$ rpki-client -vvf repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a343a3a2f34382d3438203d3e20313338383636.roa File: 323430343a666563303a343a3a2f34382d3438203d3e20313338383636.roa (raw, json) Hash identifier: C6l6zdsNHMzfA4VroXv38wYjaYdlZyMXfkyZpHinjgQ= Subject key identifier: 31:0C:EA:94:93:9E:7B:83:4A:9D:78:2F:3F:E4:C0:19:CF:A4:B2:5C Certificate issuer: /CN=3D64FD900E2E64CB159D0067167853AAFC8A7E97 Certificate serial: 203A6CB8766981CBB487D82C5E873CF9AF707660 Authority key identifier: 3D:64:FD:90:0E:2E:64:CB:15:9D:00:67:16:78:53:AA:FC:8A:7E:97 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a343a3a2f34382d3438203d3e20313338383636.roa Signing time: Mon 02 Jun 2025 16:00:01 +0000 ROA not before: Mon 02 Jun 2025 15:55:01 +0000 ROA not after: Mon 01 Jun 2026 16:00:01 +0000 asID: 138866 IP address blocks: 2404:fec0:4::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.crl rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 14:14:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:3a:6c:b8:76:69:81:cb:b4:87:d8:2c:5e:87:3c:f9:af:70:76:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D64FD900E2E64CB159D0067167853AAFC8A7E97 Validity Not Before: Jun 2 15:55:01 2025 GMT Not After : Jun 1 16:00:01 2026 GMT Subject: CN=310CEA94939E7B834A9D782F3FE4C019CFA4B25C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:d9:7d:16:f4:64:b2:92:28:23:f9:14:aa:fb: 51:9e:84:ab:e9:b3:f3:af:07:96:47:52:76:03:a8: c1:e6:a8:bf:6b:dc:8c:08:73:bf:ea:4d:38:b5:00: b2:78:8f:d1:08:2a:36:ff:6f:d0:74:08:fc:38:0f: ca:f5:63:9d:96:1e:f0:72:c2:49:12:27:29:dd:14: 79:fd:53:c7:82:02:1b:15:ac:99:e0:b3:f8:d1:8d: e2:3f:5d:bf:bd:bc:a3:53:12:44:7a:81:de:a0:c2: 7c:99:90:dc:26:cd:13:ac:91:df:15:1a:c1:dd:ac: 54:4a:51:71:0b:26:9f:47:b1:a7:25:93:a9:20:b0: 35:49:b0:e7:98:3a:51:c2:a3:3b:2e:b7:ed:0c:85: a3:82:3c:96:2a:0b:39:e6:e7:c8:59:f3:ec:4a:3e: 48:fe:34:d3:8e:d5:62:fb:63:85:56:89:20:07:f1: 3c:ff:00:d4:90:1a:d7:9c:6d:86:57:55:f7:b6:a6: aa:b9:e0:12:4b:68:14:41:e0:3e:09:6c:73:48:66: 52:79:a1:48:da:87:fe:a5:11:58:31:35:b3:d6:92: 9b:6f:78:b7:3e:35:20:8c:06:c8:e8:05:31:9f:1e: 14:8d:9b:de:3d:7f:4f:6d:3d:3c:9b:28:47:cc:bf: e9:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:0C:EA:94:93:9E:7B:83:4A:9D:78:2F:3F:E4:C0:19:CF:A4:B2:5C X509v3 Authority Key Identifier: keyid:3D:64:FD:90:0E:2E:64:CB:15:9D:00:67:16:78:53:AA:FC:8A:7E:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a343a3a2f34382d3438203d3e20313338383636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fec0:4::/48 Signature Algorithm: sha256WithRSAEncryption 54:fb:24:d0:08:b1:17:da:0f:ff:d4:07:64:8c:e6:3b:1c:33: e2:eb:e9:88:3d:23:48:ee:31:d3:bd:25:61:83:72:93:56:17: 60:08:53:ae:88:47:f5:13:16:07:93:08:f5:bd:06:7d:46:94: 4c:15:ac:53:ed:74:64:fe:03:f8:49:a3:47:fd:e2:cd:df:60: 49:ad:a4:48:a9:a2:3b:a0:96:be:19:bb:72:ca:28:0c:a7:9e: 20:bd:a8:89:a4:94:ba:a7:bb:4c:40:5c:11:13:63:ec:e2:5a: 6f:7a:89:05:64:c6:7a:5e:e2:e2:bf:62:4c:06:f6:3b:de:6c: 3d:f5:7a:55:ee:da:ca:82:6a:79:bc:66:15:0f:b2:c3:d6:1f: b1:9a:bd:34:64:ad:e3:63:0e:37:c2:b7:6a:7f:36:46:64:ad: b7:3c:29:9e:83:ce:d7:c4:98:3e:cc:20:8f:e7:7a:20:d2:ad: cd:97:be:35:fd:a6:d3:47:fa:f8:60:c1:0b:e0:74:7b:69:61: 32:f1:f0:16:15:a0:23:a8:f8:2f:48:27:4a:b6:70:60:36:53: 31:1d:6b:5b:74:76:aa:06:3f:8c:f3:ed:c0:1d:1e:04:3a:95: b6:0b:cd:22:b5:8f:b4:b8:7b:c9:5d:fe:b2:32:1b:40:ca:2d: 38:4b:1a:bf -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUIDpsuHZpgcu0h9gsXoc8+a9wdmAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Q2NEZEOTAwRTJFNjRDQjE1OUQwMDY3MTY3ODUzQUFG QzhBN0U5NzAeFw0yNTA2MDIxNTU1MDFaFw0yNjA2MDExNjAwMDFaMDMxMTAvBgNV BAMTKDMxMENFQTk0OTM5RTdCODM0QTlENzgyRjNGRTRDMDE5Q0ZBNEIyNUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDG2X0W9GSykigj+RSq+1GehKvp s/OvB5ZHUnYDqMHmqL9r3IwIc7/qTTi1ALJ4j9EIKjb/b9B0CPw4D8r1Y52WHvBy wkkSJyndFHn9U8eCAhsVrJngs/jRjeI/Xb+9vKNTEkR6gd6gwnyZkNwmzROskd8V GsHdrFRKUXELJp9Hsaclk6kgsDVJsOeYOlHCozsut+0MhaOCPJYqCznm58hZ8+xK Pkj+NNOO1WL7Y4VWiSAH8Tz/ANSQGtecbYZXVfe2pqq54BJLaBRB4D4JbHNIZlJ5 oUjah/6lEVgxNbPWkptveLc+NSCMBsjoBTGfHhSNm949f09tPTybKEfMv+n7AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUMQzqlJOee4NKnXgvP+TAGc+kslwwHwYDVR0j BBgwFoAUPWT9kA4uZMsVnQBnFnhTqvyKfpcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YTUxOWFlYi01YzU2LTRjYjMtOTRhMC0wZjQwMGVhNmEzNzUvMC8zRDY0RkQ5MDBF MkU2NENCMTU5RDAwNjcxNjc4NTNBQUZDOEE3RTk3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0Q2NEZEOTAwRTJFNjRDQjE1OUQwMDY3MTY3ODUzQUFGQzhB N0U5Ny5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhNTE5YWViLTVjNTYtNGNiMy05 NGEwLTBmNDAwZWE2YTM3NS8wLzMyMzQzMDM0M2E2NjY1NjMzMDNhMzQzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzODM2MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBP7AAAQw DQYJKoZIhvcNAQELBQADggEBAFT7JNAIsRfaD//UB2SM5jscM+Lr6Yg9I0juMdO9 JWGDcpNWF2AIU66IR/UTFgeTCPW9Bn1GlEwVrFPtdGT+A/hJo0f94s3fYEmtpEip ojuglr4Zu3LKKAynniC9qImklLqnu0xAXBETY+ziWm96iQVkxnpe4uK/YkwG9jve bD31elXu2sqCanm8ZhUPssPWH7GavTRkreNjDjfCt2p/NkZkrbc8KZ6DztfEmD7M II/neiDSrc2XvjX9ptNH+vhgwQvgdHtpYTLx8BYVoCOo+C9IJ0q2cGA2UzEda1t0 dqoGP4zz7cAdHgQ6lbYLzSK1j7S4e8ld/rIyG0DKLThLGr8= -----END CERTIFICATE-----Generated at Tue Jun 17 08:53:14 2025 by rpki-client