$ rpki-client -vvf repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a363a3a2f34382d3438203d3e20313430343133.roa File: 323430363a313363303a363a3a2f34382d3438203d3e20313430343133.roa (raw, json) Hash identifier: tSvzNHHOTLE+PeD8SAArmYqhO7Ztwcuk/62pX8Gu/y0= Subject key identifier: 66:97:CD:BC:17:37:5D:5D:58:12:F1:0D:BB:21:B9:AD:36:DE:0B:4E Certificate issuer: /CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Certificate serial: 1F39DA1BC3AAE2C6E08991B1BE919FDAB303B899 Authority key identifier: 5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a363a3a2f34382d3438203d3e20313430343133.roa Signing time: Sun 04 May 2025 15:02:25 +0000 ROA not before: Sun 04 May 2025 14:57:25 +0000 ROA not after: Sun 03 May 2026 15:02:25 +0000 asID: 140413 IP address blocks: 2406:13c0:6::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 10:05:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:39:da:1b:c3:aa:e2:c6:e0:89:91:b1:be:91:9f:da:b3:03:b8:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Validity Not Before: May 4 14:57:25 2025 GMT Not After : May 3 15:02:25 2026 GMT Subject: CN=6697CDBC17375D5D5812F10DBB21B9AD36DE0B4E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:4c:ec:91:35:f9:f7:89:17:f6:6d:ec:0f:b0: 37:15:7d:c0:57:14:7f:d0:69:f8:e3:7c:31:57:c4: 65:27:8e:a1:73:ee:0d:12:dc:f8:c4:49:f9:5a:48: 75:95:19:ae:b7:f4:b1:dd:39:64:5b:35:11:ac:cf: 95:25:ac:f9:62:27:c7:43:f1:93:f4:d4:6c:1a:d9: 64:0f:60:3d:da:d8:88:61:4d:e9:92:d2:c0:10:4f: 00:74:4e:4c:e0:a7:af:85:7a:cb:cb:63:9d:7a:6d: 46:ba:e2:b4:81:b7:dc:03:71:3c:59:07:40:3d:a4: c4:97:f0:98:a3:33:d0:00:bd:4e:33:46:07:0e:78: f7:f1:3b:be:73:32:35:2c:c5:30:d0:e6:51:f8:3b: 4d:5a:11:a3:b6:d0:cf:42:f6:b8:4c:83:b3:a0:63: c2:ea:37:b2:3a:e8:2b:61:b6:0e:4b:b6:f2:ea:17: b1:df:bb:f2:9d:58:08:bf:a9:2c:ed:90:bc:c3:2c: 43:77:3f:0f:92:78:5d:14:ce:30:e6:5e:c0:49:3a: 1c:ae:62:5e:65:81:af:23:e0:dd:4f:ac:f6:e4:85: 26:83:e7:b6:2b:37:f1:ce:cd:fa:da:6d:4b:3d:58: 04:69:5f:fd:0a:a4:50:2d:24:d3:41:81:91:27:c7: ca:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:97:CD:BC:17:37:5D:5D:58:12:F1:0D:BB:21:B9:AD:36:DE:0B:4E X509v3 Authority Key Identifier: keyid:5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a363a3a2f34382d3438203d3e20313430343133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:13c0:6::/48 Signature Algorithm: sha256WithRSAEncryption 0f:fd:69:c5:70:9a:97:ed:f4:3d:73:a2:bd:1b:bb:1b:a9:c6: 52:43:aa:91:a7:bc:70:fb:9e:d7:22:85:24:e9:6b:71:f0:49: e1:d1:34:10:ab:f4:56:04:6e:98:dd:11:bc:28:5b:7b:b1:2a: 5e:98:a6:fa:20:60:cc:73:04:29:96:df:be:d1:0d:c3:12:5d: 47:f5:6e:ad:b7:5d:ba:54:d1:9c:94:ee:ed:cf:b8:cf:71:20: 9f:c6:eb:bb:98:f4:f3:63:c3:00:ce:b5:d8:48:dd:8a:02:9e: be:93:3c:11:82:3f:08:41:e6:18:cf:da:02:69:91:e4:76:c7: 5d:7f:31:ce:3c:be:a7:1a:3d:56:82:2e:bc:36:e3:c9:eb:3f: 94:e1:f0:7c:50:9e:8d:b2:e8:fe:1d:84:83:96:19:f8:cf:9d: d8:01:be:21:4e:7b:ec:c3:3a:1c:4e:bd:c3:0d:a6:ad:19:5c: 9f:b2:7f:61:9f:31:2d:dd:09:aa:d2:e6:9c:21:c9:8a:5f:de: 73:cf:62:63:5f:60:38:81:c6:77:5b:cf:ca:d1:e8:97:c4:9c: ce:12:90:ee:86:d5:80:cc:b5:2a:26:8e:a9:bf:b7:da:0b:2d: 79:6e:f6:ba:5d:fb:e4:4e:59:45:ae:8e:20:55:46:58:e5:3e: b9:cc:04:19 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUHznaG8Oq4sbgiZGxvpGf2rMDuJkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhB ODFBOTNCRTAeFw0yNTA1MDQxNDU3MjVaFw0yNjA1MDMxNTAyMjVaMDMxMTAvBgNV BAMTKDY2OTdDREJDMTczNzVENUQ1ODEyRjEwREJCMjFCOUFEMzZERTBCNEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkTOyRNfn3iRf2bewPsDcVfcBX FH/QafjjfDFXxGUnjqFz7g0S3PjESflaSHWVGa639LHdOWRbNRGsz5UlrPliJ8dD 8ZP01Gwa2WQPYD3a2IhhTemS0sAQTwB0Tkzgp6+FesvLY516bUa64rSBt9wDcTxZ B0A9pMSX8JijM9AAvU4zRgcOePfxO75zMjUsxTDQ5lH4O01aEaO20M9C9rhMg7Og Y8LqN7I66Cthtg5LtvLqF7Hfu/KdWAi/qSztkLzDLEN3Pw+SeF0UzjDmXsBJOhyu Yl5lga8j4N1PrPbkhSaD57YrN/HOzfrabUs9WARpX/0KpFAtJNNBgZEnx8q/AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUZpfNvBc3XV1YEvENuyG5rTbeC04wHwYDVR0j BBgwFoAUWrLwSLz51g1jI6cu9yVfOKgak74wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NmQ3ZWRlMS0zZmQwLTQ2MjQtYmVmOC0wZTczZTg0OTk0YmMvMC81QUIyRjA0OEJD RjlENjBENjMyM0E3MkVGNzI1NUYzOEE4MUE5M0JFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhBODFB OTNCRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI2ZDdlZGUxLTNmZDAtNDYyNC1i ZWY4LTBlNzNlODQ5OTRiYy8wLzMyMzQzMDM2M2EzMTMzNjMzMDNhMzYzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMxMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBhPAAAYw DQYJKoZIhvcNAQELBQADggEBAA/9acVwmpft9D1zor0buxupxlJDqpGnvHD7ntci hSTpa3HwSeHRNBCr9FYEbpjdEbwoW3uxKl6YpvogYMxzBCmW377RDcMSXUf1bq23 XbpU0ZyU7u3PuM9xIJ/G67uY9PNjwwDOtdhI3YoCnr6TPBGCPwhB5hjP2gJpkeR2 x11/Mc48vqcaPVaCLrw248nrP5Th8HxQno2y6P4dhIOWGfjPndgBviFOe+zDOhxO vcMNpq0ZXJ+yf2GfMS3dCarS5pwhyYpf3nPPYmNfYDiBxndbz8rR6JfEnM4SkO6G 1YDMtSomjqm/t9oLLXlu9rpd++ROWUWujiBVRljlPrnMBBk= -----END CERTIFICATE-----Generated at Fri May 9 05:25:48 2025 by rpki-client