$ rpki-client -vvf repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/323430353a6334303a313030303a3a2f33362d3336203d3e20313338383837.roa File: 323430353a6334303a313030303a3a2f33362d3336203d3e20313338383837.roa (raw, json) Hash identifier: Pkxhtzc/wMq1OgU/fO/ZVo996RxoRVPZUmYGZ2IhOu0= Subject key identifier: 57:1E:02:6E:D6:1C:42:BE:A3:83:AC:1F:D6:33:A7:33:FB:92:F2:DA Certificate issuer: /CN=80F9ED59290AD77DE2856ECFD8340E28FF858E3D Certificate serial: 4155B47BF16738D2822A6AF65FC377C1DA7E04D9 Authority key identifier: 80:F9:ED:59:29:0A:D7:7D:E2:85:6E:CF:D8:34:0E:28:FF:85:8E:3D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/323430353a6334303a313030303a3a2f33362d3336203d3e20313338383837.roa Signing time: Thu 01 May 2025 11:00:01 +0000 ROA not before: Thu 01 May 2025 10:55:01 +0000 ROA not after: Thu 30 Apr 2026 11:00:01 +0000 asID: 138887 IP address blocks: 2405:c40:1000::/36 maxlen: 36 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.crl rsync://repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 13:28:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:55:b4:7b:f1:67:38:d2:82:2a:6a:f6:5f:c3:77:c1:da:7e:04:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=80F9ED59290AD77DE2856ECFD8340E28FF858E3D Validity Not Before: May 1 10:55:01 2025 GMT Not After : Apr 30 11:00:01 2026 GMT Subject: CN=571E026ED61C42BEA383AC1FD633A733FB92F2DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:a8:5a:d0:28:e5:f9:97:57:6d:09:ce:c7:31: 2a:de:5a:c4:59:68:e4:2e:7c:a6:f4:38:16:bd:98: 2f:00:7b:35:b9:4d:df:21:67:6b:fc:b6:f0:6f:ed: 83:02:b7:2d:86:a8:d7:ac:50:bf:16:9a:f4:bf:bb: 32:ef:91:b4:11:07:89:b7:41:fa:87:99:f2:1c:4d: 92:ba:97:69:8b:57:66:e9:78:fc:5a:55:1a:6e:a7: 53:c5:79:94:ee:ba:32:b2:78:6c:59:49:fc:30:55: fa:aa:d4:81:10:9f:8c:26:e5:37:2f:c0:38:a8:28: fa:03:78:b0:73:7e:f2:d3:bf:1c:bf:b4:c4:7f:1f: 3b:85:cb:54:c0:03:63:c2:db:b2:ac:8e:c4:57:b8: e7:86:c9:19:78:af:6f:14:62:49:ff:4e:4f:1e:d7: 5a:8e:1b:a2:de:39:57:4a:b4:f9:cc:d7:86:7b:a2: 4c:95:35:d5:7e:61:ef:b8:8f:1f:ad:ba:bc:3e:cf: 2c:6f:3b:70:9d:e1:8c:bb:b3:de:33:42:98:3c:95: 09:77:57:ef:20:85:34:63:0b:7d:52:ac:5e:21:9c: 6c:8a:91:79:21:98:3b:dc:35:50:a6:24:8d:6c:6a: 09:74:08:e9:91:ce:7a:50:6b:da:94:65:e4:b7:46: 85:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:1E:02:6E:D6:1C:42:BE:A3:83:AC:1F:D6:33:A7:33:FB:92:F2:DA X509v3 Authority Key Identifier: keyid:80:F9:ED:59:29:0A:D7:7D:E2:85:6E:CF:D8:34:0E:28:FF:85:8E:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/323430353a6334303a313030303a3a2f33362d3336203d3e20313338383837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:c40:1000::/36 Signature Algorithm: sha256WithRSAEncryption 78:e8:53:5f:19:fc:dd:3a:0b:a6:25:95:96:dd:6b:e4:2e:98: 3d:4c:66:1c:14:77:01:7e:95:ea:79:dc:33:75:ec:5a:ea:45: c0:76:e1:2e:45:bc:4b:1f:3b:7a:32:5f:94:37:5f:a7:db:ad: 55:a1:5b:85:2c:f3:5f:2a:fa:f2:48:5f:84:17:db:bb:01:1e: da:2c:15:f5:67:89:19:a8:b8:24:46:71:06:a7:bf:0a:df:64: 4c:81:d6:84:86:55:23:3e:0a:d5:19:1e:f2:22:b9:9e:50:d1: 83:b5:09:ad:2e:98:9e:60:43:16:7d:67:31:79:11:59:70:06: d9:31:79:08:a4:6c:9b:f0:d8:58:27:47:ac:8c:6a:e9:37:1e: 5b:d5:97:2b:6e:c6:c5:27:ee:93:b2:b0:66:26:6c:e5:a6:1f: 16:87:77:cc:b0:04:14:d8:4c:a6:18:19:0e:ce:82:fe:06:ea: 4d:ef:0d:be:e1:82:93:79:cb:db:c1:1b:22:5e:0f:a3:11:3d: 7e:90:4a:4e:9e:0b:48:4d:f6:f9:3f:cb:34:8e:07:6e:10:2a: a0:90:dd:34:79:d0:86:95:44:bf:1f:28:9f:30:9a:ee:a1:1c: ac:33:bf:59:56:3b:73:28:59:cf:0a:c2:15:20:5f:02:75:24: 7b:2a:06:ac -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUQVW0e/FnONKCKmr2X8N3wdp+BNkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODBGOUVENTkyOTBBRDc3REUyODU2RUNGRDgzNDBFMjhG Rjg1OEUzRDAeFw0yNTA1MDExMDU1MDFaFw0yNjA0MzAxMTAwMDFaMDMxMTAvBgNV BAMTKDU3MUUwMjZFRDYxQzQyQkVBMzgzQUMxRkQ2MzNBNzMzRkI5MkYyREEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqqFrQKOX5l1dtCc7HMSreWsRZ aOQufKb0OBa9mC8AezW5Td8hZ2v8tvBv7YMCty2GqNesUL8WmvS/uzLvkbQRB4m3 QfqHmfIcTZK6l2mLV2bpePxaVRpup1PFeZTuujKyeGxZSfwwVfqq1IEQn4wm5Tcv wDioKPoDeLBzfvLTvxy/tMR/HzuFy1TAA2PC27KsjsRXuOeGyRl4r28UYkn/Tk8e 11qOG6LeOVdKtPnM14Z7okyVNdV+Ye+4jx+turw+zyxvO3Cd4Yy7s94zQpg8lQl3 V+8ghTRjC31SrF4hnGyKkXkhmDvcNVCmJI1sagl0COmRznpQa9qUZeS3RoUbAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUVx4CbtYcQr6jg6wf1jOnM/uS8towHwYDVR0j BBgwFoAUgPntWSkK133ihW7P2DQOKP+Fjj0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MDdjODhkYS0yYjU2LTQ4N2UtOWVmZS01NzExNzBiMTAyODYvMC84MEY5RUQ1OTI5 MEFENzdERTI4NTZFQ0ZEODM0MEUyOEZGODU4RTNELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODBGOUVENTkyOTBBRDc3REUyODU2RUNGRDgzNDBFMjhGRjg1 OEUzRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MwN2M4OGRhLTJiNTYtNDg3ZS05 ZWZlLTU3MTE3MGIxMDI4Ni8wLzMyMzQzMDM1M2E2MzM0MzAzYTMxMzAzMDMwM2Ez YTJmMzMzNjJkMzMzNjIwM2QzZTIwMzEzMzM4MzgzODM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYEJAUM QBAwDQYJKoZIhvcNAQELBQADggEBAHjoU18Z/N06C6YllZbda+QumD1MZhwUdwF+ lep53DN17FrqRcB24S5FvEsfO3oyX5Q3X6fbrVWhW4Us818q+vJIX4QX27sBHtos FfVniRmouCRGcQanvwrfZEyB1oSGVSM+CtUZHvIiuZ5Q0YO1Ca0umJ5gQxZ9ZzF5 EVlwBtkxeQikbJvw2FgnR6yMauk3HlvVlytuxsUn7pOysGYmbOWmHxaHd8ywBBTY TKYYGQ7Ogv4G6k3vDb7hgpN5y9vBGyJeD6MRPX6QSk6eC0hN9vk/yzSOB24QKqCQ 3TR50IaVRL8fKJ8wmu6hHKwzv1lWO3MoWc8KwhUgXwJ1JHsqBqw= -----END CERTIFICATE-----Generated at Sat May 10 13:24:45 2025 by rpki-client