$ rpki-client -vvf repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a313a3a2f34382d3438203d3e20313437313337.roa File: 323430303a343661303a313a3a2f34382d3438203d3e20313437313337.roa (raw, json) Hash identifier: a4kar+hZC31dN5bmEcyjGudCJwDbez0xQdLphlBrsp8= Subject key identifier: 70:A5:9D:00:CA:4F:FB:D6:74:AC:A8:99:28:25:52:A3:AE:9B:D4:9B Certificate issuer: /CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Certificate serial: 619FCF25A2CA6D14792C34D2087C2BBF9B8276A2 Authority key identifier: 9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a313a3a2f34382d3438203d3e20313437313337.roa Signing time: Thu 10 Jul 2025 20:00:02 +0000 ROA not before: Thu 10 Jul 2025 19:55:02 +0000 ROA not after: Thu 09 Jul 2026 20:00:02 +0000 asID: 147137 IP address blocks: 2400:46a0:1::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 11:31:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:9f:cf:25:a2:ca:6d:14:79:2c:34:d2:08:7c:2b:bf:9b:82:76:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Validity Not Before: Jul 10 19:55:02 2025 GMT Not After : Jul 9 20:00:02 2026 GMT Subject: CN=70A59D00CA4FFBD674ACA899282552A3AE9BD49B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:26:f2:72:84:c3:13:a1:eb:48:8a:b8:5a:fb: bc:19:75:5c:fa:ef:d0:19:d0:3d:f1:f7:9b:ed:a3: b2:42:bc:5c:03:1c:0d:94:dc:39:ac:03:99:f4:61: c5:3d:0c:fc:5f:5d:5e:e7:13:c7:83:97:04:dd:9d: fb:8d:0c:bd:aa:ed:13:4f:51:f6:cf:ab:54:c8:fd: 6e:fe:6d:b3:a6:f8:44:fa:ac:7b:ff:00:05:37:c7: 59:79:33:2c:69:11:88:8b:d9:5e:89:66:05:71:11: 7c:00:e1:8a:37:f1:34:c3:a1:fe:80:44:90:3d:8c: 5a:cd:2e:2c:09:82:43:09:2e:66:02:33:95:eb:75: df:c6:81:3a:c2:94:b0:cd:66:d8:d1:6b:4b:eb:75: 99:12:0b:45:f8:55:ff:f1:5f:2a:86:cc:9d:6e:db: 99:0d:32:09:45:b3:7e:b2:8d:26:c4:fe:58:b2:b7: b1:ff:8d:e7:ac:37:a3:ef:6d:00:09:c4:0c:f3:a6: a9:28:b5:3d:be:b3:a3:15:5f:8e:a4:32:07:86:3d: 1e:2d:7c:33:10:d9:46:e7:7e:7a:42:22:20:87:de: e1:ed:59:ea:f4:a3:ce:b9:0a:8a:b5:4f:11:7e:d6: 0e:a0:92:5a:c0:6e:de:2f:85:a0:ed:29:03:4c:d1: 1d:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:A5:9D:00:CA:4F:FB:D6:74:AC:A8:99:28:25:52:A3:AE:9B:D4:9B X509v3 Authority Key Identifier: keyid:9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a313a3a2f34382d3438203d3e20313437313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:46a0:1::/48 Signature Algorithm: sha256WithRSAEncryption 7c:24:0b:23:41:d4:a3:ce:ba:86:5e:cb:7a:06:30:a6:40:50: fb:dd:06:8c:11:aa:ba:76:88:2d:42:ae:43:e6:0f:0b:f5:a9: bd:b4:e2:a9:47:44:fc:59:d8:59:df:2d:e8:eb:95:3c:57:9f: 3b:92:e9:dc:e9:4e:d2:d2:ad:01:cd:d3:60:7f:98:85:df:51: 0f:55:ca:7c:e0:17:f0:78:28:a5:5c:aa:ed:0a:3f:e5:0e:cf: 0c:ab:5c:b6:d9:db:f0:55:1f:97:d4:e9:e2:ef:cf:6b:2c:9a: ef:2a:2a:33:a6:db:69:98:b3:37:2c:89:c7:72:f0:8c:bf:59: 79:df:0d:e5:c5:a0:f7:0e:d7:29:a2:b4:19:1e:ee:04:fb:c9: 1e:9f:eb:29:c5:31:61:b1:9d:c2:5d:7e:44:ca:ef:f7:c9:3e: 93:42:9f:ad:70:c3:0c:b6:cc:9b:4e:b0:83:99:e9:2b:93:a5: 53:f4:6d:5a:22:eb:5a:e9:55:2f:7c:59:83:fa:61:de:5c:4d: 6b:9b:2a:9f:43:56:ba:8d:d4:67:0c:9a:8d:97:03:5d:4b:19: 9d:f7:ec:15:6f:47:6a:2e:eb:4c:0d:0f:dd:f9:51:9c:a4:3a: c7:00:be:09:eb:8d:a9:6d:88:ea:d7:be:56:5a:c0:90:b6:ce: be:b0:23:7b -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUYZ/PJaLKbRR5LDTSCHwrv5uCdqIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0Uz NzI4Mjk4MDAeFw0yNTA3MTAxOTU1MDJaFw0yNjA3MDkyMDAwMDJaMDMxMTAvBgNV BAMTKDcwQTU5RDAwQ0E0RkZCRDY3NEFDQTg5OTI4MjU1MkEzQUU5QkQ0OUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3JvJyhMMToetIirha+7wZdVz6 79AZ0D3x95vto7JCvFwDHA2U3DmsA5n0YcU9DPxfXV7nE8eDlwTdnfuNDL2q7RNP UfbPq1TI/W7+bbOm+ET6rHv/AAU3x1l5MyxpEYiL2V6JZgVxEXwA4Yo38TTDof6A RJA9jFrNLiwJgkMJLmYCM5Xrdd/GgTrClLDNZtjRa0vrdZkSC0X4Vf/xXyqGzJ1u 25kNMglFs36yjSbE/liyt7H/jeesN6PvbQAJxAzzpqkotT2+s6MVX46kMgeGPR4t fDMQ2UbnfnpCIiCH3uHtWer0o865Coq1TxF+1g6gklrAbt4vhaDtKQNM0R1dAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUcKWdAMpP+9Z0rKiZKCVSo66b1JswHwYDVR0j BBgwFoAUmlK2QF7UBqexfER41RbfPjcoKYAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YTY2NWMzMi02ZGFmLTQ3MmItYmNlNi0zMTdkNWQ2Yzc4OWUvMC85QTUyQjY0MDVF RDQwNkE3QjE3QzQ0NzhENTE2REYzRTM3MjgyOTgwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0UzNzI4 Mjk4MC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhNjY1YzMyLTZkYWYtNDcyYi1i Y2U2LTMxN2Q1ZDZjNzg5ZS8wLzMyMzQzMDMwM2EzNDM2NjEzMDNhMzEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzczMTMzMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAEagAAEw DQYJKoZIhvcNAQELBQADggEBAHwkCyNB1KPOuoZey3oGMKZAUPvdBowRqrp2iC1C rkPmDwv1qb204qlHRPxZ2FnfLejrlTxXnzuS6dzpTtLSrQHN02B/mIXfUQ9Vynzg F/B4KKVcqu0KP+UOzwyrXLbZ2/BVH5fU6eLvz2ssmu8qKjOm22mYszcsicdy8Iy/ WXnfDeXFoPcO1ymitBke7gT7yR6f6ynFMWGxncJdfkTK7/fJPpNCn61wwwy2zJtO sIOZ6SuTpVP0bVoi61rpVS98WYP6Yd5cTWubKp9DVrqN1GcMmo2XA11LGZ337BVv R2ou60wND935UZykOscAvgnrjaltiOrXvlZawJC2zr6wI3s= -----END CERTIFICATE-----Generated at Thu Jul 24 17:10:38 2025 by rpki-client