$ rpki-client -vvf repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a613a3a2f34382d3438203d3e20313430343133.roa File: 323430363a313363303a613a3a2f34382d3438203d3e20313430343133.roa (raw, json) Hash identifier: E2mbQLtIdlxnYM18Po7s4O6v53R2Qoc6GrMKhL2r4OI= Subject key identifier: 4A:22:1B:FB:25:38:E8:1C:EB:62:3C:1E:1B:DE:45:54:60:C2:BC:A6 Certificate issuer: /CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Certificate serial: 2D606FDB43B226D4212717935AC505EFD91E6127 Authority key identifier: 5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a613a3a2f34382d3438203d3e20313430343133.roa Signing time: Sun 04 May 2025 15:02:26 +0000 ROA not before: Sun 04 May 2025 14:57:26 +0000 ROA not after: Sun 03 May 2026 15:02:26 +0000 asID: 140413 IP address blocks: 2406:13c0:a::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 08 May 2025 00:28:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:60:6f:db:43:b2:26:d4:21:27:17:93:5a:c5:05:ef:d9:1e:61:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Validity Not Before: May 4 14:57:26 2025 GMT Not After : May 3 15:02:26 2026 GMT Subject: CN=4A221BFB2538E81CEB623C1E1BDE455460C2BCA6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:cd:5b:6e:ab:a4:d9:a9:bb:6a:05:b8:71:3a: 79:8e:ed:ce:cf:08:13:da:17:aa:7d:75:83:d2:a8: 67:b6:28:e7:3a:81:bf:0f:b7:5f:a0:8f:fb:46:42: 1f:3d:86:b2:1a:65:29:97:74:33:da:9b:c1:fe:70: d0:b5:83:63:bc:4e:81:c0:10:86:27:94:fe:5d:e7: b8:1c:40:37:45:af:43:85:a6:77:9e:11:53:1a:f5: 55:75:cb:ab:80:64:db:12:3c:a5:a9:5f:42:b3:85: 75:0d:8a:d4:5c:99:5a:74:96:a9:9e:b1:1a:8e:c4: 6d:fe:48:d3:fb:56:16:04:a5:73:ab:96:21:22:3b: 78:cd:b5:0e:2e:84:af:7e:7e:35:d6:72:90:b1:83: b9:a7:91:95:d3:0d:ad:19:f7:b5:63:79:0f:c5:b7: f1:eb:e3:3c:8b:b3:fa:f5:23:4e:10:e2:47:6a:c5: 5a:d5:ad:99:55:9a:0f:f1:63:ae:79:8d:4f:95:82: 1e:1f:54:94:eb:6c:b7:26:bd:61:e2:ca:46:b5:00: 3d:e1:58:c0:b3:b3:41:b1:45:a4:f7:92:13:8d:6b: ee:90:80:31:cb:c6:23:60:35:a8:f3:c0:b5:b0:58: 7f:a4:ea:b8:ce:5e:26:7c:8b:e2:2d:a7:79:00:31: 7a:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:22:1B:FB:25:38:E8:1C:EB:62:3C:1E:1B:DE:45:54:60:C2:BC:A6 X509v3 Authority Key Identifier: keyid:5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a613a3a2f34382d3438203d3e20313430343133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:13c0:a::/48 Signature Algorithm: sha256WithRSAEncryption 1f:88:cb:54:69:51:7b:b5:b2:cc:6e:72:77:a4:0f:3d:8d:db: 65:ab:f3:ec:04:13:c4:dd:dc:19:0c:ff:9f:8d:cf:e9:9d:3f: 30:e9:9d:45:5e:bd:c0:2f:88:25:75:f9:68:cb:01:88:ce:97: 57:fa:49:81:e2:78:a5:c6:1c:20:e1:84:fb:43:9f:7b:aa:0d: 67:23:6f:01:a6:85:16:00:c7:67:e9:f9:4b:a2:c1:11:ad:a1: 96:e1:37:e6:71:ef:34:eb:d9:eb:ee:37:a7:fa:1d:c3:7c:98: d4:5c:29:c6:3e:52:d5:8a:3c:91:7a:fa:9e:02:12:b3:8a:26: 3b:48:5f:cf:99:ea:31:f4:a7:2f:8d:f0:87:e5:ff:a3:37:99: 7b:e5:8e:12:c2:c4:4c:d3:f7:71:0c:ff:cd:64:dd:cd:08:c2: 5d:9d:7a:62:d9:13:20:e0:33:cf:9b:0b:27:b3:88:c7:3c:3b: 43:9a:8d:c3:bd:37:46:37:82:63:92:c9:43:36:91:46:69:3e: 29:f0:52:35:9a:f9:73:f3:c8:63:36:f9:44:9b:c5:24:ae:1b: b3:5c:2a:d2:a8:20:1d:25:3b:35:14:40:24:32:3b:36:28:62: f5:f9:4a:97:23:a9:9c:b6:ad:ea:8d:fd:1c:06:9e:86:e9:ea: a8:a0:50:99 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIULWBv20OyJtQhJxeTWsUF79keYScwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhB ODFBOTNCRTAeFw0yNTA1MDQxNDU3MjZaFw0yNjA1MDMxNTAyMjZaMDMxMTAvBgNV BAMTKDRBMjIxQkZCMjUzOEU4MUNFQjYyM0MxRTFCREU0NTU0NjBDMkJDQTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKzVtuq6TZqbtqBbhxOnmO7c7P CBPaF6p9dYPSqGe2KOc6gb8Pt1+gj/tGQh89hrIaZSmXdDPam8H+cNC1g2O8ToHA EIYnlP5d57gcQDdFr0OFpneeEVMa9VV1y6uAZNsSPKWpX0KzhXUNitRcmVp0lqme sRqOxG3+SNP7VhYEpXOrliEiO3jNtQ4uhK9+fjXWcpCxg7mnkZXTDa0Z97VjeQ/F t/Hr4zyLs/r1I04Q4kdqxVrVrZlVmg/xY655jU+Vgh4fVJTrbLcmvWHiyka1AD3h WMCzs0GxRaT3khONa+6QgDHLxiNgNajzwLWwWH+k6rjOXiZ8i+Itp3kAMXr3AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUSiIb+yU46BzrYjweG95FVGDCvKYwHwYDVR0j BBgwFoAUWrLwSLz51g1jI6cu9yVfOKgak74wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NmQ3ZWRlMS0zZmQwLTQ2MjQtYmVmOC0wZTczZTg0OTk0YmMvMC81QUIyRjA0OEJD RjlENjBENjMyM0E3MkVGNzI1NUYzOEE4MUE5M0JFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhBODFB OTNCRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI2ZDdlZGUxLTNmZDAtNDYyNC1i ZWY4LTBlNzNlODQ5OTRiYy8wLzMyMzQzMDM2M2EzMTMzNjMzMDNhNjEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMxMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBhPAAAow DQYJKoZIhvcNAQELBQADggEBAB+Iy1RpUXu1ssxucnekDz2N22Wr8+wEE8Td3BkM /5+Nz+mdPzDpnUVevcAviCV1+WjLAYjOl1f6SYHieKXGHCDhhPtDn3uqDWcjbwGm hRYAx2fp+UuiwRGtoZbhN+Zx7zTr2evuN6f6HcN8mNRcKcY+UtWKPJF6+p4CErOK JjtIX8+Z6jH0py+N8Ifl/6M3mXvljhLCxEzT93EM/81k3c0Iwl2demLZEyDgM8+b CyeziMc8O0OajcO9N0Y3gmOSyUM2kUZpPinwUjWa+XPzyGM2+USbxSSuG7NcKtKo IB0lOzUUQCQyOzYoYvX5SpcjqZy2reqN/RwGnobp6qigUJk= -----END CERTIFICATE-----Generated at Wed May 7 11:39:26 2025 by rpki-client