$ rpki-client -vvf repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a32393a3a2f34382d3438203d3e20313437313337.roa File: 323430303a343661303a32393a3a2f34382d3438203d3e20313437313337.roa (raw, json) Hash identifier: IEucjhXv8bAa5eR/7We292E0AjQSxt/nxsHzEY0hsao= Subject key identifier: 15:D6:72:52:C2:F3:A4:C7:2A:40:14:6F:70:BE:9C:3C:8E:97:69:2D Certificate issuer: /CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Certificate serial: 66125A70C297E3DBD15270C96814E290735EE0F3 Authority key identifier: 9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a32393a3a2f34382d3438203d3e20313437313337.roa Signing time: Fri 11 Jul 2025 09:02:22 +0000 ROA not before: Fri 11 Jul 2025 08:57:22 +0000 ROA not after: Fri 10 Jul 2026 09:02:22 +0000 asID: 147137 IP address blocks: 2400:46a0:29::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 11:28:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:12:5a:70:c2:97:e3:db:d1:52:70:c9:68:14:e2:90:73:5e:e0:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Validity Not Before: Jul 11 08:57:22 2025 GMT Not After : Jul 10 09:02:22 2026 GMT Subject: CN=15D67252C2F3A4C72A40146F70BE9C3C8E97692D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:04:9c:da:19:5e:d2:3b:43:f3:8c:76:0d:92: 1a:44:96:ce:5e:ef:c8:3f:c6:fe:7b:d2:6b:d5:c5: eb:7d:28:13:ba:13:b1:36:ba:8a:a6:c4:d8:7c:59: e2:5d:ae:aa:6a:63:8f:db:e8:fb:cf:ce:7f:49:37: 5a:c5:7c:91:68:7e:b7:f6:b9:13:f4:62:37:b3:b0: 6e:b7:67:25:35:4e:d5:cb:a0:55:94:67:31:6a:44: 28:81:88:c9:b2:71:3e:97:e1:53:d0:b5:5b:f5:24: 08:9d:e4:aa:60:16:be:d6:4f:38:1b:f9:ab:70:d2: 09:3a:94:11:73:96:69:03:f9:ed:7a:c7:40:c1:d7: d2:48:d7:ad:91:4a:8a:6c:35:75:0f:81:cc:16:d7: 9e:33:1e:83:03:f6:f8:ad:af:29:43:39:18:e1:c9: 5f:7a:35:d0:bf:9a:d4:fa:71:63:9e:d9:5a:8a:93: ea:86:3a:d2:5e:71:e4:82:e3:44:87:a4:9d:09:58: 0d:09:31:a3:18:b8:39:e3:5d:9a:19:5c:4a:bd:dc: 7c:6a:32:d4:50:25:16:35:e8:42:9f:91:5f:9a:a6: da:43:68:00:5b:7c:ae:82:8c:61:2b:bc:7d:08:ad: c5:90:4c:ae:1d:ed:cd:a6:44:89:a1:b2:b6:12:9a: d0:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:D6:72:52:C2:F3:A4:C7:2A:40:14:6F:70:BE:9C:3C:8E:97:69:2D X509v3 Authority Key Identifier: keyid:9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a32393a3a2f34382d3438203d3e20313437313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:46a0:29::/48 Signature Algorithm: sha256WithRSAEncryption 7d:59:ba:52:4e:8b:d0:d0:98:a5:89:cd:7d:3f:6a:03:72:18: 06:61:87:46:43:71:df:de:2f:27:a1:16:d7:51:db:f7:85:2d: 8f:ea:b9:0d:68:bb:72:64:89:17:52:bf:59:d1:95:90:e2:5d: 99:35:a9:62:ca:b5:64:6c:26:49:60:eb:aa:02:c4:09:3f:fe: a7:6f:b1:2f:41:1f:42:92:f9:ed:a4:a2:0d:e3:00:32:44:19: e4:10:9d:2c:e4:f3:1a:ba:72:4f:78:5d:56:a0:09:bc:f1:76: 1f:4d:dd:8e:d0:b7:02:41:97:a8:83:43:75:c4:ed:1a:06:6d: ce:f8:ec:89:fe:46:0b:cb:04:21:9f:e9:b6:5f:95:99:ed:85: cb:52:d6:eb:64:86:c7:3b:bd:ff:c3:d6:1d:f8:69:9f:6b:c7: 93:6e:8b:d5:06:3d:80:37:2e:8d:0d:d5:cb:37:d4:fc:4f:bb: 87:0d:47:66:f6:14:6b:4e:7c:6b:fb:0a:e4:1f:ac:52:4e:db: a4:2a:6f:ab:a2:0a:60:ce:3d:db:58:8b:f5:0a:d1:ad:dc:69: 31:64:c0:f9:7d:f0:eb:0e:30:1c:2b:8c:cb:d8:af:2e:82:d4: 99:76:12:51:1b:55:14:de:e0:24:a6:a9:04:99:f3:5a:40:66: 09:23:ee:45 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUZhJacMKX49vRUnDJaBTikHNe4PMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0Uz NzI4Mjk4MDAeFw0yNTA3MTEwODU3MjJaFw0yNjA3MTAwOTAyMjJaMDMxMTAvBgNV BAMTKDE1RDY3MjUyQzJGM0E0QzcyQTQwMTQ2RjcwQkU5QzNDOEU5NzY5MkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCaBJzaGV7SO0PzjHYNkhpEls5e 78g/xv570mvVxet9KBO6E7E2uoqmxNh8WeJdrqpqY4/b6PvPzn9JN1rFfJFofrf2 uRP0YjezsG63ZyU1TtXLoFWUZzFqRCiBiMmycT6X4VPQtVv1JAid5KpgFr7WTzgb +atw0gk6lBFzlmkD+e16x0DB19JI162RSopsNXUPgcwW154zHoMD9vitrylDORjh yV96NdC/mtT6cWOe2VqKk+qGOtJeceSC40SHpJ0JWA0JMaMYuDnjXZoZXEq93Hxq MtRQJRY16EKfkV+aptpDaABbfK6CjGErvH0IrcWQTK4d7c2mRImhsrYSmtCjAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUFdZyUsLzpMcqQBRvcL6cPI6XaS0wHwYDVR0j BBgwFoAUmlK2QF7UBqexfER41RbfPjcoKYAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YTY2NWMzMi02ZGFmLTQ3MmItYmNlNi0zMTdkNWQ2Yzc4OWUvMC85QTUyQjY0MDVF RDQwNkE3QjE3QzQ0NzhENTE2REYzRTM3MjgyOTgwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0UzNzI4 Mjk4MC5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhNjY1YzMyLTZkYWYtNDcyYi1i Y2U2LTMxN2Q1ZDZjNzg5ZS8wLzMyMzQzMDMwM2EzNDM2NjEzMDNhMzIzOTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzQzNzMxMzMzNy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQARqAA KTANBgkqhkiG9w0BAQsFAAOCAQEAfVm6Uk6L0NCYpYnNfT9qA3IYBmGHRkNx394v J6EW11Hb94Utj+q5DWi7cmSJF1K/WdGVkOJdmTWpYsq1ZGwmSWDrqgLECT/+p2+x L0EfQpL57aSiDeMAMkQZ5BCdLOTzGrpyT3hdVqAJvPF2H03djtC3AkGXqINDdcTt GgZtzvjsif5GC8sEIZ/ptl+Vme2Fy1LW62SGxzu9/8PWHfhpn2vHk26L1QY9gDcu jQ3VyzfU/E+7hw1HZvYUa058a/sK5B+sUk7bpCpvq6IKYM4921iL9QrRrdxpMWTA +X3w6w4wHCuMy9ivLoLUmXYSURtVFN7gJKapBJnzWkBmCSPuRQ== -----END CERTIFICATE-----Generated at Wed Jul 23 12:15:33 2025 by rpki-client