$ rpki-client -vvf repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a33313a3a2f34382d3438203d3e20313437313337.roa File: 323430303a343661303a33313a3a2f34382d3438203d3e20313437313337.roa (raw, json) Hash identifier: 9MFeAvNjxRA9vbUf2UgXcthdxQ5XENOLt4Ao9GHoHp4= Subject key identifier: 85:E3:F1:01:4D:65:8F:D1:9C:91:20:DA:94:5D:16:A8:58:9F:6C:A4 Certificate issuer: /CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Certificate serial: 0703D98637E7BD85CF38069AB46B098C2B5CEAB6 Authority key identifier: 9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a33313a3a2f34382d3438203d3e20313437313337.roa Signing time: Fri 11 Jul 2025 09:02:22 +0000 ROA not before: Fri 11 Jul 2025 08:57:22 +0000 ROA not after: Fri 10 Jul 2026 09:02:22 +0000 asID: 147137 IP address blocks: 2400:46a0:31::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 11:28:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:03:d9:86:37:e7:bd:85:cf:38:06:9a:b4:6b:09:8c:2b:5c:ea:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Validity Not Before: Jul 11 08:57:22 2025 GMT Not After : Jul 10 09:02:22 2026 GMT Subject: CN=85E3F1014D658FD19C9120DA945D16A8589F6CA4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:85:2d:c9:1b:23:fc:eb:87:35:9c:db:a3:21: a3:a5:3e:26:41:ea:b2:1a:ef:a2:c6:01:7d:f2:35: 4c:2a:0d:66:c7:82:d3:1c:37:52:b5:24:ac:65:ff: 72:88:10:a3:c8:0a:e2:7e:44:4e:0e:06:66:be:8a: 76:31:a3:01:57:f7:ec:52:62:cb:3d:4f:0b:97:5e: 31:65:50:6a:f2:f5:de:ed:a2:a2:94:b9:e6:65:55: c0:19:76:b0:c6:e7:24:0d:ea:27:f2:5b:e3:94:22: 50:70:6c:92:f6:fa:72:65:49:4c:06:c6:8b:b6:7b: 36:18:67:d0:0d:56:dd:23:09:b9:bb:64:47:39:75: 14:36:22:ff:c2:8b:c1:0a:de:e7:33:e7:42:1c:6d: 34:13:da:9c:cf:57:3d:b7:8a:62:d6:de:96:19:e4: 5c:ff:9a:4b:50:c1:51:35:8f:c6:c8:5e:51:9d:d3: 83:cb:36:21:fb:52:b0:76:81:4f:88:13:57:cc:f5: 1b:ae:17:f0:0c:24:56:6c:cb:7d:ba:9d:4b:23:c4: 73:8b:8f:d6:0a:3c:a3:1c:3c:9a:91:06:5b:1f:fe: 99:aa:71:4b:5d:6e:12:8f:a7:16:d9:44:98:1e:b9: 6c:77:c2:4a:c3:db:ee:f4:8d:27:3a:69:0f:24:15: 82:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:E3:F1:01:4D:65:8F:D1:9C:91:20:DA:94:5D:16:A8:58:9F:6C:A4 X509v3 Authority Key Identifier: keyid:9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a33313a3a2f34382d3438203d3e20313437313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:46a0:31::/48 Signature Algorithm: sha256WithRSAEncryption 74:86:12:a9:47:1f:20:c3:87:73:ca:c4:05:25:35:34:bb:49: 9c:45:db:46:56:0b:0b:8a:a3:c7:09:e3:28:de:cf:d0:da:b7: e1:a4:29:c6:68:88:b6:0a:61:6c:7a:c5:4f:b1:99:78:01:0e: 3a:ff:7f:38:e4:14:cd:2b:0f:ff:9e:19:a5:e9:aa:3d:c2:78: 83:03:6d:44:87:b9:70:2e:15:16:5f:15:ea:3b:08:42:6d:5f: 26:f6:7d:82:6f:f6:8b:41:e1:a6:2f:95:6c:5b:43:0b:92:d9: 2a:4d:78:e9:49:36:a2:ad:87:5c:37:3f:59:fd:54:70:66:2e: e1:8b:41:fc:60:97:0c:65:78:97:f6:4d:a6:9d:d5:d8:7a:1a: e6:2a:ff:76:9e:75:f9:60:30:a1:8f:6d:93:67:d8:cf:33:e8: f0:cc:91:58:a8:d2:ae:af:f3:05:15:29:50:69:5b:65:22:ef: 1a:8f:c8:be:2e:4c:7e:ed:7a:79:09:1b:73:39:fb:df:eb:f1: e5:f4:0f:91:7d:22:50:95:57:0f:08:59:3e:3c:9c:c4:81:10: 30:34:14:3d:4e:32:52:6b:78:bc:43:0f:ad:f2:76:5d:8b:fd: 8d:20:09:8d:05:63:26:0f:97:20:17:d1:9a:95:32:b9:6c:fb: 7b:73:90:1d -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUBwPZhjfnvYXPOAaatGsJjCtc6rYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0Uz NzI4Mjk4MDAeFw0yNTA3MTEwODU3MjJaFw0yNjA3MTAwOTAyMjJaMDMxMTAvBgNV BAMTKDg1RTNGMTAxNEQ2NThGRDE5QzkxMjBEQTk0NUQxNkE4NTg5RjZDQTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6hS3JGyP864c1nNujIaOlPiZB 6rIa76LGAX3yNUwqDWbHgtMcN1K1JKxl/3KIEKPICuJ+RE4OBma+inYxowFX9+xS Yss9TwuXXjFlUGry9d7toqKUueZlVcAZdrDG5yQN6ifyW+OUIlBwbJL2+nJlSUwG xou2ezYYZ9ANVt0jCbm7ZEc5dRQ2Iv/Ci8EK3ucz50IcbTQT2pzPVz23imLW3pYZ 5Fz/mktQwVE1j8bIXlGd04PLNiH7UrB2gU+IE1fM9RuuF/AMJFZsy326nUsjxHOL j9YKPKMcPJqRBlsf/pmqcUtdbhKPpxbZRJgeuWx3wkrD2+70jSc6aQ8kFYLVAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUhePxAU1lj9GckSDalF0WqFifbKQwHwYDVR0j BBgwFoAUmlK2QF7UBqexfER41RbfPjcoKYAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YTY2NWMzMi02ZGFmLTQ3MmItYmNlNi0zMTdkNWQ2Yzc4OWUvMC85QTUyQjY0MDVF RDQwNkE3QjE3QzQ0NzhENTE2REYzRTM3MjgyOTgwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0UzNzI4 Mjk4MC5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhNjY1YzMyLTZkYWYtNDcyYi1i Y2U2LTMxN2Q1ZDZjNzg5ZS8wLzMyMzQzMDMwM2EzNDM2NjEzMDNhMzMzMTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzQzNzMxMzMzNy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQARqAA MTANBgkqhkiG9w0BAQsFAAOCAQEAdIYSqUcfIMOHc8rEBSU1NLtJnEXbRlYLC4qj xwnjKN7P0Nq34aQpxmiItgphbHrFT7GZeAEOOv9/OOQUzSsP/54ZpemqPcJ4gwNt RIe5cC4VFl8V6jsIQm1fJvZ9gm/2i0Hhpi+VbFtDC5LZKk146Uk2oq2HXDc/Wf1U cGYu4YtB/GCXDGV4l/ZNpp3V2Hoa5ir/dp51+WAwoY9tk2fYzzPo8MyRWKjSrq/z BRUpUGlbZSLvGo/Ivi5Mfu16eQkbczn73+vx5fQPkX0iUJVXDwhZPjycxIEQMDQU PU4yUmt4vEMPrfJ2XYv9jSAJjQVjJg+XIBfRmpUyuWz7e3OQHQ== -----END CERTIFICATE-----Generated at Wed Jul 23 12:26:24 2025 by rpki-client