$ rpki-client -vvf repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a653a3a2f34382d3438203d3e20313430343133.roa File: 323430363a313363303a653a3a2f34382d3438203d3e20313430343133.roa (raw, json) Hash identifier: f4HuOcLxZFUEjT9VvTe4bqIT2DldLAxhqn5BGEuGaVY= Subject key identifier: 14:10:47:81:A0:5D:F5:13:AB:96:CC:E5:82:E3:45:61:21:CC:34:A5 Certificate issuer: /CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Certificate serial: 164BD51A8DD9A22874688F156780CE485EE608E9 Authority key identifier: 5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a653a3a2f34382d3438203d3e20313430343133.roa Signing time: Sun 04 May 2025 14:00:00 +0000 ROA not before: Sun 04 May 2025 13:55:00 +0000 ROA not after: Sun 03 May 2026 14:00:00 +0000 asID: 140413 IP address blocks: 2406:13c0:e::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 03:25:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:4b:d5:1a:8d:d9:a2:28:74:68:8f:15:67:80:ce:48:5e:e6:08:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5AB2F048BCF9D60D6323A72EF7255F38A81A93BE Validity Not Before: May 4 13:55:00 2025 GMT Not After : May 3 14:00:00 2026 GMT Subject: CN=14104781A05DF513AB96CCE582E3456121CC34A5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:af:b3:49:42:27:da:0a:df:4d:85:04:ae:5f: 0d:c3:19:19:2d:97:3b:99:49:ff:9d:ff:91:d3:9b: c7:02:ad:69:2b:a2:86:db:88:18:2c:7e:a8:da:30: 3d:e8:5d:dd:c5:0e:1b:eb:5f:86:05:31:17:33:8c: 1d:67:ea:5c:f0:97:12:b0:43:97:ff:48:14:b3:48: 22:1b:14:b4:7a:1a:56:9d:62:03:f8:f6:93:e4:e3: ce:76:d4:8d:34:9d:6e:4f:b2:34:d7:75:a8:5b:eb: 64:47:34:8b:a2:d5:9a:a8:e2:b1:6f:08:82:47:0e: 23:f1:a7:0f:1a:09:86:78:f5:9e:5d:29:89:52:d4: 66:ee:bb:05:7c:15:87:e1:86:58:52:42:4c:9d:d2: 55:60:80:8d:d2:d7:6d:15:c0:6b:2d:3b:cd:9b:10: 23:cf:b1:d9:cd:ad:1e:b7:37:60:7b:0d:d5:aa:51: 51:56:2d:f6:3e:fd:d4:f4:dc:18:5f:1a:b9:95:85: bc:76:04:ff:79:c3:16:fd:06:a8:15:54:db:16:e4: 03:6a:2f:95:5d:aa:b8:f3:bc:3d:76:b5:41:c3:b0: 0c:71:cb:a6:a1:1e:f0:f0:97:e0:82:cd:a6:c8:1f: 75:07:41:d4:2b:03:0a:3f:66:a1:cc:a3:b3:4e:77: cd:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:10:47:81:A0:5D:F5:13:AB:96:CC:E5:82:E3:45:61:21:CC:34:A5 X509v3 Authority Key Identifier: keyid:5A:B2:F0:48:BC:F9:D6:0D:63:23:A7:2E:F7:25:5F:38:A8:1A:93:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5AB2F048BCF9D60D6323A72EF7255F38A81A93BE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/26d7ede1-3fd0-4624-bef8-0e73e84994bc/0/323430363a313363303a653a3a2f34382d3438203d3e20313430343133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:13c0:e::/48 Signature Algorithm: sha256WithRSAEncryption 34:10:81:e5:3e:0b:7b:dd:d4:25:82:34:fb:6f:ec:97:3f:59: c4:67:d5:91:9b:bf:44:91:f5:12:fa:ed:6d:71:d8:e0:ef:60: 00:1b:89:58:c0:fb:bd:68:0c:37:c3:82:a9:38:78:fb:54:22: c8:48:0c:b3:7d:b8:52:f6:91:33:b0:5c:f5:83:4c:f1:5b:a2: 52:f0:32:5f:4c:a4:34:e2:1f:85:f9:95:d3:95:a6:da:a8:fc: 0c:5e:7f:88:2d:1a:f7:b2:9b:cb:3f:1c:fd:a5:66:16:d1:de: f3:20:ba:0a:f5:d6:d0:a0:d2:5f:73:31:c0:2e:05:a6:6e:7b: a5:b6:ef:93:69:e8:ca:39:ec:b9:6d:68:b4:a1:e4:83:70:24: d9:5c:19:61:76:6c:a8:f4:a8:8a:03:e0:72:7c:93:88:8e:d7: 58:f4:d3:ee:27:48:01:6a:00:7c:33:c9:a9:f8:d9:a3:34:73: 33:dc:96:27:fd:9b:09:24:8c:55:5d:2d:6a:40:33:bd:f0:82: 96:09:c8:b8:7d:eb:e0:93:d2:97:1c:06:4b:c0:0f:5d:a7:67: c7:38:63:32:67:62:01:8b:f8:b2:8d:93:e9:36:e0:28:39:0e: e2:f9:9b:67:2e:37:cc:fa:0d:2f:4d:d9:58:72:1f:d2:30:28: a5:cf:c8:1d -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUFkvVGo3Zoih0aI8VZ4DOSF7mCOkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhB ODFBOTNCRTAeFw0yNTA1MDQxMzU1MDBaFw0yNjA1MDMxNDAwMDBaMDMxMTAvBgNV BAMTKDE0MTA0NzgxQTA1REY1MTNBQjk2Q0NFNTgyRTM0NTYxMjFDQzM0QTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPr7NJQifaCt9NhQSuXw3DGRkt lzuZSf+d/5HTm8cCrWkroobbiBgsfqjaMD3oXd3FDhvrX4YFMRczjB1n6lzwlxKw Q5f/SBSzSCIbFLR6GladYgP49pPk48521I00nW5PsjTXdahb62RHNIui1Zqo4rFv CIJHDiPxpw8aCYZ49Z5dKYlS1GbuuwV8FYfhhlhSQkyd0lVggI3S120VwGstO82b ECPPsdnNrR63N2B7DdWqUVFWLfY+/dT03BhfGrmVhbx2BP95wxb9BqgVVNsW5ANq L5VdqrjzvD12tUHDsAxxy6ahHvDwl+CCzabIH3UHQdQrAwo/ZqHMo7NOd80RAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUFBBHgaBd9ROrlszlguNFYSHMNKUwHwYDVR0j BBgwFoAUWrLwSLz51g1jI6cu9yVfOKgak74wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NmQ3ZWRlMS0zZmQwLTQ2MjQtYmVmOC0wZTczZTg0OTk0YmMvMC81QUIyRjA0OEJD RjlENjBENjMyM0E3MkVGNzI1NUYzOEE4MUE5M0JFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUFCMkYwNDhCQ0Y5RDYwRDYzMjNBNzJFRjcyNTVGMzhBODFB OTNCRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI2ZDdlZGUxLTNmZDAtNDYyNC1i ZWY4LTBlNzNlODQ5OTRiYy8wLzMyMzQzMDM2M2EzMTMzNjMzMDNhNjUzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMxMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBhPAAA4w DQYJKoZIhvcNAQELBQADggEBADQQgeU+C3vd1CWCNPtv7Jc/WcRn1ZGbv0SR9RL6 7W1x2ODvYAAbiVjA+71oDDfDgqk4ePtUIshIDLN9uFL2kTOwXPWDTPFbolLwMl9M pDTiH4X5ldOVptqo/Axef4gtGveym8s/HP2lZhbR3vMgugr11tCg0l9zMcAuBaZu e6W275Np6Mo57LltaLSh5INwJNlcGWF2bKj0qIoD4HJ8k4iO11j00+4nSAFqAHwz yan42aM0czPclif9mwkkjFVdLWpAM73wgpYJyLh96+CT0pccBkvAD12nZ8c4YzJn YgGL+LKNk+k24Cg5DuL5m2cuN8z6DS9N2VhyH9IwKKXPyB0= -----END CERTIFICATE-----Generated at Wed May 7 19:29:15 2025 by rpki-client