$ rpki-client -vvf repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/323430363a356334303a3a2f33362d3438203d3e20313331373035.roa File: 323430363a356334303a3a2f33362d3438203d3e20313331373035.roa (raw, json) Hash identifier: vVX9J+iIt5S0zLOqjzNP9A3DgvrDc3RqZLM36XJo31Q= Subject key identifier: 7A:EC:E7:52:B3:56:8D:B7:DB:78:08:6B:68:0F:F6:9A:10:1F:79:39 Certificate issuer: /CN=0A8E8E063785238467D4AD1F507CC97B30DBB959 Certificate serial: 0A05DB182E6F5F795E0BAC7E8785F4801AA6360B Authority key identifier: 0A:8E:8E:06:37:85:23:84:67:D4:AD:1F:50:7C:C9:7B:30:DB:B9:59 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0A8E8E063785238467D4AD1F507CC97B30DBB959.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/323430363a356334303a3a2f33362d3438203d3e20313331373035.roa Signing time: Fri 16 May 2025 08:00:00 +0000 ROA not before: Fri 16 May 2025 07:55:00 +0000 ROA not after: Fri 15 May 2026 08:00:00 +0000 asID: 131705 IP address blocks: 2406:5c40::/36 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/0A8E8E063785238467D4AD1F507CC97B30DBB959.crl rsync://repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/0A8E8E063785238467D4AD1F507CC97B30DBB959.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0A8E8E063785238467D4AD1F507CC97B30DBB959.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 03:58:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:05:db:18:2e:6f:5f:79:5e:0b:ac:7e:87:85:f4:80:1a:a6:36:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0A8E8E063785238467D4AD1F507CC97B30DBB959 Validity Not Before: May 16 07:55:00 2025 GMT Not After : May 15 08:00:00 2026 GMT Subject: CN=7AECE752B3568DB7DB78086B680FF69A101F7939 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:af:22:a0:7e:7b:db:34:18:4b:ab:56:eb:4a: 48:1e:7f:27:f8:8c:80:e7:37:f2:f5:28:17:02:14: a3:b9:ff:73:e2:bf:fe:58:1b:13:38:6a:52:58:fb: a2:25:11:ad:dd:98:bf:52:85:0d:4f:93:60:94:98: 25:29:38:4e:a8:7f:56:63:f5:7d:01:51:67:42:eb: 9d:fb:4e:67:07:be:fa:49:f6:74:b3:91:ac:e6:87: f6:0e:88:1f:ee:18:81:0f:69:bc:83:f5:0b:2e:9f: ab:2a:77:56:bb:b5:02:49:a7:08:fd:69:42:8c:f9: e1:13:4a:c3:53:b8:ee:73:c0:f0:23:82:24:03:20: 15:9f:8c:1c:13:2e:9e:78:bd:fa:9c:64:fa:a8:66: 44:10:4c:21:e4:0b:7f:06:f2:0b:28:64:68:cb:00: 92:dc:5a:b4:f4:11:58:8b:5b:61:f8:d2:c8:f8:a1: be:08:ae:37:fd:31:59:77:45:5b:62:65:55:43:c5: ef:75:23:86:c6:94:55:32:38:89:6c:1a:78:eb:49: db:a1:a5:c3:90:85:a9:da:7e:2a:61:4f:ef:3b:83: c7:38:55:35:fb:b3:5a:26:39:f6:56:c9:76:a5:65: f7:1c:a0:cc:4f:40:e9:60:6a:c9:3b:b7:45:39:7d: d6:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:EC:E7:52:B3:56:8D:B7:DB:78:08:6B:68:0F:F6:9A:10:1F:79:39 X509v3 Authority Key Identifier: keyid:0A:8E:8E:06:37:85:23:84:67:D4:AD:1F:50:7C:C9:7B:30:DB:B9:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/0A8E8E063785238467D4AD1F507CC97B30DBB959.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0A8E8E063785238467D4AD1F507CC97B30DBB959.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/323430363a356334303a3a2f33362d3438203d3e20313331373035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:5c40::/36 Signature Algorithm: sha256WithRSAEncryption 2d:e7:70:f7:f7:17:d2:d9:3b:10:7b:ab:1b:fc:11:f3:95:41: 11:0c:b6:8b:97:85:76:ff:a6:f5:f7:33:3f:75:ee:ab:48:04: 72:8d:51:44:c6:b8:35:e4:14:5d:c8:db:6d:9e:ac:63:3b:f6: 87:be:c0:ea:8c:8c:77:28:d3:17:3c:f0:43:46:d5:da:8a:3b: 21:75:cd:6f:a0:d1:18:05:1f:cf:06:37:47:32:c5:32:d1:b6: 90:44:d7:75:2a:df:6e:8c:41:cd:fd:85:07:4a:d6:b4:c9:52: c7:25:73:76:67:89:e4:e0:d1:3b:d5:05:ac:15:a3:dd:ef:c7: 02:89:31:82:45:3b:08:f7:29:a2:3c:ec:b9:fd:e3:0e:26:56: 74:79:44:11:15:8d:ed:2d:47:7e:d6:8f:63:4f:c4:d4:62:98: 3f:8e:5a:a9:3a:0d:d9:f1:13:a8:06:ea:3a:2a:f1:c6:c6:a8: 7e:23:02:8a:01:b6:79:18:ca:88:df:00:8d:06:87:79:41:c4: fe:40:70:2b:49:88:61:46:79:88:b7:e7:27:e9:e6:04:84:cd: 4a:b9:46:02:a0:d9:dc:50:e3:ca:ae:43:89:c9:ad:6f:a5:13: 65:3e:cd:4d:95:35:83:02:25:ed:20:c7:7d:66:e6:52:e9:5a: f6:9a:e7:9a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUCgXbGC5vX3leC6x+h4X0gBqmNgswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEE4RThFMDYzNzg1MjM4NDY3RDRBRDFGNTA3Q0M5N0Iz MERCQjk1OTAeFw0yNTA1MTYwNzU1MDBaFw0yNjA1MTUwODAwMDBaMDMxMTAvBgNV BAMTKDdBRUNFNzUyQjM1NjhEQjdEQjc4MDg2QjY4MEZGNjlBMTAxRjc5MzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBryKgfnvbNBhLq1brSkgefyf4 jIDnN/L1KBcCFKO5/3Piv/5YGxM4alJY+6IlEa3dmL9ShQ1Pk2CUmCUpOE6of1Zj 9X0BUWdC6537TmcHvvpJ9nSzkazmh/YOiB/uGIEPabyD9Qsun6sqd1a7tQJJpwj9 aUKM+eETSsNTuO5zwPAjgiQDIBWfjBwTLp54vfqcZPqoZkQQTCHkC38G8gsoZGjL AJLcWrT0EViLW2H40sj4ob4Irjf9MVl3RVtiZVVDxe91I4bGlFUyOIlsGnjrSduh pcOQhanafiphT+87g8c4VTX7s1omOfZWyXalZfccoMxPQOlgask7t0U5fdbhAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUeuznUrNWjbfbeAhraA/2mhAfeTkwHwYDVR0j BBgwFoAUCo6OBjeFI4Rn1K0fUHzJezDbuVkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m OWQ2YWNjNi0wYWYzLTRiOTctOTlhNC0wZjQ1ZThlY2Y1NzYvMC8wQThFOEUwNjM3 ODUyMzg0NjdENEFEMUY1MDdDQzk3QjMwREJCOTU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEE4RThFMDYzNzg1MjM4NDY3RDRBRDFGNTA3Q0M5N0IzMERC Qjk1OS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y5ZDZhY2M2LTBhZjMtNGI5Ny05 OWE0LTBmNDVlOGVjZjU3Ni8wLzMyMzQzMDM2M2EzNTYzMzQzMDNhM2EyZjMzMzYy ZDM0MzgyMDNkM2UyMDMxMzMzMTM3MzAzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBCQGXEAAMA0GCSqG SIb3DQEBCwUAA4IBAQAt53D39xfS2TsQe6sb/BHzlUERDLaLl4V2/6b19zM/de6r SARyjVFExrg15BRdyNttnqxjO/aHvsDqjIx3KNMXPPBDRtXaijshdc1voNEYBR/P BjdHMsUy0baQRNd1Kt9ujEHN/YUHSta0yVLHJXN2Z4nk4NE71QWsFaPd78cCiTGC RTsI9ymiPOy5/eMOJlZ0eUQRFY3tLUd+1o9jT8TUYpg/jlqpOg3Z8ROoBuo6KvHG xqh+IwKKAbZ5GMqI3wCNBod5QcT+QHArSYhhRnmIt+cn6eYEhM1KuUYCoNncUOPK rkOJya1vpRNlPs1NlTWDAiXtIMd9ZuZS6Vr2muea -----END CERTIFICATE-----Generated at Thu Jun 5 18:35:12 2025 by rpki-client