$ rpki-client -vvf repo-rpki.idnic.net/repo/24d108f7-08b2-409f-8a70-a9c67ae5ed22/0/323430303a386238303a3a2f33322d3332203d3e20313331373637.roa File: 323430303a386238303a3a2f33322d3332203d3e20313331373637.roa (raw, json) Hash identifier: WzhaKVVHhW/0GGZkiM6FBwtbr9n3QYlgPERNMN1x09w= Subject key identifier: 40:4D:D3:76:ED:BE:8F:EE:5B:00:44:9E:2F:83:F2:46:A8:CD:82:57 Certificate issuer: /CN=4FA812FE6A4A85F790CB2740EF08836883716912 Certificate serial: 11EF3004830A179C212960DAE1FE8A0DE98C5BF1 Authority key identifier: 4F:A8:12:FE:6A:4A:85:F7:90:CB:27:40:EF:08:83:68:83:71:69:12 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4FA812FE6A4A85F790CB2740EF08836883716912.cer Subject info access: rsync://repo-rpki.idnic.net/repo/24d108f7-08b2-409f-8a70-a9c67ae5ed22/0/323430303a386238303a3a2f33322d3332203d3e20313331373637.roa Signing time: Thu 10 Jul 2025 04:00:00 +0000 ROA not before: Thu 10 Jul 2025 03:55:00 +0000 ROA not after: Thu 09 Jul 2026 04:00:00 +0000 asID: 131767 IP address blocks: 2400:8b80::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/24d108f7-08b2-409f-8a70-a9c67ae5ed22/0/4FA812FE6A4A85F790CB2740EF08836883716912.crl rsync://repo-rpki.idnic.net/repo/24d108f7-08b2-409f-8a70-a9c67ae5ed22/0/4FA812FE6A4A85F790CB2740EF08836883716912.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4FA812FE6A4A85F790CB2740EF08836883716912.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Jul 2025 16:57:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:ef:30:04:83:0a:17:9c:21:29:60:da:e1:fe:8a:0d:e9:8c:5b:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FA812FE6A4A85F790CB2740EF08836883716912 Validity Not Before: Jul 10 03:55:00 2025 GMT Not After : Jul 9 04:00:00 2026 GMT Subject: CN=404DD376EDBE8FEE5B00449E2F83F246A8CD8257 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:2e:05:e0:95:e1:ae:0b:d3:e4:2d:c3:3a:9b: 02:8f:37:94:3d:65:1b:e7:b4:41:8a:17:a6:b0:02: dc:7d:2f:bd:e3:1b:9e:88:b2:56:7d:2a:fc:db:b1: 4e:29:2e:bf:e2:ed:a2:ab:97:89:fb:dc:01:42:3b: 25:41:29:1f:23:7b:da:0a:6a:78:15:a7:bd:a7:5a: ac:86:3f:fd:7c:69:68:0d:9b:b7:c4:bd:e8:24:9c: 83:cd:f9:72:66:80:bf:e4:63:15:64:2b:db:15:92: f1:33:13:9a:44:4b:77:1f:7a:1e:6d:99:f5:68:45: b9:41:14:c2:d3:76:5d:34:38:fa:06:9b:cf:3e:62: bc:8b:96:66:da:ad:21:03:ad:67:bb:ef:57:71:21: c2:d1:b7:42:fd:5d:5c:1a:c7:b1:cd:94:1d:0b:35: c4:92:a7:b3:36:38:94:5b:54:b9:d1:39:d7:9f:66: 8a:ac:d0:b5:18:e1:3e:9b:e2:3e:04:d9:5c:a3:64: f0:ec:e5:c8:46:3e:13:76:c0:b3:4e:e7:dd:e3:f7: 1d:9b:04:d0:c0:df:d6:a0:b4:04:7e:b6:cc:21:a3: 60:d7:72:9c:d3:af:ab:85:01:29:33:c9:a4:64:41: 17:81:4a:5e:19:79:0b:76:5d:0b:ff:d3:11:0c:6f: ed:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:4D:D3:76:ED:BE:8F:EE:5B:00:44:9E:2F:83:F2:46:A8:CD:82:57 X509v3 Authority Key Identifier: keyid:4F:A8:12:FE:6A:4A:85:F7:90:CB:27:40:EF:08:83:68:83:71:69:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/24d108f7-08b2-409f-8a70-a9c67ae5ed22/0/4FA812FE6A4A85F790CB2740EF08836883716912.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4FA812FE6A4A85F790CB2740EF08836883716912.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/24d108f7-08b2-409f-8a70-a9c67ae5ed22/0/323430303a386238303a3a2f33322d3332203d3e20313331373637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:8b80::/32 Signature Algorithm: sha256WithRSAEncryption 3e:6e:09:3e:06:fc:97:f5:d9:51:37:be:c7:81:4a:16:a7:8e: 16:e2:f3:82:9c:e6:74:95:d4:b8:b9:56:c8:54:12:4e:3a:4a: 8d:ff:86:c8:65:db:b4:dc:c3:a0:5e:cc:1a:19:25:25:14:a2: c3:07:b3:31:b8:05:72:e9:69:77:66:83:4a:b1:fa:1b:73:c5: 41:2a:39:52:a0:6a:b7:44:4e:08:06:e0:fa:86:5c:65:a2:95: e4:ed:0c:37:65:33:f2:51:97:0f:33:af:7c:8a:bd:65:8f:2c: 3f:df:c2:44:b6:eb:83:5e:83:0b:e3:5e:f7:70:8e:8d:f4:3d: 2a:08:8a:45:10:94:42:48:98:d6:77:ab:5e:f7:50:30:27:64: 7d:8d:32:f5:3c:3a:29:e7:f1:bb:11:d2:d7:e3:7b:11:20:9c: b5:b0:52:08:9a:37:d8:82:17:0a:c5:e2:9e:83:95:9e:00:3f: 63:90:ce:3d:f1:ae:e0:ce:eb:25:55:64:17:5a:43:29:c7:b3: ea:84:a9:40:2e:5f:54:9a:7e:17:ce:1e:cd:12:43:71:23:ee: 3a:9f:3d:c1:37:ef:50:02:2f:69:94:9d:f3:78:89:21:41:46: 94:d3:d7:65:fa:20:9a:d6:02:47:80:a4:62:ae:3f:35:6c:a9: be:0a:23:96 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUEe8wBIMKF5whKWDa4f6KDemMW/EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEZBODEyRkU2QTRBODVGNzkwQ0IyNzQwRUYwODgzNjg4 MzcxNjkxMjAeFw0yNTA3MTAwMzU1MDBaFw0yNjA3MDkwNDAwMDBaMDMxMTAvBgNV BAMTKDQwNEREMzc2RURCRThGRUU1QjAwNDQ5RTJGODNGMjQ2QThDRDgyNTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhLgXgleGuC9PkLcM6mwKPN5Q9 ZRvntEGKF6awAtx9L73jG56IslZ9KvzbsU4pLr/i7aKrl4n73AFCOyVBKR8je9oK angVp72nWqyGP/18aWgNm7fEvegknIPN+XJmgL/kYxVkK9sVkvEzE5pES3cfeh5t mfVoRblBFMLTdl00OPoGm88+YryLlmbarSEDrWe771dxIcLRt0L9XVwax7HNlB0L NcSSp7M2OJRbVLnROdefZoqs0LUY4T6b4j4E2VyjZPDs5chGPhN2wLNO593j9x2b BNDA39agtAR+tswho2DXcpzTr6uFASkzyaRkQReBSl4ZeQt2XQv/0xEMb+05AgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUQE3Tdu2+j+5bAESeL4PyRqjNglcwHwYDVR0j BBgwFoAUT6gS/mpKhfeQyydA7wiDaINxaRIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NGQxMDhmNy0wOGIyLTQwOWYtOGE3MC1hOWM2N2FlNWVkMjIvMC80RkE4MTJGRTZB NEE4NUY3OTBDQjI3NDBFRjA4ODM2ODgzNzE2OTEyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEZBODEyRkU2QTRBODVGNzkwQ0IyNzQwRUYwODgzNjg4Mzcx NjkxMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI0ZDEwOGY3LTA4YjItNDA5Zi04 YTcwLWE5YzY3YWU1ZWQyMi8wLzMyMzQzMDMwM2EzODYyMzgzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzMTM3MzYzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQAi4AwDQYJKoZI hvcNAQELBQADggEBAD5uCT4G/Jf12VE3vseBShanjhbi84Kc5nSV1Li5VshUEk46 So3/hshl27Tcw6BezBoZJSUUosMHszG4BXLpaXdmg0qx+htzxUEqOVKgardETggG 4PqGXGWileTtDDdlM/JRlw8zr3yKvWWPLD/fwkS264NegwvjXvdwjo30PSoIikUQ lEJImNZ3q173UDAnZH2NMvU8Oinn8bsR0tfjexEgnLWwUgiaN9iCFwrF4p6DlZ4A P2OQzj3xruDO6yVVZBdaQynHs+qEqUAuX1SafhfOHs0SQ3Ej7jqfPcE371ACL2mU nfN4iSFBRpTT12X6IJrWAkeApGKuPzVsqb4KI5Y= -----END CERTIFICATE-----Generated at Mon Jul 21 18:07:10 2025 by rpki-client