$ rpki-client -vvf repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/323430363a616563303a313a3a2f34382d3438203d3e20313431363735.roa File: 323430363a616563303a313a3a2f34382d3438203d3e20313431363735.roa (raw, json) Hash identifier: EFHYC7XhG7MQGG+p71C9PeqM87F/0AnjgXarEbD+y4E= Subject key identifier: 4D:A4:12:AD:76:B2:A5:EE:CE:81:B6:D2:CC:74:FD:F3:A6:B1:0E:92 Certificate issuer: /CN=1952B074D19D5AB562D7EE537AD3059EA097353B Certificate serial: 4B50AB604BE0BEB87E1C035ACE909B5E3141D433 Authority key identifier: 19:52:B0:74:D1:9D:5A:B5:62:D7:EE:53:7A:D3:05:9E:A0:97:35:3B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1952B074D19D5AB562D7EE537AD3059EA097353B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/323430363a616563303a313a3a2f34382d3438203d3e20313431363735.roa Signing time: Thu 15 May 2025 02:39:33 +0000 ROA not before: Thu 15 May 2025 02:34:33 +0000 ROA not after: Thu 14 May 2026 02:39:33 +0000 asID: 141675 IP address blocks: 2406:aec0:1::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/1952B074D19D5AB562D7EE537AD3059EA097353B.crl rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/1952B074D19D5AB562D7EE537AD3059EA097353B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1952B074D19D5AB562D7EE537AD3059EA097353B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 12:36:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:50:ab:60:4b:e0:be:b8:7e:1c:03:5a:ce:90:9b:5e:31:41:d4:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1952B074D19D5AB562D7EE537AD3059EA097353B Validity Not Before: May 15 02:34:33 2025 GMT Not After : May 14 02:39:33 2026 GMT Subject: CN=4DA412AD76B2A5EECE81B6D2CC74FDF3A6B10E92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:29:f5:22:62:05:b8:1a:e0:5b:cb:f7:bd:f9: fc:db:84:5a:f6:84:c1:61:e0:46:ac:f9:25:1c:1f: 4e:5c:ca:2a:96:92:5f:ad:af:58:73:d0:54:39:3f: 6a:71:d5:84:ef:56:46:86:a5:91:ce:e1:38:ee:6e: 93:ef:94:74:ec:19:f7:06:17:25:7a:01:34:2d:00: 2a:27:ed:c0:63:90:ec:dd:72:00:91:19:c2:5a:67: 3f:af:16:fe:40:b0:87:42:12:ce:8f:73:b2:7e:12: b1:84:21:02:05:9c:3d:eb:0a:e2:9d:be:9a:af:fc: 8d:64:9d:3f:bb:14:dd:68:96:df:39:78:a7:e5:87: bc:17:6b:25:cf:42:8d:0f:44:5e:55:1d:67:0a:65: 39:31:5a:48:47:0a:10:2c:d8:a4:cf:21:6c:16:c3: 12:38:bc:f3:3d:77:74:1c:c3:a0:6a:65:5f:c0:60: 48:99:19:34:94:36:d8:0a:99:ae:43:23:fe:20:cb: 16:f3:fd:46:40:44:cb:e0:ca:96:16:a3:5a:83:ba: 23:b8:da:b2:34:13:03:e3:19:db:3e:fb:a1:b4:c7: 3b:8b:eb:90:4f:12:c8:f6:8b:e5:cf:b9:57:f7:75: b8:d6:f0:80:c6:e5:54:62:ea:ee:22:e2:d3:d9:40: 39:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:A4:12:AD:76:B2:A5:EE:CE:81:B6:D2:CC:74:FD:F3:A6:B1:0E:92 X509v3 Authority Key Identifier: keyid:19:52:B0:74:D1:9D:5A:B5:62:D7:EE:53:7A:D3:05:9E:A0:97:35:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/1952B074D19D5AB562D7EE537AD3059EA097353B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1952B074D19D5AB562D7EE537AD3059EA097353B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/323430363a616563303a313a3a2f34382d3438203d3e20313431363735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:aec0:1::/48 Signature Algorithm: sha256WithRSAEncryption 54:17:98:93:79:62:a2:8d:5a:3f:51:ae:7d:4f:f2:5a:04:a3: 16:02:fe:ba:ad:de:a0:98:ef:cb:b4:08:c9:ee:f0:1f:21:d1: f8:61:bc:18:c7:da:4c:18:27:d8:b1:b8:a5:e7:e7:5a:50:dd: 7f:70:a8:a4:8c:e8:3c:ce:ca:a4:7e:26:52:b3:ab:1b:3e:2f: 1f:8c:ce:3c:81:2e:9c:bb:79:b8:52:87:7b:89:a0:9e:88:f9: 87:72:0b:0d:b3:89:57:fe:7b:c5:1e:f9:c9:44:d7:bf:e6:5e: bf:31:00:08:1f:cb:9c:7f:d5:cd:eb:ae:75:1b:a0:fc:e8:e2: 82:17:92:7b:18:0a:40:60:2d:c5:2a:d9:cc:81:22:e4:27:7e: bd:54:9b:ec:7b:d6:d8:51:29:51:35:48:bb:b7:ea:fb:16:ee: 20:08:0e:d5:8e:93:14:38:79:5b:d7:39:6e:0f:9c:ff:0e:eb: fc:cc:e4:7d:8d:92:c3:2d:cb:8b:57:6d:07:84:45:4e:de:af: 4a:f2:d1:a9:ac:42:c4:2e:95:fe:e8:53:49:2b:56:fe:91:c2: 3d:47:ca:a3:0b:00:6e:fd:8d:5c:09:de:46:5d:06:8a:e0:85: 8c:bf:f4:27:4e:24:40:ef:e6:5b:36:80:d4:87:97:c1:c6:96: 7d:f9:b6:17 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUS1CrYEvgvrh+HANazpCbXjFB1DMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTk1MkIwNzREMTlENUFCNTYyRDdFRTUzN0FEMzA1OUVB MDk3MzUzQjAeFw0yNTA1MTUwMjM0MzNaFw0yNjA1MTQwMjM5MzNaMDMxMTAvBgNV BAMTKDREQTQxMkFENzZCMkE1RUVDRTgxQjZEMkNDNzRGREYzQTZCMTBFOTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1KfUiYgW4GuBby/e9+fzbhFr2 hMFh4Eas+SUcH05cyiqWkl+tr1hz0FQ5P2px1YTvVkaGpZHO4TjubpPvlHTsGfcG FyV6ATQtACon7cBjkOzdcgCRGcJaZz+vFv5AsIdCEs6Pc7J+ErGEIQIFnD3rCuKd vpqv/I1knT+7FN1olt85eKflh7wXayXPQo0PRF5VHWcKZTkxWkhHChAs2KTPIWwW wxI4vPM9d3Qcw6BqZV/AYEiZGTSUNtgKma5DI/4gyxbz/UZARMvgypYWo1qDuiO4 2rI0EwPjGds++6G0xzuL65BPEsj2i+XPuVf3dbjW8IDG5VRi6u4i4tPZQDnpAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUTaQSrXaype7OgbbSzHT986axDpIwHwYDVR0j BBgwFoAUGVKwdNGdWrVi1+5TetMFnqCXNTswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NGYyYzAyNS0xZDc2LTRhMzYtODE2MC1hOWU4YWZlMzU3OWYvMC8xOTUyQjA3NEQx OUQ1QUI1NjJEN0VFNTM3QUQzMDU5RUEwOTczNTNCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTk1MkIwNzREMTlENUFCNTYyRDdFRTUzN0FEMzA1OUVBMDk3 MzUzQi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q0ZjJjMDI1LTFkNzYtNGEzNi04 MTYwLWE5ZThhZmUzNTc5Zi8wLzMyMzQzMDM2M2E2MTY1NjMzMDNhMzEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzEzNjM3MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBq7AAAEw DQYJKoZIhvcNAQELBQADggEBAFQXmJN5YqKNWj9Rrn1P8loEoxYC/rqt3qCY78u0 CMnu8B8h0fhhvBjH2kwYJ9ixuKXn51pQ3X9wqKSM6DzOyqR+JlKzqxs+Lx+MzjyB Lpy7ebhSh3uJoJ6I+YdyCw2ziVf+e8Ue+clE17/mXr8xAAgfy5x/1c3rrnUboPzo 4oIXknsYCkBgLcUq2cyBIuQnfr1Um+x71thRKVE1SLu36vsW7iAIDtWOkxQ4eVvX OW4PnP8O6/zM5H2NksMty4tXbQeERU7er0ry0amsQsQulf7oU0krVv6Rwj1HyqML AG79jVwJ3kZdBorghYy/9CdOJEDv5ls2gNSHl8HGln35thc= -----END CERTIFICATE-----Generated at Fri Jun 6 16:40:28 2025 by rpki-client