$ rpki-client -vvf repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/323430353a6334303a343030303a3a2f33362d3336203d3e20313338383837.roa File: 323430353a6334303a343030303a3a2f33362d3336203d3e20313338383837.roa (raw, json) Hash identifier: QJm/lblduNPd02BEuIg39qDUkH4IZEUKUU8ZLrF08QA= Subject key identifier: 85:BA:32:C7:CB:D4:EC:58:14:45:13:97:52:97:9E:27:3A:CD:1C:F0 Certificate issuer: /CN=80F9ED59290AD77DE2856ECFD8340E28FF858E3D Certificate serial: 6FB01AEC13CFCA83CDAB17F81EBA143A5726739C Authority key identifier: 80:F9:ED:59:29:0A:D7:7D:E2:85:6E:CF:D8:34:0E:28:FF:85:8E:3D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/323430353a6334303a343030303a3a2f33362d3336203d3e20313338383837.roa Signing time: Thu 01 May 2025 11:00:01 +0000 ROA not before: Thu 01 May 2025 10:55:01 +0000 ROA not after: Thu 30 Apr 2026 11:00:01 +0000 asID: 138887 IP address blocks: 2405:c40:4000::/36 maxlen: 36 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.crl rsync://repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 13:28:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:b0:1a:ec:13:cf:ca:83:cd:ab:17:f8:1e:ba:14:3a:57:26:73:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=80F9ED59290AD77DE2856ECFD8340E28FF858E3D Validity Not Before: May 1 10:55:01 2025 GMT Not After : Apr 30 11:00:01 2026 GMT Subject: CN=85BA32C7CBD4EC581445139752979E273ACD1CF0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:ce:24:64:8b:f8:4f:8a:75:b8:11:00:9b:6d: 34:4d:c6:93:b4:36:e4:7e:d8:23:93:26:fe:59:29: d4:92:19:32:c8:c5:3e:fc:b8:6c:73:3c:1d:b9:af: 30:29:6f:46:d4:f6:22:8c:20:e5:ee:a2:1f:aa:23: 41:56:d0:23:1c:db:ce:a3:4c:41:0a:31:96:bd:54: 71:38:f0:64:3f:3e:96:61:05:05:82:41:a3:2f:43: 6b:1f:73:9c:b1:9b:4f:0f:d4:f1:87:cd:d3:fe:ea: fb:32:98:2e:d3:7a:d4:99:b5:d6:a5:54:4f:ee:c1: 32:69:01:42:7f:0f:e9:3b:3e:3c:c6:32:e5:1c:dd: a6:ae:00:23:58:7c:bd:b7:b1:ef:83:54:89:50:f7: 91:15:25:63:d9:ae:25:ae:d6:12:29:b7:98:3b:ba: f3:d8:05:64:a5:17:7a:db:f9:26:bf:5e:89:c7:1b: 38:63:b9:f2:f7:dc:8b:c7:ae:5b:98:ab:87:c8:71: 18:92:33:4c:6f:d7:48:19:98:6e:b2:8e:f9:14:53: 30:46:9c:af:23:fc:ed:2a:b4:a5:57:6d:77:72:4f: 76:89:72:ad:7d:67:df:96:4b:d1:16:c1:c4:eb:89: 14:5a:b0:86:51:1d:2b:5b:77:85:4a:4d:dd:44:a6: da:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:BA:32:C7:CB:D4:EC:58:14:45:13:97:52:97:9E:27:3A:CD:1C:F0 X509v3 Authority Key Identifier: keyid:80:F9:ED:59:29:0A:D7:7D:E2:85:6E:CF:D8:34:0E:28:FF:85:8E:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/323430353a6334303a343030303a3a2f33362d3336203d3e20313338383837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:c40:4000::/36 Signature Algorithm: sha256WithRSAEncryption 38:e8:f0:aa:c0:b0:bd:8f:3d:ed:d7:5b:c4:c6:5e:bb:61:20: 7d:01:6c:9b:09:6e:76:6f:5d:dc:6e:bd:be:d7:34:4d:df:ae: 09:24:a7:9a:0b:50:68:ae:d7:30:d7:bd:f8:df:ea:bf:b4:89: 8a:66:bd:97:d9:23:81:50:3c:65:f8:64:fb:82:d9:56:3c:8d: 03:c3:26:72:49:e8:5d:d8:e3:3a:d7:88:d3:4e:a6:f4:01:3d: e1:bc:8b:89:06:b4:cc:3a:b3:89:9c:eb:89:c6:2e:d4:7b:a8: 0b:f6:31:31:7e:d8:d3:36:35:14:ca:0a:b8:e2:7d:51:4f:18: 43:1e:f6:25:be:ba:3a:65:95:47:fb:0e:17:51:2a:e8:52:8b: b7:82:b5:ba:47:f9:77:49:ba:e5:b9:71:4c:a2:d8:c6:4d:c5: c8:1e:3c:d5:18:6d:bd:b0:5b:03:aa:c4:6a:18:c2:41:4a:91: e0:21:d5:1c:cc:7c:2c:a5:82:4a:8b:d3:98:f3:31:ef:0c:5f: b5:ac:95:0a:d4:2c:57:7b:d1:8a:82:1a:ab:93:52:ed:8f:d0: 4e:34:07:df:d5:83:88:e2:ba:da:09:60:df:cb:38:e6:19:53: 31:61:5f:d5:e4:e9:85:f3:ae:32:b4:cf:c9:b7:d1:56:ac:f4: 65:af:5d:55 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUb7Aa7BPPyoPNqxf4HroUOlcmc5wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODBGOUVENTkyOTBBRDc3REUyODU2RUNGRDgzNDBFMjhG Rjg1OEUzRDAeFw0yNTA1MDExMDU1MDFaFw0yNjA0MzAxMTAwMDFaMDMxMTAvBgNV BAMTKDg1QkEzMkM3Q0JENEVDNTgxNDQ1MTM5NzUyOTc5RTI3M0FDRDFDRjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4ziRki/hPinW4EQCbbTRNxpO0 NuR+2COTJv5ZKdSSGTLIxT78uGxzPB25rzApb0bU9iKMIOXuoh+qI0FW0CMc286j TEEKMZa9VHE48GQ/PpZhBQWCQaMvQ2sfc5yxm08P1PGHzdP+6vsymC7TetSZtdal VE/uwTJpAUJ/D+k7PjzGMuUc3aauACNYfL23se+DVIlQ95EVJWPZriWu1hIpt5g7 uvPYBWSlF3rb+Sa/XonHGzhjufL33IvHrluYq4fIcRiSM0xv10gZmG6yjvkUUzBG nK8j/O0qtKVXbXdyT3aJcq19Z9+WS9EWwcTriRRasIZRHStbd4VKTd1EptpvAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUhboyx8vU7FgURROXUpeeJzrNHPAwHwYDVR0j BBgwFoAUgPntWSkK133ihW7P2DQOKP+Fjj0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MDdjODhkYS0yYjU2LTQ4N2UtOWVmZS01NzExNzBiMTAyODYvMC84MEY5RUQ1OTI5 MEFENzdERTI4NTZFQ0ZEODM0MEUyOEZGODU4RTNELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODBGOUVENTkyOTBBRDc3REUyODU2RUNGRDgzNDBFMjhGRjg1 OEUzRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MwN2M4OGRhLTJiNTYtNDg3ZS05 ZWZlLTU3MTE3MGIxMDI4Ni8wLzMyMzQzMDM1M2E2MzM0MzAzYTM0MzAzMDMwM2Ez YTJmMzMzNjJkMzMzNjIwM2QzZTIwMzEzMzM4MzgzODM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYEJAUM QEAwDQYJKoZIhvcNAQELBQADggEBADjo8KrAsL2PPe3XW8TGXrthIH0BbJsJbnZv Xdxuvb7XNE3frgkkp5oLUGiu1zDXvfjf6r+0iYpmvZfZI4FQPGX4ZPuC2VY8jQPD JnJJ6F3Y4zrXiNNOpvQBPeG8i4kGtMw6s4mc64nGLtR7qAv2MTF+2NM2NRTKCrji fVFPGEMe9iW+ujpllUf7DhdRKuhSi7eCtbpH+XdJuuW5cUyi2MZNxcgePNUYbb2w WwOqxGoYwkFKkeAh1RzMfCylgkqL05jzMe8MX7WslQrULFd70YqCGquTUu2P0E40 B9/Vg4jiutoJYN/LOOYZUzFhX9Xk6YXzrjK0z8m30Vas9GWvXVU= -----END CERTIFICATE-----Generated at Sat May 10 08:02:32 2025 by rpki-client