$ rpki-client -vvf repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a32313a3a2f34382d3438203d3e20313437313337.roa File: 323430303a343661303a32313a3a2f34382d3438203d3e20313437313337.roa (raw, json) Hash identifier: +gPgp8QYiU/daLpgrvM/5BELV5q0+mYrJuLKheezSV0= Subject key identifier: 88:66:C9:50:38:D5:F5:A6:B2:36:25:64:6D:55:11:78:05:10:6C:1E Certificate issuer: /CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Certificate serial: 05A98167CC85EDD85673C79895EAA8E2F9B2A41B Authority key identifier: 9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a32313a3a2f34382d3438203d3e20313437313337.roa Signing time: Fri 11 Jul 2025 09:02:23 +0000 ROA not before: Fri 11 Jul 2025 08:57:23 +0000 ROA not after: Fri 10 Jul 2026 09:02:23 +0000 asID: 147137 IP address blocks: 2400:46a0:21::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 11:31:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:a9:81:67:cc:85:ed:d8:56:73:c7:98:95:ea:a8:e2:f9:b2:a4:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Validity Not Before: Jul 11 08:57:23 2025 GMT Not After : Jul 10 09:02:23 2026 GMT Subject: CN=8866C95038D5F5A6B23625646D55117805106C1E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:52:0b:a7:1c:b9:c4:49:e0:cf:4b:10:3f:1a: 6c:87:5c:6c:cb:99:5f:9e:31:01:7c:23:42:36:38: f0:f6:fd:f3:9c:3a:c4:70:b1:bb:fb:de:98:b1:64: 62:9b:16:f6:53:c4:82:93:89:15:ce:01:87:c1:04: 63:6d:a5:d3:29:00:b9:ae:ec:e3:63:68:45:8f:21: 62:48:b6:13:39:d5:23:9a:d3:d6:31:c6:e9:50:d8: dd:6f:3c:d9:72:90:91:c1:58:64:6d:12:ca:19:e4: 9a:18:ba:68:33:39:b8:46:57:08:86:53:64:50:06: 09:69:06:a7:40:c4:b1:b2:1b:ba:7c:57:27:f9:72: ad:2b:43:56:14:bf:1d:3d:c5:c4:9c:7c:62:5b:98: bb:74:7a:70:0c:8c:d5:52:9c:d1:e9:04:16:23:ee: a3:75:ae:49:b4:61:f7:4e:5b:51:95:26:3a:22:50: 8f:74:a7:69:f0:59:81:4c:63:28:7a:f0:2b:c0:56: 71:0e:77:0e:27:8d:fe:87:03:b8:a5:e2:67:bf:0a: f2:2d:84:d7:15:e3:6b:42:0a:72:71:47:8a:4f:c4: 6c:c2:0b:2a:c0:45:a8:61:46:0a:5c:94:df:4b:0d: a4:ee:8e:7b:a6:ff:50:cb:9e:06:ab:19:7c:ae:1a: 99:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:66:C9:50:38:D5:F5:A6:B2:36:25:64:6D:55:11:78:05:10:6C:1E X509v3 Authority Key Identifier: keyid:9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a32313a3a2f34382d3438203d3e20313437313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:46a0:21::/48 Signature Algorithm: sha256WithRSAEncryption a9:04:3e:c5:39:d1:1d:6f:53:dc:6e:af:07:d3:63:6e:6f:60: 46:8d:85:25:96:39:5a:26:ad:2e:1d:df:7d:92:ce:7a:5d:e7: fc:9c:83:69:1c:4d:f7:ab:d4:18:8b:33:9a:ca:1f:96:90:1d: 19:37:75:da:30:e8:91:78:0d:e6:58:60:8f:1a:58:91:ef:e1: bf:3c:9d:ac:d5:38:52:d3:44:2a:e2:69:9c:fc:f1:2e:d1:30: 36:06:02:11:c5:1f:6a:64:f1:d2:f0:04:3e:23:28:4b:4c:3b: a2:d3:05:4b:7a:6e:c1:14:03:64:68:ac:48:0a:ee:f9:a7:bd: 51:64:1e:f1:ac:ac:b6:d6:0d:a9:23:68:ea:66:09:8d:67:db: 10:79:6a:5f:d3:b3:93:3d:b1:dc:6a:6d:c6:42:b9:ae:b9:cb: 83:62:fd:a3:01:1c:4a:5a:7b:34:65:dc:8a:ca:5c:01:07:2a: 39:12:da:2f:79:0e:46:93:54:d4:c4:b4:44:a3:3d:19:6e:40: 60:61:ab:ee:b4:7b:86:44:a9:a0:bd:57:75:02:3d:19:7e:97: 38:51:72:c8:30:3e:90:e8:72:e9:15:31:43:3b:85:3c:1d:94: ef:06:f3:9e:32:22:76:f7:d6:71:db:ac:81:5b:95:a4:fc:ed: 01:36:68:57 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUBamBZ8yF7dhWc8eYleqo4vmypBswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0Uz NzI4Mjk4MDAeFw0yNTA3MTEwODU3MjNaFw0yNjA3MTAwOTAyMjNaMDMxMTAvBgNV BAMTKDg4NjZDOTUwMzhENUY1QTZCMjM2MjU2NDZENTUxMTc4MDUxMDZDMUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7UgunHLnESeDPSxA/GmyHXGzL mV+eMQF8I0I2OPD2/fOcOsRwsbv73pixZGKbFvZTxIKTiRXOAYfBBGNtpdMpALmu 7ONjaEWPIWJIthM51SOa09YxxulQ2N1vPNlykJHBWGRtEsoZ5JoYumgzObhGVwiG U2RQBglpBqdAxLGyG7p8Vyf5cq0rQ1YUvx09xcScfGJbmLt0enAMjNVSnNHpBBYj 7qN1rkm0YfdOW1GVJjoiUI90p2nwWYFMYyh68CvAVnEOdw4njf6HA7il4me/CvIt hNcV42tCCnJxR4pPxGzCCyrARahhRgpclN9LDaTujnum/1DLngarGXyuGpkdAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUiGbJUDjV9aayNiVkbVUReAUQbB4wHwYDVR0j BBgwFoAUmlK2QF7UBqexfER41RbfPjcoKYAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YTY2NWMzMi02ZGFmLTQ3MmItYmNlNi0zMTdkNWQ2Yzc4OWUvMC85QTUyQjY0MDVF RDQwNkE3QjE3QzQ0NzhENTE2REYzRTM3MjgyOTgwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0UzNzI4 Mjk4MC5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhNjY1YzMyLTZkYWYtNDcyYi1i Y2U2LTMxN2Q1ZDZjNzg5ZS8wLzMyMzQzMDMwM2EzNDM2NjEzMDNhMzIzMTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzQzNzMxMzMzNy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQARqAA ITANBgkqhkiG9w0BAQsFAAOCAQEAqQQ+xTnRHW9T3G6vB9Njbm9gRo2FJZY5Wiat Lh3ffZLOel3n/JyDaRxN96vUGIszmsoflpAdGTd12jDokXgN5lhgjxpYke/hvzyd rNU4UtNEKuJpnPzxLtEwNgYCEcUfamTx0vAEPiMoS0w7otMFS3puwRQDZGisSAru +ae9UWQe8aysttYNqSNo6mYJjWfbEHlqX9Ozkz2x3GptxkK5rrnLg2L9owEcSlp7 NGXcispcAQcqORLaL3kORpNU1MS0RKM9GW5AYGGr7rR7hkSpoL1XdQI9GX6XOFFy yDA+kOhy6RUxQzuFPB2U7wbznjIidvfWcdusgVuVpPztATZoVw== -----END CERTIFICATE-----Generated at Thu Jul 24 17:12:11 2025 by rpki-client