$ rpki-client -vvf repo-rpki.idnic.net/repo/51e94243-87f0-426f-a9ca-4c19edb06b42/0/323430373a336538303a3a2f33322d3438203d3e203338373638.roa File: 323430373a336538303a3a2f33322d3438203d3e203338373638.roa (raw, json) Hash identifier: jCqzfoNt2x+8bcJ6fatZirQ8CiZyxgl3URZLZEZ3szo= Subject key identifier: B4:50:4D:A5:BF:C3:C9:32:D8:0A:DA:44:64:4C:A2:16:8C:4E:EE:AB Certificate issuer: /CN=FBACFC63658425B36399C4B9D0322622B8C5B7F0 Certificate serial: 2D29A00A4A4137013FB2F66C64A74DC1B2ED219C Authority key identifier: FB:AC:FC:63:65:84:25:B3:63:99:C4:B9:D0:32:26:22:B8:C5:B7:F0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FBACFC63658425B36399C4B9D0322622B8C5B7F0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/51e94243-87f0-426f-a9ca-4c19edb06b42/0/323430373a336538303a3a2f33322d3438203d3e203338373638.roa Signing time: Mon 16 Jun 2025 04:02:22 +0000 ROA not before: Mon 16 Jun 2025 03:57:22 +0000 ROA not after: Mon 15 Jun 2026 04:02:22 +0000 asID: 38768 IP address blocks: 2407:3e80::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/51e94243-87f0-426f-a9ca-4c19edb06b42/0/FBACFC63658425B36399C4B9D0322622B8C5B7F0.crl rsync://repo-rpki.idnic.net/repo/51e94243-87f0-426f-a9ca-4c19edb06b42/0/FBACFC63658425B36399C4B9D0322622B8C5B7F0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FBACFC63658425B36399C4B9D0322622B8C5B7F0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 04:54:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:29:a0:0a:4a:41:37:01:3f:b2:f6:6c:64:a7:4d:c1:b2:ed:21:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FBACFC63658425B36399C4B9D0322622B8C5B7F0 Validity Not Before: Jun 16 03:57:22 2025 GMT Not After : Jun 15 04:02:22 2026 GMT Subject: CN=B4504DA5BFC3C932D80ADA44644CA2168C4EEEAB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:6d:36:c6:c0:48:40:43:54:03:06:18:91:08: 46:28:1f:59:b8:99:c7:07:5c:59:0e:a7:cf:db:8b: 59:3c:98:74:01:b8:0e:69:73:2a:57:3d:5d:82:c4: 8b:a1:0b:08:43:00:73:10:62:0f:48:1e:8d:8d:79: 01:ed:cd:11:23:f8:05:13:04:09:44:e0:95:57:a6: ee:04:c8:d1:b6:8b:36:e2:6f:9c:3b:77:93:ed:1f: f7:05:99:f6:3d:03:b1:ce:ab:c3:e8:01:1d:10:7d: 45:ee:42:cd:28:e3:65:48:a8:5a:ad:a9:30:2d:71: 23:ca:a7:81:4d:25:df:ff:ea:14:e2:29:05:af:38: 4a:ab:29:fc:79:2b:5b:08:1b:cb:ab:de:79:19:e2: c7:be:11:63:e7:d4:b0:0d:e1:7f:00:fc:85:90:0c: b7:ed:5d:3f:2d:3c:55:62:30:cf:6d:a8:15:9c:e7: ce:32:cd:f7:46:35:0d:a1:0b:e1:d1:1e:ef:19:9f: e3:85:cc:19:3c:5d:6d:1a:51:93:c6:76:8f:81:39: 89:bc:4d:d1:70:5a:18:86:1a:27:1d:d3:94:8b:96: 16:c1:1e:50:38:e7:7e:31:b7:57:da:4e:87:87:4d: 6a:96:f5:a9:98:65:41:79:1f:b9:56:bc:84:8d:9d: 56:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:50:4D:A5:BF:C3:C9:32:D8:0A:DA:44:64:4C:A2:16:8C:4E:EE:AB X509v3 Authority Key Identifier: keyid:FB:AC:FC:63:65:84:25:B3:63:99:C4:B9:D0:32:26:22:B8:C5:B7:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/51e94243-87f0-426f-a9ca-4c19edb06b42/0/FBACFC63658425B36399C4B9D0322622B8C5B7F0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FBACFC63658425B36399C4B9D0322622B8C5B7F0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/51e94243-87f0-426f-a9ca-4c19edb06b42/0/323430373a336538303a3a2f33322d3438203d3e203338373638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:3e80::/32 Signature Algorithm: sha256WithRSAEncryption 01:e0:36:b4:95:c8:4b:62:29:00:0a:5a:9f:62:95:96:d7:72: 8a:50:df:2f:a7:78:ea:1d:7d:44:da:d3:ce:bd:a9:16:e4:1d: 29:64:01:87:60:15:9d:e6:e1:db:c7:b2:bc:af:95:40:24:18: b4:a2:65:78:dd:69:4d:9b:02:7b:ee:59:bb:3d:a9:74:68:30: f8:88:b4:75:de:dc:58:44:47:ae:5c:ab:49:ba:42:68:ba:f7: ef:e9:d9:d4:fa:66:41:69:dd:3b:59:7a:17:db:d9:51:d9:3d: f3:97:c4:45:51:38:fd:15:f3:b6:0d:b2:de:c4:46:d0:3d:85: bc:af:72:5a:77:f8:4c:35:fe:16:fb:cc:3f:28:b0:5d:34:45: f4:c5:d6:09:b8:9b:7e:24:f6:3c:78:52:42:fd:3e:92:0d:11: 88:d2:85:02:ee:83:b6:1b:52:95:4d:45:89:d2:0f:32:9b:4d: 94:10:62:ad:00:d1:73:01:20:86:bc:10:f1:74:9a:dc:b8:b1: fb:0b:ca:ee:32:47:4c:fc:5a:13:6b:cf:f1:17:16:1a:bd:8b: 16:22:fc:6e:82:96:5a:25:ef:91:13:e0:19:80:fb:b1:df:e8: 3a:8d:97:d2:3d:54:34:f1:3d:9c:7e:4c:f0:c6:f8:0f:3c:8f: 37:2d:69:39 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIULSmgCkpBNwE/svZsZKdNwbLtIZwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkJBQ0ZDNjM2NTg0MjVCMzYzOTlDNEI5RDAzMjI2MjJC OEM1QjdGMDAeFw0yNTA2MTYwMzU3MjJaFw0yNjA2MTUwNDAyMjJaMDMxMTAvBgNV BAMTKEI0NTA0REE1QkZDM0M5MzJEODBBREE0NDY0NENBMjE2OEM0RUVFQUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCobTbGwEhAQ1QDBhiRCEYoH1m4 mccHXFkOp8/bi1k8mHQBuA5pcypXPV2CxIuhCwhDAHMQYg9IHo2NeQHtzREj+AUT BAlE4JVXpu4EyNG2izbib5w7d5PtH/cFmfY9A7HOq8PoAR0QfUXuQs0o42VIqFqt qTAtcSPKp4FNJd//6hTiKQWvOEqrKfx5K1sIG8ur3nkZ4se+EWPn1LAN4X8A/IWQ DLftXT8tPFViMM9tqBWc584yzfdGNQ2hC+HRHu8Zn+OFzBk8XW0aUZPGdo+BOYm8 TdFwWhiGGicd05SLlhbBHlA4534xt1faToeHTWqW9amYZUF5H7lWvISNnVYFAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUtFBNpb/DyTLYCtpEZEyiFoxO7qswHwYDVR0j BBgwFoAU+6z8Y2WEJbNjmcS50DImIrjFt/AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MWU5NDI0My04N2YwLTQyNmYtYTljYS00YzE5ZWRiMDZiNDIvMC9GQkFDRkM2MzY1 ODQyNUIzNjM5OUM0QjlEMDMyMjYyMkI4QzVCN0YwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkJBQ0ZDNjM2NTg0MjVCMzYzOTlDNEI5RDAzMjI2MjJCOEM1 QjdGMC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUxZTk0MjQzLTg3ZjAtNDI2Zi1h OWNhLTRjMTllZGIwNmI0Mi8wLzMyMzQzMDM3M2EzMzY1MzgzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMzMzgzNzM2Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBz6AMA0GCSqGSIb3 DQEBCwUAA4IBAQAB4Da0lchLYikAClqfYpWW13KKUN8vp3jqHX1E2tPOvakW5B0p ZAGHYBWd5uHbx7K8r5VAJBi0omV43WlNmwJ77lm7Pal0aDD4iLR13txYREeuXKtJ ukJouvfv6dnU+mZBad07WXoX29lR2T3zl8RFUTj9FfO2DbLexEbQPYW8r3Jad/hM Nf4W+8w/KLBdNEX0xdYJuJt+JPY8eFJC/T6SDRGI0oUC7oO2G1KVTUWJ0g8ym02U EGKtANFzASCGvBDxdJrcuLH7C8ruMkdM/FoTa8/xFxYavYsWIvxugpZaJe+RE+AZ gPux3+g6jZfSPVQ08T2cfkzwxvgPPI83LWk5 -----END CERTIFICATE-----Generated at Tue Jul 1 17:54:35 2025 by rpki-client