$ rpki-client -vvf repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a31343a3a2f34382d3438203d3e20313437313337.roa File: 323430303a343661303a31343a3a2f34382d3438203d3e20313437313337.roa (raw, json) Hash identifier: ZlLb/8ABoTMshaPAOuB5oc8hOwpCTBM9+ckE++m8QHc= Subject key identifier: 51:1F:32:41:06:B5:78:9E:23:F0:20:21:D3:C6:FE:A0:94:FB:A8:0C Certificate issuer: /CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Certificate serial: 56A20D0FCC6B753ED3A5B4EBB79CA507BF3ED88E Authority key identifier: 9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a31343a3a2f34382d3438203d3e20313437313337.roa Signing time: Thu 10 Jul 2025 20:00:03 +0000 ROA not before: Thu 10 Jul 2025 19:55:03 +0000 ROA not after: Thu 09 Jul 2026 20:00:03 +0000 asID: 147137 IP address blocks: 2400:46a0:14::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 11:28:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:a2:0d:0f:cc:6b:75:3e:d3:a5:b4:eb:b7:9c:a5:07:bf:3e:d8:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Validity Not Before: Jul 10 19:55:03 2025 GMT Not After : Jul 9 20:00:03 2026 GMT Subject: CN=511F324106B5789E23F02021D3C6FEA094FBA80C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:8a:d6:d2:32:72:6b:5b:de:f0:74:4d:d9:e2: 13:72:8b:69:c2:ca:7e:0d:a3:d5:66:76:82:ef:e7: 84:20:2f:4f:e0:53:d2:d8:4f:b2:1d:f9:59:31:43: 71:50:15:74:08:f7:a8:ff:f8:b2:c1:14:f6:e5:7d: dc:bc:34:fa:02:7f:00:f1:b4:be:73:25:f1:94:f5: 49:75:5c:f9:8b:31:3c:8b:0d:f1:b9:a0:ff:56:be: 45:65:a2:09:00:65:38:a0:2b:06:fd:d2:44:81:dc: 03:35:54:48:db:ed:cd:4e:3e:6c:44:2b:c8:fd:30: f0:db:c0:e8:5a:d5:d3:96:cf:73:54:a5:88:94:7a: dd:4e:d4:8f:ef:9e:45:99:2b:89:e1:54:4a:b3:07: 07:2c:80:a1:cd:9b:99:3d:89:1e:1b:25:dd:97:08: 62:b6:36:ca:7e:3d:bb:2f:5c:9a:08:ea:2a:51:db: c9:1f:d3:fb:99:86:65:a3:7e:99:33:25:ee:60:0d: b1:3d:12:51:f3:6a:a9:91:31:96:2c:4b:cf:87:5e: f2:05:1c:bd:71:7e:b4:d3:a2:7f:3a:d0:ee:d3:73: c7:e1:ff:97:c0:83:dd:f5:3b:31:1d:a4:cb:58:75: 4f:0f:7e:45:3a:86:f6:89:3c:2b:9d:cb:36:85:3f: 2a:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:1F:32:41:06:B5:78:9E:23:F0:20:21:D3:C6:FE:A0:94:FB:A8:0C X509v3 Authority Key Identifier: keyid:9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a31343a3a2f34382d3438203d3e20313437313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:46a0:14::/48 Signature Algorithm: sha256WithRSAEncryption af:d5:18:4a:5e:94:ab:ef:18:08:d7:4b:e6:46:87:f2:8b:3b: 98:89:31:bb:b8:5f:a7:19:df:4a:96:16:8c:6f:87:fe:a7:ab: a0:1a:fb:d8:3b:a9:28:fe:2f:6a:3d:9c:39:42:59:e0:dc:4d: 7c:3e:b3:a9:04:70:e2:d7:f3:b3:9d:b7:1a:3e:c9:cb:38:ad: cd:f0:fd:c5:5b:a3:a8:65:1c:64:12:6e:b9:2a:05:91:90:a3: 77:fe:81:e3:da:73:40:ee:5b:fa:23:6b:63:0a:e4:a5:8c:c9: 48:f1:b1:64:d6:cd:23:b3:97:a6:88:54:4e:39:00:a9:39:34: 95:ca:d8:77:11:8f:41:e4:d6:49:96:0a:49:df:8c:ee:f9:6e: a4:0f:3c:31:db:a7:35:1b:e9:cc:d2:a6:6f:96:4e:2d:71:e8: 42:a1:13:1f:25:49:bc:50:9f:8d:1e:33:e7:45:6e:6d:c4:17: 4c:5f:92:75:18:95:fe:4e:eb:39:d1:2d:50:7f:bd:ab:33:b9: 36:0f:30:1e:65:a2:60:e7:25:f2:84:24:34:d3:e2:f6:9b:7c: 1e:ad:b9:33:d1:02:38:65:66:fe:1f:5e:ba:45:ad:5e:5a:4f: 6f:1d:06:db:84:d6:72:13:91:5b:72:5d:b7:17:d1:43:53:90: f1:53:56:01 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUVqIND8xrdT7TpbTrt5ylB78+2I4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0Uz NzI4Mjk4MDAeFw0yNTA3MTAxOTU1MDNaFw0yNjA3MDkyMDAwMDNaMDMxMTAvBgNV BAMTKDUxMUYzMjQxMDZCNTc4OUUyM0YwMjAyMUQzQzZGRUEwOTRGQkE4MEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMitbSMnJrW97wdE3Z4hNyi2nC yn4No9VmdoLv54QgL0/gU9LYT7Id+VkxQ3FQFXQI96j/+LLBFPblfdy8NPoCfwDx tL5zJfGU9Ul1XPmLMTyLDfG5oP9WvkVlogkAZTigKwb90kSB3AM1VEjb7c1OPmxE K8j9MPDbwOha1dOWz3NUpYiUet1O1I/vnkWZK4nhVEqzBwcsgKHNm5k9iR4bJd2X CGK2Nsp+PbsvXJoI6ipR28kf0/uZhmWjfpkzJe5gDbE9ElHzaqmRMZYsS8+HXvIF HL1xfrTTon860O7Tc8fh/5fAg931OzEdpMtYdU8PfkU6hvaJPCudyzaFPyqfAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUUR8yQQa1eJ4j8CAh08b+oJT7qAwwHwYDVR0j BBgwFoAUmlK2QF7UBqexfER41RbfPjcoKYAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YTY2NWMzMi02ZGFmLTQ3MmItYmNlNi0zMTdkNWQ2Yzc4OWUvMC85QTUyQjY0MDVF RDQwNkE3QjE3QzQ0NzhENTE2REYzRTM3MjgyOTgwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0UzNzI4 Mjk4MC5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhNjY1YzMyLTZkYWYtNDcyYi1i Y2U2LTMxN2Q1ZDZjNzg5ZS8wLzMyMzQzMDMwM2EzNDM2NjEzMDNhMzEzNDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzQzNzMxMzMzNy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQARqAA FDANBgkqhkiG9w0BAQsFAAOCAQEAr9UYSl6Uq+8YCNdL5kaH8os7mIkxu7hfpxnf SpYWjG+H/qeroBr72DupKP4vaj2cOUJZ4NxNfD6zqQRw4tfzs523Gj7JyzitzfD9 xVujqGUcZBJuuSoFkZCjd/6B49pzQO5b+iNrYwrkpYzJSPGxZNbNI7OXpohUTjkA qTk0lcrYdxGPQeTWSZYKSd+M7vlupA88MdunNRvpzNKmb5ZOLXHoQqETHyVJvFCf jR4z50VubcQXTF+SdRiV/k7rOdEtUH+9qzO5Ng8wHmWiYOcl8oQkNNPi9pt8Hq25 M9ECOGVm/h9eukWtXlpPbx0G24TWchORW3JdtxfRQ1OQ8VNWAQ== -----END CERTIFICATE-----Generated at Wed Jul 23 12:15:48 2025 by rpki-client