$ rpki-client -vvf repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a31353a3a2f34382d3438203d3e20313437313337.roa File: 323430303a343661303a31353a3a2f34382d3438203d3e20313437313337.roa (raw, json) Hash identifier: 6i3UMACzodtWNujjB7HjZ1wIY9Wkv8kYqdabcGyF3UA= Subject key identifier: 2D:88:B1:9A:A3:D0:5E:3B:55:58:FC:17:F4:5E:88:4F:CB:A8:D1:2E Certificate issuer: /CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Certificate serial: 38B313F6228EF286124DAC186A252C4B0D9A59D2 Authority key identifier: 9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a31353a3a2f34382d3438203d3e20313437313337.roa Signing time: Thu 10 Jul 2025 20:00:04 +0000 ROA not before: Thu 10 Jul 2025 19:55:04 +0000 ROA not after: Thu 09 Jul 2026 20:00:04 +0000 asID: 147137 IP address blocks: 2400:46a0:15::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 11:28:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:b3:13:f6:22:8e:f2:86:12:4d:ac:18:6a:25:2c:4b:0d:9a:59:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Validity Not Before: Jul 10 19:55:04 2025 GMT Not After : Jul 9 20:00:04 2026 GMT Subject: CN=2D88B19AA3D05E3B5558FC17F45E884FCBA8D12E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:ff:86:f3:2c:90:5b:c8:34:49:7e:3c:c5:fb: 63:98:18:1a:11:2c:9b:6d:5c:34:24:78:15:9b:8b: f8:d0:4b:77:d6:11:18:42:e6:72:c2:3b:b6:fb:9d: 03:09:c7:b8:a3:43:85:01:96:43:6b:ed:97:58:15: 00:f5:7c:b7:f1:12:88:13:6c:b0:3e:9a:94:99:c4: 5e:b2:42:00:d2:00:5c:cd:a8:a9:48:8c:03:cc:f1: 2f:95:a1:4d:82:40:bd:3e:2a:44:a3:cd:5b:2f:e0: fb:1e:15:f1:69:54:4e:a3:45:71:43:fb:99:bd:4c: 28:8b:7b:8e:d8:5c:59:0a:e2:ed:04:83:9a:9d:06: cc:11:ee:72:80:5c:ff:4f:2f:45:85:5d:f2:43:f5: 62:c8:db:3a:b7:19:da:7a:d9:f2:ca:fb:00:b7:1c: db:3e:9d:e0:6d:a5:55:13:53:04:90:ee:ea:6f:18: 4f:19:26:8e:d4:df:7d:fb:e1:6e:f8:17:d8:68:fa: 02:3c:0d:a3:42:f9:ed:a4:ee:03:53:b7:f6:8f:c7: 4d:94:c7:43:6f:d5:72:f4:3b:78:5c:92:fc:2c:f3: fb:10:d2:0a:e3:07:5b:b9:68:d1:8e:e9:87:bd:63: a0:c5:bf:a5:9b:92:a8:c9:7e:7e:0e:6c:c3:73:26: 2c:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:88:B1:9A:A3:D0:5E:3B:55:58:FC:17:F4:5E:88:4F:CB:A8:D1:2E X509v3 Authority Key Identifier: keyid:9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a31353a3a2f34382d3438203d3e20313437313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:46a0:15::/48 Signature Algorithm: sha256WithRSAEncryption 03:6b:9e:92:77:b7:54:7d:10:5f:0d:ae:c7:9f:06:de:22:ff: 77:a0:63:e9:23:ba:f9:4f:e0:68:2a:86:f6:7f:a5:01:b4:75: ca:25:ac:30:d2:ab:2c:bb:45:3f:4d:98:c4:a0:32:a5:9d:dc: 12:a2:a3:aa:56:44:d2:1f:2a:60:be:d3:0f:15:79:16:11:71: 5f:53:9c:c4:fd:dc:13:a1:53:7b:fb:f1:34:4c:58:b5:40:46: 2f:72:6c:d1:5c:40:bc:f8:b1:b2:64:ba:98:d0:69:49:e7:dd: 71:82:b1:c1:a8:6c:26:5f:c7:bc:5c:be:1e:38:37:5e:80:90: c3:f7:9f:f7:0b:73:f4:c1:e1:e8:43:c0:b2:23:5d:c7:72:c1: 5a:c6:a4:c9:3b:ba:c3:21:c8:23:dd:5a:a5:bb:23:53:20:0d: a9:55:61:e0:c2:e8:45:c9:97:78:dc:50:13:51:a3:21:ee:3f: 69:e8:7a:c5:a5:7c:9a:e3:00:21:bd:4d:a9:fa:a5:65:2e:fa: 47:19:e7:a0:54:0e:dd:b9:db:50:40:0c:34:2f:18:14:80:3a: 56:0c:69:4a:e5:c0:04:9b:ae:de:72:01:ad:ac:7a:b2:be:fe: 2f:86:fb:c0:e8:53:74:04:c6:c2:42:05:1d:62:30:35:de:ce: 61:60:28:7e -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUOLMT9iKO8oYSTawYaiUsSw2aWdIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0Uz NzI4Mjk4MDAeFw0yNTA3MTAxOTU1MDRaFw0yNjA3MDkyMDAwMDRaMDMxMTAvBgNV BAMTKDJEODhCMTlBQTNEMDVFM0I1NTU4RkMxN0Y0NUU4ODRGQ0JBOEQxMkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZ/4bzLJBbyDRJfjzF+2OYGBoR LJttXDQkeBWbi/jQS3fWERhC5nLCO7b7nQMJx7ijQ4UBlkNr7ZdYFQD1fLfxEogT bLA+mpSZxF6yQgDSAFzNqKlIjAPM8S+VoU2CQL0+KkSjzVsv4PseFfFpVE6jRXFD +5m9TCiLe47YXFkK4u0Eg5qdBswR7nKAXP9PL0WFXfJD9WLI2zq3Gdp62fLK+wC3 HNs+neBtpVUTUwSQ7upvGE8ZJo7U33374W74F9ho+gI8DaNC+e2k7gNTt/aPx02U x0Nv1XL0O3hckvws8/sQ0grjB1u5aNGO6Ye9Y6DFv6WbkqjJfn4ObMNzJiyXAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQULYixmqPQXjtVWPwX9F6IT8uo0S4wHwYDVR0j BBgwFoAUmlK2QF7UBqexfER41RbfPjcoKYAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YTY2NWMzMi02ZGFmLTQ3MmItYmNlNi0zMTdkNWQ2Yzc4OWUvMC85QTUyQjY0MDVF RDQwNkE3QjE3QzQ0NzhENTE2REYzRTM3MjgyOTgwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0UzNzI4 Mjk4MC5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhNjY1YzMyLTZkYWYtNDcyYi1i Y2U2LTMxN2Q1ZDZjNzg5ZS8wLzMyMzQzMDMwM2EzNDM2NjEzMDNhMzEzNTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzQzNzMxMzMzNy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQARqAA FTANBgkqhkiG9w0BAQsFAAOCAQEAA2uekne3VH0QXw2ux58G3iL/d6Bj6SO6+U/g aCqG9n+lAbR1yiWsMNKrLLtFP02YxKAypZ3cEqKjqlZE0h8qYL7TDxV5FhFxX1Oc xP3cE6FTe/vxNExYtUBGL3Js0VxAvPixsmS6mNBpSefdcYKxwahsJl/HvFy+Hjg3 XoCQw/ef9wtz9MHh6EPAsiNdx3LBWsakyTu6wyHII91apbsjUyANqVVh4MLoRcmX eNxQE1GjIe4/aeh6xaV8muMAIb1NqfqlZS76RxnnoFQO3bnbUEAMNC8YFIA6Vgxp SuXABJuu3nIBrax6sr7+L4b7wOhTdATGwkIFHWIwNd7OYWAofg== -----END CERTIFICATE-----Generated at Wed Jul 23 12:15:32 2025 by rpki-client