$ rpki-client -vvf repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a323a3a2f34382d3438203d3e20313430343133.roa File: 323430363a313363303a323a3a2f34382d3438203d3e20313430343133.roa (raw, json) Hash identifier: CHuhT91L4Bx2gvkmrXL92lkeo0HaZ7kmUtg30YZ0MWM= Subject key identifier: 09:F0:D1:64:BD:5E:E3:9E:F8:2A:52:8E:2D:EA:1F:D5:96:2B:57:B2 Certificate issuer: /CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Certificate serial: 1651896F815313EE173BFA5132836827EAAB884C Authority key identifier: 5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a323a3a2f34382d3438203d3e20313430343133.roa Signing time: Sun 04 May 2025 15:02:24 +0000 ROA not before: Sun 04 May 2025 14:57:24 +0000 ROA not after: Sun 03 May 2026 15:02:24 +0000 asID: 140413 IP address blocks: 2406:13c0:2::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 03:25:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:51:89:6f:81:53:13:ee:17:3b:fa:51:32:83:68:27:ea:ab:88:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Validity Not Before: May 4 14:57:24 2025 GMT Not After : May 3 15:02:24 2026 GMT Subject: CN=09F0D164BD5EE39EF82A528E2DEA1FD5962B57B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:f1:99:6b:84:03:f7:cc:da:39:f2:14:38:79: 10:b3:46:27:cb:03:7e:88:34:a0:56:86:8c:72:63: d2:6a:f5:eb:60:23:8e:96:7a:e0:d1:f2:ef:65:c9: a7:dc:43:b9:87:03:0b:95:19:20:1c:e2:9e:53:72: 3d:ac:5e:b5:b0:70:77:9f:a7:a1:e9:84:eb:8e:ce: 4b:f3:d7:d5:f3:4e:c7:63:eb:2f:d0:82:fb:de:f3: 66:85:2d:56:b4:b5:ad:2f:17:11:e2:9d:64:3b:9e: 0c:a7:9c:b0:96:fd:7b:31:c7:8f:01:a2:e4:29:bf: b7:e5:7b:4b:8f:94:ea:e9:3a:bc:3f:8a:0a:9e:73: e8:6b:21:75:6e:e5:49:97:14:0d:71:fe:51:e5:d7: 80:77:15:b6:5d:70:c8:ba:2f:5e:aa:12:26:ab:5f: 2a:95:23:5f:6f:0c:5a:09:cc:01:5b:39:30:61:5b: 2d:24:0c:fa:c7:5a:11:69:08:23:82:4a:e8:35:7b: 49:24:f5:36:e6:97:64:0f:f0:f8:9e:74:bb:49:a7: af:ef:65:d5:53:96:84:ca:79:9c:80:fb:3c:00:7e: 8a:c4:95:47:81:29:99:17:ba:1e:01:bb:dd:12:b0: 75:e7:eb:ca:04:55:45:6f:3e:6d:55:a8:e2:28:5f: 74:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:F0:D1:64:BD:5E:E3:9E:F8:2A:52:8E:2D:EA:1F:D5:96:2B:57:B2 X509v3 Authority Key Identifier: keyid:5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a323a3a2f34382d3438203d3e20313430343133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:13c0:2::/48 Signature Algorithm: sha256WithRSAEncryption 8a:81:05:56:dc:63:f9:af:78:03:0d:52:b0:62:3c:c6:eb:75: ae:8c:d7:79:36:69:6d:6b:fa:fe:3c:0f:bb:72:30:7d:cb:7d: 0c:f3:68:39:c6:f4:5c:a8:8d:f1:4c:5e:64:40:89:93:82:d4: e0:f3:71:c3:b9:d3:2e:33:4e:b2:17:7d:8f:35:b4:61:ed:f4: e8:66:11:1b:60:d0:62:30:00:a5:00:90:b3:7d:a1:d0:7b:64: 77:e0:d0:c8:d6:44:2e:9a:02:c9:f2:64:b4:b0:2b:9d:ee:46: 60:1a:e3:d1:c0:4e:5d:79:85:64:2f:9f:f2:19:dc:5c:59:44: 14:af:36:f8:20:7e:db:e5:d8:24:c2:40:5a:67:a4:3a:d6:9e: c0:41:69:77:45:fa:cb:ad:5e:30:2d:8b:00:ee:2d:d1:d1:dd: e4:49:12:0e:8b:12:80:ed:68:9b:a9:e8:67:f6:dd:cc:95:26: fa:54:89:cf:a6:28:59:d5:77:ac:8f:c3:7c:1d:2d:d5:a0:05: 71:de:b7:39:53:0e:28:82:02:83:6e:e5:e0:46:d4:05:46:55: 4d:d7:be:44:27:0a:31:c1:a4:5d:de:8a:59:e0:03:29:56:87: c9:dd:ae:08:1d:f0:8e:dc:02:ab:a7:4f:cb:fc:e6:ea:fa:b1: 02:c5:7a:ae -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUFlGJb4FTE+4XO/pRMoNoJ+qriEwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhB ODFBOTNCRTAeFw0yNTA1MDQxNDU3MjRaFw0yNjA1MDMxNTAyMjRaMDMxMTAvBgNV BAMTKDA5RjBEMTY0QkQ1RUUzOUVGODJBNTI4RTJERUExRkQ1OTYyQjU3QjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCb8ZlrhAP3zNo58hQ4eRCzRifL A36INKBWhoxyY9Jq9etgI46WeuDR8u9lyafcQ7mHAwuVGSAc4p5Tcj2sXrWwcHef p6HphOuOzkvz19XzTsdj6y/Qgvve82aFLVa0ta0vFxHinWQ7ngynnLCW/Xsxx48B ouQpv7fle0uPlOrpOrw/igqec+hrIXVu5UmXFA1x/lHl14B3FbZdcMi6L16qEiar XyqVI19vDFoJzAFbOTBhWy0kDPrHWhFpCCOCSug1e0kk9Tbml2QP8PiedLtJp6/v ZdVTloTKeZyA+zwAforElUeBKZkXuh4Bu90SsHXn68oEVUVvPm1VqOIoX3R7AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUCfDRZL1e4574KlKOLeof1ZYrV7IwHwYDVR0j BBgwFoAUWrLwSLz51g1jI6cu9yVfOKgak74wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NmQ3ZWRlMS0zZmQwLTQ2MjQtYmVmOC0wZTczZTg0OTk0YmMvMC81QUIyRjA0OEJD RjlENjBENjMyM0E3MkVGNzI1NUYzOEE4MUE5M0JFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhBODFB OTNCRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI2ZDdlZGUxLTNmZDAtNDYyNC1i ZWY4LTBlNzNlODQ5OTRiYy8wLzMyMzQzMDM2M2EzMTMzNjMzMDNhMzIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMxMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBhPAAAIw DQYJKoZIhvcNAQELBQADggEBAIqBBVbcY/mveAMNUrBiPMbrda6M13k2aW1r+v48 D7tyMH3LfQzzaDnG9FyojfFMXmRAiZOC1ODzccO50y4zTrIXfY81tGHt9OhmERtg 0GIwAKUAkLN9odB7ZHfg0MjWRC6aAsnyZLSwK53uRmAa49HATl15hWQvn/IZ3FxZ RBSvNvggftvl2CTCQFpnpDrWnsBBaXdF+sutXjAtiwDuLdHR3eRJEg6LEoDtaJup 6Gf23cyVJvpUic+mKFnVd6yPw3wdLdWgBXHetzlTDiiCAoNu5eBG1AVGVU3XvkQn CjHBpF3eilngAylWh8ndrggd8I7cAqunT8v85ur6sQLFeq4= -----END CERTIFICATE-----Generated at Wed May 7 22:07:57 2025 by rpki-client