:9d:32:03:b9:14:d9:26:e9:70:17:ab:2e:6d:8b: 71:fa:5e:5b:11:09:4b:df:a4:f5:ab:d1:57:61:f9:a8:80:5e: c5:54:c1:39 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUNdQH4NIP3WR0fL2/j4uzV4ZsNWUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZFRTFGNjFENkU4RTlFRUM2NDBDQ0MxRDc5MURCQTEy NDk5M0NBMzAeFw0yNTA2MDUwOTU1MDBaFw0yNjA2MDQxMDAwMDBaMDMxMTAvBgNV BAMTKDQ2NDk2NDI3QkE1NkY0MTczMDUzMzAxQkFBOEMwMzVCQjY4MTFDODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGwEMBi0Awi2itj7NEahQPyOU2 PDhBEgbuEV9aFcTncm6sqbRthSjAY0ahzc+H9kxLwl2AUz4JCBuNzdpPBHCx7gEJ yKYxNdflo4iQgEUnsUyHtmfNRMVloOEiEItirOhfZPkUyIS5gf2Tc/c7YdKF7+du Tk3Lptvmpf6W2uuz5ORx/osw4nFejxk8xFixzyFQPpI3gGPEDxV0QWGPDuSxgLGN no6hWD08zwveNWDr+qWUBxmythy7yuFdXH11sQ+RKWVhFFrSIMC/Psx/IV4PoVWD 4lh7XalrpVxGoILPkwlIT9I+ELEu9+7j6U5/xNuSZzcXOURugJezGFnMX1KRAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQURklkJ7pW9BcwUzAbqowDW7aBHIIwHwYDVR0j BBgwFoAUtu4fYdbo6e7GQMzB15HboSSZPKMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MTA4NWI0YS1mNTczLTQyZjMtODI1Yy0xY2YwYzg3MmIxNTIvMC9CNkVFMUY2MUQ2 RThFOUVFQzY0MENDQzFENzkxREJBMTI0OTkzQ0EzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZFRTFGNjFENkU4RTlFRUM2NDBDQ0MxRDc5MURCQTEyNDk5 M0NBMy5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxMDg1YjRhLWY1NzMtNDJmMy04 MjVjLTFjZjBjODcyYjE1Mi8wLzMyMzQzMDMyM2E2NjY0NjMzMDNhNjMzODMwMzIz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzczMzM2MzMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk Av3AyAIwDQYJKoZIhvcNAQELBQADggEBAACSIBUd6FDvEPJSSuRmd+R9pJ1ZVs4B mpEY8F7euMoZqbPoDFFdak7uPoIuzJTu9NvTCo+O1Y7sX70TaPABAxIUoS8AvzXy sAGhph1/7bmb8smAnkfzkaVBtFdIUzGY2un4AJfCNF2yLeii92wxZR1sVNq8C6kl fyW03Xv4zrDZ273m2aMT9oZYnZVRFADJr8EYbcYiXNLLEtx4uNqJRrRxcHx/ogR1 lCrj61cZM/ayCc2kHkZm3injC2DWj4LOGAd0NgN4wb/qcvm5/17aCKymKMyf0s2S 858Ldn2dMgO5FNkm6XAXqy5ti3H6XlsRCUvfpPWr0Vdh+aiAXsVUwTk= -----END CERTIFICATE-----Generated at Thu Jun 5 18:29:53 2025 by rpki-client