$ rpki-client -vvf repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a33333a3a2f34382d3438203d3e20313437313337.roa File: 323430303a343661303a33333a3a2f34382d3438203d3e20313437313337.roa (raw, json) Hash identifier: s3Xjjbohn1CufgneBaEZY/bwLMOk5+UIxmZaor+mssg= Subject key identifier: 75:5A:98:E7:E9:FB:3D:10:5B:1E:5E:47:61:47:02:18:44:7C:70:12 Certificate issuer: /CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Certificate serial: 759E439D72646D786112E8088D9CFDB57B48F7A8 Authority key identifier: 9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a33333a3a2f34382d3438203d3e20313437313337.roa Signing time: Fri 11 Jul 2025 09:02:22 +0000 ROA not before: Fri 11 Jul 2025 08:57:22 +0000 ROA not after: Fri 10 Jul 2026 09:02:22 +0000 asID: 147137 IP address blocks: 2400:46a0:33::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 11:28:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:9e:43:9d:72:64:6d:78:61:12:e8:08:8d:9c:fd:b5:7b:48:f7:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Validity Not Before: Jul 11 08:57:22 2025 GMT Not After : Jul 10 09:02:22 2026 GMT Subject: CN=755A98E7E9FB3D105B1E5E4761470218447C7012 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:07:64:36:52:17:72:f3:a7:f2:4d:8f:33:68: db:de:4c:fc:6c:dd:39:86:71:fb:32:e9:49:43:77: db:59:df:16:8a:d6:64:e5:75:37:34:78:74:85:e4: b4:18:31:50:d0:9e:9c:ab:4d:2c:b2:d5:05:a4:59: c5:b1:15:1a:eb:c9:a7:be:31:65:6c:e2:3c:b0:23: 70:60:13:64:3a:31:ff:f1:92:85:73:1e:22:d0:d7: d3:34:f6:e2:2c:f6:6a:cb:a1:79:36:c5:99:a6:48: b3:eb:ea:ed:54:89:c3:29:19:01:9d:21:e7:9a:c9: 25:20:51:43:ed:e5:6c:24:58:55:70:44:cf:7b:c8: 1c:6a:28:e6:db:b4:d3:13:04:44:6e:b9:8c:4e:81: e9:ab:87:74:24:17:66:11:ab:60:08:27:92:c6:bd: 61:dc:a6:fc:5d:36:f2:6b:bc:c4:bf:97:46:b0:15: c1:44:d5:f8:48:70:4b:5c:92:27:d2:f2:a4:54:d1: 7a:31:83:89:45:4f:31:2a:4f:2f:02:9a:1d:70:91: 25:77:fd:19:0f:4d:cf:a7:13:6b:2d:4c:8f:03:9f: f4:a3:b7:6d:ee:91:dc:18:3f:20:72:2c:de:58:cc: 15:4f:f2:d4:7d:3d:f8:68:4a:2b:eb:f4:da:12:3f: 33:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:5A:98:E7:E9:FB:3D:10:5B:1E:5E:47:61:47:02:18:44:7C:70:12 X509v3 Authority Key Identifier: keyid:9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a33333a3a2f34382d3438203d3e20313437313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:46a0:33::/48 Signature Algorithm: sha256WithRSAEncryption 65:2a:63:ff:67:d1:53:ee:86:c4:19:45:fc:f4:31:c4:76:2a: 01:b6:10:bd:0c:a2:91:c1:dd:e7:82:2c:39:c2:ce:df:9e:d3: ae:45:f7:23:a7:b7:8a:53:4c:46:0a:e0:e9:d0:35:3f:ef:67: b6:7b:5b:74:2e:29:d4:27:5d:95:ea:25:64:a3:23:51:56:09: 47:b9:97:20:8d:82:c6:8b:13:cb:b3:18:0b:b4:de:46:76:4f: c7:8c:9e:e8:a9:9f:a2:75:35:87:1b:04:f1:ce:d3:5f:91:2a: 35:f2:0a:d0:f8:50:fd:ab:ee:76:3a:e6:8f:45:c8:8c:01:0b: cd:d0:f5:f6:03:a2:f4:3e:b0:a5:70:fb:04:ee:43:60:eb:aa: 73:a6:09:2a:86:04:26:89:8a:8a:d5:cf:54:5e:c4:f6:d6:fa: 15:6b:e5:9b:ad:0d:bd:e3:0a:78:c0:a8:db:79:b8:4e:93:b9: 6e:53:a7:43:00:cc:10:df:e1:c6:42:c0:3a:a5:3b:55:8d:13: f2:0e:83:51:ea:46:2f:1c:f1:08:8d:aa:72:12:fc:3b:c8:1f: 04:7e:0b:71:60:9f:83:e1:3f:d1:e7:20:32:31:95:bc:ff:3e: 45:7d:a6:78:90:ae:86:3d:ee:01:06:4b:b4:da:b5:92:5a:1c: fa:04:f6:3e -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUdZ5DnXJkbXhhEugIjZz9tXtI96gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0Uz NzI4Mjk4MDAeFw0yNTA3MTEwODU3MjJaFw0yNjA3MTAwOTAyMjJaMDMxMTAvBgNV BAMTKDc1NUE5OEU3RTlGQjNEMTA1QjFFNUU0NzYxNDcwMjE4NDQ3QzcwMTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClB2Q2Uhdy86fyTY8zaNveTPxs 3TmGcfsy6UlDd9tZ3xaK1mTldTc0eHSF5LQYMVDQnpyrTSyy1QWkWcWxFRrryae+ MWVs4jywI3BgE2Q6Mf/xkoVzHiLQ19M09uIs9mrLoXk2xZmmSLPr6u1UicMpGQGd IeeaySUgUUPt5WwkWFVwRM97yBxqKObbtNMTBERuuYxOgemrh3QkF2YRq2AIJ5LG vWHcpvxdNvJrvMS/l0awFcFE1fhIcEtckifS8qRU0Xoxg4lFTzEqTy8Cmh1wkSV3 /RkPTc+nE2stTI8Dn/Sjt23ukdwYPyByLN5YzBVP8tR9PfhoSivr9NoSPzMBAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUdVqY5+n7PRBbHl5HYUcCGER8cBIwHwYDVR0j BBgwFoAUmlK2QF7UBqexfER41RbfPjcoKYAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YTY2NWMzMi02ZGFmLTQ3MmItYmNlNi0zMTdkNWQ2Yzc4OWUvMC85QTUyQjY0MDVF RDQwNkE3QjE3QzQ0NzhENTE2REYzRTM3MjgyOTgwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0UzNzI4 Mjk4MC5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhNjY1YzMyLTZkYWYtNDcyYi1i Y2U2LTMxN2Q1ZDZjNzg5ZS8wLzMyMzQzMDMwM2EzNDM2NjEzMDNhMzMzMzNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzQzNzMxMzMzNy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQARqAA MzANBgkqhkiG9w0BAQsFAAOCAQEAZSpj/2fRU+6GxBlF/PQxxHYqAbYQvQyikcHd 54IsOcLO357TrkX3I6e3ilNMRgrg6dA1P+9ntntbdC4p1CddleolZKMjUVYJR7mX II2CxosTy7MYC7TeRnZPx4ye6KmfonU1hxsE8c7TX5EqNfIK0PhQ/avudjrmj0XI jAELzdD19gOi9D6wpXD7BO5DYOuqc6YJKoYEJomKitXPVF7E9tb6FWvlm60NveMK eMCo23m4TpO5blOnQwDMEN/hxkLAOqU7VY0T8g6DUepGLxzxCI2qchL8O8gfBH4L cWCfg+E/0ecgMjGVvP8+RX2meJCuhj3uAQZLtNq1kloc+gT2Pg== -----END CERTIFICATE-----Generated at Wed Jul 23 12:15:01 2025 by rpki-client