$ rpki-client -vvf repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a383a3a2f34382d3438203d3e20313430343133.roa File: 323430363a313363303a383a3a2f34382d3438203d3e20313430343133.roa (raw, json) Hash identifier: f6hlVhcf22KoU870LdZr8ofD9JQqnnfyvKLr6j1Qgic= Subject key identifier: 4F:7C:29:63:44:23:D4:6E:7A:45:33:D4:6F:0B:7F:79:F1:F9:3E:9E Certificate issuer: /CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Certificate serial: 12649388F90103672E211D95C9EDE71B01C6CC32 Authority key identifier: 5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a383a3a2f34382d3438203d3e20313430343133.roa Signing time: Sun 04 May 2025 15:02:24 +0000 ROA not before: Sun 04 May 2025 14:57:24 +0000 ROA not after: Sun 03 May 2026 15:02:24 +0000 asID: 140413 IP address blocks: 2406:13c0:8::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 03:25:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:64:93:88:f9:01:03:67:2e:21:1d:95:c9:ed:e7:1b:01:c6:cc:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Validity Not Before: May 4 14:57:24 2025 GMT Not After : May 3 15:02:24 2026 GMT Subject: CN=4F7C29634423D46E7A4533D46F0B7F79F1F93E9E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:e6:33:16:75:eb:30:6d:38:ce:da:51:c4:e2: d2:12:3c:9e:be:93:70:74:82:43:32:6c:a5:7c:5b: 9d:88:1f:cb:e4:2a:85:1f:67:68:d3:72:72:a1:26: cf:90:cb:5f:cb:df:3d:d2:c9:18:1f:d7:e2:d6:40: c6:07:8f:d9:14:f4:95:93:60:b0:6d:f8:ef:7b:5c: da:3d:fd:62:6c:1e:3f:a3:12:1f:19:94:1a:d3:93: bf:df:40:1c:f2:59:53:53:38:ce:fb:2e:4f:a7:d1: da:6b:0c:72:e3:3f:ca:28:15:e5:20:a2:28:2f:47: 70:cb:ad:9c:8d:65:5b:d1:0a:77:44:e1:00:c3:aa: f9:6d:9e:ab:ba:b2:5d:05:db:ec:4b:65:8c:9a:74: f5:1a:c9:e1:d5:21:68:ce:72:9c:ce:86:cc:58:3b: e7:a6:45:eb:30:23:72:18:3c:b5:71:fd:04:23:bd: 37:92:b7:d5:95:b0:1b:0c:70:4d:7d:39:1b:b4:be: 85:74:1f:86:af:dc:3c:83:e5:03:97:12:dc:dc:73: 17:8a:7c:76:b2:55:76:23:1a:56:8a:95:33:44:98: de:b7:f8:db:86:bb:90:79:51:64:03:7a:db:75:bb: d7:0f:78:49:af:f7:2b:9a:26:76:17:f9:c9:85:5c: dc:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:7C:29:63:44:23:D4:6E:7A:45:33:D4:6F:0B:7F:79:F1:F9:3E:9E X509v3 Authority Key Identifier: keyid:5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a383a3a2f34382d3438203d3e20313430343133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:13c0:8::/48 Signature Algorithm: sha256WithRSAEncryption a2:12:e3:d8:72:9c:45:57:ae:47:11:40:c6:5d:22:00:6d:68: ec:ed:5f:47:d7:89:5a:44:eb:a8:6d:41:c1:f5:f1:f3:97:05: 50:04:a6:5e:d7:e1:44:ff:0f:d2:b1:d4:c7:20:2e:12:a7:f4: 1f:6a:a4:14:81:6d:94:f4:fa:24:73:87:0a:48:fe:85:59:da: 08:2c:70:54:d4:23:6d:53:7c:4b:fa:55:ef:a8:e5:77:4d:21: 82:c1:eb:69:b6:1e:8d:ed:7d:99:97:7f:07:ca:d7:53:01:b7: d5:71:e8:28:6d:76:43:bb:91:31:8b:b7:69:c9:ea:3c:d9:24: 26:4d:43:78:c9:7e:84:21:ba:6e:1f:7f:83:45:25:0f:7d:b5: 0c:64:41:41:20:dd:11:13:95:58:07:be:cb:eb:7b:cc:45:19: 0e:7a:06:1e:3a:d4:38:cc:87:cd:72:71:a2:01:95:ed:d0:25: 30:c9:45:67:f7:12:b8:c5:dd:3b:cc:2a:ce:83:70:4b:a7:40: b3:b5:32:37:27:64:61:b9:75:b2:1f:99:c9:2a:76:71:de:53: de:27:ed:22:5b:a4:34:f6:74:8f:aa:41:0a:b5:7f:84:47:ac: 07:f6:2a:83:c0:13:b3:70:47:2e:6a:69:46:9e:db:16:e9:bb: 3e:16:e6:7a -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUEmSTiPkBA2cuIR2Vye3nGwHGzDIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhB ODFBOTNCRTAeFw0yNTA1MDQxNDU3MjRaFw0yNjA1MDMxNTAyMjRaMDMxMTAvBgNV BAMTKDRGN0MyOTYzNDQyM0Q0NkU3QTQ1MzNENDZGMEI3Rjc5RjFGOTNFOUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCU5jMWdeswbTjO2lHE4tISPJ6+ k3B0gkMybKV8W52IH8vkKoUfZ2jTcnKhJs+Qy1/L3z3SyRgf1+LWQMYHj9kU9JWT YLBt+O97XNo9/WJsHj+jEh8ZlBrTk7/fQBzyWVNTOM77Lk+n0dprDHLjP8ooFeUg oigvR3DLrZyNZVvRCndE4QDDqvltnqu6sl0F2+xLZYyadPUayeHVIWjOcpzOhsxY O+emReswI3IYPLVx/QQjvTeSt9WVsBsMcE19ORu0voV0H4av3DyD5QOXEtzccxeK fHayVXYjGlaKlTNEmN63+NuGu5B5UWQDett1u9cPeEmv9yuaJnYX+cmFXNxVAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUT3wpY0Qj1G56RTPUbwt/efH5Pp4wHwYDVR0j BBgwFoAUWrLwSLz51g1jI6cu9yVfOKgak74wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NmQ3ZWRlMS0zZmQwLTQ2MjQtYmVmOC0wZTczZTg0OTk0YmMvMC81QUIyRjA0OEJD RjlENjBENjMyM0E3MkVGNzI1NUYzOEE4MUE5M0JFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhBODFB OTNCRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI2ZDdlZGUxLTNmZDAtNDYyNC1i ZWY4LTBlNzNlODQ5OTRiYy8wLzMyMzQzMDM2M2EzMTMzNjMzMDNhMzgzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMxMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBhPAAAgw DQYJKoZIhvcNAQELBQADggEBAKIS49hynEVXrkcRQMZdIgBtaOztX0fXiVpE66ht QcH18fOXBVAEpl7X4UT/D9Kx1McgLhKn9B9qpBSBbZT0+iRzhwpI/oVZ2ggscFTU I21TfEv6Ve+o5XdNIYLB62m2Ho3tfZmXfwfK11MBt9Vx6ChtdkO7kTGLt2nJ6jzZ JCZNQ3jJfoQhum4ff4NFJQ99tQxkQUEg3RETlVgHvsvre8xFGQ56Bh461DjMh81y caIBle3QJTDJRWf3ErjF3TvMKs6DcEunQLO1MjcnZGG5dbIfmckqdnHeU94n7SJb pDT2dI+qQQq1f4RHrAf2KoPAE7NwRy5qaUae2xbpuz4W5no= -----END CERTIFICATE-----Generated at Thu May 8 12:18:16 2025 by rpki-client