$ rpki-client -vvf repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a633a3a2f34382d3438203d3e20313430343133.roa File: 323430363a313363303a633a3a2f34382d3438203d3e20313430343133.roa (raw, json) Hash identifier: SDN3qm6IB8N9HF40taceNvsGv3NpAGXMiVjPo6QgiNc= Subject key identifier: 4A:C4:3A:80:A2:A7:F7:8D:A8:BF:CC:35:6D:D4:42:C4:45:5F:1B:7A Certificate issuer: /CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Certificate serial: 3157607E7B37C4B49B07BCF171ABF098431673C5 Authority key identifier: 5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a633a3a2f34382d3438203d3e20313430343133.roa Signing time: Sun 04 May 2025 15:02:23 +0000 ROA not before: Sun 04 May 2025 14:57:23 +0000 ROA not after: Sun 03 May 2026 15:02:23 +0000 asID: 140413 IP address blocks: 2406:13c0:c::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 08:31:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:57:60:7e:7b:37:c4:b4:9b:07:bc:f1:71:ab:f0:98:43:16:73:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Validity Not Before: May 4 14:57:23 2025 GMT Not After : May 3 15:02:23 2026 GMT Subject: CN=4AC43A80A2A7F78DA8BFCC356DD442C4455F1B7A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:7f:42:ff:4a:aa:f4:f5:03:69:e2:83:e5:85: 0e:d5:85:b0:d3:0e:9b:4d:fa:cc:d5:62:be:bb:dc: da:c0:ae:45:d8:d1:5b:ed:5b:7d:59:7a:e0:4f:57: be:c3:6b:6c:86:ce:19:4c:f1:48:4d:33:c8:bf:e1: b7:8c:17:e3:8b:35:e7:2d:61:4b:da:74:4c:fb:aa: a5:38:ff:c3:71:42:c8:55:c5:3e:e1:2c:58:0f:af: 81:b6:45:fc:06:22:07:e4:f4:23:5e:58:96:21:f6: 89:5d:b1:39:e3:5e:62:74:28:07:30:18:fb:94:eb: 4d:ff:af:13:04:49:c0:b5:cf:54:3d:44:05:b4:54: 20:a0:be:1d:66:32:09:40:57:bf:3c:50:06:e8:d7: e3:c6:74:93:49:d2:53:f8:c2:44:32:db:fb:de:66: 95:be:a5:32:bb:87:0f:8a:f3:8e:68:48:a0:69:8a: 46:0f:37:a3:72:e0:16:95:fb:2f:7d:65:c8:af:54: 00:b0:48:fb:88:ae:cd:56:8a:ff:86:d3:66:9e:a9: 77:10:66:59:15:f4:f8:79:d1:6e:77:84:f5:d5:3b: c6:12:51:9c:ff:d1:0b:66:1d:06:35:e7:ab:a5:d4: 82:60:02:69:cf:51:fc:1d:72:40:b1:02:4b:82:ab: 77:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:C4:3A:80:A2:A7:F7:8D:A8:BF:CC:35:6D:D4:42:C4:45:5F:1B:7A X509v3 Authority Key Identifier: keyid:5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a633a3a2f34382d3438203d3e20313430343133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:13c0:c::/48 Signature Algorithm: sha256WithRSAEncryption 15:bd:65:d9:52:4a:2d:fb:52:94:cc:dc:ef:fa:73:d5:3a:39: 87:bc:d5:5e:32:7b:ec:19:ff:12:c2:fd:55:15:f1:f2:43:d9: 3a:44:bd:19:ad:0c:c8:11:82:41:03:09:e2:d0:e1:68:20:e2: 92:0c:bf:0c:ad:f0:2f:db:0c:23:07:91:b1:17:58:85:ef:c7: b0:a7:af:e4:25:6c:ff:e0:02:8e:75:2a:18:7a:40:98:db:94: b5:52:19:f9:c0:0d:d2:5f:f1:b6:9e:6e:91:bd:26:3a:6d:17: e7:5e:4f:99:08:71:87:6b:bf:fa:1b:3f:1c:95:01:c6:51:56: 58:e7:c3:29:59:08:c7:56:92:39:51:91:f7:80:5f:18:c0:75: d4:71:ba:dd:65:0c:21:e7:34:c5:07:fd:aa:1a:ee:b8:42:0c: ab:cc:93:a1:99:bd:71:b7:4a:df:eb:58:1c:90:7e:7d:45:7d: bc:fe:16:02:0e:72:3b:aa:45:54:5d:48:51:8d:81:5a:8c:f4: 35:7b:10:e5:50:48:56:9b:9b:9c:26:37:b1:b5:54:bd:12:b4: f6:b5:6a:2b:e2:c6:34:62:57:e9:a4:fc:cc:69:7a:f4:eb:c2: 40:f0:a8:d2:5d:da:6f:4d:5b:b6:d3:90:16:dd:75:eb:40:2b: ee:45:2a:e4 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUMVdgfns3xLSbB7zxcavwmEMWc8UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhB ODFBOTNCRTAeFw0yNTA1MDQxNDU3MjNaFw0yNjA1MDMxNTAyMjNaMDMxMTAvBgNV BAMTKDRBQzQzQTgwQTJBN0Y3OERBOEJGQ0MzNTZERDQ0MkM0NDU1RjFCN0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDwf0L/Sqr09QNp4oPlhQ7VhbDT DptN+szVYr673NrArkXY0VvtW31ZeuBPV77Da2yGzhlM8UhNM8i/4beMF+OLNect YUvadEz7qqU4/8NxQshVxT7hLFgPr4G2RfwGIgfk9CNeWJYh9oldsTnjXmJ0KAcw GPuU603/rxMEScC1z1Q9RAW0VCCgvh1mMglAV788UAbo1+PGdJNJ0lP4wkQy2/ve ZpW+pTK7hw+K845oSKBpikYPN6Ny4BaV+y99ZcivVACwSPuIrs1Wiv+G02aeqXcQ ZlkV9Ph50W53hPXVO8YSUZz/0QtmHQY156ul1IJgAmnPUfwdckCxAkuCq3eJAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUSsQ6gKKn942ov8w1bdRCxEVfG3owHwYDVR0j BBgwFoAUWrLwSLz51g1jI6cu9yVfOKgak74wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NmQ3ZWRlMS0zZmQwLTQ2MjQtYmVmOC0wZTczZTg0OTk0YmMvMC81QUIyRjA0OEJD RjlENjBENjMyM0E3MkVGNzI1NUYzOEE4MUE5M0JFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhBODFB OTNCRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI2ZDdlZGUxLTNmZDAtNDYyNC1i ZWY4LTBlNzNlODQ5OTRiYy8wLzMyMzQzMDM2M2EzMTMzNjMzMDNhNjMzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMxMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBhPAAAww DQYJKoZIhvcNAQELBQADggEBABW9ZdlSSi37UpTM3O/6c9U6OYe81V4ye+wZ/xLC /VUV8fJD2TpEvRmtDMgRgkEDCeLQ4Wgg4pIMvwyt8C/bDCMHkbEXWIXvx7Cnr+Ql bP/gAo51Khh6QJjblLVSGfnADdJf8baebpG9JjptF+deT5kIcYdrv/obPxyVAcZR VljnwylZCMdWkjlRkfeAXxjAddRxut1lDCHnNMUH/aoa7rhCDKvMk6GZvXG3St/r WByQfn1Ffbz+FgIOcjuqRVRdSFGNgVqM9DV7EOVQSFabm5wmN7G1VL0StPa1aivi xjRiV+mk/MxpevTrwkDwqNJd2m9NW7bTkBbddetAK+5FKuQ= -----END CERTIFICATE-----Generated at Mon Oct 20 20:44:17 2025 by rpki-client