$ rpki-client -vvf repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a31373a3a2f34382d3438203d3e20313437313337.roa File: 323430303a343661303a31373a3a2f34382d3438203d3e20313437313337.roa (raw, json) Hash identifier: MQTEtT0TR1f+0V0bndDRXrcOI9gxT90XmU11iLCfrjk= Subject key identifier: 58:65:96:34:F0:62:49:3F:8C:5C:5B:A6:C1:6C:FC:48:13:68:60:B0 Certificate issuer: /CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Certificate serial: 2561737D21533D98EACD5D4EDED8B3A29FCE57A1 Authority key identifier: 9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a31373a3a2f34382d3438203d3e20313437313337.roa Signing time: Thu 10 Jul 2025 20:00:04 +0000 ROA not before: Thu 10 Jul 2025 19:55:04 +0000 ROA not after: Thu 09 Jul 2026 20:00:04 +0000 asID: 147137 IP address blocks: 2400:46a0:17::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 11:28:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:61:73:7d:21:53:3d:98:ea:cd:5d:4e:de:d8:b3:a2:9f:ce:57:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Validity Not Before: Jul 10 19:55:04 2025 GMT Not After : Jul 9 20:00:04 2026 GMT Subject: CN=58659634F062493F8C5C5BA6C16CFC48136860B0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:fc:24:a1:77:d7:31:a8:2b:ed:1e:83:fe:d0: ad:90:16:57:57:c5:8b:f6:47:f1:16:7a:93:a5:ce: 6a:94:e2:d4:50:af:9e:23:7d:1b:fe:f3:f9:6a:92: 4d:85:bd:72:25:f8:b7:0f:23:6d:c4:d9:27:1b:5b: 6c:bb:bf:59:4e:a6:d6:30:ee:c3:b6:6d:ea:24:0c: d2:d6:b6:e7:78:ea:9f:95:5e:fb:48:01:3e:47:4a: c0:c0:bb:3c:a7:4b:94:8a:ac:1a:0b:bf:79:3c:ff: 69:8e:ff:97:5f:8b:a3:fd:d7:07:a9:7c:dd:5f:06: bd:24:cb:f3:6a:5c:c4:1b:c2:10:fd:6d:3f:31:ee: 12:71:79:25:4e:01:54:9f:e7:a6:b1:6c:c9:06:de: 0c:b1:f8:87:0f:1c:92:be:99:12:3f:d3:f4:5d:41: cf:a5:a5:e6:3e:1f:13:ea:66:3e:d2:7a:8e:fd:64: 3f:e9:59:46:b3:fc:fb:ba:e8:02:6b:57:b3:85:29: 54:2b:ca:52:58:77:a2:6e:64:2c:12:64:cb:3d:43: 7d:b6:7b:31:4f:8a:60:08:57:57:7a:fe:05:57:08: e1:31:e0:40:1a:77:82:b0:8d:62:01:05:4b:0e:61: e1:e7:5c:0f:01:7e:8c:4d:a3:5e:c4:96:59:0f:f7: 94:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:65:96:34:F0:62:49:3F:8C:5C:5B:A6:C1:6C:FC:48:13:68:60:B0 X509v3 Authority Key Identifier: keyid:9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a31373a3a2f34382d3438203d3e20313437313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:46a0:17::/48 Signature Algorithm: sha256WithRSAEncryption 5e:4d:19:da:4a:48:42:b2:2d:3a:bb:0c:60:81:63:30:98:fb: b1:8b:10:54:73:c2:48:fd:78:c2:5a:9f:5a:47:86:53:7e:3c: 6d:e7:d1:84:b3:52:8d:99:44:fe:45:45:ae:ca:b0:30:49:52: 42:36:eb:1a:0d:8d:d4:80:d6:6c:f6:c2:0a:39:5d:84:a3:41: eb:23:a2:b6:9a:16:34:c9:81:07:4a:6b:d0:a6:fa:68:47:7a: 0d:05:ea:97:69:97:c1:7b:84:cf:d1:81:c2:9b:c6:bf:bb:4e: fd:3c:12:19:1e:78:18:79:e0:f7:ca:d7:67:fd:2f:68:4d:aa: 1e:63:c6:72:ec:ed:60:d7:4e:1e:e7:f4:20:20:a6:fc:74:0b: 8d:c7:5b:79:b2:23:49:67:26:3d:ab:72:f7:32:50:fa:b0:4d: 06:14:ac:61:49:a6:6e:1b:e3:bc:bb:f0:cb:37:2f:c8:d0:cc: be:79:99:d6:ab:66:aa:85:bf:f7:2d:75:ed:57:ac:b9:9a:59: 86:d6:1e:2b:f7:25:64:f0:5f:ae:d0:c9:10:eb:32:4e:de:f2: 20:a3:9f:fa:af:79:b7:b4:dc:61:d8:be:be:a1:27:c1:c5:27: f9:62:d5:89:0e:99:88:b1:68:2a:80:1b:93:d2:87:2a:2c:eb: 31:3a:f1:c4 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUJWFzfSFTPZjqzV1O3tizop/OV6EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0Uz NzI4Mjk4MDAeFw0yNTA3MTAxOTU1MDRaFw0yNjA3MDkyMDAwMDRaMDMxMTAvBgNV BAMTKDU4NjU5NjM0RjA2MjQ5M0Y4QzVDNUJBNkMxNkNGQzQ4MTM2ODYwQjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCo/CShd9cxqCvtHoP+0K2QFldX xYv2R/EWepOlzmqU4tRQr54jfRv+8/lqkk2FvXIl+LcPI23E2ScbW2y7v1lOptYw 7sO2beokDNLWtud46p+VXvtIAT5HSsDAuzynS5SKrBoLv3k8/2mO/5dfi6P91wep fN1fBr0ky/NqXMQbwhD9bT8x7hJxeSVOAVSf56axbMkG3gyx+IcPHJK+mRI/0/Rd Qc+lpeY+HxPqZj7Seo79ZD/pWUaz/Pu66AJrV7OFKVQrylJYd6JuZCwSZMs9Q322 ezFPimAIV1d6/gVXCOEx4EAad4KwjWIBBUsOYeHnXA8BfoxNo17EllkP95SfAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUWGWWNPBiST+MXFumwWz8SBNoYLAwHwYDVR0j BBgwFoAUmlK2QF7UBqexfER41RbfPjcoKYAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YTY2NWMzMi02ZGFmLTQ3MmItYmNlNi0zMTdkNWQ2Yzc4OWUvMC85QTUyQjY0MDVF RDQwNkE3QjE3QzQ0NzhENTE2REYzRTM3MjgyOTgwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0UzNzI4 Mjk4MC5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhNjY1YzMyLTZkYWYtNDcyYi1i Y2U2LTMxN2Q1ZDZjNzg5ZS8wLzMyMzQzMDMwM2EzNDM2NjEzMDNhMzEzNzNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzQzNzMxMzMzNy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQARqAA FzANBgkqhkiG9w0BAQsFAAOCAQEAXk0Z2kpIQrItOrsMYIFjMJj7sYsQVHPCSP14 wlqfWkeGU348befRhLNSjZlE/kVFrsqwMElSQjbrGg2N1IDWbPbCCjldhKNB6yOi tpoWNMmBB0pr0Kb6aEd6DQXql2mXwXuEz9GBwpvGv7tO/TwSGR54GHng98rXZ/0v aE2qHmPGcuztYNdOHuf0ICCm/HQLjcdbebIjSWcmPaty9zJQ+rBNBhSsYUmmbhvj vLvwyzcvyNDMvnmZ1qtmqoW/9y117VesuZpZhtYeK/clZPBfrtDJEOsyTt7yIKOf +q95t7TcYdi+vqEnwcUn+WLViQ6ZiLFoKoAbk9KHKizrMTrxxA== -----END CERTIFICATE-----Generated at Wed Jul 23 12:16:28 2025 by rpki-client