$ rpki-client -vvf repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/323430323a393830303a343030323a3a2f34382d3438203d3e20313331313139.roa File: 323430323a393830303a343030323a3a2f34382d3438203d3e20313331313139.roa (raw, json) Hash identifier: romvh4P9a79Pr4J569XqtgjdGIrqpQXhEG/K5DHlLes= Subject key identifier: 83:6C:B0:0C:25:07:B7:27:E1:4A:B3:CB:26:F8:36:C3:86:BF:F9:D5 Certificate issuer: /CN=FCD05385904E00F3C10A339EE19D924D72FFAE0E Certificate serial: 6B7610A23BA7E1A1246CB22027ACCEAC26912A2B Authority key identifier: FC:D0:53:85:90:4E:00:F3:C1:0A:33:9E:E1:9D:92:4D:72:FF:AE:0E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/323430323a393830303a343030323a3a2f34382d3438203d3e20313331313139.roa Signing time: Fri 18 Jul 2025 01:00:02 +0000 ROA not before: Fri 18 Jul 2025 00:55:02 +0000 ROA not after: Fri 17 Jul 2026 01:00:02 +0000 asID: 131119 IP address blocks: 2402:9800:4002::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.crl rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 17:09:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:76:10:a2:3b:a7:e1:a1:24:6c:b2:20:27:ac:ce:ac:26:91:2a:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FCD05385904E00F3C10A339EE19D924D72FFAE0E Validity Not Before: Jul 18 00:55:02 2025 GMT Not After : Jul 17 01:00:02 2026 GMT Subject: CN=836CB00C2507B727E14AB3CB26F836C386BFF9D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:be:7d:4b:49:87:cd:0c:0e:24:b1:48:7a:19: f0:84:2b:d5:d2:b0:a9:85:11:5f:8a:c4:d9:70:b6: b0:7d:30:8b:08:78:fe:af:18:26:26:65:28:a2:ef: 08:35:aa:6e:d9:80:8e:23:a7:68:3a:2d:ea:6b:01: e9:9e:0f:71:29:7f:f4:29:33:f7:31:d8:2d:95:36: 0e:84:07:8e:23:11:7d:4d:e7:47:5e:37:fa:b4:00: eb:3d:2f:6b:35:68:35:d8:5d:ff:40:0c:ae:dc:f3: 77:e2:fd:37:09:80:12:83:3c:1c:39:84:f3:e1:6c: 51:96:7e:d5:14:b9:61:8f:0e:d8:dc:34:9f:6a:39: 51:23:60:5c:90:aa:79:a4:c6:f0:52:8c:4b:e7:3e: f2:9e:fb:11:6c:01:82:4f:ea:e2:e4:46:c9:d2:a2: 6e:89:45:f6:1c:0b:80:ee:ca:d4:cd:0e:83:a5:bb: 10:ca:9c:2c:61:0b:da:a7:0f:7d:f8:39:e2:eb:29: 11:c2:2a:c9:98:83:a8:3f:08:f9:36:d3:8d:7c:f9: 91:0b:c8:84:71:bd:28:f1:bf:b3:b9:16:85:16:84: 75:a8:70:d5:7b:ca:5f:9d:db:43:46:11:4f:17:54: c8:29:16:6d:88:54:da:40:59:7c:aa:94:d2:69:00: 85:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:6C:B0:0C:25:07:B7:27:E1:4A:B3:CB:26:F8:36:C3:86:BF:F9:D5 X509v3 Authority Key Identifier: keyid:FC:D0:53:85:90:4E:00:F3:C1:0A:33:9E:E1:9D:92:4D:72:FF:AE:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/323430323a393830303a343030323a3a2f34382d3438203d3e20313331313139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:9800:4002::/48 Signature Algorithm: sha256WithRSAEncryption 88:f3:2a:a7:e4:ca:4a:9b:43:46:c2:a2:63:24:45:ff:3c:49: 35:d3:27:02:b5:74:51:fb:96:1b:41:f4:2e:5c:19:33:27:c5: 1b:01:4d:e9:e2:ea:42:a2:2e:b4:60:68:77:84:cc:e7:bf:2b: 98:a4:45:35:6b:91:64:fd:b6:4c:12:45:6d:20:09:11:a3:16: 8e:ff:00:83:49:75:f1:99:6c:30:3e:68:34:95:e3:ad:dc:ca: 0c:c7:aa:b0:bb:1f:ca:36:1f:c4:d3:af:3d:c5:d2:7b:e4:b6: 3c:ca:fe:9c:a0:9a:00:ef:5a:96:7f:79:ff:6a:85:54:eb:a3: a3:56:78:63:e9:20:56:ab:16:bb:53:44:44:49:fb:2a:4a:0d: c4:8c:53:6a:a8:ca:ae:37:c5:af:45:ed:53:92:01:ef:40:36: 94:25:e4:71:80:4b:44:cc:5b:69:86:14:ba:d7:7c:3e:8d:e3: fb:73:d0:5b:f9:5a:23:a8:b3:18:4b:9a:75:78:82:39:a0:89: 26:d7:2e:59:48:85:e1:75:3d:e7:1b:85:bc:ee:36:16:c1:18: 90:e5:5a:d8:dd:a9:4c:0a:c6:ce:ce:d4:6c:13:98:fb:4a:99: d0:f0:1c:cf:c9:91:34:66:0f:98:54:ad:d9:bd:03:3b:60:86: c4:91:ad:71 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUa3YQojun4aEkbLIgJ6zOrCaRKiswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkNEMDUzODU5MDRFMDBGM0MxMEEzMzlFRTE5RDkyNEQ3 MkZGQUUwRTAeFw0yNTA3MTgwMDU1MDJaFw0yNjA3MTcwMTAwMDJaMDMxMTAvBgNV BAMTKDgzNkNCMDBDMjUwN0I3MjdFMTRBQjNDQjI2RjgzNkMzODZCRkY5RDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcvn1LSYfNDA4ksUh6GfCEK9XS sKmFEV+KxNlwtrB9MIsIeP6vGCYmZSii7wg1qm7ZgI4jp2g6LeprAemeD3Epf/Qp M/cx2C2VNg6EB44jEX1N50deN/q0AOs9L2s1aDXYXf9ADK7c83fi/TcJgBKDPBw5 hPPhbFGWftUUuWGPDtjcNJ9qOVEjYFyQqnmkxvBSjEvnPvKe+xFsAYJP6uLkRsnS om6JRfYcC4DuytTNDoOluxDKnCxhC9qnD334OeLrKRHCKsmYg6g/CPk20418+ZEL yIRxvSjxv7O5FoUWhHWocNV7yl+d20NGEU8XVMgpFm2IVNpAWXyqlNJpAIUVAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUg2ywDCUHtyfhSrPLJvg2w4a/+dUwHwYDVR0j BBgwFoAU/NBThZBOAPPBCjOe4Z2STXL/rg4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NzhmZDRhZi1mZTY3LTQ1YzgtODBiNy0wNmZjMTE4ZGY4ZTIvMC9GQ0QwNTM4NTkw NEUwMEYzQzEwQTMzOUVFMTlEOTI0RDcyRkZBRTBFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkNEMDUzODU5MDRFMDBGM0MxMEEzMzlFRTE5RDkyNEQ3MkZG QUUwRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ3OGZkNGFmLWZlNjctNDVjOC04 MGI3LTA2ZmMxMThkZjhlMi8wLzMyMzQzMDMyM2EzOTM4MzAzMDNhMzQzMDMwMzIz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzEzMTMxMzkucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk ApgAQAIwDQYJKoZIhvcNAQELBQADggEBAIjzKqfkykqbQ0bComMkRf88STXTJwK1 dFH7lhtB9C5cGTMnxRsBTeni6kKiLrRgaHeEzOe/K5ikRTVrkWT9tkwSRW0gCRGj Fo7/AINJdfGZbDA+aDSV463cygzHqrC7H8o2H8TTrz3F0nvktjzK/pygmgDvWpZ/ ef9qhVTro6NWeGPpIFarFrtTRERJ+ypKDcSMU2qoyq43xa9F7VOSAe9ANpQl5HGA S0TMW2mGFLrXfD6N4/tz0Fv5WiOosxhLmnV4gjmgiSbXLllIheF1PecbhbzuNhbB GJDlWtjdqUwKxs7O1GwTmPtKmdDwHM/JkTRmD5hUrdm9AztghsSRrXE= -----END CERTIFICATE-----Generated at Fri Jul 25 15:30:03 2025 by rpki-client