$ rpki-client -vvf repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a33353a3a2f34382d3438203d3e20313437313337.roa File: 323430303a343661303a33353a3a2f34382d3438203d3e20313437313337.roa (raw, json) Hash identifier: Y3XYf27QnurhdV1CW67C5UxWbak1ZDu532ZjKsBxVtw= Subject key identifier: 2B:7D:C2:32:0D:1A:28:03:AB:F0:0B:ED:4A:E7:13:CD:13:29:C1:16 Certificate issuer: /CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Certificate serial: 25BCE1143CA35F6AF9536B67BCCB0FA7AC7B434C Authority key identifier: 9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a33353a3a2f34382d3438203d3e20313437313337.roa Signing time: Fri 11 Jul 2025 09:02:21 +0000 ROA not before: Fri 11 Jul 2025 08:57:21 +0000 ROA not after: Fri 10 Jul 2026 09:02:21 +0000 asID: 147137 IP address blocks: 2400:46a0:35::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 11:28:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:bc:e1:14:3c:a3:5f:6a:f9:53:6b:67:bc:cb:0f:a7:ac:7b:43:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Validity Not Before: Jul 11 08:57:21 2025 GMT Not After : Jul 10 09:02:21 2026 GMT Subject: CN=2B7DC2320D1A2803ABF00BED4AE713CD1329C116 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:b2:38:fb:62:de:4d:b9:9f:88:6d:3b:53:67: 0a:12:10:a5:14:ac:98:40:f4:13:45:b5:50:19:ee: 93:92:45:06:59:3b:01:16:85:c4:bf:26:88:27:94: e8:df:b8:fc:1f:42:f1:5a:8c:6a:92:ae:2d:3f:6c: d1:f2:29:00:7a:13:d3:60:3a:d4:b2:d5:71:c7:86: 17:8a:11:c1:1a:f6:7f:e1:74:69:e3:67:30:d4:7d: 02:ed:65:82:6d:21:2a:95:f0:ed:2b:36:07:e4:1b: 1a:03:8f:76:5a:98:dd:ed:1e:39:c4:b4:42:bc:84: fa:9e:14:2e:a3:39:29:c4:c8:2a:3b:01:de:dd:83: 8f:17:83:ce:ff:73:c5:c6:4e:79:08:9f:29:5c:c8: b2:e6:36:e0:4a:2e:95:46:74:44:22:ff:48:24:ce: 46:47:1c:33:0c:ee:44:a1:0a:d8:b5:a7:8d:e8:d7: b9:0d:af:37:67:cf:10:34:5d:83:fd:0c:8f:e9:15: 20:2d:c2:d5:c7:c9:ca:b0:cd:f4:d6:05:82:3c:f1: 46:0e:1a:d0:26:33:69:f7:5e:e0:21:95:95:27:8d: e5:6f:7d:64:6b:e2:54:48:a5:52:69:64:77:cd:09: 06:72:68:5a:7b:c1:11:3f:f6:e7:2b:4b:73:9b:00: dd:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:7D:C2:32:0D:1A:28:03:AB:F0:0B:ED:4A:E7:13:CD:13:29:C1:16 X509v3 Authority Key Identifier: keyid:9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a33353a3a2f34382d3438203d3e20313437313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:46a0:35::/48 Signature Algorithm: sha256WithRSAEncryption 25:85:b7:c7:ba:d2:91:cf:4f:84:9b:15:fb:f7:97:29:0b:07: fc:a1:70:12:bd:ed:c1:94:77:fc:7c:22:95:d6:2a:28:1a:b7: 13:1b:f0:8b:55:2e:5d:b2:66:8c:77:56:d1:7e:8d:66:2a:9e: e6:1c:3a:30:cf:65:df:ad:9e:8c:c1:ca:68:37:bd:af:f4:a1: ce:57:17:ba:52:82:26:20:97:c5:fb:80:4d:d0:47:c5:26:a5: b1:94:13:2b:a8:a7:0a:68:88:b3:7b:41:99:f4:34:cb:0b:12: cc:e0:93:69:83:98:b5:4c:45:8a:9c:4b:6e:8d:89:2b:bf:c2: 0a:84:5e:f6:54:4a:62:3c:91:7d:7b:59:ef:57:af:b6:ca:11: 59:aa:2b:28:e2:43:f2:0c:d4:46:77:ea:75:dd:bf:eb:94:13: 29:c6:53:95:96:a9:d1:f2:e5:5f:87:2c:80:d9:d5:d7:f6:4e: c3:7e:5b:57:5f:31:67:25:66:31:3f:70:90:06:26:50:c1:d4: 9b:ac:c9:04:82:bf:a6:f9:b5:f1:1e:03:a8:e6:26:94:19:51: 08:16:0f:ab:a1:b0:f9:81:30:c9:91:f3:6c:e4:0a:dc:59:81: 25:4e:ed:5b:ab:3f:a0:07:b8:cd:91:bb:e8:67:e1:67:63:1b: 72:04:4e:b0 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUJbzhFDyjX2r5U2tnvMsPp6x7Q0wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0Uz NzI4Mjk4MDAeFw0yNTA3MTEwODU3MjFaFw0yNjA3MTAwOTAyMjFaMDMxMTAvBgNV BAMTKDJCN0RDMjMyMEQxQTI4MDNBQkYwMEJFRDRBRTcxM0NEMTMyOUMxMTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/sjj7Yt5NuZ+IbTtTZwoSEKUU rJhA9BNFtVAZ7pOSRQZZOwEWhcS/JognlOjfuPwfQvFajGqSri0/bNHyKQB6E9Ng OtSy1XHHhheKEcEa9n/hdGnjZzDUfQLtZYJtISqV8O0rNgfkGxoDj3ZamN3tHjnE tEK8hPqeFC6jOSnEyCo7Ad7dg48Xg87/c8XGTnkInylcyLLmNuBKLpVGdEQi/0gk zkZHHDMM7kShCti1p43o17kNrzdnzxA0XYP9DI/pFSAtwtXHycqwzfTWBYI88UYO GtAmM2n3XuAhlZUnjeVvfWRr4lRIpVJpZHfNCQZyaFp7wRE/9ucrS3ObAN15AgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUK33CMg0aKAOr8AvtSucTzRMpwRYwHwYDVR0j BBgwFoAUmlK2QF7UBqexfER41RbfPjcoKYAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YTY2NWMzMi02ZGFmLTQ3MmItYmNlNi0zMTdkNWQ2Yzc4OWUvMC85QTUyQjY0MDVF RDQwNkE3QjE3QzQ0NzhENTE2REYzRTM3MjgyOTgwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0UzNzI4 Mjk4MC5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhNjY1YzMyLTZkYWYtNDcyYi1i Y2U2LTMxN2Q1ZDZjNzg5ZS8wLzMyMzQzMDMwM2EzNDM2NjEzMDNhMzMzNTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzQzNzMxMzMzNy5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQARqAA NTANBgkqhkiG9w0BAQsFAAOCAQEAJYW3x7rSkc9PhJsV+/eXKQsH/KFwEr3twZR3 /HwildYqKBq3Exvwi1UuXbJmjHdW0X6NZiqe5hw6MM9l362ejMHKaDe9r/ShzlcX ulKCJiCXxfuATdBHxSalsZQTK6inCmiIs3tBmfQ0ywsSzOCTaYOYtUxFipxLbo2J K7/CCoRe9lRKYjyRfXtZ71evtsoRWaorKOJD8gzURnfqdd2/65QTKcZTlZap0fLl X4csgNnV1/ZOw35bV18xZyVmMT9wkAYmUMHUm6zJBIK/pvm18R4DqOYmlBlRCBYP q6Gw+YEwyZHzbOQK3FmBJU7tW6s/oAe4zZG76GfhZ2MbcgROsA== -----END CERTIFICATE-----Generated at Wed Jul 23 12:15:43 2025 by rpki-client