$ rpki-client -vvf repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a32323a3a2f34382d3438203d3e20313437313337.roa File: 323430303a343661303a32323a3a2f34382d3438203d3e20313437313337.roa (raw, json) Hash identifier: KAxv+bcTcqGpScOTMbFMveWIpWOPxpJEwT7ajRyz6mM= Subject key identifier: 61:44:CF:5A:9B:96:0D:BF:2F:35:19:69:68:D5:04:4E:60:9F:0D:1E Certificate issuer: /CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Certificate serial: 10A754CCC56D20AA71CEE6F196D5170F6B8ABD6A Authority key identifier: 9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a32323a3a2f34382d3438203d3e20313437313337.roa Signing time: Fri 11 Jul 2025 09:02:23 +0000 ROA not before: Fri 11 Jul 2025 08:57:23 +0000 ROA not after: Fri 10 Jul 2026 09:02:23 +0000 asID: 147137 IP address blocks: 2400:46a0:22::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 11:28:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:a7:54:cc:c5:6d:20:aa:71:ce:e6:f1:96:d5:17:0f:6b:8a:bd:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Validity Not Before: Jul 11 08:57:23 2025 GMT Not After : Jul 10 09:02:23 2026 GMT Subject: CN=6144CF5A9B960DBF2F35196968D5044E609F0D1E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:44:d9:ca:86:3d:c2:9a:7d:13:02:39:66:59: 7d:7f:9c:88:b1:df:32:bc:e0:38:b0:a6:aa:d2:d2: ac:07:d6:d2:d7:c9:48:75:1c:f4:5c:fb:80:6c:57: 75:82:da:b8:8e:05:a8:80:6a:3d:05:37:e1:27:69: 68:ab:56:7d:cf:65:d9:27:3c:38:0a:02:71:4e:e3: 6d:7a:1e:5e:33:44:9f:b0:05:87:d7:5c:8f:fb:dc: f3:92:3a:21:5a:ed:c4:c0:72:a8:87:22:3e:26:be: a6:49:4b:27:11:ca:4f:b8:c0:f3:0c:16:91:e2:cd: 6f:39:22:d6:e9:09:07:4d:8d:0f:d9:30:4f:4d:3c: 82:79:a9:49:77:13:7a:dd:4b:45:2b:4e:19:1f:c3: 7f:a5:be:15:ba:1c:8f:31:4f:fd:d2:9f:23:dc:46: 3d:21:24:6e:81:29:d8:5a:b8:92:14:11:1e:40:d7: 70:21:e0:cc:bc:62:a6:57:0b:75:dc:71:6b:65:a7: 65:91:32:1e:6f:4d:4a:d9:fb:13:9f:8f:00:5c:22: 41:ca:06:62:f6:b6:76:74:51:9e:97:8d:a2:6a:3d: 84:61:8d:3a:78:d4:f1:35:48:a6:57:7f:91:21:ce: b2:47:07:cc:19:09:01:82:76:3f:97:71:90:c9:d4: e3:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:44:CF:5A:9B:96:0D:BF:2F:35:19:69:68:D5:04:4E:60:9F:0D:1E X509v3 Authority Key Identifier: keyid:9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a32323a3a2f34382d3438203d3e20313437313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:46a0:22::/48 Signature Algorithm: sha256WithRSAEncryption 77:79:bd:90:0d:52:d3:78:14:6f:79:58:08:e2:4e:ff:30:c9: 2a:47:ab:17:84:cf:a8:66:93:78:41:09:79:6b:4b:d7:b7:a1: 14:8a:79:c7:e2:d9:da:8f:53:0a:cf:aa:a6:1c:20:89:13:47: e1:60:94:bb:71:6b:f6:94:50:42:f5:96:e3:fc:1d:f9:02:dc: d1:5a:56:87:cd:40:19:24:1f:52:3c:02:c9:63:8a:60:79:53: 7d:a5:5e:42:6e:0c:cf:fd:6b:65:7b:b8:5f:7e:13:b4:db:68: 6d:f6:d6:54:23:b3:1c:d8:b0:c9:d1:ac:a4:38:52:08:8c:8f: cc:6b:f7:e1:cd:25:a6:b5:25:41:bd:88:31:be:7c:b1:a8:8a: b9:b8:2d:2c:7b:a5:00:82:1e:1c:3a:b9:8d:50:63:89:b8:67: 1b:ad:87:18:cf:84:75:f2:c7:cd:ab:fb:9e:69:b2:55:2d:96: e4:ea:81:d2:60:c8:fa:09:89:9b:5e:4c:64:99:5a:cd:0a:38: 38:3e:2c:0d:17:8a:d6:9c:4c:78:26:67:c3:cd:fd:cf:58:92: ae:97:a2:d5:90:ba:4f:2f:1d:a7:f3:e5:d8:fb:11:04:3f:8b: 5b:22:8e:a2:c5:06:1f:08:ae:fd:9a:52:4a:e0:63:29:68:e2: b0:61:2d:16 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUEKdUzMVtIKpxzubxltUXD2uKvWowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0Uz NzI4Mjk4MDAeFw0yNTA3MTEwODU3MjNaFw0yNjA3MTAwOTAyMjNaMDMxMTAvBgNV BAMTKDYxNDRDRjVBOUI5NjBEQkYyRjM1MTk2OTY4RDUwNDRFNjA5RjBEMUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcRNnKhj3Cmn0TAjlmWX1/nIix 3zK84DiwpqrS0qwH1tLXyUh1HPRc+4BsV3WC2riOBaiAaj0FN+EnaWirVn3PZdkn PDgKAnFO4216Hl4zRJ+wBYfXXI/73POSOiFa7cTAcqiHIj4mvqZJSycRyk+4wPMM FpHizW85ItbpCQdNjQ/ZME9NPIJ5qUl3E3rdS0UrThkfw3+lvhW6HI8xT/3SnyPc Rj0hJG6BKdhauJIUER5A13Ah4My8YqZXC3XccWtlp2WRMh5vTUrZ+xOfjwBcIkHK BmL2tnZ0UZ6XjaJqPYRhjTp41PE1SKZXf5EhzrJHB8wZCQGCdj+XcZDJ1OM3AgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUYUTPWpuWDb8vNRlpaNUETmCfDR4wHwYDVR0j BBgwFoAUmlK2QF7UBqexfER41RbfPjcoKYAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YTY2NWMzMi02ZGFmLTQ3MmItYmNlNi0zMTdkNWQ2Yzc4OWUvMC85QTUyQjY0MDVF RDQwNkE3QjE3QzQ0NzhENTE2REYzRTM3MjgyOTgwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0UzNzI4 Mjk4MC5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhNjY1YzMyLTZkYWYtNDcyYi1i Y2U2LTMxN2Q1ZDZjNzg5ZS8wLzMyMzQzMDMwM2EzNDM2NjEzMDNhMzIzMjNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzQzNzMxMzMzNy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQARqAA IjANBgkqhkiG9w0BAQsFAAOCAQEAd3m9kA1S03gUb3lYCOJO/zDJKkerF4TPqGaT eEEJeWtL17ehFIp5x+LZ2o9TCs+qphwgiRNH4WCUu3Fr9pRQQvWW4/wd+QLc0VpW h81AGSQfUjwCyWOKYHlTfaVeQm4Mz/1rZXu4X34TtNtobfbWVCOzHNiwydGspDhS CIyPzGv34c0lprUlQb2IMb58saiKubgtLHulAIIeHDq5jVBjibhnG62HGM+EdfLH zav7nmmyVS2W5OqB0mDI+gmJm15MZJlazQo4OD4sDReK1pxMeCZnw839z1iSrpei 1ZC6Ty8dp/Pl2PsRBD+LWyKOosUGHwiu/ZpSSuBjKWjisGEtFg== -----END CERTIFICATE-----Generated at Wed Jul 23 12:15:05 2025 by rpki-client