$ rpki-client -vvf repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a383a3a2f34382d3438203d3e20313437313337.roa File: 323430303a343661303a383a3a2f34382d3438203d3e20313437313337.roa (raw, json) Hash identifier: xUscykaPjchZwH98C+3nSOKZLZaGqcecZKinfhX00i4= Subject key identifier: AF:33:A6:84:78:D1:C2:7E:7C:57:74:6F:86:DA:58:10:A8:55:E1:56 Certificate issuer: /CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Certificate serial: 110C0994D0754C125B8F6E3B61B57160DD917160 Authority key identifier: 9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a383a3a2f34382d3438203d3e20313437313337.roa Signing time: Thu 10 Jul 2025 20:00:04 +0000 ROA not before: Thu 10 Jul 2025 19:55:04 +0000 ROA not after: Thu 09 Jul 2026 20:00:04 +0000 asID: 147137 IP address blocks: 2400:46a0:8::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 11:28:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:0c:09:94:d0:75:4c:12:5b:8f:6e:3b:61:b5:71:60:dd:91:71:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Validity Not Before: Jul 10 19:55:04 2025 GMT Not After : Jul 9 20:00:04 2026 GMT Subject: CN=AF33A68478D1C27E7C57746F86DA5810A855E156 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:6f:3f:bc:c5:b8:e6:68:e1:5c:fe:7a:b1:9b: 61:46:d8:8a:8f:eb:91:cb:43:e2:fd:22:46:b7:25: bc:5a:f6:e7:31:b9:56:43:38:cf:fa:51:c2:92:e9: 71:18:1b:53:4e:9a:5c:82:80:4c:98:d7:a2:6f:ea: b0:00:6f:18:92:6d:76:a3:c9:b3:3b:33:cf:03:66: c1:b6:c0:f5:20:b7:f2:a5:1a:4e:fa:61:ab:0f:d5: 95:cd:33:84:2e:18:40:63:59:0e:a8:ba:40:08:3d: 41:21:c6:1e:58:2a:87:3d:4d:d6:54:46:0c:bf:ef: ba:8b:9e:3c:ee:7b:a5:38:4e:47:50:5f:c6:1c:03: 81:f6:fa:60:65:d5:59:89:4e:59:09:ec:17:fd:0c: 48:9e:34:40:13:37:18:d9:ad:fd:01:ad:df:97:61: 36:27:32:7c:58:0c:ba:46:99:a9:31:91:f7:ab:2a: 0c:02:5d:de:b7:1d:9d:4b:9e:20:f0:17:81:35:31: 3c:4b:89:54:2b:4e:b3:b6:0a:4e:39:2c:aa:78:4b: 2b:59:5f:4b:3c:9e:83:36:63:2f:69:9c:c7:87:b2: c9:bf:e8:dd:f3:be:6c:ae:95:5c:e5:a1:1b:58:ee: f7:a0:91:ae:06:e2:1b:37:c9:25:d0:74:98:cc:61: 29:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:33:A6:84:78:D1:C2:7E:7C:57:74:6F:86:DA:58:10:A8:55:E1:56 X509v3 Authority Key Identifier: keyid:9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a383a3a2f34382d3438203d3e20313437313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:46a0:8::/48 Signature Algorithm: sha256WithRSAEncryption 6d:02:d7:83:21:0e:70:5e:f3:85:b8:d9:3f:53:d3:7a:aa:e5: 64:d6:ff:58:d1:0f:fa:a4:8f:a6:7c:5b:56:d6:86:8c:e6:5e: 46:b6:76:9a:92:a0:72:16:ae:6a:a9:36:c7:99:30:5c:ef:86: 95:34:d6:be:17:02:ff:08:51:42:75:2f:f8:e7:a3:ad:68:e7: 47:71:b3:3a:8b:b9:f1:08:32:98:b6:37:3d:7e:8c:4e:df:b9: 6e:01:89:93:f8:7d:be:11:ad:9e:8e:75:69:46:47:10:50:37: 19:92:9b:cf:5d:d9:76:ae:33:3c:ac:3c:9b:fb:91:8c:ef:70: 8f:b5:fa:21:0d:e4:78:02:fc:0d:fb:c4:fb:ca:70:8a:1a:ee: a4:0b:ae:a5:c9:84:3e:7c:fe:e7:ae:53:c8:5a:e4:eb:36:23: ed:7e:54:d7:ce:e0:13:2a:e0:76:6c:62:9f:27:6e:09:be:0f: a0:e3:f9:23:13:fc:a8:94:dc:63:43:3e:98:62:9b:d3:d3:6c: 69:1a:07:c1:16:20:39:d4:d6:eb:f1:bd:0b:37:e2:11:e4:2e: 5c:34:56:50:99:d0:f6:eb:09:fb:98:fe:68:68:d7:54:43:a5: 49:12:de:c5:65:fc:54:7c:7f:3a:79:08:48:4f:e5:03:c8:0e: 29:fa:5d:d3 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUEQwJlNB1TBJbj247YbVxYN2RcWAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0Uz NzI4Mjk4MDAeFw0yNTA3MTAxOTU1MDRaFw0yNjA3MDkyMDAwMDRaMDMxMTAvBgNV BAMTKEFGMzNBNjg0NzhEMUMyN0U3QzU3NzQ2Rjg2REE1ODEwQTg1NUUxNTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCubz+8xbjmaOFc/nqxm2FG2IqP 65HLQ+L9Ika3Jbxa9ucxuVZDOM/6UcKS6XEYG1NOmlyCgEyY16Jv6rAAbxiSbXaj ybM7M88DZsG2wPUgt/KlGk76YasP1ZXNM4QuGEBjWQ6oukAIPUEhxh5YKoc9TdZU Rgy/77qLnjzue6U4TkdQX8YcA4H2+mBl1VmJTlkJ7Bf9DEieNEATNxjZrf0Brd+X YTYnMnxYDLpGmakxkferKgwCXd63HZ1LniDwF4E1MTxLiVQrTrO2Ck45LKp4SytZ X0s8noM2Yy9pnMeHssm/6N3zvmyulVzloRtY7vegka4G4hs3ySXQdJjMYSl1AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUrzOmhHjRwn58V3RvhtpYEKhV4VYwHwYDVR0j BBgwFoAUmlK2QF7UBqexfER41RbfPjcoKYAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YTY2NWMzMi02ZGFmLTQ3MmItYmNlNi0zMTdkNWQ2Yzc4OWUvMC85QTUyQjY0MDVF RDQwNkE3QjE3QzQ0NzhENTE2REYzRTM3MjgyOTgwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0UzNzI4 Mjk4MC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhNjY1YzMyLTZkYWYtNDcyYi1i Y2U2LTMxN2Q1ZDZjNzg5ZS8wLzMyMzQzMDMwM2EzNDM2NjEzMDNhMzgzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzczMTMzMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAEagAAgw DQYJKoZIhvcNAQELBQADggEBAG0C14MhDnBe84W42T9T03qq5WTW/1jRD/qkj6Z8 W1bWhozmXka2dpqSoHIWrmqpNseZMFzvhpU01r4XAv8IUUJ1L/jno61o50dxszqL ufEIMpi2Nz1+jE7fuW4BiZP4fb4RrZ6OdWlGRxBQNxmSm89d2XauMzysPJv7kYzv cI+1+iEN5HgC/A37xPvKcIoa7qQLrqXJhD58/ueuU8ha5Os2I+1+VNfO4BMq4HZs Yp8nbgm+D6Dj+SMT/KiU3GNDPphim9PTbGkaB8EWIDnU1uvxvQs34hHkLlw0VlCZ 0PbrCfuY/mho11RDpUkS3sVl/FR8fzp5CEhP5QPIDin6XdM= -----END CERTIFICATE-----Generated at Wed Jul 23 12:15:33 2025 by rpki-client