$ rpki-client -vvf repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a353a3a2f34382d3438203d3e20313437313337.roa File: 323430303a343661303a353a3a2f34382d3438203d3e20313437313337.roa (raw, json) Hash identifier: kS9+afwSiaTp9TelPiQ0ILiNOqNp/k8Ib68mizaidfE= Subject key identifier: FD:1F:A9:74:0E:0D:29:C1:BE:41:E3:BD:7F:3F:9D:8A:6E:F6:0D:86 Certificate issuer: /CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Certificate serial: 43D22D0E6F44AB5144ADFD149494C637BEF57D48 Authority key identifier: 9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a353a3a2f34382d3438203d3e20313437313337.roa Signing time: Thu 10 Jul 2025 20:00:03 +0000 ROA not before: Thu 10 Jul 2025 19:55:03 +0000 ROA not after: Thu 09 Jul 2026 20:00:03 +0000 asID: 147137 IP address blocks: 2400:46a0:5::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 11:28:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:d2:2d:0e:6f:44:ab:51:44:ad:fd:14:94:94:c6:37:be:f5:7d:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Validity Not Before: Jul 10 19:55:03 2025 GMT Not After : Jul 9 20:00:03 2026 GMT Subject: CN=FD1FA9740E0D29C1BE41E3BD7F3F9D8A6EF60D86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:60:8b:65:1a:83:95:0f:7c:45:38:69:6f:be: 25:07:de:c0:88:3e:89:4e:7a:01:03:8e:c5:ac:e3: 49:1c:a5:01:d8:be:2d:1d:95:58:58:bc:a7:48:21: 2c:f9:12:82:f9:22:4f:df:78:fa:6b:f4:14:ef:fc: 28:d6:1e:fe:54:52:8f:d8:94:57:d6:09:5c:d1:c4: 72:49:a6:cd:7f:e2:a5:1d:22:e3:8d:bc:ba:dd:b4: cd:3b:58:bf:6f:42:70:f8:fb:c6:81:cf:3c:75:94: 95:5c:63:b3:a8:49:99:ce:d0:ad:1d:cf:52:ed:02: 54:f5:3f:56:23:8d:31:49:f1:1b:01:d3:eb:52:34: d8:b2:5e:d4:56:2b:fd:5f:d6:63:27:a7:41:d2:88: bc:3c:83:fc:84:8a:51:66:4f:94:de:51:64:cd:55: b2:4d:54:88:d0:b8:b1:63:25:22:d4:d2:ec:19:60: 6f:5f:39:20:12:6b:43:cc:fe:17:ef:41:15:63:ed: e5:cb:94:b8:0f:7c:e7:15:e4:cb:00:47:48:bd:07: 95:f8:44:3e:4c:37:15:4a:51:d0:15:3d:25:60:3c: f5:af:ab:3c:b6:6d:56:3c:ae:b5:04:b1:83:8f:51: aa:54:a7:05:f0:32:5b:0a:2e:1a:a2:71:31:fa:43: cc:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:1F:A9:74:0E:0D:29:C1:BE:41:E3:BD:7F:3F:9D:8A:6E:F6:0D:86 X509v3 Authority Key Identifier: keyid:9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a353a3a2f34382d3438203d3e20313437313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:46a0:5::/48 Signature Algorithm: sha256WithRSAEncryption 6e:6b:9d:a3:cb:80:65:ad:d1:5e:81:7a:f9:6f:74:62:3e:25: 9d:4c:09:37:f3:9f:ed:7f:4c:13:0b:34:3c:fb:67:0e:c5:91: 55:38:95:03:cf:66:24:59:be:4b:1e:c0:40:e2:7f:bd:be:ce: 73:e8:a8:0e:1b:0c:8e:94:e4:e7:84:7b:a2:2a:fd:20:4a:76: ed:d3:4e:37:a5:c6:6c:96:98:2f:3a:18:48:4c:83:fc:eb:be: 49:17:e4:3e:89:3c:75:d3:0f:22:26:a1:b2:a8:43:fc:84:a8: b2:78:db:df:20:02:92:b0:99:9b:1e:1d:9b:13:df:aa:7a:01: ae:73:b8:8b:01:e7:ac:20:d4:3e:da:07:57:d5:b9:e3:31:3b: 9c:2e:33:70:b2:53:dc:85:cb:6f:d3:7f:53:ad:63:73:35:f4: 16:4e:66:60:a6:76:31:79:a0:2c:9e:26:4a:92:fe:3a:ab:e0: 70:e7:d4:03:26:7f:31:5f:93:75:44:07:a5:27:82:8f:81:8c: 0e:b0:29:4b:f0:95:d3:f1:fe:5a:df:0f:38:50:e4:70:0b:3f: 12:54:3b:c4:d6:60:40:9b:11:20:ce:0f:a1:46:b0:ca:06:e8: 79:53:f4:da:1b:ba:a0:c4:be:2f:9a:e1:d2:bd:36:ae:b9:f1: fc:1a:62:2b -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUQ9ItDm9Eq1FErf0UlJTGN771fUgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0Uz NzI4Mjk4MDAeFw0yNTA3MTAxOTU1MDNaFw0yNjA3MDkyMDAwMDNaMDMxMTAvBgNV BAMTKEZEMUZBOTc0MEUwRDI5QzFCRTQxRTNCRDdGM0Y5RDhBNkVGNjBEODYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8YItlGoOVD3xFOGlvviUH3sCI PolOegEDjsWs40kcpQHYvi0dlVhYvKdIISz5EoL5Ik/fePpr9BTv/CjWHv5UUo/Y lFfWCVzRxHJJps1/4qUdIuONvLrdtM07WL9vQnD4+8aBzzx1lJVcY7OoSZnO0K0d z1LtAlT1P1YjjTFJ8RsB0+tSNNiyXtRWK/1f1mMnp0HSiLw8g/yEilFmT5TeUWTN VbJNVIjQuLFjJSLU0uwZYG9fOSASa0PM/hfvQRVj7eXLlLgPfOcV5MsAR0i9B5X4 RD5MNxVKUdAVPSVgPPWvqzy2bVY8rrUEsYOPUapUpwXwMlsKLhqicTH6Q8wVAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQU/R+pdA4NKcG+QeO9fz+dim72DYYwHwYDVR0j BBgwFoAUmlK2QF7UBqexfER41RbfPjcoKYAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YTY2NWMzMi02ZGFmLTQ3MmItYmNlNi0zMTdkNWQ2Yzc4OWUvMC85QTUyQjY0MDVF RDQwNkE3QjE3QzQ0NzhENTE2REYzRTM3MjgyOTgwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0UzNzI4 Mjk4MC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhNjY1YzMyLTZkYWYtNDcyYi1i Y2U2LTMxN2Q1ZDZjNzg5ZS8wLzMyMzQzMDMwM2EzNDM2NjEzMDNhMzUzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzczMTMzMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAEagAAUw DQYJKoZIhvcNAQELBQADggEBAG5rnaPLgGWt0V6BevlvdGI+JZ1MCTfzn+1/TBML NDz7Zw7FkVU4lQPPZiRZvksewEDif72+znPoqA4bDI6U5OeEe6Iq/SBKdu3TTjel xmyWmC86GEhMg/zrvkkX5D6JPHXTDyImobKoQ/yEqLJ4298gApKwmZseHZsT36p6 Aa5zuIsB56wg1D7aB1fVueMxO5wuM3CyU9yFy2/Tf1OtY3M19BZOZmCmdjF5oCye JkqS/jqr4HDn1AMmfzFfk3VEB6Ungo+BjA6wKUvwldPx/lrfDzhQ5HALPxJUO8TW YECbESDOD6FGsMoG6HlT9NobuqDEvi+a4dK9Nq658fwaYis= -----END CERTIFICATE-----Generated at Wed Jul 23 12:15:37 2025 by rpki-client