$ rpki-client -vvf repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/323430323a393830303a343030333a3a2f34382d3438203d3e203338353038.roa File: 323430323a393830303a343030333a3a2f34382d3438203d3e203338353038.roa (raw, json) Hash identifier: kVCBdk2VmpyopZqVmrScI5B0Mvq/xa323JLB5pEhsQA= Subject key identifier: AD:E5:70:07:C3:D9:FB:41:CE:3A:4A:E8:BC:9D:27:ED:A0:30:B8:D3 Certificate issuer: /CN=FCD05385904E00F3C10A339EE19D924D72FFAE0E Certificate serial: 01D91316690AAC71186D08D72756B4B6621D50F8 Authority key identifier: FC:D0:53:85:90:4E:00:F3:C1:0A:33:9E:E1:9D:92:4D:72:FF:AE:0E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/323430323a393830303a343030333a3a2f34382d3438203d3e203338353038.roa Signing time: Fri 18 Jul 2025 02:00:02 +0000 ROA not before: Fri 18 Jul 2025 01:55:02 +0000 ROA not after: Fri 17 Jul 2026 02:00:02 +0000 asID: 38508 IP address blocks: 2402:9800:4003::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.crl rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 18:57:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:d9:13:16:69:0a:ac:71:18:6d:08:d7:27:56:b4:b6:62:1d:50:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FCD05385904E00F3C10A339EE19D924D72FFAE0E Validity Not Before: Jul 18 01:55:02 2025 GMT Not After : Jul 17 02:00:02 2026 GMT Subject: CN=ADE57007C3D9FB41CE3A4AE8BC9D27EDA030B8D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:f0:f6:d7:49:e6:eb:67:a2:db:aa:36:df:81: c4:37:e4:b4:1b:01:f2:61:50:5e:ad:65:47:4f:1e: c8:31:5e:37:8e:2b:7a:a2:5d:6b:fa:59:59:88:37: 97:a3:77:bb:53:8c:75:75:53:03:70:18:a4:cc:2a: c7:42:d2:d7:39:4e:6f:fb:9a:21:2d:0f:7b:3b:e9: e7:68:fb:10:9c:e0:0f:65:72:b8:7f:39:e1:df:8d: ff:c1:76:d6:4a:95:34:64:6f:15:a5:e2:41:17:f2: 1a:c6:4e:a5:26:6f:cb:b3:01:b1:25:76:5a:63:24: a3:81:80:30:ac:85:ee:04:ff:ec:c8:47:2e:fb:0b: bd:50:bb:1e:f5:3b:05:6c:c1:36:f9:83:15:fe:e6: 65:bf:59:48:e5:35:3f:16:b1:47:41:01:97:db:9b: 83:ed:b8:0b:0f:4d:62:84:c9:36:6a:6d:91:75:44: 65:23:f5:ae:aa:39:2c:f6:33:03:7a:82:f8:23:c8: a9:6f:e3:74:67:b6:49:17:62:03:79:a3:59:56:52: 96:5d:f4:3f:78:5a:0c:1c:68:3d:a8:70:94:55:3d: b1:36:2e:9c:65:82:e3:be:bc:0d:15:23:3b:40:46: 54:da:5b:80:a5:b5:6b:2b:b3:18:84:d9:1d:6a:79: 86:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:E5:70:07:C3:D9:FB:41:CE:3A:4A:E8:BC:9D:27:ED:A0:30:B8:D3 X509v3 Authority Key Identifier: keyid:FC:D0:53:85:90:4E:00:F3:C1:0A:33:9E:E1:9D:92:4D:72:FF:AE:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/323430323a393830303a343030333a3a2f34382d3438203d3e203338353038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:9800:4003::/48 Signature Algorithm: sha256WithRSAEncryption 91:77:a4:4b:d3:cd:c5:1d:c0:58:e5:f9:ff:9d:84:8e:71:21: f3:01:ad:f8:18:ad:5e:22:22:c6:fe:ab:ea:5c:c2:bc:79:55: fc:53:cb:91:b5:a2:e2:b4:3f:a2:c7:85:1d:41:7e:cf:ce:83: 89:7a:e7:fd:99:04:26:6a:61:14:25:83:20:39:ac:73:8e:3b: 93:58:5d:19:9a:5b:25:85:a5:d3:91:81:10:98:5d:33:13:ca: 44:ae:12:ef:db:d5:0d:c7:6c:0e:ad:c4:df:f7:64:3f:85:29: b0:85:f3:d5:61:71:38:04:ba:49:8d:69:4c:48:1e:cc:74:59: 98:49:39:40:eb:bc:4d:47:1f:81:a6:f0:53:86:49:ea:bb:94: a4:1f:c1:92:af:10:70:cb:92:93:b8:5b:d9:05:1e:5b:95:65: 04:20:fb:65:cd:93:08:ab:3a:27:ca:ab:c0:27:13:a8:b8:29: 4e:12:2f:b0:b1:30:e2:2b:ac:9c:25:4b:40:69:ea:3d:11:09: 2d:14:aa:0b:5b:91:05:78:30:c8:37:2f:c1:b0:35:e8:0c:11: f5:a2:a9:81:ed:c8:99:17:69:b9:0d:7b:d3:7e:eb:20:18:da: de:ff:73:01:5c:dd:2c:86:8d:4a:79:92:98:00:1f:5d:0b:49: cc:fd:0d:64 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUAdkTFmkKrHEYbQjXJ1a0tmIdUPgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkNEMDUzODU5MDRFMDBGM0MxMEEzMzlFRTE5RDkyNEQ3 MkZGQUUwRTAeFw0yNTA3MTgwMTU1MDJaFw0yNjA3MTcwMjAwMDJaMDMxMTAvBgNV BAMTKEFERTU3MDA3QzNEOUZCNDFDRTNBNEFFOEJDOUQyN0VEQTAzMEI4RDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDH8PbXSebrZ6LbqjbfgcQ35LQb AfJhUF6tZUdPHsgxXjeOK3qiXWv6WVmIN5ejd7tTjHV1UwNwGKTMKsdC0tc5Tm/7 miEtD3s76edo+xCc4A9lcrh/OeHfjf/BdtZKlTRkbxWl4kEX8hrGTqUmb8uzAbEl dlpjJKOBgDCshe4E/+zIRy77C71Qux71OwVswTb5gxX+5mW/WUjlNT8WsUdBAZfb m4PtuAsPTWKEyTZqbZF1RGUj9a6qOSz2MwN6gvgjyKlv43RntkkXYgN5o1lWUpZd 9D94WgwcaD2ocJRVPbE2LpxlguO+vA0VIztARlTaW4CltWsrsxiE2R1qeYZXAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUreVwB8PZ+0HOOkrovJ0n7aAwuNMwHwYDVR0j BBgwFoAU/NBThZBOAPPBCjOe4Z2STXL/rg4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NzhmZDRhZi1mZTY3LTQ1YzgtODBiNy0wNmZjMTE4ZGY4ZTIvMC9GQ0QwNTM4NTkw NEUwMEYzQzEwQTMzOUVFMTlEOTI0RDcyRkZBRTBFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkNEMDUzODU5MDRFMDBGM0MxMEEzMzlFRTE5RDkyNEQ3MkZG QUUwRS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ3OGZkNGFmLWZlNjctNDVjOC04 MGI3LTA2ZmMxMThkZjhlMi8wLzMyMzQzMDMyM2EzOTM4MzAzMDNhMzQzMDMwMzMz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMDM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAKY AEADMA0GCSqGSIb3DQEBCwUAA4IBAQCRd6RL083FHcBY5fn/nYSOcSHzAa34GK1e IiLG/qvqXMK8eVX8U8uRtaLitD+ix4UdQX7PzoOJeuf9mQQmamEUJYMgOaxzjjuT WF0ZmlslhaXTkYEQmF0zE8pErhLv29UNx2wOrcTf92Q/hSmwhfPVYXE4BLpJjWlM SB7MdFmYSTlA67xNRx+BpvBThknqu5SkH8GSrxBwy5KTuFvZBR5blWUEIPtlzZMI qzonyqvAJxOouClOEi+wsTDiK6ycJUtAaeo9EQktFKoLW5EFeDDINy/BsDXoDBH1 oqmB7ciZF2m5DXvTfusgGNre/3MBXN0sho1KeZKYAB9dC0nM/Q1k -----END CERTIFICATE-----Generated at Sat Jul 26 07:54:45 2025 by rpki-client