$ rpki-client -vvf repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/323430323a666463303a633830333a3a2f34382d3438203d3e20313337333633.roa File: 323430323a666463303a633830333a3a2f34382d3438203d3e20313337333633.roa (raw, json) Hash identifier: 2jNUjF4nke4CK+6iAYAgplrGXkwCafjzFP+r1D8zcBY= Subject key identifier: 67:81:98:10:A6:E5:BD:D6:DB:E1:7D:25:E8:88:44:5E:CA:54:F0:D6 Certificate issuer: /CN=B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3 Certificate serial: 384F0E883D5484EAC79E8E42AF3E8ED2A22E010E Authority key identifier: B6:EE:1F:61:D6:E8:E9:EE:C6:40:CC:C1:D7:91:DB:A1:24:99:3C:A3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/323430323a666463303a633830333a3a2f34382d3438203d3e20313337333633.roa Signing time: Thu 05 Jun 2025 10:00:01 +0000 ROA not before: Thu 05 Jun 2025 09:55:01 +0000 ROA not after: Thu 04 Jun 2026 10:00:01 +0000 asID: 137363 IP address blocks: 2402:fdc0:c803::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.crl rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 15:16:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:4f:0e:88:3d:54:84:ea:c7:9e:8e:42:af:3e:8e:d2:a2:2e:01:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3 Validity Not Before: Jun 5 09:55:01 2025 GMT Not After : Jun 4 10:00:01 2026 GMT Subject: CN=67819810A6E5BDD6DBE17D25E888445ECA54F0D6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:04:da:49:15:80:b4:b0:c7:6c:8b:cb:ff:32: d8:32:f5:9c:43:24:95:80:23:7c:46:c7:34:b0:7e: 8e:c4:9d:74:c7:8c:57:b8:c3:a0:b6:a3:e2:60:b5: f6:b3:f6:cb:73:ee:d7:41:f9:d7:5a:46:5c:9c:26: 6e:74:f8:05:8d:0e:e9:fc:98:1a:ec:58:aa:a0:3a: ec:4a:a2:78:13:73:d7:0f:36:1c:85:53:91:7f:9a: fc:ef:94:e1:f4:30:dd:36:65:6b:fd:cd:80:3a:de: f4:1a:4d:f6:7e:22:53:38:0f:0c:69:10:b7:dc:84: ac:2b:92:e6:8c:36:ae:7f:6a:d3:23:0f:37:bd:31: d3:1b:62:80:84:a9:ac:da:d0:df:57:5b:12:78:46: cc:aa:e8:20:b8:95:fe:c1:a7:18:0d:32:48:c8:2c: 11:da:8f:76:e4:5a:64:58:a6:fd:a5:09:9d:f3:6c: 66:b5:96:35:c9:d1:85:a2:e4:35:64:ce:1b:3d:8e: 29:69:d4:67:10:f2:29:c5:62:13:ea:ce:cb:c5:c5: 8a:64:75:a6:ff:c6:33:3b:8d:97:0f:94:be:fc:c0: eb:b9:d4:0a:b1:0a:59:a6:50:bb:70:52:dd:96:f1: e7:db:5a:cf:d8:39:d5:f5:ea:a5:6a:08:1d:eb:f0: 46:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:81:98:10:A6:E5:BD:D6:DB:E1:7D:25:E8:88:44:5E:CA:54:F0:D6 X509v3 Authority Key Identifier: keyid:B6:EE:1F:61:D6:E8:E9:EE:C6:40:CC:C1:D7:91:DB:A1:24:99:3C:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/323430323a666463303a633830333a3a2f34382d3438203d3e20313337333633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:fdc0:c803::/48 Signature Algorithm: sha256WithRSAEncryption 2f:ac:ae:22:13:28:c4:cb:f3:14:0f:bb:99:aa:ef:7f:37:0a: 0a:66:91:15:77:10:09:f3:5d:e1:21:2d:05:9f:eb:ec:ca:6a: dd:bd:46:be:17:b3:3b:d8:26:ad:83:bb:91:ba:19:4e:62:03: 40:e8:0a:96:44:fb:cf:e5:83:ae:a6:7d:03:d8:c6:4c:af:f7: 15:a4:34:8c:b8:b4:44:e4:c9:e0:dc:06:7d:15:c6:84:bd:3c: c2:77:a0:b9:47:82:67:33:6d:82:8d:4e:91:17:ec:5e:5a:c8: c6:ae:0c:2b:f9:9c:b4:e8:25:8f:83:1a:ba:8d:8c:b3:aa:ea: 89:67:48:d4:a2:e7:47:1a:cf:3f:8c:9b:03:24:6e:a9:f1:32: 49:29:13:fe:73:9b:84:6e:44:6a:7b:6d:47:c6:ef:22:df:af: 48:3e:d4:35:ed:ab:e5:b4:cc:74:3b:1e:13:c2:b3:01:7c:b8: 5b:c0:a3:ac:3e:88:a0:c4:ba:9a:b7:bf:81:46:73:ea:d3:b1: 66:98:bb:08:6f:e6:06:c4:49:98:d9:3f:3b:43:d1:b4:10:3a: 6c:93:89:f8:34:a3:ea:0a:d6:d1:c0:c6:63:99:51:aa:0c:76: 05:db:5c:c5:59:ea:79:db:c2:51:5d:24:ec:4f:c5:b1:bd:63: 93:59:e2:b3 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUOE8OiD1UhOrHno5Crz6O0qIuAQ4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZFRTFGNjFENkU4RTlFRUM2NDBDQ0MxRDc5MURCQTEy NDk5M0NBMzAeFw0yNTA2MDUwOTU1MDFaFw0yNjA2MDQxMDAwMDFaMDMxMTAvBgNV BAMTKDY3ODE5ODEwQTZFNUJERDZEQkUxN0QyNUU4ODg0NDVFQ0E1NEYwRDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/BNpJFYC0sMdsi8v/Mtgy9ZxD JJWAI3xGxzSwfo7EnXTHjFe4w6C2o+Jgtfaz9stz7tdB+ddaRlycJm50+AWNDun8 mBrsWKqgOuxKongTc9cPNhyFU5F/mvzvlOH0MN02ZWv9zYA63vQaTfZ+IlM4Dwxp ELfchKwrkuaMNq5/atMjDze9MdMbYoCEqaza0N9XWxJ4Rsyq6CC4lf7BpxgNMkjI LBHaj3bkWmRYpv2lCZ3zbGa1ljXJ0YWi5DVkzhs9jilp1GcQ8inFYhPqzsvFxYpk dab/xjM7jZcPlL78wOu51AqxClmmULtwUt2W8efbWs/YOdX16qVqCB3r8EYjAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUZ4GYEKblvdbb4X0l6IhEXspU8NYwHwYDVR0j BBgwFoAUtu4fYdbo6e7GQMzB15HboSSZPKMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MTA4NWI0YS1mNTczLTQyZjMtODI1Yy0xY2YwYzg3MmIxNTIvMC9CNkVFMUY2MUQ2 RThFOUVFQzY0MENDQzFENzkxREJBMTI0OTkzQ0EzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZFRTFGNjFENkU4RTlFRUM2NDBDQ0MxRDc5MURCQTEyNDk5 M0NBMy5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxMDg1YjRhLWY1NzMtNDJmMy04 MjVjLTFjZjBjODcyYjE1Mi8wLzMyMzQzMDMyM2E2NjY0NjMzMDNhNjMzODMwMzMz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzczMzM2MzMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk Av3AyAMwDQYJKoZIhvcNAQELBQADggEBAC+sriITKMTL8xQPu5mq7383CgpmkRV3 EAnzXeEhLQWf6+zKat29Rr4XszvYJq2Du5G6GU5iA0DoCpZE+8/lg66mfQPYxkyv 9xWkNIy4tETkyeDcBn0VxoS9PMJ3oLlHgmczbYKNTpEX7F5ayMauDCv5nLToJY+D GrqNjLOq6olnSNSi50cazz+MmwMkbqnxMkkpE/5zm4RuRGp7bUfG7yLfr0g+1DXt q+W0zHQ7HhPCswF8uFvAo6w+iKDEupq3v4FGc+rTsWaYuwhv5gbESZjZPztD0bQQ OmyTifg0o+oK1tHAxmOZUaoMdgXbXMVZ6nnbwlFdJOxPxbG9Y5NZ4rM= -----END CERTIFICATE-----Generated at Thu Jun 5 18:31:28 2025 by rpki-client