$ rpki-client -vvf repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/323430323a393830303a343030353a3a2f34382d3438203d3e20313336313038.roa File: 323430323a393830303a343030353a3a2f34382d3438203d3e20313336313038.roa (raw, json) Hash identifier: ONp4B01vgh7iWIU+RoQbzYAR3JD5eNkfucFDErVtZKQ= Subject key identifier: 0A:A1:27:24:88:E8:87:F8:F4:A5:D7:DC:37:A6:B1:56:6B:D0:90:3C Certificate issuer: /CN=FCD05385904E00F3C10A339EE19D924D72FFAE0E Certificate serial: 2940CBD210E64891BC9494B80A398AAD5C30CCC7 Authority key identifier: FC:D0:53:85:90:4E:00:F3:C1:0A:33:9E:E1:9D:92:4D:72:FF:AE:0E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/323430323a393830303a343030353a3a2f34382d3438203d3e20313336313038.roa Signing time: Fri 18 Jul 2025 01:00:02 +0000 ROA not before: Fri 18 Jul 2025 00:55:02 +0000 ROA not after: Fri 17 Jul 2026 01:00:02 +0000 asID: 136108 IP address blocks: 2402:9800:4005::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.crl rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 18:57:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:40:cb:d2:10:e6:48:91:bc:94:94:b8:0a:39:8a:ad:5c:30:cc:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FCD05385904E00F3C10A339EE19D924D72FFAE0E Validity Not Before: Jul 18 00:55:02 2025 GMT Not After : Jul 17 01:00:02 2026 GMT Subject: CN=0AA1272488E887F8F4A5D7DC37A6B1566BD0903C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:89:67:01:17:4e:6d:70:7c:c8:80:a1:50:6d: da:08:ad:5d:29:db:50:42:20:2d:ca:1c:09:88:aa: bf:1d:18:92:a4:74:b1:17:74:fb:ec:01:8f:72:7f: d9:2d:ec:1f:b2:20:e8:c3:70:74:3e:90:47:1d:9d: c5:ec:1c:37:09:69:fa:de:d0:b4:f4:74:d2:d6:42: 47:14:3f:06:f4:9e:e8:c3:29:c5:70:ad:7d:1d:c2: 30:a8:72:f3:10:4f:75:a1:a1:d4:e0:12:c9:74:67: e2:b9:b4:7a:9f:9b:82:d3:c8:89:5b:08:37:b3:0c: a5:1b:4c:03:7a:9d:b0:c8:d2:40:65:74:f0:0d:7d: a8:0a:7d:0d:35:e0:fd:45:ac:c4:e5:b7:ad:bd:80: 0e:6a:39:e6:2d:3e:ae:dd:51:d4:61:87:a4:ec:df: 42:0e:f7:cf:3b:7a:e6:07:8c:b6:2d:f8:e7:81:7f: 71:5a:d0:a4:45:ba:5e:b1:67:3c:4c:84:9f:58:30: 80:4f:7a:5f:fd:7f:3f:7f:8f:02:1b:14:12:35:c1: a2:e9:c3:04:72:a0:e5:46:f0:3e:dc:fc:d9:2d:9e: a8:5d:dd:38:30:2c:dd:ca:aa:65:bf:66:32:08:31: 14:40:33:80:07:8a:ca:f8:11:ee:2e:ca:80:4a:dc: c8:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:A1:27:24:88:E8:87:F8:F4:A5:D7:DC:37:A6:B1:56:6B:D0:90:3C X509v3 Authority Key Identifier: keyid:FC:D0:53:85:90:4E:00:F3:C1:0A:33:9E:E1:9D:92:4D:72:FF:AE:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/323430323a393830303a343030353a3a2f34382d3438203d3e20313336313038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:9800:4005::/48 Signature Algorithm: sha256WithRSAEncryption 1c:46:16:e1:90:a1:12:2f:c7:d1:8e:10:51:10:27:f0:1b:cf: 0f:28:bc:86:a8:27:f6:a4:40:c1:24:35:c4:49:0e:ce:fc:87: a3:e6:09:25:08:f3:5d:73:0a:9f:e7:97:e3:1b:81:17:c0:ec: 93:c1:0a:8e:2e:98:a2:c8:2f:ce:f5:86:cb:80:eb:ff:26:6c: a9:3e:28:74:71:76:2e:12:c2:84:f0:a1:bd:b2:46:c0:cb:6e: be:ad:ee:c3:b0:f9:c7:07:5e:47:e4:74:21:85:9e:39:5f:99: 68:72:a3:d5:f1:6a:d2:4f:37:50:4b:9a:83:02:e7:c1:10:49: cc:30:4e:20:77:1f:93:ae:1b:e6:5d:f3:9b:96:54:39:55:23: 17:0c:cf:a5:76:d0:18:92:8a:45:1a:29:50:ea:67:fa:6c:93: b7:ee:6c:55:ab:c9:01:c3:f4:9d:44:23:ce:e9:7d:e1:ad:46: 26:69:09:7c:16:90:86:be:77:92:03:ad:84:4a:ff:c1:07:8d: f5:16:58:02:02:ff:c3:6d:a8:29:eb:73:c8:2c:36:89:0b:0b: c2:5d:e9:14:81:09:b1:ec:10:77:30:6d:ae:64:3a:4f:65:7f: a2:d8:95:d4:ff:c7:d8:14:5f:78:e0:17:51:fb:65:39:a5:8e: 24:1a:08:19 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUKUDL0hDmSJG8lJS4CjmKrVwwzMcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkNEMDUzODU5MDRFMDBGM0MxMEEzMzlFRTE5RDkyNEQ3 MkZGQUUwRTAeFw0yNTA3MTgwMDU1MDJaFw0yNjA3MTcwMTAwMDJaMDMxMTAvBgNV BAMTKDBBQTEyNzI0ODhFODg3RjhGNEE1RDdEQzM3QTZCMTU2NkJEMDkwM0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwiWcBF05tcHzIgKFQbdoIrV0p 21BCIC3KHAmIqr8dGJKkdLEXdPvsAY9yf9kt7B+yIOjDcHQ+kEcdncXsHDcJafre 0LT0dNLWQkcUPwb0nujDKcVwrX0dwjCocvMQT3WhodTgEsl0Z+K5tHqfm4LTyIlb CDezDKUbTAN6nbDI0kBldPANfagKfQ014P1FrMTlt629gA5qOeYtPq7dUdRhh6Ts 30IO9887euYHjLYt+OeBf3Fa0KRFul6xZzxMhJ9YMIBPel/9fz9/jwIbFBI1waLp wwRyoOVG8D7c/Nktnqhd3TgwLN3KqmW/ZjIIMRRAM4AHisr4Ee4uyoBK3MgtAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUCqEnJIjoh/j0pdfcN6axVmvQkDwwHwYDVR0j BBgwFoAU/NBThZBOAPPBCjOe4Z2STXL/rg4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NzhmZDRhZi1mZTY3LTQ1YzgtODBiNy0wNmZjMTE4ZGY4ZTIvMC9GQ0QwNTM4NTkw NEUwMEYzQzEwQTMzOUVFMTlEOTI0RDcyRkZBRTBFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkNEMDUzODU5MDRFMDBGM0MxMEEzMzlFRTE5RDkyNEQ3MkZG QUUwRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ3OGZkNGFmLWZlNjctNDVjOC04 MGI3LTA2ZmMxMThkZjhlMi8wLzMyMzQzMDMyM2EzOTM4MzAzMDNhMzQzMDMwMzUz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzYzMTMwMzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk ApgAQAUwDQYJKoZIhvcNAQELBQADggEBABxGFuGQoRIvx9GOEFEQJ/Abzw8ovIao J/akQMEkNcRJDs78h6PmCSUI811zCp/nl+MbgRfA7JPBCo4umKLIL871hsuA6/8m bKk+KHRxdi4SwoTwob2yRsDLbr6t7sOw+ccHXkfkdCGFnjlfmWhyo9XxatJPN1BL moMC58EQScwwTiB3H5OuG+Zd85uWVDlVIxcMz6V20BiSikUaKVDqZ/psk7fubFWr yQHD9J1EI87pfeGtRiZpCXwWkIa+d5IDrYRK/8EHjfUWWAIC/8NtqCnrc8gsNokL C8Jd6RSBCbHsEHcwba5kOk9lf6LYldT/x9gUX3jgF1H7ZTmljiQaCBk= -----END CERTIFICATE-----Generated at Sat Jul 26 07:34:08 2025 by rpki-client