$ rpki-client -vvf repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a333a3a2f34382d3438203d3e203535363835.roa File: 323430343a653130303a333a3a2f34382d3438203d3e203535363835.roa (raw, json) Hash identifier: xg9cY6d/gVSSmMPcjpzSoOyYdX58RFBsi8aRId+objc= Subject key identifier: 09:42:D2:8A:48:D5:47:9B:BE:9C:73:71:E8:A1:57:92:17:A1:51:42 Certificate issuer: /CN=B6F0131510E62F73E5F29246F9C8F691811A704D Certificate serial: 63BDBB4AEB007C6616985840307D3C86F09E2CCE Authority key identifier: B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a333a3a2f34382d3438203d3e203535363835.roa Signing time: Mon 02 Jun 2025 02:04:46 +0000 ROA not before: Mon 02 Jun 2025 01:59:46 +0000 ROA not after: Mon 01 Jun 2026 02:04:46 +0000 asID: 55685 IP address blocks: 2404:e100:3::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 10:47:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:bd:bb:4a:eb:00:7c:66:16:98:58:40:30:7d:3c:86:f0:9e:2c:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F0131510E62F73E5F29246F9C8F691811A704D Validity Not Before: Jun 2 01:59:46 2025 GMT Not After : Jun 1 02:04:46 2026 GMT Subject: CN=0942D28A48D5479BBE9C7371E8A1579217A15142 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:a5:bc:42:26:8d:1f:73:7a:bc:a5:68:94:f1: 5f:f3:9e:b2:8f:77:8e:a0:c9:1f:3d:a3:0c:80:40: d2:81:d9:94:b6:20:00:e2:db:ee:01:e9:ee:aa:14: fa:7c:55:6e:76:6d:d0:af:2b:12:75:a8:32:6c:46: 56:93:f6:5b:80:33:5f:e2:22:7f:d1:a9:95:57:7f: e3:f4:67:f0:1d:7d:8c:d3:30:49:67:f1:92:56:81: 79:8a:49:8e:40:8c:00:92:c1:82:95:0b:25:97:c6: 90:9c:35:cf:64:20:e0:2d:ff:99:fa:e1:e5:12:b1: 27:38:2f:d7:f9:77:31:d8:cf:c9:9e:20:92:18:bb: 7b:06:aa:e4:fa:98:c8:cc:a2:5e:0f:5e:24:7c:d9: c2:b4:1f:68:82:0c:bf:aa:50:35:57:14:3a:92:1e: 65:6d:6a:c5:2d:cf:b2:7c:cd:78:ae:7d:78:a4:ea: 98:48:04:9e:50:c8:ec:ab:b6:82:c2:27:04:97:78: 24:c1:b7:05:5b:20:fc:62:9d:eb:95:ea:29:04:95: 02:3d:45:0a:fc:bc:89:71:21:b6:fe:57:1d:8c:07: 97:c5:41:e0:89:bd:3d:51:e6:1f:89:90:9e:c9:82: ab:10:4a:d6:3b:de:ec:3e:f5:cf:b7:aa:33:b8:4b: a7:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:42:D2:8A:48:D5:47:9B:BE:9C:73:71:E8:A1:57:92:17:A1:51:42 X509v3 Authority Key Identifier: keyid:B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/323430343a653130303a333a3a2f34382d3438203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:e100:3::/48 Signature Algorithm: sha256WithRSAEncryption 73:78:89:8b:b0:0b:50:ef:ef:e7:ab:a8:aa:24:ea:ec:38:c2: 43:d8:58:4d:6f:e9:aa:a5:a8:ab:4b:20:eb:5b:e0:50:79:29: 77:45:16:bd:d4:41:e0:24:3d:b4:6e:14:b8:31:ff:c3:54:e6: f3:84:ca:6e:13:8b:9a:db:1e:eb:f8:50:53:59:d4:a3:89:05: a7:dc:26:9b:3d:c3:e8:81:1c:02:d0:1b:99:52:71:06:dd:58: f0:bf:9e:3e:d4:99:b5:a8:66:45:b4:b8:6c:d6:8e:a4:64:31: 53:6a:29:d6:d1:9f:0b:52:8c:97:7e:ac:9a:06:96:81:cb:b0: 5c:10:f2:55:6e:a8:c5:05:8e:38:cc:e5:f6:d7:78:46:19:94: 2c:d3:df:d2:4c:0b:71:67:10:23:16:e9:2f:03:9b:9e:a3:23: 34:05:76:ca:02:0d:8c:60:42:a6:53:d9:b1:ac:21:b2:dc:a6: 31:ff:4d:8b:07:4c:57:92:55:a3:b3:c2:22:03:ba:4c:a4:0c: 15:e7:d1:89:fc:24:76:9a:8f:15:89:fb:c6:cf:0e:78:5a:03: bf:4b:2b:5d:b5:c6:07:28:10:51:16:cf:2b:c0:72:6b:a5:ba: 92:fb:5c:b2:83:c7:a8:e5:cb:7a:26:45:61:46:ee:99:21:90: dc:e6:4c:21 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUY727SusAfGYWmFhAMH08hvCeLM4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4 MTFBNzA0RDAeFw0yNTA2MDIwMTU5NDZaFw0yNjA2MDEwMjA0NDZaMDMxMTAvBgNV BAMTKDA5NDJEMjhBNDhENTQ3OUJCRTlDNzM3MUU4QTE1NzkyMTdBMTUxNDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCopbxCJo0fc3q8pWiU8V/znrKP d46gyR89owyAQNKB2ZS2IADi2+4B6e6qFPp8VW52bdCvKxJ1qDJsRlaT9luAM1/i In/RqZVXf+P0Z/AdfYzTMEln8ZJWgXmKSY5AjACSwYKVCyWXxpCcNc9kIOAt/5n6 4eUSsSc4L9f5dzHYz8meIJIYu3sGquT6mMjMol4PXiR82cK0H2iCDL+qUDVXFDqS HmVtasUtz7J8zXiufXik6phIBJ5QyOyrtoLCJwSXeCTBtwVbIPxineuV6ikElQI9 RQr8vIlxIbb+Vx2MB5fFQeCJvT1R5h+JkJ7JgqsQStY73uw+9c+3qjO4S6e1AgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUCULSikjVR5u+nHNx6KFXkhehUUIwHwYDVR0j BBgwFoAUtvATFRDmL3Pl8pJG+cj2kYEacE0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWQ4ZGFiNC04YmI2LTRlZDAtOGRhYi01YTQwNjE2N2I5OWQvMC9CNkYwMTMxNTEw RTYyRjczRTVGMjkyNDZGOUM4RjY5MTgxMUE3MDRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4MTFB NzA0RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMyMzQzMDM0M2E2NTMxMzAzMDNhMzMzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzNTM1MzYzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAThAAADMA0G CSqGSIb3DQEBCwUAA4IBAQBzeImLsAtQ7+/nq6iqJOrsOMJD2FhNb+mqpairSyDr W+BQeSl3RRa91EHgJD20bhS4Mf/DVObzhMpuE4ua2x7r+FBTWdSjiQWn3CabPcPo gRwC0BuZUnEG3Vjwv54+1Jm1qGZFtLhs1o6kZDFTainW0Z8LUoyXfqyaBpaBy7Bc EPJVbqjFBY44zOX213hGGZQs09/STAtxZxAjFukvA5ueoyM0BXbKAg2MYEKmU9mx rCGy3KYx/02LB0xXklWjs8IiA7pMpAwV59GJ/CR2mo8VifvGzw54WgO/SytdtcYH KBBRFs8rwHJrpbqS+1yyg8eo5ct6JkVhRu6ZIZDc5kwh -----END CERTIFICATE-----Generated at Tue Jun 17 02:50:23 2025 by rpki-client