$ rpki-client -vvf repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/323430363a616563303a323a3a2f34382d3438203d3e20313431363735.roa File: 323430363a616563303a323a3a2f34382d3438203d3e20313431363735.roa (raw, json) Hash identifier: sJCm2ee/pkpEqZ3CTb0n1XRlqsVPP4kAsamQV7lnrGA= Subject key identifier: 30:C5:57:FF:5E:4F:C7:BC:A1:D3:0E:C1:35:AF:D7:EA:E6:65:0C:2E Certificate issuer: /CN=1952B074D19D5AB562D7EE537AD3059EA097353B Certificate serial: 2668DBD6093889B636BC08D6CB07256A06F07CB0 Authority key identifier: 19:52:B0:74:D1:9D:5A:B5:62:D7:EE:53:7A:D3:05:9E:A0:97:35:3B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1952B074D19D5AB562D7EE537AD3059EA097353B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/323430363a616563303a323a3a2f34382d3438203d3e20313431363735.roa Signing time: Thu 15 May 2025 02:39:55 +0000 ROA not before: Thu 15 May 2025 02:34:55 +0000 ROA not after: Thu 14 May 2026 02:39:55 +0000 asID: 141675 IP address blocks: 2406:aec0:2::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/1952B074D19D5AB562D7EE537AD3059EA097353B.crl rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/1952B074D19D5AB562D7EE537AD3059EA097353B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1952B074D19D5AB562D7EE537AD3059EA097353B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 13:42:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:68:db:d6:09:38:89:b6:36:bc:08:d6:cb:07:25:6a:06:f0:7c:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1952B074D19D5AB562D7EE537AD3059EA097353B Validity Not Before: May 15 02:34:55 2025 GMT Not After : May 14 02:39:55 2026 GMT Subject: CN=30C557FF5E4FC7BCA1D30EC135AFD7EAE6650C2E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:f1:dd:a0:11:a9:c8:0e:26:cc:59:57:1c:d7: bd:18:8f:ad:d6:56:de:55:1a:7a:da:a3:63:15:93: 71:c1:1a:55:0b:09:bf:32:e9:f3:2d:32:cd:11:51: ae:ee:ad:61:c9:fc:e8:51:44:e4:20:fe:d2:f5:f3: 93:2b:e0:5b:7b:67:27:c2:1e:52:a0:24:6e:97:e6: 52:cf:96:6f:8a:ff:3d:7f:0c:d8:9d:1b:5b:3a:1b: 62:5e:33:73:e4:eb:f6:3a:da:cf:e2:f6:87:59:55: 6b:4c:fa:f0:78:24:82:4f:dd:34:b3:ec:ea:c7:7f: 91:60:59:97:82:d0:8d:72:29:81:2c:b6:03:61:c7: f8:c5:47:65:5e:12:69:3b:a4:e2:95:21:2e:c5:8c: a3:74:3c:58:75:f3:8e:57:fb:7c:5c:9a:87:81:94: 3e:bb:38:22:0d:6a:51:10:93:dd:87:11:ff:b1:53: 9a:9b:52:34:02:99:00:00:24:0d:8c:e1:c4:4f:34: 4f:f4:16:03:c0:4d:3b:ed:5a:29:dc:7f:0e:23:f2: ca:1e:4b:10:4b:25:4e:a7:f5:fc:e4:4b:5c:2c:32: f7:5d:57:ae:91:4a:81:bb:b0:b9:46:82:70:e7:22: 11:48:c5:a1:ab:33:ed:27:7e:be:55:22:fd:45:9f: d7:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:C5:57:FF:5E:4F:C7:BC:A1:D3:0E:C1:35:AF:D7:EA:E6:65:0C:2E X509v3 Authority Key Identifier: keyid:19:52:B0:74:D1:9D:5A:B5:62:D7:EE:53:7A:D3:05:9E:A0:97:35:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/1952B074D19D5AB562D7EE537AD3059EA097353B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1952B074D19D5AB562D7EE537AD3059EA097353B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/323430363a616563303a323a3a2f34382d3438203d3e20313431363735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:aec0:2::/48 Signature Algorithm: sha256WithRSAEncryption ac:99:a9:d1:ee:f4:bc:52:60:56:a7:b5:65:4e:1c:ff:43:ba: 4c:12:57:5f:f3:c4:17:ac:21:5b:18:b6:63:b2:52:ff:60:18: 9e:8b:a4:a6:88:c4:44:e0:da:74:92:1b:e8:f5:e3:c5:f8:95: de:66:3d:fe:09:20:8a:1a:be:f7:6c:0c:9a:f7:4c:34:33:ac: 98:cb:63:de:ef:f3:b7:47:fa:86:b4:f8:89:e1:b3:ae:9b:5b: 09:f4:a5:3c:b2:d0:f2:d5:a1:55:63:f8:85:1a:03:7d:02:78: ae:b8:8e:0c:72:fe:ea:12:58:ca:0c:31:c7:fa:23:53:fa:6d: 2b:51:95:51:ca:2a:df:f0:7d:35:98:ee:43:6d:32:f4:7f:ab: 9a:3a:5f:63:8d:23:4e:94:01:a2:e9:14:dc:1f:07:72:86:60: 48:de:0d:61:b8:fc:fc:f3:12:5c:18:c6:88:32:e5:e4:06:48: 0e:22:f1:ef:75:e9:0e:dc:9c:70:66:1f:ad:76:af:14:a4:ec: e4:fc:ec:4d:16:a8:05:7e:67:b0:2e:c9:53:1d:0b:9b:af:5a: ee:ed:69:da:a6:52:77:f7:89:61:be:25:6a:8e:d4:47:37:2b: af:db:f6:f4:35:1c:f9:ea:46:b7:40:52:62:ae:cf:a4:31:a0: 29:7c:7b:24 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUJmjb1gk4ibY2vAjWywclagbwfLAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTk1MkIwNzREMTlENUFCNTYyRDdFRTUzN0FEMzA1OUVB MDk3MzUzQjAeFw0yNTA1MTUwMjM0NTVaFw0yNjA1MTQwMjM5NTVaMDMxMTAvBgNV BAMTKDMwQzU1N0ZGNUU0RkM3QkNBMUQzMEVDMTM1QUZEN0VBRTY2NTBDMkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCz8d2gEanIDibMWVcc170Yj63W Vt5VGnrao2MVk3HBGlULCb8y6fMtMs0RUa7urWHJ/OhRROQg/tL185Mr4Ft7ZyfC HlKgJG6X5lLPlm+K/z1/DNidG1s6G2JeM3Pk6/Y62s/i9odZVWtM+vB4JIJP3TSz 7OrHf5FgWZeC0I1yKYEstgNhx/jFR2VeEmk7pOKVIS7FjKN0PFh1845X+3xcmoeB lD67OCINalEQk92HEf+xU5qbUjQCmQAAJA2M4cRPNE/0FgPATTvtWincfw4j8soe SxBLJU6n9fzkS1wsMvddV66RSoG7sLlGgnDnIhFIxaGrM+0nfr5VIv1Fn9dXAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUMMVX/15Px7yh0w7BNa/X6uZlDC4wHwYDVR0j BBgwFoAUGVKwdNGdWrVi1+5TetMFnqCXNTswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NGYyYzAyNS0xZDc2LTRhMzYtODE2MC1hOWU4YWZlMzU3OWYvMC8xOTUyQjA3NEQx OUQ1QUI1NjJEN0VFNTM3QUQzMDU5RUEwOTczNTNCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTk1MkIwNzREMTlENUFCNTYyRDdFRTUzN0FEMzA1OUVBMDk3 MzUzQi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q0ZjJjMDI1LTFkNzYtNGEzNi04 MTYwLWE5ZThhZmUzNTc5Zi8wLzMyMzQzMDM2M2E2MTY1NjMzMDNhMzIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzEzNjM3MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBq7AAAIw DQYJKoZIhvcNAQELBQADggEBAKyZqdHu9LxSYFantWVOHP9DukwSV1/zxBesIVsY tmOyUv9gGJ6LpKaIxETg2nSSG+j148X4ld5mPf4JIIoavvdsDJr3TDQzrJjLY97v 87dH+oa0+Inhs66bWwn0pTyy0PLVoVVj+IUaA30CeK64jgxy/uoSWMoMMcf6I1P6 bStRlVHKKt/wfTWY7kNtMvR/q5o6X2ONI06UAaLpFNwfB3KGYEjeDWG4/PzzElwY xogy5eQGSA4i8e916Q7cnHBmH612rxSk7OT87E0WqAV+Z7AuyVMdC5uvWu7tadqm Unf3iWG+JWqO1Ec3K6/b9vQ1HPnqRrdAUmKuz6QxoCl8eyQ= -----END CERTIFICATE-----Generated at Fri Jun 6 16:47:58 2025 by rpki-client