$ rpki-client -vvf repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a363a3a2f34382d3438203d3e20313339393439.roa File: 323430353a616163303a363a3a2f34382d3438203d3e20313339393439.roa (raw, json) Hash identifier: JI0w6pTieSf2WTseZM5bkzS6iivykHspYYViWrkRs3w= Subject key identifier: FB:27:18:27:F7:3B:58:33:DC:6E:9B:19:F1:57:FB:51:D6:ED:D7:F3 Certificate issuer: /CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Certificate serial: 2115D78BB32EC5AD01D7BF4AC8D8126641E3DD07 Authority key identifier: DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a363a3a2f34382d3438203d3e20313339393439.roa Signing time: Thu 08 May 2025 05:02:21 +0000 ROA not before: Thu 08 May 2025 04:57:21 +0000 ROA not after: Thu 07 May 2026 05:02:21 +0000 asID: 139949 IP address blocks: 2405:aac0:6::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 12:41:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:15:d7:8b:b3:2e:c5:ad:01:d7:bf:4a:c8:d8:12:66:41:e3:dd:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Validity Not Before: May 8 04:57:21 2025 GMT Not After : May 7 05:02:21 2026 GMT Subject: CN=FB271827F73B5833DC6E9B19F157FB51D6EDD7F3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:41:dc:a2:a2:7c:68:e7:94:fc:b6:6c:66:67: ae:41:b7:09:69:de:01:73:28:ec:5d:20:1f:6c:5e: 99:7b:c9:1b:0d:0a:e2:55:a4:ed:5e:b7:e3:2e:4c: a0:bd:aa:53:ec:c1:52:8d:60:57:d0:2b:77:64:7e: 7e:28:22:4a:6f:5f:71:bf:17:db:9f:35:d9:ba:4b: b8:7d:56:c3:17:c1:05:f9:92:4a:27:86:4d:7d:34: 95:57:bc:67:07:ad:fa:e0:9a:9c:b0:4a:2a:fa:de: ab:d3:58:56:32:84:33:a1:79:4a:7c:22:f9:88:24: ae:2b:bc:84:9d:4b:1a:d2:c2:d5:2e:66:c5:e0:f2: c8:fe:7d:f5:78:c5:48:a1:55:9b:19:7a:c1:6a:86: c1:78:31:12:7a:95:41:be:59:f2:95:9b:7f:c9:7b: db:86:da:94:55:3e:12:56:ea:30:e7:5e:00:99:b9: 6b:a2:0f:92:22:ad:43:f7:2e:1d:da:74:ec:21:60: 4b:ef:e5:ec:d1:f6:eb:dd:85:83:bb:18:ee:1f:ec: 01:01:42:45:2c:3d:46:bb:bf:eb:9b:27:d1:f8:b5: d9:70:06:36:a4:56:5a:b6:39:5d:29:98:42:77:0d: 02:f4:d5:fd:43:a1:b4:de:96:0e:5c:be:2e:43:71: b1:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:27:18:27:F7:3B:58:33:DC:6E:9B:19:F1:57:FB:51:D6:ED:D7:F3 X509v3 Authority Key Identifier: keyid:DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a363a3a2f34382d3438203d3e20313339393439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:aac0:6::/48 Signature Algorithm: sha256WithRSAEncryption 0f:8f:be:68:bb:98:de:c7:76:45:9e:6e:6d:65:45:84:07:dc: 80:9a:5f:8c:78:d2:0e:18:43:d0:26:f1:b8:f4:85:82:cc:69: f4:86:92:a6:ea:a9:1a:27:81:ce:29:b6:76:46:1e:c0:e3:bd: e5:2f:11:2a:1f:1e:de:51:5b:d8:65:ae:f4:0d:c3:7a:54:3a: 5f:6a:e3:04:58:7d:a9:d1:2b:9c:cf:b2:48:fe:e3:5b:88:a4: 8d:db:1a:ab:d6:a5:59:b9:21:8e:c7:5e:96:c1:79:42:b5:7d: ed:fc:a8:1e:b4:1a:0f:42:40:9a:80:76:68:77:a4:32:8b:2e: 48:73:16:a5:8b:5f:ee:30:01:67:19:07:38:e3:24:fe:b0:53: 21:a6:02:dd:4d:2a:b0:55:70:96:83:25:fb:85:17:d3:c0:56: 2d:f3:65:15:62:3f:b0:85:33:14:50:fb:ac:d9:13:f3:65:21: 30:a8:99:74:c6:d4:15:d9:4e:1d:d8:1e:d9:45:95:37:c3:2b: 24:50:67:8a:dd:9b:c1:7c:67:e8:85:53:f5:9e:9c:34:52:d1: 5c:f4:d9:9c:5c:fa:86:39:b4:f7:f2:b3:21:d1:52:52:70:2b: 37:8d:8d:8e:3f:f3:dc:7d:19:16:b1:9b:86:a5:27:61:c7:3c: ba:1a:92:c4 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUIRXXi7Muxa0B179KyNgSZkHj3QcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAx NjRGRTVDRjAeFw0yNTA1MDgwNDU3MjFaFw0yNjA1MDcwNTAyMjFaMDMxMTAvBgNV BAMTKEZCMjcxODI3RjczQjU4MzNEQzZFOUIxOUYxNTdGQjUxRDZFREQ3RjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9Qdyionxo55T8tmxmZ65Btwlp 3gFzKOxdIB9sXpl7yRsNCuJVpO1et+MuTKC9qlPswVKNYFfQK3dkfn4oIkpvX3G/ F9ufNdm6S7h9VsMXwQX5kkonhk19NJVXvGcHrfrgmpywSir63qvTWFYyhDOheUp8 IvmIJK4rvISdSxrSwtUuZsXg8sj+ffV4xUihVZsZesFqhsF4MRJ6lUG+WfKVm3/J e9uG2pRVPhJW6jDnXgCZuWuiD5IirUP3Lh3adOwhYEvv5ezR9uvdhYO7GO4f7AEB QkUsPUa7v+ubJ9H4tdlwBjakVlq2OV0pmEJ3DQL01f1DobTelg5cvi5DcbGfAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQU+ycYJ/c7WDPcbpsZ8Vf7Udbt1/MwHwYDVR0j BBgwFoAU2odmqQhRrkTXa4Vj2DWG8BZP5c8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZGVkYzAzMy1jZDRkLTQ2MjAtOTM3Mi1lNmUwMzlmYzA2YjkvMC9EQTg3NjZBOTA4 NTFBRTQ0RDc2Qjg1NjNEODM1ODZGMDE2NEZFNUNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAxNjRG RTVDRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNkZWRjMDMzLWNkNGQtNDYyMC05 MzcyLWU2ZTAzOWZjMDZiOS8wLzMyMzQzMDM1M2E2MTYxNjMzMDNhMzYzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzkzOTM0Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBarAAAYw DQYJKoZIhvcNAQELBQADggEBAA+Pvmi7mN7HdkWebm1lRYQH3ICaX4x40g4YQ9Am 8bj0hYLMafSGkqbqqRongc4ptnZGHsDjveUvESofHt5RW9hlrvQNw3pUOl9q4wRY fanRK5zPskj+41uIpI3bGqvWpVm5IY7HXpbBeUK1fe38qB60Gg9CQJqAdmh3pDKL LkhzFqWLX+4wAWcZBzjjJP6wUyGmAt1NKrBVcJaDJfuFF9PAVi3zZRViP7CFMxRQ +6zZE/NlITComXTG1BXZTh3YHtlFlTfDKyRQZ4rdm8F8Z+iFU/WenDRS0Vz02Zxc +oY5tPfysyHRUlJwKzeNjY4/89x9GRaxm4alJ2HHPLoaksQ= -----END CERTIFICATE-----Generated at Sun May 11 19:16:58 2025 by rpki-client