$ rpki-client -vvf repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a333a3a2f34382d3438203d3e20313437313337.roa File: 323430303a343661303a333a3a2f34382d3438203d3e20313437313337.roa (raw, json) Hash identifier: YdSsGr4BjFrFET1Pgec0CyVOY3w0mCvZYunx96T/HRk= Subject key identifier: BF:62:7F:10:38:94:35:21:F7:AA:AD:4C:AE:91:50:7C:A5:97:C3:30 Certificate issuer: /CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Certificate serial: 3F5B4ABB6CFA62F0795CD04958A560D84AEFAD31 Authority key identifier: 9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a333a3a2f34382d3438203d3e20313437313337.roa Signing time: Thu 10 Jul 2025 20:00:03 +0000 ROA not before: Thu 10 Jul 2025 19:55:03 +0000 ROA not after: Thu 09 Jul 2026 20:00:03 +0000 asID: 147137 IP address blocks: 2400:46a0:3::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 11:28:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:5b:4a:bb:6c:fa:62:f0:79:5c:d0:49:58:a5:60:d8:4a:ef:ad:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Validity Not Before: Jul 10 19:55:03 2025 GMT Not After : Jul 9 20:00:03 2026 GMT Subject: CN=BF627F1038943521F7AAAD4CAE91507CA597C330 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:1e:56:06:b1:90:b0:1d:f9:26:25:36:d7:b6: 48:7f:3b:7b:c3:10:27:e7:2b:03:f4:5e:30:96:df: d4:77:fa:b7:9a:45:60:74:d2:9a:dc:4e:25:35:f0: 27:74:83:93:cf:ec:dd:94:0b:85:c9:64:5d:c5:95: 84:00:65:2f:26:b5:c2:b1:d9:af:7b:f6:b1:41:52: d3:52:53:24:fd:52:f4:11:8d:7e:0c:b2:75:68:00: 5f:0e:08:bb:c7:86:00:12:9c:b9:20:24:6d:e0:27: 9a:e2:ba:94:b5:e8:9c:4a:2c:4a:9d:19:cf:a6:6f: 96:50:05:c6:b7:00:d2:a1:e4:e4:4e:cb:31:27:66: c9:5e:b6:e5:7d:76:f4:e9:7a:23:6f:3c:99:cd:ee: 50:2a:3a:94:8a:25:3c:55:b4:90:91:5d:ec:b2:9f: 94:0b:d6:c5:3a:6e:8b:ef:99:cb:6a:08:97:71:c6: b7:e8:1b:fc:11:bc:a2:11:69:d6:98:5d:8b:76:c2: 4c:1d:70:44:f7:9b:74:56:65:10:08:b6:42:f9:f4: 73:7d:9b:cd:7a:b2:1a:5b:35:a9:04:77:00:a1:c8: 82:45:aa:87:b2:75:ea:69:ab:86:e4:a9:ab:ea:57: c3:e5:af:cd:91:a7:bd:30:86:e0:a8:eb:2f:62:33: b7:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:62:7F:10:38:94:35:21:F7:AA:AD:4C:AE:91:50:7C:A5:97:C3:30 X509v3 Authority Key Identifier: keyid:9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a333a3a2f34382d3438203d3e20313437313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:46a0:3::/48 Signature Algorithm: sha256WithRSAEncryption 10:0b:3f:92:cc:ec:35:68:9e:98:e8:1a:91:5b:d4:c9:f3:bb: 4d:19:aa:22:0c:5e:83:a3:f9:f6:d7:62:fe:69:7a:b4:03:fe: cf:cc:f4:c0:d6:0d:1e:ae:e3:ac:72:f3:43:78:eb:e6:23:d8: 42:7d:d2:86:78:87:c5:a1:77:76:7c:89:44:f2:33:ff:c4:b7: 75:87:08:43:26:97:0c:a6:33:b7:83:34:4c:63:4e:cc:a4:1c: 3a:2c:86:51:0c:1f:93:f4:a7:89:8d:9a:30:db:0a:3c:ec:15: 57:78:17:2e:d0:a6:77:5c:47:22:64:6a:31:99:cc:dc:88:d5: 99:6c:a9:17:0f:36:35:7a:d9:3e:c8:e8:26:dd:b0:a2:84:43: 65:0a:92:77:38:e2:de:4a:a7:d3:2d:77:7b:a1:8b:28:5c:15: ef:fc:cb:d9:55:7b:4a:a5:d1:71:d5:b5:f6:47:f1:65:d4:b1: b2:d2:f9:11:61:4a:23:5d:51:7a:c4:e5:de:7c:f9:69:fa:8e: 0d:1b:f1:41:cf:d4:05:a9:15:41:58:24:e3:26:e6:7f:70:d7: 95:a6:06:17:75:11:ea:79:17:4f:e5:67:e4:b0:9e:75:1b:a4: fe:ce:bb:32:01:a4:39:8a:65:3b:de:d7:5a:50:ed:bb:0d:8d: 76:06:57:17 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUP1tKu2z6YvB5XNBJWKVg2ErvrTEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0Uz NzI4Mjk4MDAeFw0yNTA3MTAxOTU1MDNaFw0yNjA3MDkyMDAwMDNaMDMxMTAvBgNV BAMTKEJGNjI3RjEwMzg5NDM1MjFGN0FBQUQ0Q0FFOTE1MDdDQTU5N0MzMzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAHlYGsZCwHfkmJTbXtkh/O3vD ECfnKwP0XjCW39R3+reaRWB00prcTiU18Cd0g5PP7N2UC4XJZF3FlYQAZS8mtcKx 2a979rFBUtNSUyT9UvQRjX4MsnVoAF8OCLvHhgASnLkgJG3gJ5riupS16JxKLEqd Gc+mb5ZQBca3ANKh5OROyzEnZsletuV9dvTpeiNvPJnN7lAqOpSKJTxVtJCRXeyy n5QL1sU6bovvmctqCJdxxrfoG/wRvKIRadaYXYt2wkwdcET3m3RWZRAItkL59HN9 m816shpbNakEdwChyIJFqoeydeppq4bkqavqV8Plr82Rp70whuCo6y9iM7cvAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUv2J/EDiUNSH3qq1MrpFQfKWXwzAwHwYDVR0j BBgwFoAUmlK2QF7UBqexfER41RbfPjcoKYAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YTY2NWMzMi02ZGFmLTQ3MmItYmNlNi0zMTdkNWQ2Yzc4OWUvMC85QTUyQjY0MDVF RDQwNkE3QjE3QzQ0NzhENTE2REYzRTM3MjgyOTgwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0UzNzI4 Mjk4MC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhNjY1YzMyLTZkYWYtNDcyYi1i Y2U2LTMxN2Q1ZDZjNzg5ZS8wLzMyMzQzMDMwM2EzNDM2NjEzMDNhMzMzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzczMTMzMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAEagAAMw DQYJKoZIhvcNAQELBQADggEBABALP5LM7DVonpjoGpFb1Mnzu00ZqiIMXoOj+fbX Yv5perQD/s/M9MDWDR6u46xy80N46+Yj2EJ90oZ4h8Whd3Z8iUTyM//Et3WHCEMm lwymM7eDNExjTsykHDoshlEMH5P0p4mNmjDbCjzsFVd4Fy7QpndcRyJkajGZzNyI 1ZlsqRcPNjV62T7I6CbdsKKEQ2UKknc44t5Kp9Mtd3uhiyhcFe/8y9lVe0ql0XHV tfZH8WXUsbLS+RFhSiNdUXrE5d58+Wn6jg0b8UHP1AWpFUFYJOMm5n9w15WmBhd1 Eep5F0/lZ+SwnnUbpP7OuzIBpDmKZTve11pQ7bsNjXYGVxc= -----END CERTIFICATE-----Generated at Wed Jul 23 12:15:41 2025 by rpki-client