$ rpki-client -vvf repo-rpki.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/323430373a613563303a3a2f34382d3438203d3e20313432333339.roa File: 323430373a613563303a3a2f34382d3438203d3e20313432333339.roa (raw, json) Hash identifier: /W9eJzZVpyB/z5tgobQScs/0TG2lb+p8hosfeUn800Q= Subject key identifier: B6:13:1B:8D:B0:4D:EA:99:17:8A:A5:5E:6F:98:68:23:BE:CE:00:43 Certificate issuer: /CN=C24FD85D1F493383773D253EBB38BED908305E45 Certificate serial: 5FA319F58F5E31298A94EBBED8CB8DAF8052C976 Authority key identifier: C2:4F:D8:5D:1F:49:33:83:77:3D:25:3E:BB:38:BE:D9:08:30:5E:45 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C24FD85D1F493383773D253EBB38BED908305E45.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/323430373a613563303a3a2f34382d3438203d3e20313432333339.roa Signing time: Thu 03 Jul 2025 03:00:00 +0000 ROA not before: Thu 03 Jul 2025 02:55:00 +0000 ROA not after: Thu 02 Jul 2026 03:00:00 +0000 asID: 142339 IP address blocks: 2407:a5c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/C24FD85D1F493383773D253EBB38BED908305E45.crl rsync://repo-rpki.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/C24FD85D1F493383773D253EBB38BED908305E45.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C24FD85D1F493383773D253EBB38BED908305E45.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 18:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:a3:19:f5:8f:5e:31:29:8a:94:eb:be:d8:cb:8d:af:80:52:c9:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C24FD85D1F493383773D253EBB38BED908305E45 Validity Not Before: Jul 3 02:55:00 2025 GMT Not After : Jul 2 03:00:00 2026 GMT Subject: CN=B6131B8DB04DEA99178AA55E6F986823BECE0043 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:59:36:9f:83:7f:de:76:27:ce:3b:18:20:af: 4e:ae:c6:ca:cb:fc:cf:4f:89:4a:ad:72:ca:9b:f5: bd:2d:7e:97:50:ba:e2:66:7e:77:77:d0:a7:5a:33: 02:a5:d0:50:df:d7:80:53:72:38:a1:76:d3:9b:77: 8c:36:85:0f:48:3a:5f:03:75:97:d5:34:f3:da:9a: 5d:d2:32:96:c3:2f:b9:c2:62:ef:6e:6f:2e:4b:44: 08:e4:d5:ce:f0:3a:4b:02:02:2f:19:f4:47:b2:df: a5:78:b7:2e:84:6b:0d:24:50:eb:b0:03:14:a7:7b: f4:ac:1b:25:39:77:c4:7b:be:ac:e4:cd:4f:5a:a6: 58:af:f0:e7:ee:c0:7c:50:b3:85:d6:ea:b7:76:f9: db:86:f5:2d:2f:a5:e4:fc:c7:2b:77:b2:55:13:74: 10:3a:71:7f:ca:23:aa:c7:3e:58:da:98:da:35:9e: 31:63:ea:dd:d6:1a:e3:50:c3:5a:5e:28:fd:37:90: ab:66:c7:8b:1a:af:99:72:72:a4:0a:e4:79:08:59: 68:26:0b:44:29:89:59:8a:e1:81:35:88:83:ef:7c: df:2b:97:c1:78:70:e5:72:7d:09:a8:15:96:02:98: 03:57:d5:4d:61:c8:15:c4:8a:50:89:eb:01:a4:a7: 2a:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:13:1B:8D:B0:4D:EA:99:17:8A:A5:5E:6F:98:68:23:BE:CE:00:43 X509v3 Authority Key Identifier: keyid:C2:4F:D8:5D:1F:49:33:83:77:3D:25:3E:BB:38:BE:D9:08:30:5E:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/C24FD85D1F493383773D253EBB38BED908305E45.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C24FD85D1F493383773D253EBB38BED908305E45.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/323430373a613563303a3a2f34382d3438203d3e20313432333339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:a5c0::/48 Signature Algorithm: sha256WithRSAEncryption 73:fe:87:45:a8:41:e5:65:60:bd:bb:e6:88:27:67:5f:01:dd: aa:f8:ee:4e:ea:39:ea:67:b1:04:ea:52:2a:60:50:da:f7:a0: 65:02:bc:5c:c5:bf:48:b0:9d:42:52:16:b5:c9:65:84:ec:94: 37:69:65:aa:c5:59:b1:85:6b:90:6d:e0:f4:bb:a8:a5:1b:ac: 10:0e:5b:14:8b:4f:bb:60:75:c0:01:2a:99:73:f2:1f:73:33: 19:5f:dd:ea:aa:0c:e9:45:bc:b6:fc:8e:90:00:35:08:7d:33: 2a:51:b5:bb:d9:15:20:12:81:16:a1:a3:1d:60:e8:98:e6:8a: 26:12:8e:3e:69:e3:d6:26:ea:38:85:08:ae:9b:3f:c1:15:02: 1c:77:39:f4:3c:43:9e:09:d5:0a:61:dc:5c:6d:9e:d1:ed:05: c4:79:62:97:15:9e:1a:62:ea:30:23:d1:d3:2d:21:00:98:9f: c4:62:f9:df:c6:8c:63:e5:ee:96:15:6c:f0:a0:a9:0a:d1:6e: cd:70:fb:38:51:64:84:f5:7d:16:23:50:76:fa:59:68:44:b8: 07:50:77:b0:3e:6d:00:1d:fc:aa:1e:68:b2:15:13:2c:f2:8b: 9f:c1:ab:a3:84:92:7c:6d:59:0d:42:16:85:51:b5:4f:51:4a: 28:c4:6b:e6 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgIUX6MZ9Y9eMSmKlOu+2MuNr4BSyXYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzI0RkQ4NUQxRjQ5MzM4Mzc3M0QyNTNFQkIzOEJFRDkw ODMwNUU0NTAeFw0yNTA3MDMwMjU1MDBaFw0yNjA3MDIwMzAwMDBaMDMxMTAvBgNV BAMTKEI2MTMxQjhEQjA0REVBOTkxNzhBQTU1RTZGOTg2ODIzQkVDRTAwNDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaWTafg3/edifOOxggr06uxsrL /M9PiUqtcsqb9b0tfpdQuuJmfnd30KdaMwKl0FDf14BTcjihdtObd4w2hQ9IOl8D dZfVNPPaml3SMpbDL7nCYu9uby5LRAjk1c7wOksCAi8Z9Eey36V4ty6Eaw0kUOuw AxSne/SsGyU5d8R7vqzkzU9apliv8OfuwHxQs4XW6rd2+duG9S0vpeT8xyt3slUT dBA6cX/KI6rHPljamNo1njFj6t3WGuNQw1peKP03kKtmx4sar5lycqQK5HkIWWgm C0QpiVmK4YE1iIPvfN8rl8F4cOVyfQmoFZYCmANX1U1hyBXEilCJ6wGkpyobAgMB AAGjggI1MIICMTAdBgNVHQ4EFgQUthMbjbBN6pkXiqVeb5hoI77OAEMwHwYDVR0j BBgwFoAUwk/YXR9JM4N3PSU+uzi+2QgwXkUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MTkyMDIxZS0zOTA0LTQxMTUtYWY1ZS0zZWRiNzEzYmFhMTQvMC9DMjRGRDg1RDFG NDkzMzgzNzczRDI1M0VCQjM4QkVEOTA4MzA1RTQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzI0RkQ4NUQxRjQ5MzM4Mzc3M0QyNTNFQkIzOEJFRDkwODMw NUU0NS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzExOTIwMjFlLTM5MDQtNDExNS1h ZjVlLTNlZGI3MTNiYWExNC8wLzMyMzQzMDM3M2E2MTM1NjMzMDNhM2EyZjM0Mzgy ZDM0MzgyMDNkM2UyMDMxMzQzMjMzMzMzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQHpcAAADANBgkq hkiG9w0BAQsFAAOCAQEAc/6HRahB5WVgvbvmiCdnXwHdqvjuTuo56mexBOpSKmBQ 2vegZQK8XMW/SLCdQlIWtcllhOyUN2llqsVZsYVrkG3g9LuopRusEA5bFItPu2B1 wAEqmXPyH3MzGV/d6qoM6UW8tvyOkAA1CH0zKlG1u9kVIBKBFqGjHWDomOaKJhKO Pmnj1ibqOIUIrps/wRUCHHc59DxDngnVCmHcXG2e0e0FxHlilxWeGmLqMCPR0y0h AJifxGL538aMY+XulhVs8KCpCtFuzXD7OFFkhPV9FiNQdvpZaES4B1B3sD5tAB38 qh5oshUTLPKLn8Gro4SSfG1ZDUIWhVG1T1FKKMRr5g== -----END CERTIFICATE-----Generated at Mon Jul 21 12:32:14 2025 by rpki-client