$ rpki-client -vvf repo-rpki.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/323430343a613634303a36363a3a2f34382d3438203d3e20313333383237.roa File: 323430343a613634303a36363a3a2f34382d3438203d3e20313333383237.roa (raw, json) Hash identifier: 2VTD3WI/p1+3+37bAKEOPoRJrNamvZNDqASz/hNbToE= Subject key identifier: B1:A1:DB:E3:8C:94:AE:BB:2D:23:B1:8D:AC:23:86:8C:A5:68:4E:94 Certificate issuer: /CN=0CE6A79D53D829F2A55623676E8D2A9A569F836F Certificate serial: 2ACD108B2B67500223FA99DC8956F0F11B02A9FC Authority key identifier: 0C:E6:A7:9D:53:D8:29:F2:A5:56:23:67:6E:8D:2A:9A:56:9F:83:6F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0CE6A79D53D829F2A55623676E8D2A9A569F836F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/323430343a613634303a36363a3a2f34382d3438203d3e20313333383237.roa Signing time: Fri 02 May 2025 03:00:46 +0000 ROA not before: Fri 02 May 2025 02:55:46 +0000 ROA not after: Fri 01 May 2026 03:00:46 +0000 asID: 133827 IP address blocks: 2404:a640:66::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/0CE6A79D53D829F2A55623676E8D2A9A569F836F.crl rsync://repo-rpki.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/0CE6A79D53D829F2A55623676E8D2A9A569F836F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0CE6A79D53D829F2A55623676E8D2A9A569F836F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 14 May 2025 10:55:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:cd:10:8b:2b:67:50:02:23:fa:99:dc:89:56:f0:f1:1b:02:a9:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0CE6A79D53D829F2A55623676E8D2A9A569F836F Validity Not Before: May 2 02:55:46 2025 GMT Not After : May 1 03:00:46 2026 GMT Subject: CN=B1A1DBE38C94AEBB2D23B18DAC23868CA5684E94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:38:ba:06:1a:db:06:a9:e9:de:8a:0e:8f:7c: 39:61:42:15:9a:4a:14:45:0a:58:86:a1:a5:f2:7e: 96:17:b9:a7:95:67:cd:d1:57:08:0d:6d:78:4d:a4: 36:df:bb:13:83:f6:a7:91:ad:10:6e:46:16:b3:97: 80:99:36:8c:f2:77:f8:38:94:52:41:b1:93:98:2d: 70:07:f2:5c:3d:dd:f7:fc:58:2b:4c:46:50:a6:94: b9:99:cd:08:c3:05:c3:19:46:73:23:51:73:13:13: d0:d9:ce:c3:97:03:be:d5:d6:27:3d:0f:47:ad:7b: c4:77:35:57:d2:41:2d:80:82:f3:31:58:ad:61:e1: e3:15:df:78:ef:fd:fe:72:3a:c1:c4:9a:1a:ab:6d: d0:01:00:0e:17:84:f2:67:31:7a:f8:28:93:11:63: a4:3d:4c:2a:93:6c:0e:d0:4d:d9:74:37:21:9a:3f: 77:ab:f2:53:a1:fe:3d:e5:83:9f:00:e3:b5:f2:8d: ba:9c:4e:03:d6:4c:fc:23:ce:42:2f:e8:a5:38:04: 56:a0:37:0f:56:2b:f2:57:eb:da:3f:06:da:1b:6c: e9:19:c4:d0:b4:ec:38:28:af:34:ef:c8:ff:ce:d6: e6:36:66:4a:3f:2f:46:75:28:19:37:8d:6b:0f:9f: bb:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:A1:DB:E3:8C:94:AE:BB:2D:23:B1:8D:AC:23:86:8C:A5:68:4E:94 X509v3 Authority Key Identifier: keyid:0C:E6:A7:9D:53:D8:29:F2:A5:56:23:67:6E:8D:2A:9A:56:9F:83:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/0CE6A79D53D829F2A55623676E8D2A9A569F836F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0CE6A79D53D829F2A55623676E8D2A9A569F836F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/323430343a613634303a36363a3a2f34382d3438203d3e20313333383237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:a640:66::/48 Signature Algorithm: sha256WithRSAEncryption 9f:94:c0:3c:85:79:63:45:fe:0e:e5:c3:b4:79:fd:9a:b9:d8: 40:12:3d:20:13:3a:68:a0:ff:fa:f5:fa:cb:9b:ed:d7:6a:f5: d8:89:21:07:5e:84:c0:75:d3:7c:67:a3:80:3f:d5:e1:c6:fb: 94:ca:a7:fe:8b:7b:ca:0c:47:bb:0c:d5:21:16:31:90:5b:26: 8c:64:39:fd:2f:ad:a4:b2:b0:aa:22:70:93:ac:e8:4a:81:02: d7:6a:ce:58:2a:f6:e0:dd:57:d7:e9:68:0e:16:c5:e8:f6:48: a0:17:29:17:51:81:9b:ba:ed:83:dc:71:85:24:b5:52:09:55: d0:0b:03:e7:c5:6e:f0:74:04:70:2f:fd:59:e1:64:f0:e5:71: d6:a6:26:ca:08:b1:86:16:6c:a5:15:cd:ef:36:85:d4:d9:1b: ab:24:2f:d7:b0:68:2a:05:56:6c:d8:4f:bb:1c:39:45:d3:3d: 56:05:69:7a:2a:a3:20:45:98:da:f7:17:e7:68:53:9d:39:c1: 2d:2d:76:34:a9:f0:4a:ec:52:30:93:3c:fa:6a:8e:35:b2:65: ee:26:e1:9b:98:de:d3:f3:c6:d4:14:3d:e1:0a:d4:c6:ef:51: e5:60:69:4f:08:7a:a1:d8:96:49:4a:df:6d:55:ba:22:db:d6: c3:4a:d5:61 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUKs0QiytnUAIj+pnciVbw8RsCqfwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMENFNkE3OUQ1M0Q4MjlGMkE1NTYyMzY3NkU4RDJBOUE1 NjlGODM2RjAeFw0yNTA1MDIwMjU1NDZaFw0yNjA1MDEwMzAwNDZaMDMxMTAvBgNV BAMTKEIxQTFEQkUzOEM5NEFFQkIyRDIzQjE4REFDMjM4NjhDQTU2ODRFOTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjOLoGGtsGqeneig6PfDlhQhWa ShRFCliGoaXyfpYXuaeVZ83RVwgNbXhNpDbfuxOD9qeRrRBuRhazl4CZNozyd/g4 lFJBsZOYLXAH8lw93ff8WCtMRlCmlLmZzQjDBcMZRnMjUXMTE9DZzsOXA77V1ic9 D0ete8R3NVfSQS2AgvMxWK1h4eMV33jv/f5yOsHEmhqrbdABAA4XhPJnMXr4KJMR Y6Q9TCqTbA7QTdl0NyGaP3er8lOh/j3lg58A47XyjbqcTgPWTPwjzkIv6KU4BFag Nw9WK/JX69o/BtobbOkZxNC07DgorzTvyP/O1uY2Zko/L0Z1KBk3jWsPn7v1AgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUsaHb44yUrrstI7GNrCOGjKVoTpQwHwYDVR0j BBgwFoAUDOannVPYKfKlViNnbo0qmlafg28wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YTk5MDEyNS02MDlhLTQ4YzgtYWM4Ni0xYzNiYzMxNWJhZDYvMC8wQ0U2QTc5RDUz RDgyOUYyQTU1NjIzNjc2RThEMkE5QTU2OUY4MzZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMENFNkE3OUQ1M0Q4MjlGMkE1NTYyMzY3NkU4RDJBOUE1NjlG ODM2Ri5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhOTkwMTI1LTYwOWEtNDhjOC1h Yzg2LTFjM2JjMzE1YmFkNi8wLzMyMzQzMDM0M2E2MTM2MzQzMDNhMzYzNjNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzMzM4MzIzNy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQEpkAA ZjANBgkqhkiG9w0BAQsFAAOCAQEAn5TAPIV5Y0X+DuXDtHn9mrnYQBI9IBM6aKD/ +vX6y5vt12r12IkhB16EwHXTfGejgD/V4cb7lMqn/ot7ygxHuwzVIRYxkFsmjGQ5 /S+tpLKwqiJwk6zoSoEC12rOWCr24N1X1+loDhbF6PZIoBcpF1GBm7rtg9xxhSS1 UglV0AsD58Vu8HQEcC/9WeFk8OVx1qYmygixhhZspRXN7zaF1NkbqyQv17BoKgVW bNhPuxw5RdM9VgVpeiqjIEWY2vcX52hTnTnBLS12NKnwSuxSMJM8+mqONbJl7ibh m5je0/PG1BQ94QrUxu9R5WBpTwh6odiWSUrfbVW6ItvWw0rVYQ== -----END CERTIFICATE-----Generated at Sun May 11 22:21:47 2025 by rpki-client