$ rpki-client -vvf repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a3a2f33322d3438203d3e20313338383636.roa File: 323430343a666563303a3a2f33322d3438203d3e20313338383636.roa (raw, json) Hash identifier: znbfpwqo/RqJTtKokVQJprWVfIE6ZeyWhe8h0U97wlw= Subject key identifier: 1A:7B:3C:70:2B:78:4B:11:D1:A6:2F:80:B6:DD:23:83:35:2E:E8:B7 Certificate issuer: /CN=3D64FD900E2E64CB159D0067167853AAFC8A7E97 Certificate serial: 1D602D80996CABDA9A4528B56CA4BE22DDB9D701 Authority key identifier: 3D:64:FD:90:0E:2E:64:CB:15:9D:00:67:16:78:53:AA:FC:8A:7E:97 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a3a2f33322d3438203d3e20313338383636.roa Signing time: Sat 31 May 2025 16:00:02 +0000 ROA not before: Sat 31 May 2025 15:55:02 +0000 ROA not after: Sat 30 May 2026 16:00:02 +0000 asID: 138866 IP address blocks: 2404:fec0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.crl rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 14:14:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:60:2d:80:99:6c:ab:da:9a:45:28:b5:6c:a4:be:22:dd:b9:d7:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D64FD900E2E64CB159D0067167853AAFC8A7E97 Validity Not Before: May 31 15:55:02 2025 GMT Not After : May 30 16:00:02 2026 GMT Subject: CN=1A7B3C702B784B11D1A62F80B6DD2383352EE8B7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:fe:12:40:15:a8:cd:5f:5f:10:75:78:8f:56: b0:f8:14:c8:bb:65:f4:50:98:64:e5:47:48:f5:d3: c1:a6:11:7e:c3:1d:3e:91:21:c8:2d:64:2f:f4:ae: b0:30:69:c2:7e:a8:90:40:ba:62:54:17:c9:1e:fd: c4:9e:b1:0d:89:c1:84:2e:4c:3f:18:e7:96:16:6d: 8f:59:a2:22:a5:06:19:07:1b:3c:2b:08:78:86:b5: ed:6b:d1:b6:f6:e4:ca:af:da:7b:29:ac:c2:0f:61: f4:20:a1:a1:ab:81:db:53:6f:4f:23:f0:11:ab:f6: 25:c8:c5:68:cd:c5:d1:7c:fa:05:63:dc:b5:b3:c2: 77:32:1e:bf:bd:5d:d9:36:b2:f0:06:99:85:8a:7d: d3:e4:90:63:70:bd:30:59:6c:85:d7:37:ab:f0:5c: 35:81:a5:84:af:ac:d7:54:1e:c2:70:28:04:f6:4d: 87:62:92:27:de:f2:81:e6:e0:cd:cd:f0:ef:68:90: b9:61:c7:58:77:17:19:e6:bc:00:7a:11:b5:03:14: 37:8a:a1:06:b1:b4:42:56:dd:63:4d:86:28:07:d9: f1:72:85:a3:28:b7:be:b0:8a:33:16:24:34:e5:80: 4f:73:66:fc:d5:77:2b:97:e4:f9:ef:41:78:7b:50: 81:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:7B:3C:70:2B:78:4B:11:D1:A6:2F:80:B6:DD:23:83:35:2E:E8:B7 X509v3 Authority Key Identifier: keyid:3D:64:FD:90:0E:2E:64:CB:15:9D:00:67:16:78:53:AA:FC:8A:7E:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/323430343a666563303a3a2f33322d3438203d3e20313338383636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fec0::/32 Signature Algorithm: sha256WithRSAEncryption a4:71:48:09:6f:a0:48:f1:30:1a:b3:6c:76:ec:99:ff:e0:07: a1:ed:ff:1e:ce:71:c4:f4:b5:33:63:64:c9:1e:d4:c3:a1:d0: c8:48:ca:51:3f:90:20:32:f7:06:fc:8d:ae:a5:b9:83:a3:a5: 96:48:b2:1d:03:6f:c7:a0:d6:7e:5f:8b:4a:7d:06:a4:d6:af: 0e:5c:96:cb:8d:bc:e5:34:0e:e1:67:d3:a9:6f:75:25:51:b2: 13:40:88:d6:4b:56:43:f6:86:66:9a:c9:c6:31:39:f9:77:50: a1:96:26:03:28:c1:b1:76:19:44:2e:c7:12:58:4b:ec:e3:4b: 8d:2b:09:fe:23:b2:97:a9:49:9d:aa:2e:68:f1:1b:3a:0d:77: 0b:cc:28:a8:fb:16:59:81:8c:74:df:19:12:15:06:26:22:15: 85:30:81:c6:be:e6:23:a1:01:40:20:86:a7:a2:8c:c4:e6:e3: 2b:c1:74:06:9c:f1:c5:ca:e6:27:5a:58:78:98:60:5a:76:0e: 88:c7:a6:52:c6:a0:0e:44:97:09:c5:17:74:8b:ab:84:cb:5b: 50:cb:09:c3:6d:5d:7e:c1:12:86:ba:f5:ae:73:69:33:f7:fd: 1f:0b:eb:63:c3:6c:28:40:09:d0:e0:b4:71:dc:2f:dc:93:11: 95:14:aa:b9 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUHWAtgJlsq9qaRSi1bKS+It251wEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Q2NEZEOTAwRTJFNjRDQjE1OUQwMDY3MTY3ODUzQUFG QzhBN0U5NzAeFw0yNTA1MzExNTU1MDJaFw0yNjA1MzAxNjAwMDJaMDMxMTAvBgNV BAMTKDFBN0IzQzcwMkI3ODRCMTFEMUE2MkY4MEI2REQyMzgzMzUyRUU4QjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDG/hJAFajNX18QdXiPVrD4FMi7 ZfRQmGTlR0j108GmEX7DHT6RIcgtZC/0rrAwacJ+qJBAumJUF8ke/cSesQ2JwYQu TD8Y55YWbY9ZoiKlBhkHGzwrCHiGte1r0bb25Mqv2nsprMIPYfQgoaGrgdtTb08j 8BGr9iXIxWjNxdF8+gVj3LWzwncyHr+9Xdk2svAGmYWKfdPkkGNwvTBZbIXXN6vw XDWBpYSvrNdUHsJwKAT2TYdikife8oHm4M3N8O9okLlhx1h3FxnmvAB6EbUDFDeK oQaxtEJW3WNNhigH2fFyhaMot76wijMWJDTlgE9zZvzVdyuX5PnvQXh7UIHrAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUGns8cCt4SxHRpi+Att0jgzUu6LcwHwYDVR0j BBgwFoAUPWT9kA4uZMsVnQBnFnhTqvyKfpcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YTUxOWFlYi01YzU2LTRjYjMtOTRhMC0wZjQwMGVhNmEzNzUvMC8zRDY0RkQ5MDBF MkU2NENCMTU5RDAwNjcxNjc4NTNBQUZDOEE3RTk3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0Q2NEZEOTAwRTJFNjRDQjE1OUQwMDY3MTY3ODUzQUFGQzhB N0U5Ny5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhNTE5YWViLTVjNTYtNGNiMy05 NGEwLTBmNDAwZWE2YTM3NS8wLzMyMzQzMDM0M2E2NjY1NjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzODM4MzYzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQE/sAwDQYJKoZI hvcNAQELBQADggEBAKRxSAlvoEjxMBqzbHbsmf/gB6Ht/x7OccT0tTNjZMke1MOh 0MhIylE/kCAy9wb8ja6luYOjpZZIsh0Db8eg1n5fi0p9BqTWrw5clsuNvOU0DuFn 06lvdSVRshNAiNZLVkP2hmaaycYxOfl3UKGWJgMowbF2GUQuxxJYS+zjS40rCf4j spepSZ2qLmjxGzoNdwvMKKj7FlmBjHTfGRIVBiYiFYUwgca+5iOhAUAghqeijMTm 4yvBdAac8cXK5idaWHiYYFp2DojHplLGoA5ElwnFF3SLq4TLW1DLCcNtXX7BEoa6 9a5zaTP3/R8L62PDbChACdDgtHHcL9yTEZUUqrk= -----END CERTIFICATE-----Generated at Tue Jun 17 08:02:33 2025 by rpki-client