$ rpki-client -vvf repo-rpki.idnic.net/repo/e2e96bf3-d021-4d84-90d5-c24558aa495f/0/323430353a353163303a3a2f33322d3332203d3e20313339333933.roa File: 323430353a353163303a3a2f33322d3332203d3e20313339333933.roa (raw, json) Hash identifier: xOhwGI2U+4AffMNiCyrvrejLk4Xi3+2L832MlZGbs+w= Subject key identifier: CE:E2:8D:20:84:D6:10:F6:BF:CB:D4:DA:11:86:81:64:71:80:E5:D2 Certificate issuer: /CN=29BE771FE6D788CA509E787787F218ADFB43DDB2 Certificate serial: 3E0BE63D5FEF8D9D2E06DA994320AA171FFABF6D Authority key identifier: 29:BE:77:1F:E6:D7:88:CA:50:9E:78:77:87:F2:18:AD:FB:43:DD:B2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29BE771FE6D788CA509E787787F218ADFB43DDB2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e2e96bf3-d021-4d84-90d5-c24558aa495f/0/323430353a353163303a3a2f33322d3332203d3e20313339333933.roa Signing time: Fri 06 Jun 2025 14:40:28 +0000 ROA not before: Fri 06 Jun 2025 14:35:28 +0000 ROA not after: Fri 05 Jun 2026 14:40:28 +0000 asID: 139393 IP address blocks: 2405:51c0::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e2e96bf3-d021-4d84-90d5-c24558aa495f/0/29BE771FE6D788CA509E787787F218ADFB43DDB2.crl rsync://repo-rpki.idnic.net/repo/e2e96bf3-d021-4d84-90d5-c24558aa495f/0/29BE771FE6D788CA509E787787F218ADFB43DDB2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29BE771FE6D788CA509E787787F218ADFB43DDB2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 16:09:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:0b:e6:3d:5f:ef:8d:9d:2e:06:da:99:43:20:aa:17:1f:fa:bf:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29BE771FE6D788CA509E787787F218ADFB43DDB2 Validity Not Before: Jun 6 14:35:28 2025 GMT Not After : Jun 5 14:40:28 2026 GMT Subject: CN=CEE28D2084D610F6BFCBD4DA118681647180E5D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:10:de:13:e8:de:03:ef:2b:b7:64:6b:00:4c: d5:a1:6f:c7:18:52:ab:16:3d:6a:3e:24:84:a6:78: ac:10:0e:98:29:c2:45:69:b1:43:49:f8:aa:25:7a: 25:90:ea:81:08:f8:44:03:f7:0e:3e:73:2d:e7:d7: 77:0a:9c:d0:58:1f:ca:2f:6a:ac:49:b1:7b:a8:de: ec:30:55:13:20:66:10:59:34:fc:4e:38:7c:3f:e3: 5a:46:31:7b:dd:e2:c2:14:0d:32:50:32:74:64:e5: 5a:4b:2d:98:96:da:e9:d6:15:54:ce:99:47:b7:f0: d0:3e:c7:60:66:07:5a:23:36:e7:39:48:04:18:21: 25:6c:a1:f8:43:c8:7e:5e:08:54:e1:e0:07:13:db: 37:56:7b:e7:95:24:ef:a9:1a:0e:80:d2:b6:19:75: 4f:53:c6:e5:63:77:a7:31:27:dc:c3:32:37:be:94: b4:e8:c5:00:40:b8:48:0e:61:d9:6c:11:46:56:55: b1:f0:3b:db:9e:6e:bf:6b:7f:85:2b:a5:85:8a:04: 18:be:c8:07:f2:58:41:2a:d6:fc:00:fd:91:46:6c: e1:a9:48:d9:96:64:84:fa:50:24:8c:ee:3f:d8:4e: 5c:98:b8:ec:a0:6a:db:58:2e:5a:56:e7:07:d3:ac: 2a:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:E2:8D:20:84:D6:10:F6:BF:CB:D4:DA:11:86:81:64:71:80:E5:D2 X509v3 Authority Key Identifier: keyid:29:BE:77:1F:E6:D7:88:CA:50:9E:78:77:87:F2:18:AD:FB:43:DD:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e2e96bf3-d021-4d84-90d5-c24558aa495f/0/29BE771FE6D788CA509E787787F218ADFB43DDB2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29BE771FE6D788CA509E787787F218ADFB43DDB2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e2e96bf3-d021-4d84-90d5-c24558aa495f/0/323430353a353163303a3a2f33322d3332203d3e20313339333933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:51c0::/32 Signature Algorithm: sha256WithRSAEncryption 73:7f:3a:d0:5a:2d:ea:94:9c:f9:14:b7:3c:09:da:c1:78:3f: ea:e2:60:67:6c:f2:e5:94:d3:e2:1e:e7:89:1c:0f:1c:fa:15: 6d:4d:bf:a0:1b:28:4b:16:06:4c:c6:6b:37:f6:f8:17:b8:0f: eb:c2:ee:36:f1:c8:5e:2a:d5:4c:cf:0d:c3:04:b2:9d:85:c1: 7a:15:d0:bc:88:9f:c7:fc:aa:a1:94:e6:06:f5:d0:cd:89:25: 42:7a:21:63:cc:19:43:61:e4:47:43:eb:92:7f:f6:a1:f8:b1: d2:8b:c5:89:28:8e:42:ec:eb:14:60:3b:fa:88:c2:0d:d5:da: fd:ca:3f:60:87:41:60:85:bc:a8:0d:ee:cd:2f:0d:bd:4b:86: 2b:6b:c0:55:82:7b:29:b7:e2:70:81:29:47:67:df:1b:5e:35: a4:c6:c1:21:17:c1:fc:28:c7:74:36:2f:12:2b:38:d5:f7:b2: c7:3d:ca:18:31:73:b7:5f:a0:5e:66:d2:7a:ec:de:e4:12:2e: a8:ab:8e:60:2d:72:a1:95:3c:aa:4c:07:ea:51:0b:db:38:25: 8f:9f:0b:eb:96:67:8a:ee:cc:7e:fd:12:85:ce:13:22:d0:8e: ac:6e:ad:69:08:e0:9b:17:01:17:88:34:23:83:60:ce:e3:a3: dc:74:ab:37 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUPgvmPV/vjZ0uBtqZQyCqFx/6v20wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjlCRTc3MUZFNkQ3ODhDQTUwOUU3ODc3ODdGMjE4QURG QjQzRERCMjAeFw0yNTA2MDYxNDM1MjhaFw0yNjA2MDUxNDQwMjhaMDMxMTAvBgNV BAMTKENFRTI4RDIwODRENjEwRjZCRkNCRDREQTExODY4MTY0NzE4MEU1RDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDwEN4T6N4D7yu3ZGsATNWhb8cY UqsWPWo+JISmeKwQDpgpwkVpsUNJ+KoleiWQ6oEI+EQD9w4+cy3n13cKnNBYH8ov aqxJsXuo3uwwVRMgZhBZNPxOOHw/41pGMXvd4sIUDTJQMnRk5VpLLZiW2unWFVTO mUe38NA+x2BmB1ojNuc5SAQYISVsofhDyH5eCFTh4AcT2zdWe+eVJO+pGg6A0rYZ dU9TxuVjd6cxJ9zDMje+lLToxQBAuEgOYdlsEUZWVbHwO9uebr9rf4UrpYWKBBi+ yAfyWEEq1vwA/ZFGbOGpSNmWZIT6UCSM7j/YTlyYuOygattYLlpW5wfTrCrbAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUzuKNIITWEPa/y9TaEYaBZHGA5dIwHwYDVR0j BBgwFoAUKb53H+bXiMpQnnh3h/IYrftD3bIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MmU5NmJmMy1kMDIxLTRkODQtOTBkNS1jMjQ1NThhYTQ5NWYvMC8yOUJFNzcxRkU2 RDc4OENBNTA5RTc4Nzc4N0YyMThBREZCNDNEREIyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjlCRTc3MUZFNkQ3ODhDQTUwOUU3ODc3ODdGMjE4QURGQjQz RERCMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UyZTk2YmYzLWQwMjEtNGQ4NC05 MGQ1LWMyNDU1OGFhNDk1Zi8wLzMyMzQzMDM1M2EzNTMxNjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzOTMzMzkzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQFUcAwDQYJKoZI hvcNAQELBQADggEBAHN/OtBaLeqUnPkUtzwJ2sF4P+riYGds8uWU0+Ie54kcDxz6 FW1Nv6AbKEsWBkzGazf2+Be4D+vC7jbxyF4q1UzPDcMEsp2FwXoV0LyIn8f8qqGU 5gb10M2JJUJ6IWPMGUNh5EdD65J/9qH4sdKLxYkojkLs6xRgO/qIwg3V2v3KP2CH QWCFvKgN7s0vDb1LhitrwFWCeym34nCBKUdn3xteNaTGwSEXwfwox3Q2LxIrONX3 ssc9yhgxc7dfoF5m0nrs3uQSLqirjmAtcqGVPKpMB+pRC9s4JY+fC+uWZ4ruzH79 EoXOEyLQjqxurWkI4JsXAReINCODYM7jo9x0qzc= -----END CERTIFICATE-----Generated at Tue Jun 17 11:15:06 2025 by rpki-client