$ rpki-client -vvf repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/323430323a393830303a343030313a3a2f34382d3438203d3e20313331313138.roa File: 323430323a393830303a343030313a3a2f34382d3438203d3e20313331313138.roa (raw, json) Hash identifier: d5986EOySqOf25Kh0+1S+OCcFuFk0+QM0Sd3IiA6baE= Subject key identifier: 91:0B:68:9D:31:50:DD:5C:64:D3:78:F0:49:A5:52:6B:EE:CB:10:F4 Certificate issuer: /CN=FCD05385904E00F3C10A339EE19D924D72FFAE0E Certificate serial: 264B25345A0E2B50F20A45A2221CF65F46C9A9DF Authority key identifier: FC:D0:53:85:90:4E:00:F3:C1:0A:33:9E:E1:9D:92:4D:72:FF:AE:0E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/323430323a393830303a343030313a3a2f34382d3438203d3e20313331313138.roa Signing time: Fri 18 Jul 2025 02:00:02 +0000 ROA not before: Fri 18 Jul 2025 01:55:02 +0000 ROA not after: Fri 17 Jul 2026 02:00:02 +0000 asID: 131118 IP address blocks: 2402:9800:4001::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.crl rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 18:57:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:4b:25:34:5a:0e:2b:50:f2:0a:45:a2:22:1c:f6:5f:46:c9:a9:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FCD05385904E00F3C10A339EE19D924D72FFAE0E Validity Not Before: Jul 18 01:55:02 2025 GMT Not After : Jul 17 02:00:02 2026 GMT Subject: CN=910B689D3150DD5C64D378F049A5526BEECB10F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:c9:12:ce:91:d1:48:b2:1d:52:cc:3f:46:3b: c1:b5:e4:8a:8c:11:6a:25:b0:68:81:ca:84:93:1b: 9e:fa:34:1c:45:ef:0e:cd:33:97:ab:a6:04:2a:e3: 77:bf:fd:44:12:60:1e:0f:5f:02:77:36:21:82:9e: 80:1e:27:83:64:06:cd:5a:4b:7a:3a:f1:13:48:a5: ad:1b:e4:b1:c7:16:98:bc:85:a5:c6:58:3e:d7:ee: f6:88:cc:0b:f5:c5:68:61:bf:05:25:f9:40:1e:54: 37:57:5d:d8:db:10:fd:4f:b6:25:76:0c:62:3d:0f: b7:a2:eb:a3:65:28:26:70:69:cb:6d:66:aa:75:6f: aa:77:29:70:4b:21:8a:ff:ee:70:6c:94:36:74:f9: d0:b8:30:4f:aa:95:eb:12:36:d2:39:d0:a3:9e:a8: f0:04:47:ec:46:06:18:6c:08:59:4e:e3:97:bc:63: 0a:71:a0:ee:28:6f:ef:e4:cb:a5:09:ac:03:b0:0f: d9:2f:b4:39:35:ad:a7:6e:d0:b7:e8:35:75:a7:b7: ab:25:50:f5:04:05:18:15:f9:2e:27:80:f4:2e:a5: fa:91:fb:8b:48:b5:90:74:51:b9:21:b0:a9:5a:67: 59:8c:e3:ef:8f:44:c1:71:c2:34:f0:c2:1a:05:c2: 3a:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:0B:68:9D:31:50:DD:5C:64:D3:78:F0:49:A5:52:6B:EE:CB:10:F4 X509v3 Authority Key Identifier: keyid:FC:D0:53:85:90:4E:00:F3:C1:0A:33:9E:E1:9D:92:4D:72:FF:AE:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/323430323a393830303a343030313a3a2f34382d3438203d3e20313331313138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:9800:4001::/48 Signature Algorithm: sha256WithRSAEncryption e1:c4:8d:44:2b:7f:68:ed:60:06:71:41:6e:03:7e:7c:c6:38: be:3c:06:de:45:d1:e7:a8:8f:c8:b5:87:d7:c8:7f:d1:8e:ec: 83:b9:e2:18:b7:bf:2e:dc:b3:3b:52:dd:13:f0:aa:57:54:92: eb:24:b3:d6:0e:1e:b3:5b:37:a5:5b:52:07:62:51:54:5a:c9: 3c:64:b7:71:eb:73:b4:18:df:39:7f:70:96:61:f1:91:2e:56: ef:ce:31:84:85:34:d1:06:a0:bb:14:f0:f0:fd:58:02:d9:82: f5:c7:69:3f:52:1d:c8:ce:fb:31:46:13:3d:32:bc:40:16:7a: 4f:b9:1b:7e:5b:15:27:a4:dd:c2:74:a9:ff:ed:e2:29:af:3c: c7:1f:cc:72:41:25:2f:5b:18:37:b2:03:9d:a0:70:1f:00:1b: 08:ac:68:34:91:de:25:41:43:72:5e:61:ba:f7:e3:9f:18:09: a1:03:46:be:2a:a9:e9:58:58:a5:b0:87:00:72:c8:9c:23:fa: fc:eb:1a:ea:5a:3b:46:25:23:bf:d7:7d:4d:20:27:40:83:32: 90:73:08:83:8a:89:f7:68:64:b3:b1:7a:09:92:ed:68:93:cf: 4f:d9:68:89:53:27:05:cc:c0:0e:fe:39:5f:1a:ba:42:59:c4: 04:8e:d1:50 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUJkslNFoOK1DyCkWiIhz2X0bJqd8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkNEMDUzODU5MDRFMDBGM0MxMEEzMzlFRTE5RDkyNEQ3 MkZGQUUwRTAeFw0yNTA3MTgwMTU1MDJaFw0yNjA3MTcwMjAwMDJaMDMxMTAvBgNV BAMTKDkxMEI2ODlEMzE1MERENUM2NEQzNzhGMDQ5QTU1MjZCRUVDQjEwRjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCryRLOkdFIsh1SzD9GO8G15IqM EWolsGiByoSTG576NBxF7w7NM5erpgQq43e//UQSYB4PXwJ3NiGCnoAeJ4NkBs1a S3o68RNIpa0b5LHHFpi8haXGWD7X7vaIzAv1xWhhvwUl+UAeVDdXXdjbEP1PtiV2 DGI9D7ei66NlKCZwacttZqp1b6p3KXBLIYr/7nBslDZ0+dC4ME+qlesSNtI50KOe qPAER+xGBhhsCFlO45e8YwpxoO4ob+/ky6UJrAOwD9kvtDk1radu0LfoNXWnt6sl UPUEBRgV+S4ngPQupfqR+4tItZB0UbkhsKlaZ1mM4++PRMFxwjTwwhoFwjqJAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUkQtonTFQ3Vxk03jwSaVSa+7LEPQwHwYDVR0j BBgwFoAU/NBThZBOAPPBCjOe4Z2STXL/rg4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NzhmZDRhZi1mZTY3LTQ1YzgtODBiNy0wNmZjMTE4ZGY4ZTIvMC9GQ0QwNTM4NTkw NEUwMEYzQzEwQTMzOUVFMTlEOTI0RDcyRkZBRTBFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkNEMDUzODU5MDRFMDBGM0MxMEEzMzlFRTE5RDkyNEQ3MkZG QUUwRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ3OGZkNGFmLWZlNjctNDVjOC04 MGI3LTA2ZmMxMThkZjhlMi8wLzMyMzQzMDMyM2EzOTM4MzAzMDNhMzQzMDMwMzEz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzEzMTMxMzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk ApgAQAEwDQYJKoZIhvcNAQELBQADggEBAOHEjUQrf2jtYAZxQW4DfnzGOL48Bt5F 0eeoj8i1h9fIf9GO7IO54hi3vy7csztS3RPwqldUkusks9YOHrNbN6VbUgdiUVRa yTxkt3Hrc7QY3zl/cJZh8ZEuVu/OMYSFNNEGoLsU8PD9WALZgvXHaT9SHcjO+zFG Ez0yvEAWek+5G35bFSek3cJ0qf/t4imvPMcfzHJBJS9bGDeyA52gcB8AGwisaDSR 3iVBQ3JeYbr3458YCaEDRr4qqelYWKWwhwByyJwj+vzrGupaO0YlI7/XfU0gJ0CD MpBzCIOKifdoZLOxegmS7WiTz0/ZaIlTJwXMwA7+OV8aukJZxASO0VA= -----END CERTIFICATE-----Generated at Sat Jul 26 07:25:36 2025 by rpki-client