$ rpki-client -vvf repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a32343a3a2f34382d3438203d3e20313437313337.roa File: 323430303a343661303a32343a3a2f34382d3438203d3e20313437313337.roa (raw, json) Hash identifier: eELtUE44s8kWXW53efaOQB87hQvYKnu+4QWMOO/ldiE= Subject key identifier: D5:C1:14:55:F7:1E:5A:A5:C0:8F:D2:F1:4C:C5:D9:A5:26:12:3E:26 Certificate issuer: /CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Certificate serial: 1BB82707902BD3269ABED7E0F18B547EF932FC71 Authority key identifier: 9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a32343a3a2f34382d3438203d3e20313437313337.roa Signing time: Fri 11 Jul 2025 09:02:22 +0000 ROA not before: Fri 11 Jul 2025 08:57:22 +0000 ROA not after: Fri 10 Jul 2026 09:02:22 +0000 asID: 147137 IP address blocks: 2400:46a0:24::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 11:31:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:b8:27:07:90:2b:d3:26:9a:be:d7:e0:f1:8b:54:7e:f9:32:fc:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Validity Not Before: Jul 11 08:57:22 2025 GMT Not After : Jul 10 09:02:22 2026 GMT Subject: CN=D5C11455F71E5AA5C08FD2F14CC5D9A526123E26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:81:38:51:8e:e0:d6:23:c3:15:f6:00:7f:c7: 6a:f5:d3:f5:53:5a:bb:03:e1:b6:86:26:14:8a:c7: 7e:0a:13:03:69:16:21:2c:71:da:1b:9a:db:73:a5: 92:0c:01:ba:63:bc:a2:91:e5:2a:ad:f6:c6:4f:f8: 7b:da:0c:89:db:09:27:0d:fd:05:a5:0e:ed:13:cc: 95:20:ab:b0:74:8b:96:f6:bb:50:70:e7:6b:82:61: 4a:d8:d1:da:6a:27:ac:f9:de:e8:a6:0e:32:00:54: 09:94:57:81:2d:87:fc:b5:f9:e2:19:6c:81:94:18: 00:9a:c3:7c:aa:e8:0a:5c:de:f7:70:d6:83:1e:f7: d0:49:3c:03:d5:12:45:d3:93:65:a2:08:0a:52:6b: da:4b:cf:ca:21:f6:92:10:90:ba:62:b1:31:dd:75: 7d:c3:47:72:26:76:00:d4:81:99:cc:92:e7:23:ae: 0e:4e:50:ca:09:53:21:4c:77:ed:bd:50:62:53:0c: 3e:96:4b:cd:52:0b:8b:cc:30:ac:25:43:7a:75:00: fe:ff:7a:73:3a:e0:9b:dc:c7:ae:f0:67:72:15:10: 97:dd:26:1b:22:92:6d:e3:b2:14:99:0a:89:98:60: 6c:48:6c:b6:1c:b4:e1:be:78:24:3f:90:38:11:a7: bd:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:C1:14:55:F7:1E:5A:A5:C0:8F:D2:F1:4C:C5:D9:A5:26:12:3E:26 X509v3 Authority Key Identifier: keyid:9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a32343a3a2f34382d3438203d3e20313437313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:46a0:24::/48 Signature Algorithm: sha256WithRSAEncryption 0e:dd:e3:d0:da:bd:b9:7c:17:d7:c9:79:81:b0:0c:41:e5:b4: d8:df:80:2f:ff:10:49:85:8f:ee:b0:56:ae:2e:d9:1c:9c:5a: 73:76:ea:76:0d:a7:ea:81:da:2c:1d:33:d9:ef:08:ee:b0:c7: 8e:f5:5b:43:56:67:fd:04:4a:8d:df:f6:b7:35:e7:52:82:73: bf:bd:01:4f:98:e7:dd:38:fe:86:87:83:56:0b:0a:34:42:38: 00:01:5c:d5:80:9a:92:eb:1d:77:c9:af:e9:41:cc:02:5f:1d: df:3d:93:d0:e1:89:dc:ae:20:da:c3:b3:39:a6:c8:a5:55:0a: 4a:ad:f7:d4:96:37:69:c4:88:3b:e7:b8:71:2e:32:cc:09:47: c2:9c:e8:e6:3c:f8:96:63:18:35:65:65:1e:80:43:63:ad:37: 50:31:b9:25:3e:3f:ca:07:12:55:2a:da:f3:d7:9a:ae:23:96: e6:b9:47:23:f9:ea:56:80:69:d5:25:4d:11:ee:35:b7:c3:1b: 0f:ea:58:3b:3a:00:a9:ba:50:41:6b:33:0b:e8:74:ce:02:83: 89:fb:0d:c2:11:d5:24:04:02:a7:67:ed:13:f6:24:f6:af:d2: 44:e9:45:51:32:f2:8a:5b:05:58:83:e4:80:2d:99:d2:6f:54: e0:b5:c8:8b -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUG7gnB5Ar0yaavtfg8YtUfvky/HEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0Uz NzI4Mjk4MDAeFw0yNTA3MTEwODU3MjJaFw0yNjA3MTAwOTAyMjJaMDMxMTAvBgNV BAMTKEQ1QzExNDU1RjcxRTVBQTVDMDhGRDJGMTRDQzVEOUE1MjYxMjNFMjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6gThRjuDWI8MV9gB/x2r10/VT WrsD4baGJhSKx34KEwNpFiEscdobmttzpZIMAbpjvKKR5Sqt9sZP+HvaDInbCScN /QWlDu0TzJUgq7B0i5b2u1Bw52uCYUrY0dpqJ6z53uimDjIAVAmUV4Eth/y1+eIZ bIGUGACaw3yq6Apc3vdw1oMe99BJPAPVEkXTk2WiCApSa9pLz8oh9pIQkLpisTHd dX3DR3ImdgDUgZnMkucjrg5OUMoJUyFMd+29UGJTDD6WS81SC4vMMKwlQ3p1AP7/ enM64Jvcx67wZ3IVEJfdJhsikm3jshSZComYYGxIbLYctOG+eCQ/kDgRp725AgMB AAGjggI7MIICNzAdBgNVHQ4EFgQU1cEUVfceWqXAj9LxTMXZpSYSPiYwHwYDVR0j BBgwFoAUmlK2QF7UBqexfER41RbfPjcoKYAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YTY2NWMzMi02ZGFmLTQ3MmItYmNlNi0zMTdkNWQ2Yzc4OWUvMC85QTUyQjY0MDVF RDQwNkE3QjE3QzQ0NzhENTE2REYzRTM3MjgyOTgwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0UzNzI4 Mjk4MC5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhNjY1YzMyLTZkYWYtNDcyYi1i Y2U2LTMxN2Q1ZDZjNzg5ZS8wLzMyMzQzMDMwM2EzNDM2NjEzMDNhMzIzNDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzQzNzMxMzMzNy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQARqAA JDANBgkqhkiG9w0BAQsFAAOCAQEADt3j0Nq9uXwX18l5gbAMQeW02N+AL/8QSYWP 7rBWri7ZHJxac3bqdg2n6oHaLB0z2e8I7rDHjvVbQ1Zn/QRKjd/2tzXnUoJzv70B T5jn3Tj+hoeDVgsKNEI4AAFc1YCakusdd8mv6UHMAl8d3z2T0OGJ3K4g2sOzOabI pVUKSq331JY3acSIO+e4cS4yzAlHwpzo5jz4lmMYNWVlHoBDY603UDG5JT4/ygcS VSra89eariOW5rlHI/nqVoBp1SVNEe41t8MbD+pYOzoAqbpQQWszC+h0zgKDifsN whHVJAQCp2ftE/Yk9q/SROlFUTLyilsFWIPkgC2Z0m9U4LXIiw== -----END CERTIFICATE-----Generated at Thu Jul 24 17:12:19 2025 by rpki-client