$ rpki-client -vvf repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a3a2f34382d3438203d3e20313437313337.roa File: 323430303a343661303a3a2f34382d3438203d3e20313437313337.roa (raw, json) Hash identifier: uA6xDa7IvgkDp22R6G6BTJTUnQ6z5ZPc+c5h8RXJlMc= Subject key identifier: 77:9B:ED:A0:D2:30:DA:F1:FD:50:B8:3D:2F:BA:52:1D:2D:32:25:DA Certificate issuer: /CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Certificate serial: 6BE9FB54ABD76AF2B65F75F2F6F6C339AA5CA73A Authority key identifier: 9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a3a2f34382d3438203d3e20313437313337.roa Signing time: Thu 10 Jul 2025 19:00:01 +0000 ROA not before: Thu 10 Jul 2025 18:55:01 +0000 ROA not after: Thu 09 Jul 2026 19:00:01 +0000 asID: 147137 IP address blocks: 2400:46a0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 11:28:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:e9:fb:54:ab:d7:6a:f2:b6:5f:75:f2:f6:f6:c3:39:aa:5c:a7:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Validity Not Before: Jul 10 18:55:01 2025 GMT Not After : Jul 9 19:00:01 2026 GMT Subject: CN=779BEDA0D230DAF1FD50B83D2FBA521D2D3225DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:d3:ea:6f:37:60:cf:78:11:13:b1:e8:4f:c5: c5:93:bf:f7:a2:e8:86:56:63:0c:f9:c3:9b:6f:e2: 0f:8e:49:ab:a5:86:11:f4:9d:f7:55:b1:5c:21:3e: 14:d9:cb:d7:7d:0b:ac:b9:71:91:3e:ba:ff:a8:1f: a0:dd:bd:48:d8:68:7a:38:c1:1d:12:f6:d0:75:b6: 12:8c:7b:67:ef:3e:14:2a:4e:c2:57:3c:b8:8c:7d: e3:c8:07:97:c4:4f:54:4d:d9:69:ed:80:f7:78:81: 4d:62:6c:a0:84:21:77:1c:31:56:c9:86:d9:e7:e6: 2c:ac:d4:c7:23:62:03:40:5d:ad:02:cc:80:88:9c: be:0c:b6:0a:12:64:17:92:46:35:c5:a1:c3:f8:14: 10:8f:48:0c:16:60:b0:c4:ce:d0:54:db:ae:9e:c1: 30:e2:09:07:d3:fb:38:86:b5:00:7c:ad:a8:86:a8: ad:b0:f2:f7:e8:3f:01:e3:ae:40:5d:90:a4:94:5f: 00:66:2a:35:24:51:69:a0:5b:33:43:ac:54:3f:33: 19:ba:9f:08:fc:d7:54:34:f9:7d:15:e7:c8:b2:3f: 93:ca:4c:9e:91:0d:5f:67:4e:88:c1:6c:38:2f:c9: 54:63:d9:20:fb:07:78:7d:83:87:2f:05:18:c5:9a: 57:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:9B:ED:A0:D2:30:DA:F1:FD:50:B8:3D:2F:BA:52:1D:2D:32:25:DA X509v3 Authority Key Identifier: keyid:9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/323430303a343661303a3a2f34382d3438203d3e20313437313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:46a0::/48 Signature Algorithm: sha256WithRSAEncryption 3a:5f:7b:94:64:fb:a0:bd:27:b4:cd:09:59:4a:92:bf:20:d3: 9a:df:02:99:f5:75:48:d8:62:bb:3a:c5:e8:16:30:e8:d0:d4: 2b:f9:9c:03:21:14:c3:8b:8d:94:5b:ae:47:8d:74:8f:54:5b: 33:be:94:80:c4:67:1d:d8:4c:c0:31:18:02:da:71:e3:bc:88: 76:54:9e:06:d3:57:1f:e5:8e:e8:1d:bd:30:9e:7b:17:6b:a6: df:98:ad:cb:90:bc:93:26:cf:13:78:79:f6:5e:3f:bc:a3:ce: 9a:12:3b:e4:5d:fd:e8:05:75:49:35:b5:b7:5f:11:35:16:0c: c9:2f:96:0d:4e:98:2c:b3:41:47:fd:7f:12:6b:ff:d1:5f:a5: 28:6e:e2:50:3d:30:33:25:9e:93:b8:67:9c:28:d7:54:f8:f0: c9:2d:51:66:ee:3b:c8:0e:ee:c0:07:95:cc:38:20:f1:cf:4f: 9c:45:1f:05:74:4c:3a:c0:bb:4d:15:be:e4:73:9d:dc:f7:3e: e2:5e:87:f4:76:0e:58:89:bc:95:7d:3e:af:15:d2:d2:bb:0d: f0:ff:d7:bc:0b:62:ed:c7:79:75:fc:e9:19:49:3c:1c:ed:01: 3f:7b:f5:75:ae:2b:c1:eb:71:8d:e9:4e:55:39:2a:1b:19:6d: 1f:fd:ce:83 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgIUa+n7VKvXavK2X3Xy9vbDOapcpzowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0Uz NzI4Mjk4MDAeFw0yNTA3MTAxODU1MDFaFw0yNjA3MDkxOTAwMDFaMDMxMTAvBgNV BAMTKDc3OUJFREEwRDIzMERBRjFGRDUwQjgzRDJGQkE1MjFEMkQzMjI1REEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDU0+pvN2DPeBETsehPxcWTv/ei 6IZWYwz5w5tv4g+OSaulhhH0nfdVsVwhPhTZy9d9C6y5cZE+uv+oH6DdvUjYaHo4 wR0S9tB1thKMe2fvPhQqTsJXPLiMfePIB5fET1RN2WntgPd4gU1ibKCEIXccMVbJ htnn5iys1McjYgNAXa0CzICInL4MtgoSZBeSRjXFocP4FBCPSAwWYLDEztBU266e wTDiCQfT+ziGtQB8raiGqK2w8vfoPwHjrkBdkKSUXwBmKjUkUWmgWzNDrFQ/Mxm6 nwj811Q0+X0V58iyP5PKTJ6RDV9nTojBbDgvyVRj2SD7B3h9g4cvBRjFmlfdAgMB AAGjggI1MIICMTAdBgNVHQ4EFgQUd5vtoNIw2vH9ULg9L7pSHS0yJdowHwYDVR0j BBgwFoAUmlK2QF7UBqexfER41RbfPjcoKYAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YTY2NWMzMi02ZGFmLTQ3MmItYmNlNi0zMTdkNWQ2Yzc4OWUvMC85QTUyQjY0MDVF RDQwNkE3QjE3QzQ0NzhENTE2REYzRTM3MjgyOTgwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0UzNzI4 Mjk4MC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhNjY1YzMyLTZkYWYtNDcyYi1i Y2U2LTMxN2Q1ZDZjNzg5ZS8wLzMyMzQzMDMwM2EzNDM2NjEzMDNhM2EyZjM0Mzgy ZDM0MzgyMDNkM2UyMDMxMzQzNzMxMzMzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQARqAAADANBgkq hkiG9w0BAQsFAAOCAQEAOl97lGT7oL0ntM0JWUqSvyDTmt8CmfV1SNhiuzrF6BYw 6NDUK/mcAyEUw4uNlFuuR410j1RbM76UgMRnHdhMwDEYAtpx47yIdlSeBtNXH+WO 6B29MJ57F2um35ity5C8kybPE3h59l4/vKPOmhI75F396AV1STW1t18RNRYMyS+W DU6YLLNBR/1/Emv/0V+lKG7iUD0wMyWek7hnnCjXVPjwyS1RZu47yA7uwAeVzDgg 8c9PnEUfBXRMOsC7TRW+5HOd3Pc+4l6H9HYOWIm8lX0+rxXS0rsN8P/XvAti7cd5 dfzpGUk8HO0BP3v1da4rwetxjelOVTkqGxltH/3Ogw== -----END CERTIFICATE-----Generated at Wed Jul 23 12:14:58 2025 by rpki-client