$ rpki-client -vvf repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a35333a3a2f34382d3438203d3e20313339393439.roa File: 323430353a616163303a35333a3a2f34382d3438203d3e20313339393439.roa (raw, json) Hash identifier: FXJHNsxSBOMPnA8vdwVqgLQk48uGK9FiBs0y6bniYV8= Subject key identifier: 6B:75:F5:2E:9B:2C:EF:AC:AB:BD:6B:0C:D5:53:B4:9A:EC:BF:D9:3B Certificate issuer: /CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Certificate serial: 33FBF209BBCC6E5E5DF9813ABD86406383A66322 Authority key identifier: DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a35333a3a2f34382d3438203d3e20313339393439.roa Signing time: Mon 02 Jun 2025 01:02:59 +0000 ROA not before: Mon 02 Jun 2025 00:57:59 +0000 ROA not after: Mon 01 Jun 2026 01:02:59 +0000 asID: 139949 IP address blocks: 2405:aac0:53::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 08:43:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:fb:f2:09:bb:cc:6e:5e:5d:f9:81:3a:bd:86:40:63:83:a6:63:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Validity Not Before: Jun 2 00:57:59 2025 GMT Not After : Jun 1 01:02:59 2026 GMT Subject: CN=6B75F52E9B2CEFACABBD6B0CD553B49AECBFD93B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:47:9b:1f:da:f5:01:71:c3:b0:3c:0e:31:88: 56:cc:14:06:05:04:10:08:9e:02:1f:6e:3d:fb:df: 9f:69:6a:1a:f7:19:68:4c:63:79:61:30:9e:68:80: 4e:ca:1a:16:ab:96:b3:e4:f2:6e:80:a1:ab:24:52: 45:34:f3:da:52:0c:47:e0:b1:e2:94:34:92:c8:be: e8:24:0f:03:a6:7a:f5:38:b3:d5:d9:b6:b4:a3:64: 05:7d:5c:3f:bb:2d:17:fa:a9:c6:2c:5a:f9:92:37: a2:7d:e7:64:33:42:78:23:35:26:f9:f4:a6:47:62: 58:3a:35:44:1b:36:57:1d:d2:63:6c:45:de:7e:39: a8:a6:ec:37:64:24:cb:ec:40:30:ef:5f:45:fd:f1: d0:08:77:e1:27:a9:6e:17:4c:5b:36:a5:62:36:f1: 4b:e3:bf:ea:39:6d:11:64:70:19:81:8f:59:99:a5: df:94:f6:89:95:2d:dd:d5:13:7c:05:b1:07:b1:b8: 2e:2d:76:21:dc:ce:91:10:7a:47:51:f9:af:29:31: ed:8d:24:d4:79:ab:05:de:10:11:0e:2c:b9:2d:f4: c5:0b:19:93:99:47:8c:cc:c2:08:d9:bd:da:58:8b: 55:52:6b:4d:64:67:6a:3d:d2:e0:16:9d:38:10:8e: c0:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:75:F5:2E:9B:2C:EF:AC:AB:BD:6B:0C:D5:53:B4:9A:EC:BF:D9:3B X509v3 Authority Key Identifier: keyid:DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a35333a3a2f34382d3438203d3e20313339393439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:aac0:53::/48 Signature Algorithm: sha256WithRSAEncryption 43:0c:d7:1c:51:5c:70:a8:ed:54:7c:bb:09:04:78:d2:e1:a1: ef:4f:d9:a4:b0:b9:f0:65:3b:27:b3:41:54:11:35:eb:ab:1c: f6:5c:a4:ba:3f:11:e2:78:fc:8c:f4:d7:69:fb:2f:ed:6e:49: 66:60:f6:0c:47:cb:44:15:04:96:d3:b1:f1:5e:d9:7d:c0:2f: 34:a4:e3:f9:7b:aa:37:93:0f:e7:ec:ad:11:28:c9:5b:9c:83: 8b:3b:45:d1:99:3d:ce:ef:d7:56:93:83:39:30:79:52:dd:85: 95:cb:a4:ee:1c:e4:37:ca:26:e1:25:c1:aa:3c:c8:cf:a6:9e: 77:75:06:f4:b1:19:44:9a:43:67:c7:64:81:2a:0c:63:59:43: 4c:3b:2e:5f:e4:c5:7f:22:0d:cc:98:7d:ee:02:e0:58:5d:0c: 49:0b:0e:f4:21:c6:51:92:fc:73:af:ae:39:31:66:f7:fc:36: 9c:70:fe:21:f6:9d:6e:ed:54:62:d3:ec:8f:84:5b:1a:f2:5a: e8:c1:8e:71:0d:08:99:69:b6:df:e8:4e:0b:cd:ff:f8:dc:2a: e0:c5:65:3f:0d:3a:e3:7d:06:91:12:90:6f:b8:0c:93:1c:15: 95:e2:65:85:6a:d0:d6:ad:1a:09:fd:6e:b0:17:5a:4f:8b:02: ae:08:ac:e9 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUM/vyCbvMbl5d+YE6vYZAY4OmYyIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAx NjRGRTVDRjAeFw0yNTA2MDIwMDU3NTlaFw0yNjA2MDEwMTAyNTlaMDMxMTAvBgNV BAMTKDZCNzVGNTJFOUIyQ0VGQUNBQkJENkIwQ0Q1NTNCNDlBRUNCRkQ5M0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIR5sf2vUBccOwPA4xiFbMFAYF BBAIngIfbj37359pahr3GWhMY3lhMJ5ogE7KGharlrPk8m6AoaskUkU089pSDEfg seKUNJLIvugkDwOmevU4s9XZtrSjZAV9XD+7LRf6qcYsWvmSN6J952QzQngjNSb5 9KZHYlg6NUQbNlcd0mNsRd5+Oaim7DdkJMvsQDDvX0X98dAId+EnqW4XTFs2pWI2 8Uvjv+o5bRFkcBmBj1mZpd+U9omVLd3VE3wFsQexuC4tdiHczpEQekdR+a8pMe2N JNR5qwXeEBEOLLkt9MULGZOZR4zMwgjZvdpYi1VSa01kZ2o90uAWnTgQjsDTAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUa3X1Lpss76yrvWsM1VO0muy/2TswHwYDVR0j BBgwFoAU2odmqQhRrkTXa4Vj2DWG8BZP5c8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZGVkYzAzMy1jZDRkLTQ2MjAtOTM3Mi1lNmUwMzlmYzA2YjkvMC9EQTg3NjZBOTA4 NTFBRTQ0RDc2Qjg1NjNEODM1ODZGMDE2NEZFNUNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAxNjRG RTVDRi5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNkZWRjMDMzLWNkNGQtNDYyMC05 MzcyLWU2ZTAzOWZjMDZiOS8wLzMyMzQzMDM1M2E2MTYxNjMzMDNhMzUzMzNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzOTM5MzQzOS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQFqsAA UzANBgkqhkiG9w0BAQsFAAOCAQEAQwzXHFFccKjtVHy7CQR40uGh70/ZpLC58GU7 J7NBVBE166sc9lykuj8R4nj8jPTXafsv7W5JZmD2DEfLRBUEltOx8V7ZfcAvNKTj +XuqN5MP5+ytESjJW5yDiztF0Zk9zu/XVpODOTB5Ut2Flcuk7hzkN8om4SXBqjzI z6aed3UG9LEZRJpDZ8dkgSoMY1lDTDsuX+TFfyINzJh97gLgWF0MSQsO9CHGUZL8 c6+uOTFm9/w2nHD+Ifadbu1UYtPsj4RbGvJa6MGOcQ0ImWm23+hOC83/+Nwq4MVl Pw06430GkRKQb7gMkxwVleJlhWrQ1q0aCf1usBdaT4sCrgis6Q== -----END CERTIFICATE-----Generated at Tue Jun 17 15:03:57 2025 by rpki-client