$ rpki-client -vvf repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/323430363a356334303a313030303a3a2f33362d3438203d3e20313331373035.roa File: 323430363a356334303a313030303a3a2f33362d3438203d3e20313331373035.roa (raw, json) Hash identifier: Mk93/Py1aNdqibCxnW5rDhu68jIUBJ5f2wQcM99902Q= Subject key identifier: B3:C9:87:AA:7F:9B:D1:B0:32:14:2C:7E:F9:B2:8A:AB:DC:DB:92:4D Certificate issuer: /CN=0A8E8E063785238467D4AD1F507CC97B30DBB959 Certificate serial: 7F6174075AE2012EA001EC3512E53F02C8739FA2 Authority key identifier: 0A:8E:8E:06:37:85:23:84:67:D4:AD:1F:50:7C:C9:7B:30:DB:B9:59 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0A8E8E063785238467D4AD1F507CC97B30DBB959.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/323430363a356334303a313030303a3a2f33362d3438203d3e20313331373035.roa Signing time: Fri 16 May 2025 08:00:01 +0000 ROA not before: Fri 16 May 2025 07:55:01 +0000 ROA not after: Fri 15 May 2026 08:00:01 +0000 asID: 131705 IP address blocks: 2406:5c40:1000::/36 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/0A8E8E063785238467D4AD1F507CC97B30DBB959.crl rsync://repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/0A8E8E063785238467D4AD1F507CC97B30DBB959.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0A8E8E063785238467D4AD1F507CC97B30DBB959.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 03:58:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:61:74:07:5a:e2:01:2e:a0:01:ec:35:12:e5:3f:02:c8:73:9f:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0A8E8E063785238467D4AD1F507CC97B30DBB959 Validity Not Before: May 16 07:55:01 2025 GMT Not After : May 15 08:00:01 2026 GMT Subject: CN=B3C987AA7F9BD1B032142C7EF9B28AABDCDB924D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:55:a8:d6:01:26:e9:8a:aa:e7:b8:ef:e1:11: 00:50:86:26:25:3b:fc:da:96:66:ff:77:ba:e9:93: 3a:2b:20:1d:47:58:89:0d:49:c5:44:38:5d:06:70: b7:0c:b4:13:84:f9:17:21:46:3f:59:5d:e9:a4:d5: 7a:b6:65:20:43:eb:03:15:4f:30:11:b9:cf:02:49: ea:af:c9:7e:e6:96:94:33:88:aa:c1:22:3b:ca:28: 64:e0:29:ba:28:23:15:c3:c5:48:d0:8a:e7:22:6e: c3:5d:8e:36:13:81:11:d0:03:f4:84:01:e9:f8:93: aa:cf:5c:16:94:15:9e:b9:5f:6e:f6:d8:bf:f2:ac: 40:c8:24:cc:f2:af:93:e2:7c:69:e5:65:da:5d:3d: 46:11:c3:08:7a:1a:dd:c4:b9:4b:61:e4:f3:50:a0: f2:27:29:fd:ac:18:af:d9:3f:94:74:a6:2d:93:1a: 09:f9:93:db:ae:af:37:29:67:6e:72:26:62:45:f3: 89:3a:c9:23:e6:a0:d0:9e:1a:60:6a:0b:eb:4b:9b: 74:d6:dc:a0:36:50:6f:11:a2:af:e0:f1:27:46:de: 1b:5b:ec:ec:65:1f:14:5e:a4:6a:6c:86:ae:7d:80: 45:81:31:4e:2e:fd:9d:b4:34:d2:a2:40:8a:18:0d: 33:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:C9:87:AA:7F:9B:D1:B0:32:14:2C:7E:F9:B2:8A:AB:DC:DB:92:4D X509v3 Authority Key Identifier: keyid:0A:8E:8E:06:37:85:23:84:67:D4:AD:1F:50:7C:C9:7B:30:DB:B9:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/0A8E8E063785238467D4AD1F507CC97B30DBB959.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0A8E8E063785238467D4AD1F507CC97B30DBB959.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/323430363a356334303a313030303a3a2f33362d3438203d3e20313331373035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:5c40:1000::/36 Signature Algorithm: sha256WithRSAEncryption 86:1f:02:4f:ba:bd:4e:f1:c9:11:17:4c:d9:f0:fc:a6:bb:76: a1:c4:0d:f8:4b:ce:df:78:10:14:cf:cf:a1:7e:9f:72:74:51: 86:16:c0:72:8f:cb:8c:f0:cb:99:84:70:28:41:c4:d9:de:aa: df:fe:81:4b:39:8c:3f:fd:b9:cb:52:e8:c1:54:12:21:b5:b8: 55:77:6c:b3:42:bd:e9:ed:b1:a4:bc:94:1a:23:61:03:21:94: ca:05:d9:51:bd:c9:5b:d2:09:8b:b7:01:6b:22:a7:4f:20:b3: 12:f0:7d:f7:3e:3d:26:80:47:04:cd:7f:f3:18:c8:1c:33:53: ea:7c:6a:82:bc:4f:82:02:25:b7:89:f5:c0:b0:61:d5:60:5a: 09:82:e5:de:00:e5:ee:14:8d:52:19:40:d5:a2:03:97:2f:57: fa:6c:bf:13:6f:bb:4f:c2:3f:7e:99:c3:09:97:59:28:bf:3f: 5a:f9:62:b9:aa:0a:de:cc:4a:04:4c:a5:d8:e7:e0:83:4f:31: 26:77:cf:04:32:a9:5b:0a:cb:c0:f4:44:1f:da:45:a1:e1:21: 22:d0:44:01:3e:a1:47:2c:e8:ea:b2:3b:81:da:30:89:24:6a: c7:0c:75:18:2d:0a:5c:e4:3d:fb:fb:57:9a:c1:0b:00:e5:4e: ca:44:09:b6 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUf2F0B1riAS6gAew1EuU/Ashzn6IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEE4RThFMDYzNzg1MjM4NDY3RDRBRDFGNTA3Q0M5N0Iz MERCQjk1OTAeFw0yNTA1MTYwNzU1MDFaFw0yNjA1MTUwODAwMDFaMDMxMTAvBgNV BAMTKEIzQzk4N0FBN0Y5QkQxQjAzMjE0MkM3RUY5QjI4QUFCRENEQjkyNEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGVajWASbpiqrnuO/hEQBQhiYl O/zalmb/d7rpkzorIB1HWIkNScVEOF0GcLcMtBOE+RchRj9ZXemk1Xq2ZSBD6wMV TzARuc8CSeqvyX7mlpQziKrBIjvKKGTgKbooIxXDxUjQiucibsNdjjYTgRHQA/SE Aen4k6rPXBaUFZ65X2722L/yrEDIJMzyr5PifGnlZdpdPUYRwwh6Gt3EuUth5PNQ oPInKf2sGK/ZP5R0pi2TGgn5k9uurzcpZ25yJmJF84k6ySPmoNCeGmBqC+tLm3TW 3KA2UG8Roq/g8SdG3htb7OxlHxRepGpshq59gEWBMU4u/Z20NNKiQIoYDTPpAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUs8mHqn+b0bAyFCx++bKKq9zbkk0wHwYDVR0j BBgwFoAUCo6OBjeFI4Rn1K0fUHzJezDbuVkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m OWQ2YWNjNi0wYWYzLTRiOTctOTlhNC0wZjQ1ZThlY2Y1NzYvMC8wQThFOEUwNjM3 ODUyMzg0NjdENEFEMUY1MDdDQzk3QjMwREJCOTU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEE4RThFMDYzNzg1MjM4NDY3RDRBRDFGNTA3Q0M5N0IzMERC Qjk1OS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y5ZDZhY2M2LTBhZjMtNGI5Ny05 OWE0LTBmNDVlOGVjZjU3Ni8wLzMyMzQzMDM2M2EzNTYzMzQzMDNhMzEzMDMwMzAz YTNhMmYzMzM2MmQzNDM4MjAzZDNlMjAzMTMzMzEzNzMwMzUucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQk BlxAEDANBgkqhkiG9w0BAQsFAAOCAQEAhh8CT7q9TvHJERdM2fD8prt2ocQN+EvO 33gQFM/PoX6fcnRRhhbAco/LjPDLmYRwKEHE2d6q3/6BSzmMP/25y1LowVQSIbW4 VXdss0K96e2xpLyUGiNhAyGUygXZUb3JW9IJi7cBayKnTyCzEvB99z49JoBHBM1/ 8xjIHDNT6nxqgrxPggIlt4n1wLBh1WBaCYLl3gDl7hSNUhlA1aIDly9X+my/E2+7 T8I/fpnDCZdZKL8/WvliuaoK3sxKBEyl2Ofgg08xJnfPBDKpWwrLwPREH9pFoeEh ItBEAT6hRyzo6rI7gdowiSRqxwx1GC0KXOQ9+/tXmsELAOVOykQJtg== -----END CERTIFICATE-----Generated at Fri Jun 6 16:40:33 2025 by rpki-client