$ rpki-client -vvf repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a353a3a2f34382d3438203d3e20313430343133.roa File: 323430363a313363303a353a3a2f34382d3438203d3e20313430343133.roa (raw, json) Hash identifier: ONf62+DvPOIB+a7e+YLFywaVigksQeK89X9Q/CSQVX4= Subject key identifier: 10:38:C0:38:79:AF:25:B9:E2:97:FC:15:45:39:AD:7A:C3:96:4B:97 Certificate issuer: /CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Certificate serial: 764A591598944CFF1060275C9FE62DDA35ED3A57 Authority key identifier: 5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a353a3a2f34382d3438203d3e20313430343133.roa Signing time: Sun 04 May 2025 15:02:23 +0000 ROA not before: Sun 04 May 2025 14:57:23 +0000 ROA not after: Sun 03 May 2026 15:02:23 +0000 asID: 140413 IP address blocks: 2406:13c0:5::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 01 Jul 2025 23:34:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:4a:59:15:98:94:4c:ff:10:60:27:5c:9f:e6:2d:da:35:ed:3a:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Validity Not Before: May 4 14:57:23 2025 GMT Not After : May 3 15:02:23 2026 GMT Subject: CN=1038C03879AF25B9E297FC154539AD7AC3964B97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:78:2f:a6:24:f3:b7:29:80:87:f0:fa:60:71: b7:ad:0e:59:2e:74:6c:89:13:68:af:11:77:6c:15: a3:8f:a6:a4:62:9f:9a:22:b2:bc:5a:dd:25:93:c9: 6d:38:1b:78:d7:53:e4:7a:2e:1d:a8:52:50:97:0d: 64:a8:b5:2b:9d:b9:88:eb:40:6f:2b:7c:f0:0b:af: 3c:95:8c:c3:9c:4d:7b:1f:6c:8b:d8:ae:04:d0:54: 75:1a:96:d4:e9:42:4f:10:5c:a8:94:b3:cc:f1:9d: 66:a8:7c:9a:0d:f9:a4:2f:37:c8:12:30:5a:11:35: 26:10:2e:9f:39:bb:26:c4:74:de:fe:4f:18:f0:ac: 48:53:e0:d1:57:18:de:d5:a2:6e:1d:db:2b:03:d1: c0:68:02:04:01:35:f9:62:2c:9b:28:01:c1:64:61: ab:70:5d:74:ee:2b:c8:6b:75:74:ef:7f:8d:9e:71: 29:d5:79:b8:89:5a:76:95:4a:d6:04:cf:d9:60:eb: c1:a1:f8:15:95:b8:5f:67:f0:ca:3b:2a:3a:57:1c: 2a:82:62:26:8f:fc:fc:18:b4:f9:18:b3:fc:9e:08: 4d:bf:71:b8:f4:9e:10:0d:df:31:61:0d:bb:f1:5c: 53:ad:89:ca:b8:80:54:bc:50:12:50:30:87:52:07: 60:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:38:C0:38:79:AF:25:B9:E2:97:FC:15:45:39:AD:7A:C3:96:4B:97 X509v3 Authority Key Identifier: keyid:5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a353a3a2f34382d3438203d3e20313430343133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:13c0:5::/48 Signature Algorithm: sha256WithRSAEncryption 42:53:8f:e7:cd:63:23:6f:fa:90:33:7f:e3:76:35:d9:02:a1: a1:63:70:9c:9b:a3:2f:7d:5c:99:81:bb:47:eb:13:5c:1f:02: 86:e4:03:2d:d4:50:46:9e:e7:bf:df:70:25:30:89:d8:38:0e: ae:15:5d:f0:42:d5:36:d9:17:46:f7:3d:13:1a:a3:44:50:42: 22:91:36:c3:ab:dd:f1:6f:f5:bc:da:bf:ae:cf:41:85:5b:c4: cf:bc:84:6c:4c:ea:71:fc:80:09:c8:f9:2e:fb:18:f5:ff:c4: 3c:08:3a:5c:6e:ba:41:9d:93:05:01:44:10:d1:48:46:13:29: 73:c4:7b:a6:5c:e4:58:85:ae:a6:5f:cd:c9:45:d7:b5:24:8f: 1a:8a:93:1f:77:f0:2a:4c:7e:eb:8e:4e:73:82:62:f5:5a:03: c0:a5:48:1f:b1:b3:0c:29:01:ff:41:0c:2f:fd:a8:e2:af:84: 4b:bc:b5:ba:d1:74:74:32:2c:3f:7d:94:32:7d:e9:f8:f7:7b: 37:53:1e:ea:ca:8f:4b:e8:77:98:51:8a:ce:f7:76:a1:b4:50: e5:ac:d5:4b:36:a3:2e:9f:09:2c:ab:6a:ef:c6:b3:3d:ac:4f: 00:bd:93:4c:80:a2:a1:0b:e8:9c:af:d3:07:a9:6d:af:83:05: 63:ae:58:66 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUdkpZFZiUTP8QYCdcn+Yt2jXtOlcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhB ODFBOTNCRTAeFw0yNTA1MDQxNDU3MjNaFw0yNjA1MDMxNTAyMjNaMDMxMTAvBgNV BAMTKDEwMzhDMDM4NzlBRjI1QjlFMjk3RkMxNTQ1MzlBRDdBQzM5NjRCOTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4eC+mJPO3KYCH8PpgcbetDlku dGyJE2ivEXdsFaOPpqRin5oisrxa3SWTyW04G3jXU+R6Lh2oUlCXDWSotSuduYjr QG8rfPALrzyVjMOcTXsfbIvYrgTQVHUaltTpQk8QXKiUs8zxnWaofJoN+aQvN8gS MFoRNSYQLp85uybEdN7+TxjwrEhT4NFXGN7Vom4d2ysD0cBoAgQBNfliLJsoAcFk YatwXXTuK8hrdXTvf42ecSnVebiJWnaVStYEz9lg68Gh+BWVuF9n8Mo7KjpXHCqC YiaP/PwYtPkYs/yeCE2/cbj0nhAN3zFhDbvxXFOticq4gFS8UBJQMIdSB2BFAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUEDjAOHmvJbnil/wVRTmtesOWS5cwHwYDVR0j BBgwFoAUWrLwSLz51g1jI6cu9yVfOKgak74wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NmQ3ZWRlMS0zZmQwLTQ2MjQtYmVmOC0wZTczZTg0OTk0YmMvMC81QUIyRjA0OEJD RjlENjBENjMyM0E3MkVGNzI1NUYzOEE4MUE5M0JFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhBODFB OTNCRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI2ZDdlZGUxLTNmZDAtNDYyNC1i ZWY4LTBlNzNlODQ5OTRiYy8wLzMyMzQzMDM2M2EzMTMzNjMzMDNhMzUzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMxMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBhPAAAUw DQYJKoZIhvcNAQELBQADggEBAEJTj+fNYyNv+pAzf+N2NdkCoaFjcJyboy99XJmB u0frE1wfAobkAy3UUEae57/fcCUwidg4Dq4VXfBC1TbZF0b3PRMao0RQQiKRNsOr 3fFv9bzav67PQYVbxM+8hGxM6nH8gAnI+S77GPX/xDwIOlxuukGdkwUBRBDRSEYT KXPEe6Zc5FiFrqZfzclF17UkjxqKkx938CpMfuuOTnOCYvVaA8ClSB+xswwpAf9B DC/9qOKvhEu8tbrRdHQyLD99lDJ96fj3ezdTHurKj0vod5hRis73dqG0UOWs1Us2 oy6fCSyrau/Gsz2sTwC9k0yAoqEL6Jyv0wepba+DBWOuWGY= -----END CERTIFICATE-----Generated at Mon Jun 30 05:34:04 2025 by rpki-client