$ rpki-client -vvf repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a3232323a3a2f34382d3438203d3e20313339393439.roa File: 323430353a616163303a3232323a3a2f34382d3438203d3e20313339393439.roa (raw, json) Hash identifier: /O39yU5iWDJ4j/7yQMSM8pDCjBsXajbdVPe1INNnNO4= Subject key identifier: AE:21:80:0C:50:54:AF:B0:34:50:12:DC:94:D7:0E:64:96:E8:9C:2C Certificate issuer: /CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Certificate serial: 4B3BA7A29D89E29314C2E547C1142B6B6762F92E Authority key identifier: DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a3232323a3a2f34382d3438203d3e20313339393439.roa Signing time: Fri 11 Jul 2025 07:02:21 +0000 ROA not before: Fri 11 Jul 2025 06:57:21 +0000 ROA not after: Fri 10 Jul 2026 07:02:21 +0000 asID: 139949 IP address blocks: 2405:aac0:222::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 09:05:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:3b:a7:a2:9d:89:e2:93:14:c2:e5:47:c1:14:2b:6b:67:62:f9:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DA8766A90851AE44D76B8563D83586F0164FE5CF Validity Not Before: Jul 11 06:57:21 2025 GMT Not After : Jul 10 07:02:21 2026 GMT Subject: CN=AE21800C5054AFB0345012DC94D70E6496E89C2C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:78:ea:ef:58:aa:50:a5:69:12:c2:35:a9:39: cc:4f:26:ad:49:55:14:f2:40:1f:01:34:b2:e1:34: 2d:05:49:90:02:40:3b:28:ea:a0:fc:f8:a2:be:27: c7:53:29:c4:7c:80:d5:a5:e7:a5:fe:15:5b:50:a1: fa:76:91:cc:af:3b:6c:89:98:bf:ae:92:45:5a:9b: 61:90:49:6e:7a:b0:0d:bd:5c:7a:1a:0c:61:1f:45: f2:77:7c:e0:86:17:5d:fd:ce:e0:f6:91:f7:f2:b6: 50:37:f2:36:a3:66:50:65:e7:6c:2e:ab:1d:0c:9a: 86:6d:20:2d:f2:e9:a7:4f:03:29:27:3d:21:05:79: ab:da:1d:70:02:8f:0c:b7:41:8e:5d:f4:60:05:7c: 22:52:e9:06:8a:0b:61:a9:43:15:69:03:bc:68:d5: 0d:1f:fe:9a:12:8e:7c:69:af:6c:05:3b:65:59:48: a0:66:04:23:ec:74:17:df:3c:6a:8a:e5:79:53:85: c6:e5:4a:72:f3:34:ac:18:e6:d1:52:09:a5:b5:07: 03:90:2e:3c:e7:2f:b9:ea:1a:65:02:07:07:cb:2f: 73:60:96:68:04:56:5e:4e:79:f9:28:9e:24:82:30: 5e:6f:61:69:ef:47:4a:e1:c6:81:38:b9:84:5e:66: f4:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:21:80:0C:50:54:AF:B0:34:50:12:DC:94:D7:0E:64:96:E8:9C:2C X509v3 Authority Key Identifier: keyid:DA:87:66:A9:08:51:AE:44:D7:6B:85:63:D8:35:86:F0:16:4F:E5:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/DA8766A90851AE44D76B8563D83586F0164FE5CF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA8766A90851AE44D76B8563D83586F0164FE5CF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3dedc033-cd4d-4620-9372-e6e039fc06b9/0/323430353a616163303a3232323a3a2f34382d3438203d3e20313339393439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:aac0:222::/48 Signature Algorithm: sha256WithRSAEncryption 20:b9:73:8a:14:29:6d:7b:ae:46:1f:a4:e2:bd:7d:9d:4a:81: 28:54:db:b3:be:1b:6e:64:41:74:16:1a:60:03:bb:44:2c:ce: be:ea:1b:d3:69:c7:a2:14:b5:36:34:21:44:a5:ea:43:cc:04: b8:c8:11:8f:a6:67:88:3a:7e:ae:ad:28:57:da:ac:89:38:f0: 42:3a:4e:da:18:96:07:30:80:35:8c:a6:00:2d:0b:2c:3c:92: cc:e4:0b:c5:f3:50:7c:39:b2:ce:23:da:4d:80:b7:a6:62:8a: 6e:9b:6a:98:be:73:a1:66:1f:92:11:3e:54:86:34:4a:2b:52: 18:4d:0c:30:6d:5c:fb:ea:e6:2f:1f:80:ec:2b:2c:e8:0b:67: 9f:41:e2:eb:2f:c4:d5:72:a0:93:e5:12:f5:dd:eb:de:28:30: f7:87:c3:05:68:70:35:1c:b9:05:c8:08:42:a9:36:94:69:2f: b7:23:27:c4:00:73:8b:5e:8d:1d:e5:73:86:a5:3b:34:b3:8f: ed:49:1e:e4:9d:08:36:cf:ae:6f:60:30:45:a9:67:64:e0:d4: 7e:29:e4:00:6d:17:83:a8:00:53:41:35:34:08:62:c5:93:d6: d1:44:29:40:ca:d9:b6:52:b3:e4:12:64:94:70:57:00:41:45: a8:55:f0:0c -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUSzunop2J4pMUwuVHwRQra2di+S4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAx NjRGRTVDRjAeFw0yNTA3MTEwNjU3MjFaFw0yNjA3MTAwNzAyMjFaMDMxMTAvBgNV BAMTKEFFMjE4MDBDNTA1NEFGQjAzNDUwMTJEQzk0RDcwRTY0OTZFODlDMkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeeOrvWKpQpWkSwjWpOcxPJq1J VRTyQB8BNLLhNC0FSZACQDso6qD8+KK+J8dTKcR8gNWl56X+FVtQofp2kcyvO2yJ mL+ukkVam2GQSW56sA29XHoaDGEfRfJ3fOCGF139zuD2kffytlA38jajZlBl52wu qx0MmoZtIC3y6adPAyknPSEFeavaHXACjwy3QY5d9GAFfCJS6QaKC2GpQxVpA7xo 1Q0f/poSjnxpr2wFO2VZSKBmBCPsdBffPGqK5XlThcblSnLzNKwY5tFSCaW1BwOQ LjznL7nqGmUCBwfLL3NglmgEVl5OefkoniSCMF5vYWnvR0rhxoE4uYReZvTHAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUriGADFBUr7A0UBLclNcOZJbonCwwHwYDVR0j BBgwFoAU2odmqQhRrkTXa4Vj2DWG8BZP5c8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZGVkYzAzMy1jZDRkLTQ2MjAtOTM3Mi1lNmUwMzlmYzA2YjkvMC9EQTg3NjZBOTA4 NTFBRTQ0RDc2Qjg1NjNEODM1ODZGMDE2NEZFNUNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREE4NzY2QTkwODUxQUU0NEQ3NkI4NTYzRDgzNTg2RjAxNjRG RTVDRi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNkZWRjMDMzLWNkNGQtNDYyMC05 MzcyLWU2ZTAzOWZjMDZiOS8wLzMyMzQzMDM1M2E2MTYxNjMzMDNhMzIzMjMyM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM5MzkzNDM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAWq wAIiMA0GCSqGSIb3DQEBCwUAA4IBAQAguXOKFClte65GH6TivX2dSoEoVNuzvhtu ZEF0FhpgA7tELM6+6hvTaceiFLU2NCFEpepDzAS4yBGPpmeIOn6urShX2qyJOPBC Ok7aGJYHMIA1jKYALQssPJLM5AvF81B8ObLOI9pNgLemYopum2qYvnOhZh+SET5U hjRKK1IYTQwwbVz76uYvH4DsKyzoC2efQeLrL8TVcqCT5RL13eveKDD3h8MFaHA1 HLkFyAhCqTaUaS+3IyfEAHOLXo0d5XOGpTs0s4/tSR7knQg2z65vYDBFqWdk4NR+ KeQAbReDqABTQTU0CGLFk9bRRClAytm2UrPkEmSUcFcAQUWoVfAM -----END CERTIFICATE-----Generated at Thu Jul 24 17:16:12 2025 by rpki-client