$ rpki-client -vvf repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a31393a3a2f34382d3438203d3e20313437313337.roa File: 323430303a343661303a31393a3a2f34382d3438203d3e20313437313337.roa (raw, json) Hash identifier: 5FcZQWvOh6pLwsoaD4YTIG17OJilGjN+93omVyyFOZM= Subject key identifier: D9:0E:49:76:6A:5C:D2:5F:20:6A:80:EA:AF:68:D9:C0:0E:24:B1:76 Certificate issuer: /CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Certificate serial: 0F7A56CFBE2993FDF63CD001E3A79D63EBF456F8 Authority key identifier: 9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a31393a3a2f34382d3438203d3e20313437313337.roa Signing time: Thu 10 Jul 2025 20:00:02 +0000 ROA not before: Thu 10 Jul 2025 19:55:02 +0000 ROA not after: Thu 09 Jul 2026 20:00:02 +0000 asID: 147137 IP address blocks: 2400:46a0:19::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 11:28:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:7a:56:cf:be:29:93:fd:f6:3c:d0:01:e3:a7:9d:63:eb:f4:56:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Validity Not Before: Jul 10 19:55:02 2025 GMT Not After : Jul 9 20:00:02 2026 GMT Subject: CN=D90E49766A5CD25F206A80EAAF68D9C00E24B176 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:29:be:68:94:08:6d:ef:23:68:80:39:4c:50: b8:75:08:83:fc:c5:fe:73:36:15:91:a8:34:25:5c: 3f:41:40:52:5e:92:5b:e8:a4:2e:f4:5b:70:e8:62: bc:c7:c9:17:cb:c6:8b:9d:13:88:f9:4b:da:86:6b: f6:85:f8:b5:54:2f:e2:78:3a:c7:65:6c:00:61:17: 18:57:35:0b:9f:35:f8:08:74:13:af:35:e7:c6:2f: 9d:50:42:3b:41:18:88:49:5d:1b:bc:48:19:b7:53: a7:83:14:db:14:bc:fb:c1:59:c7:5b:2f:49:fa:27: 77:ef:81:0f:15:11:37:84:c0:21:53:89:b5:24:d1: 27:cb:45:0f:0f:ba:ca:f9:78:d7:39:c1:e5:fa:dc: 07:f8:5d:6e:3b:c4:d4:c3:55:d8:fa:a1:85:4d:cc: 50:2b:3b:8d:11:58:c6:d2:fe:92:a7:f5:e9:50:a0: 2d:87:9a:1b:bf:db:72:f2:dd:15:de:50:b5:f3:ab: f0:cf:4f:33:ef:37:99:3a:8e:75:61:e1:af:37:57: bb:93:2a:b8:3d:4e:a6:ae:84:1e:25:06:72:6d:33: 26:fc:5b:6d:32:72:24:ce:b1:20:72:d3:8a:77:44: 44:54:fd:8a:b0:05:60:ff:2f:84:a2:69:22:84:8a: cb:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:0E:49:76:6A:5C:D2:5F:20:6A:80:EA:AF:68:D9:C0:0E:24:B1:76 X509v3 Authority Key Identifier: keyid:9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a31393a3a2f34382d3438203d3e20313437313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:46a0:19::/48 Signature Algorithm: sha256WithRSAEncryption 31:bf:28:65:25:56:f6:bb:03:97:27:58:c2:d8:8f:5a:74:c0: 1f:f4:f0:6a:90:8f:d8:ba:54:2e:ff:a8:69:18:2c:e8:83:34: 1a:11:ac:20:1e:cc:cc:57:69:e3:12:83:71:2f:7f:c2:be:5a: e7:fe:c4:22:b0:25:25:07:68:de:8f:c7:fe:c0:8c:e6:db:74: 49:a6:10:79:b2:1a:7d:6a:ff:5f:f0:8c:08:18:7f:52:fb:7b: ac:57:59:d0:48:f4:23:4e:30:18:1f:f4:c6:31:a8:84:84:c3: 0c:14:d1:7c:11:da:4a:59:d1:85:97:37:27:62:5e:93:6b:8b: ed:df:a5:cd:cb:54:0b:7f:57:88:06:ed:4c:b4:36:ff:83:52: 6b:d6:6c:e7:6d:44:ac:1c:c1:0f:ea:06:f2:4a:89:38:20:1f: a3:ca:02:c6:55:42:9a:86:98:44:a3:55:52:59:bc:14:dd:5e: d9:dc:49:16:e2:b1:83:fa:dd:15:20:88:f3:62:18:da:f2:71: d4:68:a0:66:c0:13:f5:ec:c2:62:29:30:b5:a9:05:57:0c:95: a5:a1:cf:9a:a7:9b:03:e7:39:67:67:e2:79:e6:73:da:42:7d: 1c:44:04:a5:05:40:65:02:48:06:8a:d8:a5:cc:7a:b6:88:91: 8a:fb:f8:ea -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUD3pWz74pk/32PNAB46edY+v0VvgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0Uz NzI4Mjk4MDAeFw0yNTA3MTAxOTU1MDJaFw0yNjA3MDkyMDAwMDJaMDMxMTAvBgNV BAMTKEQ5MEU0OTc2NkE1Q0QyNUYyMDZBODBFQUFGNjhEOUMwMEUyNEIxNzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmKb5olAht7yNogDlMULh1CIP8 xf5zNhWRqDQlXD9BQFJeklvopC70W3DoYrzHyRfLxoudE4j5S9qGa/aF+LVUL+J4 OsdlbABhFxhXNQufNfgIdBOvNefGL51QQjtBGIhJXRu8SBm3U6eDFNsUvPvBWcdb L0n6J3fvgQ8VETeEwCFTibUk0SfLRQ8Pusr5eNc5weX63Af4XW47xNTDVdj6oYVN zFArO40RWMbS/pKn9elQoC2Hmhu/23Ly3RXeULXzq/DPTzPvN5k6jnVh4a83V7uT Krg9TqauhB4lBnJtMyb8W20yciTOsSBy04p3RERU/YqwBWD/L4SiaSKEissNAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQU2Q5Jdmpc0l8gaoDqr2jZwA4ksXYwHwYDVR0j BBgwFoAUmlK2QF7UBqexfER41RbfPjcoKYAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YTY2NWMzMi02ZGFmLTQ3MmItYmNlNi0zMTdkNWQ2Yzc4OWUvMC85QTUyQjY0MDVF RDQwNkE3QjE3QzQ0NzhENTE2REYzRTM3MjgyOTgwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0UzNzI4 Mjk4MC5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhNjY1YzMyLTZkYWYtNDcyYi1i Y2U2LTMxN2Q1ZDZjNzg5ZS8wLzMyMzQzMDMwM2EzNDM2NjEzMDNhMzEzOTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzQzNzMxMzMzNy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQARqAA GTANBgkqhkiG9w0BAQsFAAOCAQEAMb8oZSVW9rsDlydYwtiPWnTAH/TwapCP2LpU Lv+oaRgs6IM0GhGsIB7MzFdp4xKDcS9/wr5a5/7EIrAlJQdo3o/H/sCM5tt0SaYQ ebIafWr/X/CMCBh/Uvt7rFdZ0Ej0I04wGB/0xjGohITDDBTRfBHaSlnRhZc3J2Je k2uL7d+lzctUC39XiAbtTLQ2/4NSa9Zs521ErBzBD+oG8kqJOCAfo8oCxlVCmoaY RKNVUlm8FN1e2dxJFuKxg/rdFSCI82IY2vJx1GigZsAT9ezCYikwtakFVwyVpaHP mqebA+c5Z2fieeZz2kJ9HEQEpQVAZQJIBorYpcx6toiRivv46g== -----END CERTIFICATE-----Generated at Wed Jul 23 12:15:53 2025 by rpki-client