$ rpki-client -vvf repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/323430363a626534303a666163653a3a2f34382d3438203d3e203233363739.roa File: 323430363a626534303a666163653a3a2f34382d3438203d3e203233363739.roa (raw, json) Hash identifier: RdnZzcveMI6OTZ2tqV917YFqNgnyHc224NISl6oJbLU= Subject key identifier: D9:F5:60:B0:F1:EB:0F:49:FE:F6:83:AB:8B:BC:92:52:21:C0:6A:50 Certificate issuer: /CN=084550E9619FF5ABD20864D9A6383053B59BF91E Certificate serial: 425F697EFD00C304D6E5340D25A56D534D2F6DB5 Authority key identifier: 08:45:50:E9:61:9F:F5:AB:D2:08:64:D9:A6:38:30:53:B5:9B:F9:1E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/084550E9619FF5ABD20864D9A6383053B59BF91E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/323430363a626534303a666163653a3a2f34382d3438203d3e203233363739.roa Signing time: Fri 02 May 2025 10:26:39 +0000 ROA not before: Fri 02 May 2025 10:21:39 +0000 ROA not after: Fri 01 May 2026 10:26:39 +0000 asID: 23679 IP address blocks: 2406:be40:face::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/084550E9619FF5ABD20864D9A6383053B59BF91E.crl rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/084550E9619FF5ABD20864D9A6383053B59BF91E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/084550E9619FF5ABD20864D9A6383053B59BF91E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 19:27:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:5f:69:7e:fd:00:c3:04:d6:e5:34:0d:25:a5:6d:53:4d:2f:6d:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=084550E9619FF5ABD20864D9A6383053B59BF91E Validity Not Before: May 2 10:21:39 2025 GMT Not After : May 1 10:26:39 2026 GMT Subject: CN=D9F560B0F1EB0F49FEF683AB8BBC925221C06A50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:84:85:fc:d8:0d:60:3d:39:57:52:13:7a:45: e6:2b:f5:70:8b:be:f1:56:7b:d5:bd:d0:7f:3c:73: e6:f3:20:e9:28:77:bf:14:5f:5f:8f:ec:b1:a1:44: be:89:b1:fb:e9:8d:06:c7:7c:3f:ec:e7:3d:b3:22: c0:ef:e9:fc:06:ea:e2:e6:2f:bd:88:e3:70:8d:31: 65:f3:9d:05:bb:52:85:fd:99:c1:7b:f6:76:e7:dd: ec:27:4c:e4:e1:da:27:b7:8b:5f:f4:b3:d3:1e:9a: ef:d6:e9:37:a8:ce:2b:b6:d5:8d:97:bb:32:31:3c: 4b:21:df:80:20:2a:36:c8:78:f6:0b:5b:85:0d:48: 51:87:e8:d4:2a:82:eb:7b:4c:8a:f5:a4:f8:5e:01: 5d:7b:62:6b:62:93:10:80:ce:28:23:b8:9c:58:c0: b2:db:6c:1a:00:ea:a6:4a:0c:79:3c:42:ef:96:c0: df:20:f6:5e:06:b6:b3:d1:85:0b:11:cc:7e:c6:c0: 48:6a:5e:09:fc:26:b0:d2:29:d8:6a:cc:a6:a8:4f: e0:e1:d5:f9:f5:39:1c:72:50:36:e4:2e:9c:42:0d: ea:7b:17:06:7b:10:56:95:67:fb:66:f0:32:c7:8b: a1:b2:33:43:cf:c3:2d:2b:b4:f5:05:24:07:52:20: 2c:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:F5:60:B0:F1:EB:0F:49:FE:F6:83:AB:8B:BC:92:52:21:C0:6A:50 X509v3 Authority Key Identifier: keyid:08:45:50:E9:61:9F:F5:AB:D2:08:64:D9:A6:38:30:53:B5:9B:F9:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/084550E9619FF5ABD20864D9A6383053B59BF91E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/084550E9619FF5ABD20864D9A6383053B59BF91E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/911417c0-37bb-446d-87f2-d8184178c149/0/323430363a626534303a666163653a3a2f34382d3438203d3e203233363739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:be40:face::/48 Signature Algorithm: sha256WithRSAEncryption 4c:ac:bd:98:a1:41:21:dd:7c:51:75:cf:97:83:ae:c9:5b:25: b4:a4:d3:d5:24:b4:50:3f:ab:a7:85:d0:b2:62:13:e0:bd:c5: 82:3d:72:9e:48:59:b5:9a:6b:a8:fe:4e:c7:77:93:98:e0:d1: 6e:07:b2:55:87:3e:c5:9f:9f:4a:1f:f2:34:66:f1:10:8e:d6: a1:1f:7c:2d:13:0f:12:c5:3e:bf:fe:1d:1a:d3:7a:91:43:76: f1:32:6d:10:67:b2:ae:ee:0a:3e:a7:50:93:03:7e:8e:38:24: 5a:3f:26:92:1e:fc:1e:47:22:33:a6:dd:b6:94:a5:06:28:ee: c6:2b:c3:a2:d7:9d:ca:e5:f4:b2:c6:78:d1:44:05:8b:f5:1c: 44:07:82:da:38:bd:4c:b8:75:10:42:b8:e1:1d:99:d9:98:9b: 49:7a:e8:f3:22:97:78:a4:27:2f:12:1b:75:91:ba:a4:9c:89: 7d:fd:5a:89:31:b0:ed:11:26:6d:99:77:84:9c:40:83:0d:f2: 2f:1d:d4:f6:87:bf:31:6b:e9:54:9e:a5:1c:1c:5e:6e:f0:23: 0c:82:28:55:1c:f5:00:b4:73:08:cb:40:24:c3:cb:f9:82:fb: 86:f9:86:f3:68:7a:ff:1b:38:9d:ac:3e:ca:b4:6c:82:b3:46: 99:3b:6b:87 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUQl9pfv0AwwTW5TQNJaVtU00vbbUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg0NTUwRTk2MTlGRjVBQkQyMDg2NEQ5QTYzODMwNTNC NTlCRjkxRTAeFw0yNTA1MDIxMDIxMzlaFw0yNjA1MDExMDI2MzlaMDMxMTAvBgNV BAMTKEQ5RjU2MEIwRjFFQjBGNDlGRUY2ODNBQjhCQkM5MjUyMjFDMDZBNTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBhIX82A1gPTlXUhN6ReYr9XCL vvFWe9W90H88c+bzIOkod78UX1+P7LGhRL6JsfvpjQbHfD/s5z2zIsDv6fwG6uLm L72I43CNMWXznQW7UoX9mcF79nbn3ewnTOTh2ie3i1/0s9Memu/W6Teoziu21Y2X uzIxPEsh34AgKjbIePYLW4UNSFGH6NQqgut7TIr1pPheAV17YmtikxCAzigjuJxY wLLbbBoA6qZKDHk8Qu+WwN8g9l4GtrPRhQsRzH7GwEhqXgn8JrDSKdhqzKaoT+Dh 1fn1ORxyUDbkLpxCDep7FwZ7EFaVZ/tm8DLHi6GyM0PPwy0rtPUFJAdSICyDAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU2fVgsPHrD0n+9oOri7ySUiHAalAwHwYDVR0j BBgwFoAUCEVQ6WGf9avSCGTZpjgwU7Wb+R4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MTE0MTdjMC0zN2JiLTQ0NmQtODdmMi1kODE4NDE3OGMxNDkvMC8wODQ1NTBFOTYx OUZGNUFCRDIwODY0RDlBNjM4MzA1M0I1OUJGOTFFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDg0NTUwRTk2MTlGRjVBQkQyMDg2NEQ5QTYzODMwNTNCNTlC RjkxRS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkxMTQxN2MwLTM3YmItNDQ2ZC04 N2YyLWQ4MTg0MTc4YzE0OS8wLzMyMzQzMDM2M2E2MjY1MzQzMDNhNjY2MTYzNjUz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMzMzYzNzM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAa+ QPrOMA0GCSqGSIb3DQEBCwUAA4IBAQBMrL2YoUEh3XxRdc+Xg67JWyW0pNPVJLRQ P6unhdCyYhPgvcWCPXKeSFm1mmuo/k7Hd5OY4NFuB7JVhz7Fn59KH/I0ZvEQjtah H3wtEw8SxT6//h0a03qRQ3bxMm0QZ7Ku7go+p1CTA36OOCRaPyaSHvweRyIzpt22 lKUGKO7GK8Oi153K5fSyxnjRRAWL9RxEB4LaOL1MuHUQQrjhHZnZmJtJeujzIpd4 pCcvEht1kbqknIl9/VqJMbDtESZtmXeEnECDDfIvHdT2h78xa+lUnqUcHF5u8CMM gihVHPUAtHMIy0Akw8v5gvuG+YbzaHr/GzidrD7KtGyCs0aZO2uH -----END CERTIFICATE-----Generated at Tue May 13 19:45:31 2025 by rpki-client