$ rpki-client -vvf repo-rpki.idnic.net/repo/66b87feb-0fe2-418a-a37a-be3dd1f0e63c/0/323430353a366334303a3a2f33322d3438203d3e203234353237.roa File: 323430353a366334303a3a2f33322d3438203d3e203234353237.roa (raw, json) Hash identifier: sdUNTLR9jp0dwpPELDIKx4SufivRxg0Tg+/QbjfBOQs= Subject key identifier: BA:8F:92:BC:1C:7F:30:12:35:D0:E5:D1:83:E3:BE:01:FD:43:14:AA Certificate issuer: /CN=E9F7A0AA6DCCA1FF7D3D61460D5534A004AB2C61 Certificate serial: 65E837ED1DDE75C6CA1EBFB774B608122559A3C2 Authority key identifier: E9:F7:A0:AA:6D:CC:A1:FF:7D:3D:61:46:0D:55:34:A0:04:AB:2C:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E9F7A0AA6DCCA1FF7D3D61460D5534A004AB2C61.cer Subject info access: rsync://repo-rpki.idnic.net/repo/66b87feb-0fe2-418a-a37a-be3dd1f0e63c/0/323430353a366334303a3a2f33322d3438203d3e203234353237.roa Signing time: Mon 02 Jun 2025 01:02:25 +0000 ROA not before: Mon 02 Jun 2025 00:57:25 +0000 ROA not after: Mon 01 Jun 2026 01:02:25 +0000 asID: 24527 IP address blocks: 2405:6c40::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/66b87feb-0fe2-418a-a37a-be3dd1f0e63c/0/E9F7A0AA6DCCA1FF7D3D61460D5534A004AB2C61.crl rsync://repo-rpki.idnic.net/repo/66b87feb-0fe2-418a-a37a-be3dd1f0e63c/0/E9F7A0AA6DCCA1FF7D3D61460D5534A004AB2C61.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E9F7A0AA6DCCA1FF7D3D61460D5534A004AB2C61.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 07:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:e8:37:ed:1d:de:75:c6:ca:1e:bf:b7:74:b6:08:12:25:59:a3:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E9F7A0AA6DCCA1FF7D3D61460D5534A004AB2C61 Validity Not Before: Jun 2 00:57:25 2025 GMT Not After : Jun 1 01:02:25 2026 GMT Subject: CN=BA8F92BC1C7F301235D0E5D183E3BE01FD4314AA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:bb:bf:a2:a1:3e:bc:a2:d8:9a:f4:88:38:13: 4e:59:11:ab:a5:d7:55:e3:e9:0a:e2:10:35:5e:35: eb:48:3e:aa:06:26:e9:80:03:15:ed:b0:1c:fc:31: 43:60:12:76:15:8f:6a:a9:46:68:47:38:b0:73:d9: 53:79:c9:7d:10:60:3e:fe:cb:ff:ee:e6:f5:bc:f9: e9:df:ea:8c:36:28:29:e0:7a:8c:32:67:38:32:e6: 9d:6d:89:da:40:e7:c4:43:9b:f5:6e:0e:29:94:a6: ba:18:be:e5:72:60:56:54:66:09:b6:db:85:63:a6: 21:15:bf:86:35:d6:61:35:1c:5a:0f:9e:68:a1:7e: ce:37:96:4e:5c:34:d4:d3:2b:98:53:4f:2f:53:ff: ca:6b:60:71:80:51:33:8b:0b:1e:94:46:da:96:c2: bc:4e:83:0d:74:8e:ff:c7:7f:41:3f:1f:60:45:3a: 19:43:b1:3d:2b:d8:b8:5b:af:73:b8:32:ed:1c:2e: b6:04:0e:90:cb:76:ab:a2:3b:71:f9:f2:d2:97:27: 3a:57:0c:4f:69:11:15:94:35:db:1c:59:41:23:8c: df:e5:7c:d8:fd:bb:cc:41:a9:02:bb:10:5b:f5:99: 62:14:45:ef:81:85:a5:94:88:d5:1d:5d:22:ea:e9: e4:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:8F:92:BC:1C:7F:30:12:35:D0:E5:D1:83:E3:BE:01:FD:43:14:AA X509v3 Authority Key Identifier: keyid:E9:F7:A0:AA:6D:CC:A1:FF:7D:3D:61:46:0D:55:34:A0:04:AB:2C:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/66b87feb-0fe2-418a-a37a-be3dd1f0e63c/0/E9F7A0AA6DCCA1FF7D3D61460D5534A004AB2C61.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E9F7A0AA6DCCA1FF7D3D61460D5534A004AB2C61.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/66b87feb-0fe2-418a-a37a-be3dd1f0e63c/0/323430353a366334303a3a2f33322d3438203d3e203234353237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:6c40::/32 Signature Algorithm: sha256WithRSAEncryption 5c:3b:fe:0d:70:32:4e:ed:21:f3:08:b8:c0:e0:a1:fc:a0:1f: 0a:76:76:c2:a8:39:b2:46:e4:d2:5f:a8:fb:86:0f:55:90:4c: 06:34:8c:c8:3d:ee:42:55:fe:8a:14:9c:95:ab:a2:3e:fa:e1: c4:41:56:24:c0:20:5b:dd:1f:fc:66:73:5f:19:7d:46:8c:e8: eb:43:0d:a1:04:7e:d3:ec:38:2b:29:dd:fc:58:6d:25:bf:a2: 2a:a5:8b:23:8c:fa:6f:46:2c:d9:dd:95:ff:39:ab:71:54:ad: b7:13:95:0e:06:80:cb:89:12:d1:7c:7e:54:6b:bd:83:73:2f: 3d:bf:34:fe:bb:3e:bf:c8:37:b0:07:98:9c:06:90:a3:bb:2f: 29:eb:de:68:6f:4f:2d:7f:15:36:37:94:9f:b8:7e:f0:37:0d: 5c:b9:90:64:b1:eb:f3:bb:bd:6b:11:fe:6f:4d:6d:47:25:5d: 25:eb:6d:83:3b:2f:cc:44:2a:1c:75:f8:b6:98:ac:ad:1c:08: 6d:32:d3:ff:d0:5e:20:33:a6:94:1f:aa:7d:f7:3e:67:60:f2: c8:12:3f:ae:8e:39:93:40:bd:fb:25:7c:d9:7e:2e:a0:be:c4: 46:3a:54:a7:1f:66:48:5d:20:73:91:6b:10:ab:03:ed:91:2d: 48:1a:d7:a1 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUZeg37R3edcbKHr+3dLYIEiVZo8IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTlGN0EwQUE2RENDQTFGRjdEM0Q2MTQ2MEQ1NTM0QTAw NEFCMkM2MTAeFw0yNTA2MDIwMDU3MjVaFw0yNjA2MDEwMTAyMjVaMDMxMTAvBgNV BAMTKEJBOEY5MkJDMUM3RjMwMTIzNUQwRTVEMTgzRTNCRTAxRkQ0MzE0QUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdu7+ioT68otia9Ig4E05ZEaul 11Xj6QriEDVeNetIPqoGJumAAxXtsBz8MUNgEnYVj2qpRmhHOLBz2VN5yX0QYD7+ y//u5vW8+enf6ow2KCngeowyZzgy5p1tidpA58RDm/VuDimUproYvuVyYFZUZgm2 24VjpiEVv4Y11mE1HFoPnmihfs43lk5cNNTTK5hTTy9T/8prYHGAUTOLCx6URtqW wrxOgw10jv/Hf0E/H2BFOhlDsT0r2Lhbr3O4Mu0cLrYEDpDLdquiO3H58tKXJzpX DE9pERWUNdscWUEjjN/lfNj9u8xBqQK7EFv1mWIURe+BhaWUiNUdXSLq6eRZAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUuo+SvBx/MBI10OXRg+O+Af1DFKowHwYDVR0j BBgwFoAU6fegqm3Mof99PWFGDVU0oASrLGEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NmI4N2ZlYi0wZmUyLTQxOGEtYTM3YS1iZTNkZDFmMGU2M2MvMC9FOUY3QTBBQTZE Q0NBMUZGN0QzRDYxNDYwRDU1MzRBMDA0QUIyQzYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTlGN0EwQUE2RENDQTFGRjdEM0Q2MTQ2MEQ1NTM0QTAwNEFC MkM2MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY2Yjg3ZmViLTBmZTItNDE4YS1h MzdhLWJlM2RkMWYwZTYzYy8wLzMyMzQzMDM1M2EzNjYzMzQzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMyMzQzNTMyMzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBWxAMA0GCSqGSIb3 DQEBCwUAA4IBAQBcO/4NcDJO7SHzCLjA4KH8oB8KdnbCqDmyRuTSX6j7hg9VkEwG NIzIPe5CVf6KFJyVq6I++uHEQVYkwCBb3R/8ZnNfGX1GjOjrQw2hBH7T7DgrKd38 WG0lv6IqpYsjjPpvRizZ3ZX/OatxVK23E5UOBoDLiRLRfH5Ua72Dcy89vzT+uz6/ yDewB5icBpCjuy8p695ob08tfxU2N5SfuH7wNw1cuZBksevzu71rEf5vTW1HJV0l 622DOy/MRCocdfi2mKytHAhtMtP/0F4gM6aUH6p99z5nYPLIEj+ujjmTQL37JXzZ fi6gvsRGOlSnH2ZIXSBzkWsQqwPtkS1IGteh -----END CERTIFICATE-----Generated at Mon Jun 30 00:40:58 2025 by rpki-client