$ rpki-client -vvf repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a373a3a2f34382d3438203d3e20313430343133.roa File: 323430363a313363303a373a3a2f34382d3438203d3e20313430343133.roa (raw, json) Hash identifier: k6Z1cqOikqx8t9RPh+24QqZnUDFGexk4c6jfFeIucPQ= Subject key identifier: 7E:1F:34:8B:8B:53:06:9B:DF:1A:98:AE:73:16:7C:E3:D1:0C:4B:39 Certificate issuer: /CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Certificate serial: 29A14E6B60E11DFD5AA3FBBE86D40A2174095CCB Authority key identifier: 5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a373a3a2f34382d3438203d3e20313430343133.roa Signing time: Sun 04 May 2025 15:02:26 +0000 ROA not before: Sun 04 May 2025 14:57:26 +0000 ROA not after: Sun 03 May 2026 15:02:26 +0000 asID: 140413 IP address blocks: 2406:13c0:7::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 03:25:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:a1:4e:6b:60:e1:1d:fd:5a:a3:fb:be:86:d4:0a:21:74:09:5c:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Validity Not Before: May 4 14:57:26 2025 GMT Not After : May 3 15:02:26 2026 GMT Subject: CN=7E1F348B8B53069BDF1A98AE73167CE3D10C4B39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:1c:12:b1:6b:7e:c7:0b:51:09:ed:d3:2d:c4: 42:b8:d1:c9:c3:85:d5:be:0a:dc:9b:a8:8c:f7:6c: 67:21:ce:ff:a1:46:1f:24:0c:14:29:44:cc:42:22: 9d:26:42:b2:1d:ae:e9:56:f8:2f:8d:f7:6c:55:69: 2f:04:45:7c:f8:32:10:15:2e:37:58:64:9c:23:05: 02:aa:f0:15:a6:17:41:d2:a0:12:ef:9b:2b:29:ab: 80:38:e5:19:a7:ae:a6:38:38:1c:98:f3:98:85:80: c0:d3:ed:56:b6:0e:c7:82:3d:a1:80:c1:da:70:02: 5e:b3:d7:01:57:40:56:05:a4:0a:c8:40:80:03:4d: 42:57:a3:34:ec:4b:26:85:94:99:82:53:61:f6:b0: 9c:d0:56:3b:96:04:80:0f:d6:83:75:b8:8a:f3:a5: 8f:4e:f3:b1:47:49:cb:be:27:7e:cb:18:e2:11:1c: b2:78:29:78:27:5a:70:d1:03:94:69:04:5e:bc:07: 26:5c:37:84:95:38:d4:82:51:ba:86:95:28:9c:4d: a5:4d:72:93:ed:6b:9b:e5:bc:c6:ea:2a:04:90:0b: c7:4c:5a:ba:0c:fd:b8:6a:fc:f1:ba:09:bc:33:4b: 0e:15:ba:93:8c:44:b7:de:d4:be:cb:17:65:38:bd: 6d:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:1F:34:8B:8B:53:06:9B:DF:1A:98:AE:73:16:7C:E3:D1:0C:4B:39 X509v3 Authority Key Identifier: keyid:5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a373a3a2f34382d3438203d3e20313430343133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:13c0:7::/48 Signature Algorithm: sha256WithRSAEncryption 4f:f1:c7:36:ef:3e:a1:5b:d9:03:6c:26:ba:ea:34:eb:4b:6d: 7f:11:3d:19:a6:a8:2c:8f:ee:8b:32:30:cc:80:8e:79:20:16: f5:75:5d:7e:3f:1f:e4:8f:6d:55:46:b6:e5:6c:e3:54:e9:ac: 09:ca:61:6e:90:ba:15:9a:fb:d0:01:46:c9:5b:42:c7:4b:96: 8c:5e:22:e0:84:9d:9d:14:e9:56:b9:f0:e5:74:95:11:77:3d: 77:46:88:b9:20:92:e9:12:0e:e4:35:ac:5d:84:c3:cc:04:e5: 4e:0e:b5:24:3d:66:ee:ba:e2:17:c9:b8:5d:82:bb:04:96:6f: 51:0f:22:de:27:95:d4:df:d8:34:fb:9b:a7:f8:78:b0:82:8a: 21:cd:1f:92:32:a8:66:5f:c7:27:9a:97:61:87:43:f3:e6:d7: e6:d7:7b:a9:fb:c2:b2:b3:99:59:f6:c1:bc:80:38:c5:6d:62: 2f:ca:cf:fc:0a:0c:b4:43:fe:f3:e7:2b:0c:c9:10:a0:66:c3: 10:b6:e1:76:50:ea:94:ec:18:90:f2:13:2f:1d:39:a5:9b:8d: a5:23:dc:2c:18:43:19:a8:00:16:d6:2d:28:c4:fa:50:26:d3: f6:10:90:03:89:01:07:42:ec:a0:dd:95:a7:ca:cf:82:01:9c: 8b:68:dc:44 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUKaFOa2DhHf1ao/u+htQKIXQJXMswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhB ODFBOTNCRTAeFw0yNTA1MDQxNDU3MjZaFw0yNjA1MDMxNTAyMjZaMDMxMTAvBgNV BAMTKDdFMUYzNDhCOEI1MzA2OUJERjFBOThBRTczMTY3Q0UzRDEwQzRCMzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5HBKxa37HC1EJ7dMtxEK40cnD hdW+CtybqIz3bGchzv+hRh8kDBQpRMxCIp0mQrIdrulW+C+N92xVaS8ERXz4MhAV LjdYZJwjBQKq8BWmF0HSoBLvmyspq4A45RmnrqY4OByY85iFgMDT7Va2DseCPaGA wdpwAl6z1wFXQFYFpArIQIADTUJXozTsSyaFlJmCU2H2sJzQVjuWBIAP1oN1uIrz pY9O87FHScu+J37LGOIRHLJ4KXgnWnDRA5RpBF68ByZcN4SVONSCUbqGlSicTaVN cpPta5vlvMbqKgSQC8dMWroM/bhq/PG6CbwzSw4VupOMRLfe1L7LF2U4vW1fAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUfh80i4tTBpvfGpiucxZ849EMSzkwHwYDVR0j BBgwFoAUWrLwSLz51g1jI6cu9yVfOKgak74wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NmQ3ZWRlMS0zZmQwLTQ2MjQtYmVmOC0wZTczZTg0OTk0YmMvMC81QUIyRjA0OEJD RjlENjBENjMyM0E3MkVGNzI1NUYzOEE4MUE5M0JFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhBODFB OTNCRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI2ZDdlZGUxLTNmZDAtNDYyNC1i ZWY4LTBlNzNlODQ5OTRiYy8wLzMyMzQzMDM2M2EzMTMzNjMzMDNhMzczYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMxMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBhPAAAcw DQYJKoZIhvcNAQELBQADggEBAE/xxzbvPqFb2QNsJrrqNOtLbX8RPRmmqCyP7osy MMyAjnkgFvV1XX4/H+SPbVVGtuVs41TprAnKYW6QuhWa+9ABRslbQsdLloxeIuCE nZ0U6Va58OV0lRF3PXdGiLkgkukSDuQ1rF2Ew8wE5U4OtSQ9Zu664hfJuF2CuwSW b1EPIt4nldTf2DT7m6f4eLCCiiHNH5IyqGZfxyeal2GHQ/Pm1+bXe6n7wrKzmVn2 wbyAOMVtYi/Kz/wKDLRD/vPnKwzJEKBmwxC24XZQ6pTsGJDyEy8dOaWbjaUj3CwY QxmoABbWLSjE+lAm0/YQkAOJAQdC7KDdlafKz4IBnIto3EQ= -----END CERTIFICATE-----Generated at Thu May 8 00:45:33 2025 by rpki-client