$ rpki-client -vvf repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a643a3a2f34382d3438203d3e20313430343133.roa File: 323430363a313363303a643a3a2f34382d3438203d3e20313430343133.roa (raw, json) Hash identifier: AHvcTCMLEy/XIp7laYrrKnghYH6iwtgODIRCAU7uthM= Subject key identifier: 22:72:30:73:69:AC:4A:09:80:56:F1:0A:F6:37:2D:24:ED:BE:B8:16 Certificate issuer: /CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Certificate serial: 6FC4C826D1D973BE02794E9FCED69B3D7771093C Authority key identifier: 5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a643a3a2f34382d3438203d3e20313430343133.roa Signing time: Sun 04 May 2025 15:02:23 +0000 ROA not before: Sun 04 May 2025 14:57:23 +0000 ROA not after: Sun 03 May 2026 15:02:23 +0000 asID: 140413 IP address blocks: 2406:13c0:d::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 03:25:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:c4:c8:26:d1:d9:73:be:02:79:4e:9f:ce:d6:9b:3d:77:71:09:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Validity Not Before: May 4 14:57:23 2025 GMT Not After : May 3 15:02:23 2026 GMT Subject: CN=2272307369AC4A098056F10AF6372D24EDBEB816 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:99:92:f6:be:dd:ce:fc:b7:c6:4b:d4:5b:dd: 98:dd:99:96:b7:de:22:db:c1:4e:d4:8a:c6:4e:d6: 9c:5a:20:df:12:51:d7:77:44:57:51:6e:6d:b4:33: 00:6a:c9:69:7a:91:e7:39:a5:ab:fb:76:0d:2e:02: ce:96:d2:de:92:fa:e5:3f:0e:e9:89:f9:95:e7:6a: 87:1a:67:b2:5d:78:48:02:c6:89:84:8d:2e:d1:02: 72:5b:7d:9e:c5:cc:f0:a8:45:bb:cf:29:e3:2d:fc: de:12:be:c0:67:b1:0c:f5:61:0f:95:e8:d7:2f:df: a9:cd:84:32:55:6e:b3:7d:3e:b0:99:e8:40:16:c1: 95:68:84:10:2b:d7:cd:b6:54:6a:77:15:3f:6f:be: b4:a1:f8:14:76:5c:d4:ba:be:e0:4c:96:a2:2b:d7: e1:48:4d:de:20:a0:9a:73:a6:35:57:01:c1:0d:fb: 9d:b9:10:9a:57:02:87:35:e5:4c:9d:06:21:36:b5: 60:25:16:d1:89:97:47:52:79:9c:38:93:48:11:d8: 4a:3a:41:31:65:67:fe:99:f4:c2:7b:f9:e7:5f:8c: 58:4d:db:5a:3d:5a:64:31:67:bf:7b:02:b8:7c:78: 21:a3:a2:12:80:36:2f:aa:a0:c5:0e:e0:7d:1a:24: cb:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:72:30:73:69:AC:4A:09:80:56:F1:0A:F6:37:2D:24:ED:BE:B8:16 X509v3 Authority Key Identifier: keyid:5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a643a3a2f34382d3438203d3e20313430343133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:13c0:d::/48 Signature Algorithm: sha256WithRSAEncryption 9f:78:77:7d:a8:78:7a:3f:79:0f:3e:b1:93:62:1f:b0:59:42: 65:54:dd:e9:fd:4d:11:62:d9:3e:1f:fd:6a:dd:47:6e:42:5d: 42:10:8f:5a:64:88:ea:42:55:2a:f0:d5:f0:95:1d:aa:02:45: 91:07:54:b6:da:1c:6a:7c:d7:50:40:d7:64:95:64:93:8b:b8: 6a:07:48:79:b2:d5:b9:9c:13:0e:5e:01:ce:e5:27:74:2e:f8: a8:44:08:e8:99:43:b5:06:df:41:dc:74:52:7c:1a:7b:4a:79: 13:1f:71:0c:87:74:eb:7c:ee:1e:b3:2e:b8:f4:2e:58:c8:54: 3b:ba:19:9a:98:66:40:22:0d:5f:13:f6:8b:5d:87:d6:ac:14: 3e:09:1b:f7:fb:62:ee:1e:8b:ae:70:ea:e1:ed:f8:ed:48:5f: 88:59:51:15:31:b5:ac:8e:d8:f8:d1:7a:3a:97:0b:15:e7:4f: 6d:32:c2:21:9d:ac:0e:67:1c:f2:07:43:59:94:2a:5a:ff:2d: 46:74:33:31:b0:2f:da:a6:e9:38:ca:bf:55:12:b3:98:f4:87: 29:fe:7c:fa:c1:97:16:95:98:f2:c5:91:ac:98:a6:42:b1:de: f1:af:d6:62:6f:60:50:bf:4c:fe:00:81:57:f6:98:45:1a:69: a2:b3:4a:97 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUb8TIJtHZc74CeU6fztabPXdxCTwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhB ODFBOTNCRTAeFw0yNTA1MDQxNDU3MjNaFw0yNjA1MDMxNTAyMjNaMDMxMTAvBgNV BAMTKDIyNzIzMDczNjlBQzRBMDk4MDU2RjEwQUY2MzcyRDI0RURCRUI4MTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/mZL2vt3O/LfGS9Rb3ZjdmZa3 3iLbwU7UisZO1pxaIN8SUdd3RFdRbm20MwBqyWl6kec5pav7dg0uAs6W0t6S+uU/ DumJ+ZXnaocaZ7JdeEgCxomEjS7RAnJbfZ7FzPCoRbvPKeMt/N4SvsBnsQz1YQ+V 6Ncv36nNhDJVbrN9PrCZ6EAWwZVohBAr1822VGp3FT9vvrSh+BR2XNS6vuBMlqIr 1+FITd4goJpzpjVXAcEN+525EJpXAoc15UydBiE2tWAlFtGJl0dSeZw4k0gR2Eo6 QTFlZ/6Z9MJ7+edfjFhN21o9WmQxZ797Arh8eCGjohKANi+qoMUO4H0aJMv1AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUInIwc2msSgmAVvEK9jctJO2+uBYwHwYDVR0j BBgwFoAUWrLwSLz51g1jI6cu9yVfOKgak74wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NmQ3ZWRlMS0zZmQwLTQ2MjQtYmVmOC0wZTczZTg0OTk0YmMvMC81QUIyRjA0OEJD RjlENjBENjMyM0E3MkVGNzI1NUYzOEE4MUE5M0JFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhBODFB OTNCRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI2ZDdlZGUxLTNmZDAtNDYyNC1i ZWY4LTBlNzNlODQ5OTRiYy8wLzMyMzQzMDM2M2EzMTMzNjMzMDNhNjQzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMxMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBhPAAA0w DQYJKoZIhvcNAQELBQADggEBAJ94d32oeHo/eQ8+sZNiH7BZQmVU3en9TRFi2T4f /WrdR25CXUIQj1pkiOpCVSrw1fCVHaoCRZEHVLbaHGp811BA12SVZJOLuGoHSHmy 1bmcEw5eAc7lJ3Qu+KhECOiZQ7UG30HcdFJ8GntKeRMfcQyHdOt87h6zLrj0LljI VDu6GZqYZkAiDV8T9otdh9asFD4JG/f7Yu4ei65w6uHt+O1IX4hZURUxtayO2PjR ejqXCxXnT20ywiGdrA5nHPIHQ1mUKlr/LUZ0MzGwL9qm6TjKv1USs5j0hyn+fPrB lxaVmPLFkayYpkKx3vGv1mJvYFC/TP4AgVf2mEUaaaKzSpc= -----END CERTIFICATE-----Generated at Thu May 8 00:13:37 2025 by rpki-client