$ rpki-client -vvf repo-rpki.idnic.net/repo/f3a62c9a-d4f0-454b-807f-84f9b3c202b3/0/323430353a346338303a3a2f33322d3438203d3e20313335343635.roa File: 323430353a346338303a3a2f33322d3438203d3e20313335343635.roa (raw, json) Hash identifier: MKGEqu2Psk6FQlMCBwUj3C02UOwY+xcEBLE/JQF9Mu0= Subject key identifier: C4:FA:9C:D0:35:2D:CD:90:D0:00:EC:05:35:A3:69:62:1B:E9:29:6A Certificate issuer: /CN=4551A032C44485FF6593E043527E3E1CE35B4C46 Certificate serial: 2CD18229EA8498D9F658C9D2DAA5CA0E78A05189 Authority key identifier: 45:51:A0:32:C4:44:85:FF:65:93:E0:43:52:7E:3E:1C:E3:5B:4C:46 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4551A032C44485FF6593E043527E3E1CE35B4C46.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f3a62c9a-d4f0-454b-807f-84f9b3c202b3/0/323430353a346338303a3a2f33322d3438203d3e20313335343635.roa Signing time: Mon 02 Jun 2025 02:04:17 +0000 ROA not before: Mon 02 Jun 2025 01:59:17 +0000 ROA not after: Mon 01 Jun 2026 02:04:17 +0000 asID: 135465 IP address blocks: 2405:4c80::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f3a62c9a-d4f0-454b-807f-84f9b3c202b3/0/4551A032C44485FF6593E043527E3E1CE35B4C46.crl rsync://repo-rpki.idnic.net/repo/f3a62c9a-d4f0-454b-807f-84f9b3c202b3/0/4551A032C44485FF6593E043527E3E1CE35B4C46.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4551A032C44485FF6593E043527E3E1CE35B4C46.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 11:52:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:d1:82:29:ea:84:98:d9:f6:58:c9:d2:da:a5:ca:0e:78:a0:51:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4551A032C44485FF6593E043527E3E1CE35B4C46 Validity Not Before: Jun 2 01:59:17 2025 GMT Not After : Jun 1 02:04:17 2026 GMT Subject: CN=C4FA9CD0352DCD90D000EC0535A369621BE9296A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:00:58:a7:83:af:56:38:65:4a:90:58:33:37: 90:ed:31:de:2c:54:e5:14:d3:36:47:eb:11:22:53: eb:f8:30:8d:ae:43:be:4d:7a:42:b0:16:3b:e1:bc: 25:a9:73:c7:66:57:7e:ac:ff:b4:64:4a:fb:df:a2: 70:6f:c2:54:97:36:6c:ce:bd:1e:14:9b:22:7f:e0: fb:a8:7f:8c:20:5d:7e:83:bb:59:7c:5f:82:b0:eb: 17:00:13:d5:e2:72:26:35:ec:dd:c5:73:ef:c8:a9: c9:ef:f9:47:b0:a9:19:74:e2:0e:dc:af:2f:42:f9: 9d:3b:40:7b:0f:7e:26:3f:bb:65:b0:8f:72:30:2e: a5:58:85:0b:37:41:99:6e:2e:ab:98:cf:3b:8f:53: e5:c9:e9:d7:19:de:ce:77:f1:b6:2a:f5:06:89:3f: 40:66:8c:fd:3a:b7:02:63:bf:6a:bb:57:67:b4:6f: d6:2d:1b:b6:28:11:69:05:2e:5b:e4:b5:94:d2:59: 1c:c0:48:b3:38:bc:4a:67:03:bd:55:60:ef:a9:5a: 6e:85:60:f2:f8:c8:03:6b:fe:13:c8:9c:f1:63:e9: 7d:ef:32:ac:ca:9b:8b:db:c7:ab:db:da:25:aa:b5: 9b:be:cb:ea:86:b3:ae:45:b0:b5:bb:bd:99:a9:bc: 79:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:FA:9C:D0:35:2D:CD:90:D0:00:EC:05:35:A3:69:62:1B:E9:29:6A X509v3 Authority Key Identifier: keyid:45:51:A0:32:C4:44:85:FF:65:93:E0:43:52:7E:3E:1C:E3:5B:4C:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f3a62c9a-d4f0-454b-807f-84f9b3c202b3/0/4551A032C44485FF6593E043527E3E1CE35B4C46.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4551A032C44485FF6593E043527E3E1CE35B4C46.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f3a62c9a-d4f0-454b-807f-84f9b3c202b3/0/323430353a346338303a3a2f33322d3438203d3e20313335343635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:4c80::/32 Signature Algorithm: sha256WithRSAEncryption 91:41:fe:1d:ff:d1:76:3f:e7:90:1e:07:f5:8b:01:5f:00:5a: b3:0b:f9:44:cf:3d:eb:85:6a:95:35:d2:f3:eb:86:bf:d1:af: 28:da:cb:d4:51:83:7b:d0:b7:15:1a:19:8f:fd:e2:08:49:36: 39:38:d3:6c:5f:cb:84:18:48:34:6c:39:49:a2:08:54:c1:39: 29:04:e4:b8:dd:27:43:07:ab:e1:6e:af:a7:4b:ab:92:3e:72: 2f:52:5c:55:61:b1:e2:68:4f:a8:31:23:4a:bf:36:d6:b3:b0: 1e:18:82:e0:d1:f3:7b:35:06:4a:f1:a8:25:95:19:fd:3c:65: cd:8a:cc:8a:c7:12:f5:08:33:f2:c1:c5:d6:a6:cf:e3:3e:a7: 83:d4:a1:cb:06:9f:0d:94:c0:97:f2:95:57:40:70:96:59:cb: 0f:d4:03:31:f4:e0:cb:01:24:48:ba:66:dc:b8:98:21:77:10: 8d:ba:e6:2d:3b:be:33:43:f8:a4:8a:14:85:9f:4d:fc:fb:75: d7:c0:d5:6e:ab:d8:49:d5:10:2d:4b:5c:a9:65:54:85:d0:d1: 23:85:0d:fd:77:45:f6:d2:30:a5:e8:5c:ff:b4:2b:ab:40:d1: 36:6d:49:5e:62:22:ef:24:8d:c7:14:57:d2:9c:e6:15:c3:6a: af:24:49:a0 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIULNGCKeqEmNn2WMnS2qXKDnigUYkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDU1MUEwMzJDNDQ0ODVGRjY1OTNFMDQzNTI3RTNFMUNF MzVCNEM0NjAeFw0yNTA2MDIwMTU5MTdaFw0yNjA2MDEwMjA0MTdaMDMxMTAvBgNV BAMTKEM0RkE5Q0QwMzUyRENEOTBEMDAwRUMwNTM1QTM2OTYyMUJFOTI5NkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJAFing69WOGVKkFgzN5DtMd4s VOUU0zZH6xEiU+v4MI2uQ75NekKwFjvhvCWpc8dmV36s/7RkSvvfonBvwlSXNmzO vR4UmyJ/4Puof4wgXX6Du1l8X4Kw6xcAE9XiciY17N3Fc+/Iqcnv+UewqRl04g7c ry9C+Z07QHsPfiY/u2Wwj3IwLqVYhQs3QZluLquYzzuPU+XJ6dcZ3s538bYq9QaJ P0BmjP06twJjv2q7V2e0b9YtG7YoEWkFLlvktZTSWRzASLM4vEpnA71VYO+pWm6F YPL4yANr/hPInPFj6X3vMqzKm4vbx6vb2iWqtZu+y+qGs65FsLW7vZmpvHkhAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUxPqc0DUtzZDQAOwFNaNpYhvpKWowHwYDVR0j BBgwFoAURVGgMsREhf9lk+BDUn4+HONbTEYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m M2E2MmM5YS1kNGYwLTQ1NGItODA3Zi04NGY5YjNjMjAyYjMvMC80NTUxQTAzMkM0 NDQ4NUZGNjU5M0UwNDM1MjdFM0UxQ0UzNUI0QzQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDU1MUEwMzJDNDQ0ODVGRjY1OTNFMDQzNTI3RTNFMUNFMzVC NEM0Ni5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzYTYyYzlhLWQ0ZjAtNDU0Yi04 MDdmLTg0ZjliM2MyMDJiMy8wLzMyMzQzMDM1M2EzNDYzMzgzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzNTM0MzYzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQFTIAwDQYJKoZI hvcNAQELBQADggEBAJFB/h3/0XY/55AeB/WLAV8AWrML+UTPPeuFapU10vPrhr/R ryjay9RRg3vQtxUaGY/94ghJNjk402xfy4QYSDRsOUmiCFTBOSkE5LjdJ0MHq+Fu r6dLq5I+ci9SXFVhseJoT6gxI0q/NtazsB4YguDR83s1BkrxqCWVGf08Zc2KzIrH EvUIM/LBxdamz+M+p4PUocsGnw2UwJfylVdAcJZZyw/UAzH04MsBJEi6Zty4mCF3 EI265i07vjND+KSKFIWfTfz7ddfA1W6r2EnVEC1LXKllVIXQ0SOFDf13RfbSMKXo XP+0K6tA0TZtSV5iIu8kjccUV9Kc5hXDaq8kSaA= -----END CERTIFICATE-----Generated at Tue Jun 17 09:51:02 2025 by rpki-client