$ rpki-client -vvf repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a32333a3a2f34382d3438203d3e20313437313337.roa File: 323430303a343661303a32333a3a2f34382d3438203d3e20313437313337.roa (raw, json) Hash identifier: UeQqi6ZVFgPrGYMster+xne64h585Ow3H0IaK3UC2WM= Subject key identifier: 00:C4:1C:7A:5C:A8:C2:A6:24:DC:2C:D9:0B:6E:52:81:C8:1A:19:39 Certificate issuer: /CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Certificate serial: 24592FB833ED15361CD39F0A2B9F9B2BD6464120 Authority key identifier: 9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a32333a3a2f34382d3438203d3e20313437313337.roa Signing time: Fri 11 Jul 2025 09:02:23 +0000 ROA not before: Fri 11 Jul 2025 08:57:23 +0000 ROA not after: Fri 10 Jul 2026 09:02:23 +0000 asID: 147137 IP address blocks: 2400:46a0:23::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 11:28:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:59:2f:b8:33:ed:15:36:1c:d3:9f:0a:2b:9f:9b:2b:d6:46:41:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Validity Not Before: Jul 11 08:57:23 2025 GMT Not After : Jul 10 09:02:23 2026 GMT Subject: CN=00C41C7A5CA8C2A624DC2CD90B6E5281C81A1939 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:46:47:ac:0d:5a:9c:0c:3c:c1:63:05:0f:1c: 4d:4c:7b:73:05:13:51:f6:3d:4b:f4:c9:f9:52:96: 2f:f3:85:07:a8:99:45:14:76:35:21:38:f7:ec:0d: 60:c1:66:ec:00:8d:f7:e5:9b:aa:07:4a:26:26:b4: 37:9d:41:0f:a8:51:f9:51:78:c8:47:7e:7a:6a:6c: 1b:e5:da:82:9c:3c:f4:7c:ac:43:e1:f1:8f:ce:19: 39:b1:86:9b:36:28:f4:5a:cd:47:4f:a3:05:26:1d: 9e:88:04:7d:15:05:a8:be:74:00:73:ce:8b:d8:02: a4:82:98:d1:c3:c1:6a:89:b3:8e:2d:58:91:25:14: 3d:d1:80:e5:09:20:cb:15:b7:69:8c:84:e5:67:a2: 36:ff:0d:e4:0a:56:68:e2:64:9d:5a:e0:4e:44:1c: df:99:04:d0:f6:8f:c0:2f:59:a5:f8:9f:b0:ad:10: 03:22:ff:fe:18:eb:f9:3b:bc:e5:ae:bd:37:9c:ed: b3:ee:b6:5b:b9:27:f8:f7:fa:a9:a2:69:61:3c:33: cc:da:7d:6b:c2:d8:8b:01:8e:51:2b:ca:82:27:4f: b7:bd:63:1e:7e:e1:cd:31:38:5d:3a:76:01:47:70: b5:4e:41:a9:bd:0d:e5:c6:34:0c:d5:cb:8c:c1:c6: 6e:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:C4:1C:7A:5C:A8:C2:A6:24:DC:2C:D9:0B:6E:52:81:C8:1A:19:39 X509v3 Authority Key Identifier: keyid:9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a32333a3a2f34382d3438203d3e20313437313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:46a0:23::/48 Signature Algorithm: sha256WithRSAEncryption 5c:5b:c0:c1:06:ac:a3:2a:1a:87:33:55:c0:32:ea:8c:4b:3f: dd:c8:d5:c7:98:3f:26:d5:db:6f:c5:30:94:fa:83:1d:b5:30: 62:36:c4:02:c6:95:9f:63:28:ad:d5:1b:0f:3c:75:ce:0a:7e: 8b:c2:5a:cf:70:09:15:54:c4:f4:e0:ac:36:75:93:15:48:fc: 56:04:de:89:0f:ea:c9:4e:b2:17:c7:5d:86:dd:45:a1:23:63: 90:d5:02:96:64:42:b1:33:f9:87:08:d2:05:a1:0e:81:81:28: e1:82:8d:1d:65:c1:0c:f0:24:61:54:30:33:12:f7:26:a7:55: fb:ac:f4:4a:4c:aa:06:f6:34:80:03:65:40:5e:b6:5a:5d:98: b4:74:c4:d6:d3:38:3e:d9:b8:4e:7c:da:98:64:85:69:56:58: e3:28:2b:0a:66:cf:7c:49:88:33:89:4b:bc:3e:2f:f9:32:da: 6b:3f:8d:88:b9:96:d7:9c:ee:3f:3a:65:3d:17:17:2d:ef:fa: e2:f0:3c:2e:f3:f2:6e:b7:57:04:87:bf:72:99:c6:69:42:27: 2c:1f:ab:8e:56:bd:9f:ba:b0:6b:74:1a:f9:c8:e5:ba:d3:b5: 2a:c4:d0:f6:06:32:7f:92:b0:b2:02:f4:ee:95:e1:98:58:77: 8a:b9:3e:90 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUJFkvuDPtFTYc058KK5+bK9ZGQSAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0Uz NzI4Mjk4MDAeFw0yNTA3MTEwODU3MjNaFw0yNjA3MTAwOTAyMjNaMDMxMTAvBgNV BAMTKDAwQzQxQzdBNUNBOEMyQTYyNERDMkNEOTBCNkU1MjgxQzgxQTE5MzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzRkesDVqcDDzBYwUPHE1Me3MF E1H2PUv0yflSli/zhQeomUUUdjUhOPfsDWDBZuwAjfflm6oHSiYmtDedQQ+oUflR eMhHfnpqbBvl2oKcPPR8rEPh8Y/OGTmxhps2KPRazUdPowUmHZ6IBH0VBai+dABz zovYAqSCmNHDwWqJs44tWJElFD3RgOUJIMsVt2mMhOVnojb/DeQKVmjiZJ1a4E5E HN+ZBND2j8AvWaX4n7CtEAMi//4Y6/k7vOWuvTec7bPutlu5J/j3+qmiaWE8M8za fWvC2IsBjlEryoInT7e9Yx5+4c0xOF06dgFHcLVOQam9DeXGNAzVy4zBxm5hAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUAMQcelyowqYk3CzZC25SgcgaGTkwHwYDVR0j BBgwFoAUmlK2QF7UBqexfER41RbfPjcoKYAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YTY2NWMzMi02ZGFmLTQ3MmItYmNlNi0zMTdkNWQ2Yzc4OWUvMC85QTUyQjY0MDVF RDQwNkE3QjE3QzQ0NzhENTE2REYzRTM3MjgyOTgwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0UzNzI4 Mjk4MC5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhNjY1YzMyLTZkYWYtNDcyYi1i Y2U2LTMxN2Q1ZDZjNzg5ZS8wLzMyMzQzMDMwM2EzNDM2NjEzMDNhMzIzMzNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzQzNzMxMzMzNy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQARqAA IzANBgkqhkiG9w0BAQsFAAOCAQEAXFvAwQasoyoahzNVwDLqjEs/3cjVx5g/JtXb b8UwlPqDHbUwYjbEAsaVn2MordUbDzx1zgp+i8Jaz3AJFVTE9OCsNnWTFUj8VgTe iQ/qyU6yF8ddht1FoSNjkNUClmRCsTP5hwjSBaEOgYEo4YKNHWXBDPAkYVQwMxL3 JqdV+6z0SkyqBvY0gANlQF62Wl2YtHTE1tM4Ptm4TnzamGSFaVZY4ygrCmbPfEmI M4lLvD4v+TLaaz+NiLmW15zuPzplPRcXLe/64vA8LvPybrdXBIe/cpnGaUInLB+r jla9n7qwa3Qa+cjlutO1KsTQ9gYyf5KwsgL07pXhmFh3irk+kA== -----END CERTIFICATE-----Generated at Wed Jul 23 12:15:37 2025 by rpki-client