$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a666163653a3a2f34382d3438203d3e203538353532.roa File: 323430343a666430303a666163653a3a2f34382d3438203d3e203538353532.roa (raw, json) Hash identifier: /h1A3xinfsNlHTxOHRibnVghcn/136sdXSnaBvBcvmc= Subject key identifier: B4:72:6C:54:19:04:9A:DE:8D:E5:EF:EE:03:48:D5:FA:5C:C7:E9:DC Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 295FC61E8B946DEB8587C0DA8784E6D2FDAD44EA Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a666163653a3a2f34382d3438203d3e203538353532.roa Signing time: Fri 09 May 2025 09:00:00 +0000 ROA not before: Fri 09 May 2025 08:55:00 +0000 ROA not after: Fri 08 May 2026 09:00:00 +0000 asID: 58552 IP address blocks: 2404:fd00:face::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 17 Jun 2025 20:51:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:5f:c6:1e:8b:94:6d:eb:85:87:c0:da:87:84:e6:d2:fd:ad:44:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: May 9 08:55:00 2025 GMT Not After : May 8 09:00:00 2026 GMT Subject: CN=B4726C5419049ADE8DE5EFEE0348D5FA5CC7E9DC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:b8:ec:e6:74:f0:aa:41:84:ca:03:60:bb:bd: 8a:59:bf:32:78:48:ff:a4:6e:44:63:af:a3:f4:82: c7:a3:05:dc:e0:06:38:a7:50:66:b2:9a:39:f0:ce: c0:72:17:d0:fe:13:8b:5e:36:bc:ee:8d:8f:ff:21: 3b:d4:6e:d7:4a:b6:e5:ac:ee:01:01:0c:c2:0c:f0: 2e:83:ea:d3:04:19:ec:63:b8:a4:45:20:85:60:ee: 14:14:9c:22:c1:ac:94:95:e9:bd:ba:aa:c4:a6:5c: 10:aa:4c:9b:a4:e3:cb:7d:6e:4a:32:a3:34:a3:a6: 5f:c4:00:8e:e7:8f:6d:52:04:b7:18:a6:10:b0:45: 67:c7:a7:34:92:e8:3a:46:b5:24:ae:91:2b:25:72: 13:f8:7e:64:60:bb:c3:27:7f:c5:42:8e:b0:9b:f1: 24:f5:d6:33:72:f2:04:8a:17:ca:47:ab:ff:3a:09: 07:46:92:d6:6b:0a:3f:04:6a:63:0d:31:fb:ba:44: 5b:99:bc:ea:a7:a2:d9:3e:70:aa:b6:5c:6b:75:36: e5:a9:34:a9:dd:ca:f3:fd:01:12:42:0b:f2:b4:37: 3b:e2:cb:b9:24:0c:b8:18:7b:15:ab:2e:fd:a4:c0: c4:a8:b6:cc:e0:43:c8:68:d6:7e:f4:b7:cf:1a:94: 9a:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:72:6C:54:19:04:9A:DE:8D:E5:EF:EE:03:48:D5:FA:5C:C7:E9:DC X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/323430343a666430303a666163653a3a2f34382d3438203d3e203538353532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:fd00:face::/48 Signature Algorithm: sha256WithRSAEncryption 8b:17:1e:b2:e6:9d:89:56:68:a0:d8:73:e7:c3:2a:e7:ff:3a: 39:0e:a6:58:df:84:89:a7:2f:36:10:00:10:22:16:65:06:4f: 06:51:05:f8:4a:cf:98:65:5d:33:60:d8:f2:70:ab:29:b4:15: c5:0b:19:36:78:fa:b4:6f:e9:a5:6b:24:cf:31:f1:53:4e:d1: a6:2d:68:2c:b9:d2:1f:a8:78:07:9e:0a:02:c3:a1:98:9c:1e: fe:98:45:aa:6e:04:a9:29:40:96:00:cb:2f:a2:3b:f8:b7:0c: 69:32:d8:95:b7:54:08:2f:aa:23:d8:04:e8:1e:ad:6b:c5:fd: 17:1f:ef:c5:49:45:28:7c:d8:c2:08:44:a9:87:96:2f:22:99: 6b:9c:e0:93:c2:d3:e9:75:8c:ed:51:8f:c9:78:5e:7b:cb:21: 5a:2c:65:f7:e8:69:5e:61:2c:5b:d4:e8:fd:43:a0:fb:b3:2f: 59:6c:02:4d:f8:ed:70:f0:97:d9:1d:48:e0:36:9a:15:c7:6b: 76:df:98:48:57:d7:c1:cc:fe:ca:a9:65:ea:68:5b:f5:1b:cc: 7d:d3:bb:93:1f:00:c2:8a:89:c0:61:2b:46:db:15:70:e3:4a: 4a:6d:e3:46:f3:99:55:b8:f8:ef:11:81:50:b1:e9:11:bb:d3: 58:6a:a0:2b -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUKV/GHouUbeuFh8Dah4Tm0v2tROowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yNTA1MDkwODU1MDBaFw0yNjA1MDgwOTAwMDBaMDMxMTAvBgNV BAMTKEI0NzI2QzU0MTkwNDlBREU4REU1RUZFRTAzNDhENUZBNUNDN0U5REMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbuOzmdPCqQYTKA2C7vYpZvzJ4 SP+kbkRjr6P0gsejBdzgBjinUGaymjnwzsByF9D+E4teNrzujY//ITvUbtdKtuWs 7gEBDMIM8C6D6tMEGexjuKRFIIVg7hQUnCLBrJSV6b26qsSmXBCqTJuk48t9bkoy ozSjpl/EAI7nj21SBLcYphCwRWfHpzSS6DpGtSSukSslchP4fmRgu8Mnf8VCjrCb 8ST11jNy8gSKF8pHq/86CQdGktZrCj8EamMNMfu6RFuZvOqnotk+cKq2XGt1NuWp NKndyvP9ARJCC/K0Nzviy7kkDLgYexWrLv2kwMSotszgQ8ho1n70t88alJoDAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUtHJsVBkEmt6N5e/uA0jV+lzH6dwwHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMyMzQzMDM0M2E2NjY0MzAzMDNhNjY2MTYzNjUz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzNTM4MzUzNTMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAT9 APrOMA0GCSqGSIb3DQEBCwUAA4IBAQCLFx6y5p2JVmig2HPnwyrn/zo5DqZY34SJ py82EAAQIhZlBk8GUQX4Ss+YZV0zYNjycKsptBXFCxk2ePq0b+mlayTPMfFTTtGm LWgsudIfqHgHngoCw6GYnB7+mEWqbgSpKUCWAMsvojv4twxpMtiVt1QIL6oj2ATo Hq1rxf0XH+/FSUUofNjCCESph5YvIplrnOCTwtPpdYztUY/JeF57yyFaLGX36Gle YSxb1Oj9Q6D7sy9ZbAJN+O1w8JfZHUjgNpoVx2t235hIV9fBzP7KqWXqaFv1G8x9 07uTHwDCionAYStG2xVw40pKbeNG85lVuPjvEYFQsekRu9NYaqAr -----END CERTIFICATE-----Generated at Mon Jun 16 05:16:00 2025 by rpki-client