$ rpki-client -vvf repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/323430323a393830303a343030303a3a2f34382d3438203d3e20313331313137.roa File: 323430323a393830303a343030303a3a2f34382d3438203d3e20313331313137.roa (raw, json) Hash identifier: EhLhnkz+tJZEa0MJMT1YkNCBA4ZvjDWQMMMtcKGynfI= Subject key identifier: 69:1B:91:16:1F:BA:A2:34:10:AF:54:16:A0:98:57:FB:FA:77:45:00 Certificate issuer: /CN=FCD05385904E00F3C10A339EE19D924D72FFAE0E Certificate serial: 4B8F0CA93FB0A1CF7D73760942864B1162D0188F Authority key identifier: FC:D0:53:85:90:4E:00:F3:C1:0A:33:9E:E1:9D:92:4D:72:FF:AE:0E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/323430323a393830303a343030303a3a2f34382d3438203d3e20313331313137.roa Signing time: Fri 18 Jul 2025 01:00:03 +0000 ROA not before: Fri 18 Jul 2025 00:55:03 +0000 ROA not after: Fri 17 Jul 2026 01:00:03 +0000 asID: 131117 IP address blocks: 2402:9800:4000::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.crl rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 18:57:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:8f:0c:a9:3f:b0:a1:cf:7d:73:76:09:42:86:4b:11:62:d0:18:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FCD05385904E00F3C10A339EE19D924D72FFAE0E Validity Not Before: Jul 18 00:55:03 2025 GMT Not After : Jul 17 01:00:03 2026 GMT Subject: CN=691B91161FBAA23410AF5416A09857FBFA774500 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:ce:19:d7:ab:c9:9b:ed:c1:89:fb:70:a4:06: e4:08:5c:80:b0:0d:36:8b:06:9e:19:46:a6:34:72: 7f:19:53:8f:06:d8:da:39:24:2a:5a:fc:8d:fd:a2: e8:c6:ae:00:67:36:91:19:69:0b:c5:57:f7:99:e0: 58:d7:7a:5d:b1:b0:94:40:f0:be:45:ab:c6:42:71: c0:cf:37:4f:25:2a:d3:5f:38:f2:ae:bf:ed:53:a2: 5b:74:89:fc:87:9b:dc:89:c8:78:a1:17:57:7b:15: 88:22:da:94:c1:25:33:4f:06:d4:97:60:d8:7a:c0: 37:e0:0b:94:a5:1e:6c:13:b3:20:eb:20:d8:53:cc: cb:2c:19:76:ff:39:3a:da:f4:39:74:7d:a2:c0:e0: 96:f0:df:6a:89:17:a9:47:c2:80:d4:6d:a4:a0:ca: 23:15:77:fd:4f:6c:54:e0:60:fb:08:de:5e:a3:ae: 4d:f6:5b:e4:0b:35:61:28:7e:ad:54:1b:c1:c8:1f: 41:db:58:75:09:b3:a5:26:e6:79:3b:59:b4:7a:ce: 2b:ba:bf:da:c7:cb:3a:e7:9f:e9:c7:40:e0:98:f3: d2:dd:b1:4f:97:57:16:3a:f9:ab:7f:94:b5:d4:08: a1:01:56:c7:cd:2e:4e:d4:97:d9:0f:ab:0f:e3:52: 7f:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:1B:91:16:1F:BA:A2:34:10:AF:54:16:A0:98:57:FB:FA:77:45:00 X509v3 Authority Key Identifier: keyid:FC:D0:53:85:90:4E:00:F3:C1:0A:33:9E:E1:9D:92:4D:72:FF:AE:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/323430323a393830303a343030303a3a2f34382d3438203d3e20313331313137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:9800:4000::/48 Signature Algorithm: sha256WithRSAEncryption 72:17:19:27:e1:1b:a8:e6:f2:91:22:0b:ab:bc:43:e4:ee:86: 19:5b:7a:25:f9:3e:6e:99:20:09:6e:ce:1c:41:bb:a9:af:05: 11:c4:97:7d:29:f7:33:84:ea:ef:31:f3:04:55:53:29:6a:24: 9b:78:16:aa:79:a3:c7:a8:b5:97:11:6e:bd:da:7d:aa:a5:f0: e8:8e:c2:ca:da:6f:7c:04:75:0f:9c:dd:dd:0a:77:5c:32:03: 32:24:cd:7d:1d:34:08:a2:2f:12:fe:3e:ae:a8:eb:c6:76:81: a3:69:f4:71:34:26:aa:53:09:5b:72:55:9a:c3:69:8a:d2:f8: fc:4e:5d:1e:b0:7a:2b:67:dd:20:ec:7b:72:57:b4:79:69:c5: 92:07:7d:cb:61:dc:a2:8a:c8:ae:45:9c:bb:36:bc:0e:94:22: ca:cb:96:17:81:e9:86:bf:aa:93:e9:b7:7a:b0:cb:11:32:74: 03:65:88:9a:d1:9c:ad:96:3b:1d:de:09:96:43:5c:90:8b:59: 30:00:1f:ba:d2:fa:fb:87:50:6c:ac:bd:e5:48:3c:42:13:5e: 48:e8:22:98:69:eb:84:2e:d0:7f:67:a4:56:27:cb:a7:ab:33: cb:f1:d7:1f:76:b9:10:ad:40:12:6e:83:d7:6b:bc:a5:be:3f: d7:67:30:3b -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUS48MqT+woc99c3YJQoZLEWLQGI8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkNEMDUzODU5MDRFMDBGM0MxMEEzMzlFRTE5RDkyNEQ3 MkZGQUUwRTAeFw0yNTA3MTgwMDU1MDNaFw0yNjA3MTcwMTAwMDNaMDMxMTAvBgNV BAMTKDY5MUI5MTE2MUZCQUEyMzQxMEFGNTQxNkEwOTg1N0ZCRkE3NzQ1MDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNzhnXq8mb7cGJ+3CkBuQIXICw DTaLBp4ZRqY0cn8ZU48G2No5JCpa/I39oujGrgBnNpEZaQvFV/eZ4FjXel2xsJRA 8L5Fq8ZCccDPN08lKtNfOPKuv+1Tolt0ifyHm9yJyHihF1d7FYgi2pTBJTNPBtSX YNh6wDfgC5SlHmwTsyDrINhTzMssGXb/OTra9Dl0faLA4Jbw32qJF6lHwoDUbaSg yiMVd/1PbFTgYPsI3l6jrk32W+QLNWEofq1UG8HIH0HbWHUJs6Um5nk7WbR6ziu6 v9rHyzrnn+nHQOCY89LdsU+XVxY6+at/lLXUCKEBVsfNLk7Ul9kPqw/jUn9/AgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUaRuRFh+6ojQQr1QWoJhX+/p3RQAwHwYDVR0j BBgwFoAU/NBThZBOAPPBCjOe4Z2STXL/rg4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NzhmZDRhZi1mZTY3LTQ1YzgtODBiNy0wNmZjMTE4ZGY4ZTIvMC9GQ0QwNTM4NTkw NEUwMEYzQzEwQTMzOUVFMTlEOTI0RDcyRkZBRTBFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkNEMDUzODU5MDRFMDBGM0MxMEEzMzlFRTE5RDkyNEQ3MkZG QUUwRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ3OGZkNGFmLWZlNjctNDVjOC04 MGI3LTA2ZmMxMThkZjhlMi8wLzMyMzQzMDMyM2EzOTM4MzAzMDNhMzQzMDMwMzAz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzEzMTMxMzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk ApgAQAAwDQYJKoZIhvcNAQELBQADggEBAHIXGSfhG6jm8pEiC6u8Q+TuhhlbeiX5 Pm6ZIAluzhxBu6mvBRHEl30p9zOE6u8x8wRVUylqJJt4Fqp5o8eotZcRbr3afaql 8OiOwsrab3wEdQ+c3d0Kd1wyAzIkzX0dNAiiLxL+Pq6o68Z2gaNp9HE0JqpTCVty VZrDaYrS+PxOXR6weitn3SDse3JXtHlpxZIHfcth3KKKyK5FnLs2vA6UIsrLlheB 6Ya/qpPpt3qwyxEydANliJrRnK2WOx3eCZZDXJCLWTAAH7rS+vuHUGysveVIPEIT XkjoIphp64Qu0H9npFYny6erM8vx1x92uRCtQBJug9drvKW+P9dnMDs= -----END CERTIFICATE-----Generated at Sat Jul 26 07:52:29 2025 by rpki-client