$ rpki-client -vvf repo-rpki.idnic.net/repo/165d88f1-b9c0-485e-916e-59b7e3698da1/0/323430343a643863303a3a2f33322d3438203d3e20313338383630.roa File: 323430343a643863303a3a2f33322d3438203d3e20313338383630.roa (raw, json) Hash identifier: iufPrZZScnO80QkyCPvSlgZqxsE8YzjDEGRWUUoEP4M= Subject key identifier: 19:25:8D:B8:E2:D2:45:80:9B:40:39:B7:1A:A5:01:DD:43:B9:F8:D6 Certificate issuer: /CN=658C0D8617C2D05CE720427E1DF72FDE12C9CB9F Certificate serial: 73E7DC9A265B9712688032B7C05CF4FA300708D2 Authority key identifier: 65:8C:0D:86:17:C2:D0:5C:E7:20:42:7E:1D:F7:2F:DE:12:C9:CB:9F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/165d88f1-b9c0-485e-916e-59b7e3698da1/0/323430343a643863303a3a2f33322d3438203d3e20313338383630.roa Signing time: Tue 08 Jul 2025 01:28:09 +0000 ROA not before: Tue 08 Jul 2025 01:23:09 +0000 ROA not after: Tue 07 Jul 2026 01:28:09 +0000 asID: 138860 IP address blocks: 2404:d8c0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/165d88f1-b9c0-485e-916e-59b7e3698da1/0/658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.crl rsync://repo-rpki.idnic.net/repo/165d88f1-b9c0-485e-916e-59b7e3698da1/0/658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 06:47:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:e7:dc:9a:26:5b:97:12:68:80:32:b7:c0:5c:f4:fa:30:07:08:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=658C0D8617C2D05CE720427E1DF72FDE12C9CB9F Validity Not Before: Jul 8 01:23:09 2025 GMT Not After : Jul 7 01:28:09 2026 GMT Subject: CN=19258DB8E2D245809B4039B71AA501DD43B9F8D6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:38:03:cf:ab:84:98:85:9b:e2:b8:45:1b:94: fb:ad:6c:6c:6c:6f:28:c3:27:f6:1c:27:81:44:9d: 90:6b:a1:e0:8f:f6:6d:78:06:12:67:47:08:f7:29: 9d:81:cf:a5:a6:84:ad:73:a2:13:11:6c:95:58:59: 32:43:4a:20:25:0b:6f:47:55:d4:e8:7e:6e:eb:f3: 7c:1a:90:63:41:c8:d2:bd:e6:a8:8d:b5:5e:09:e7: 40:07:31:a9:25:90:27:9d:f4:c4:03:be:99:e1:78: 32:5e:5b:09:27:ee:ba:c5:0c:0e:8d:f9:bd:09:ca: 37:9e:0c:d9:36:c5:e1:2f:fd:fe:d3:e9:55:b4:18: ab:b9:29:77:36:0c:22:c5:0a:1b:e0:36:af:46:08: 49:7e:e1:c2:27:62:f9:9f:5e:51:05:33:31:68:31: 30:6a:97:f0:ee:e6:18:9a:5e:c9:d7:d5:6c:61:69: ab:e1:0a:12:4e:53:91:67:56:91:5d:d3:9f:ac:dd: 51:72:1d:e1:a6:ee:1d:33:9d:d3:5e:82:a6:66:ac: b4:26:42:8c:0d:75:18:09:5b:d9:56:d0:cf:28:ea: ec:bc:12:84:8b:d9:4a:6e:73:d3:99:0b:ac:e4:78: ec:30:ad:74:48:da:5a:e1:d2:40:20:54:e5:68:b1: bf:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:25:8D:B8:E2:D2:45:80:9B:40:39:B7:1A:A5:01:DD:43:B9:F8:D6 X509v3 Authority Key Identifier: keyid:65:8C:0D:86:17:C2:D0:5C:E7:20:42:7E:1D:F7:2F:DE:12:C9:CB:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/165d88f1-b9c0-485e-916e-59b7e3698da1/0/658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/165d88f1-b9c0-485e-916e-59b7e3698da1/0/323430343a643863303a3a2f33322d3438203d3e20313338383630.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:d8c0::/32 Signature Algorithm: sha256WithRSAEncryption b3:31:8e:89:9a:8a:d8:0f:c2:10:4f:8e:7b:16:f3:db:af:44: 7b:44:e4:ed:67:a2:e2:3a:9e:7c:ce:d0:d3:75:68:52:36:84: b7:91:2b:98:b1:6c:39:32:1e:0d:b3:a0:70:f3:82:20:55:ee: 8f:02:f7:6b:0b:91:d3:64:9e:7e:e5:96:a0:44:94:10:5d:54: 16:a3:70:27:bb:46:33:04:4f:91:62:9f:31:60:1d:13:1f:ce: 86:16:2e:86:cf:36:a7:25:4c:61:a4:f3:67:5a:55:cb:5f:a5: 35:4f:68:10:7a:c2:ab:f4:7b:ad:0d:fe:0d:d1:d0:2f:12:83: 65:33:ec:68:41:e4:cb:ae:88:10:76:ea:6b:0f:1c:a3:ce:73: cf:0d:b0:7f:2a:49:5e:92:bb:1e:74:10:02:ab:b0:03:f8:9c: ae:f0:dd:5c:78:34:02:69:d1:c6:df:6e:3a:2b:37:c2:2f:3f: 32:b0:7e:80:10:e6:a7:cf:9c:0d:16:d6:83:5d:60:36:f3:3e: a9:cf:c3:b4:ad:0a:b9:7f:14:a1:2f:7d:eb:06:a0:34:8d:ce: a1:90:7d:85:31:d2:c7:9b:bb:83:b6:05:61:f7:dc:3c:4a:2c: 6c:8a:0f:f8:0e:54:b7:e8:32:5a:dc:6d:23:6b:df:1d:a8:b8: 5a:42:0c:ec -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUc+fcmiZblxJogDK3wFz0+jAHCNIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjU4QzBEODYxN0MyRDA1Q0U3MjA0MjdFMURGNzJGREUx MkM5Q0I5RjAeFw0yNTA3MDgwMTIzMDlaFw0yNjA3MDcwMTI4MDlaMDMxMTAvBgNV BAMTKDE5MjU4REI4RTJEMjQ1ODA5QjQwMzlCNzFBQTUwMURENDNCOUY4RDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqOAPPq4SYhZviuEUblPutbGxs byjDJ/YcJ4FEnZBroeCP9m14BhJnRwj3KZ2Bz6WmhK1zohMRbJVYWTJDSiAlC29H VdTofm7r83wakGNByNK95qiNtV4J50AHMaklkCed9MQDvpnheDJeWwkn7rrFDA6N +b0JyjeeDNk2xeEv/f7T6VW0GKu5KXc2DCLFChvgNq9GCEl+4cInYvmfXlEFMzFo MTBql/Du5hiaXsnX1WxhaavhChJOU5FnVpFd05+s3VFyHeGm7h0zndNegqZmrLQm QowNdRgJW9lW0M8o6uy8EoSL2Upuc9OZC6zkeOwwrXRI2lrh0kAgVOVosb95AgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUGSWNuOLSRYCbQDm3GqUB3UO5+NYwHwYDVR0j BBgwFoAUZYwNhhfC0FznIEJ+Hfcv3hLJy58wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NjVkODhmMS1iOWMwLTQ4NWUtOTE2ZS01OWI3ZTM2OThkYTEvMC82NThDMEQ4NjE3 QzJEMDVDRTcyMDQyN0UxREY3MkZERTEyQzlDQjlGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjU4QzBEODYxN0MyRDA1Q0U3MjA0MjdFMURGNzJGREUxMkM5 Q0I5Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE2NWQ4OGYxLWI5YzAtNDg1ZS05 MTZlLTU5YjdlMzY5OGRhMS8wLzMyMzQzMDM0M2E2NDM4NjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzODM4MzYzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQE2MAwDQYJKoZI hvcNAQELBQADggEBALMxjomaitgPwhBPjnsW89uvRHtE5O1nouI6nnzO0NN1aFI2 hLeRK5ixbDkyHg2zoHDzgiBV7o8C92sLkdNknn7llqBElBBdVBajcCe7RjMET5Fi nzFgHRMfzoYWLobPNqclTGGk82daVctfpTVPaBB6wqv0e60N/g3R0C8Sg2Uz7GhB 5MuuiBB26msPHKPOc88NsH8qSV6Sux50EAKrsAP4nK7w3Vx4NAJp0cbfbjorN8Iv PzKwfoAQ5qfPnA0W1oNdYDbzPqnPw7StCrl/FKEvfesGoDSNzqGQfYUx0sebu4O2 BWH33DxKLGyKD/gOVLfoMlrcbSNr3x2ouFpCDOw= -----END CERTIFICATE-----Generated at Mon Jul 21 07:27:46 2025 by rpki-client