$ rpki-client -vvf repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/323430323a393830303a343030363a3a2f34382d3438203d3e20313338313338.roa File: 323430323a393830303a343030363a3a2f34382d3438203d3e20313338313338.roa (raw, json) Hash identifier: qLMS5n6MICGX7jMIWrfU1gynyNSBdRm2V/YFupb8Gq4= Subject key identifier: 59:8F:25:13:B4:4D:3C:76:E1:66:89:6C:D4:82:65:CD:5B:05:BD:8E Certificate issuer: /CN=FCD05385904E00F3C10A339EE19D924D72FFAE0E Certificate serial: 125483530474D7F12485ED1B803B6D6D5890FF9C Authority key identifier: FC:D0:53:85:90:4E:00:F3:C1:0A:33:9E:E1:9D:92:4D:72:FF:AE:0E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/323430323a393830303a343030363a3a2f34382d3438203d3e20313338313338.roa Signing time: Fri 18 Jul 2025 01:00:02 +0000 ROA not before: Fri 18 Jul 2025 00:55:02 +0000 ROA not after: Fri 17 Jul 2026 01:00:02 +0000 asID: 138138 IP address blocks: 2402:9800:4006::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.crl rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 18:57:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:54:83:53:04:74:d7:f1:24:85:ed:1b:80:3b:6d:6d:58:90:ff:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FCD05385904E00F3C10A339EE19D924D72FFAE0E Validity Not Before: Jul 18 00:55:02 2025 GMT Not After : Jul 17 01:00:02 2026 GMT Subject: CN=598F2513B44D3C76E166896CD48265CD5B05BD8E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:b1:00:5e:d9:40:6f:1f:9e:97:31:cf:ea:36: 55:3e:9f:c7:90:5b:c1:88:f2:cb:9e:86:cd:8e:22: 87:dc:6d:14:8a:a9:d7:92:7d:1b:93:76:e2:2d:7f: e1:17:84:4c:aa:ce:10:41:44:5d:dc:e1:c6:d2:4c: d6:10:f5:b9:84:df:9b:ca:9f:a2:39:92:cb:b3:c4: 0d:3c:0e:76:48:61:b3:d2:f7:f8:15:27:bb:c9:ad: 28:a8:74:af:a0:a4:42:7e:54:ff:b3:c8:c8:cb:df: 85:32:e6:f9:a6:cc:07:5d:1a:6f:f2:61:f0:3e:01: 99:00:15:16:46:32:dd:cb:e4:a7:ec:1c:ae:98:b6: 5e:a0:06:52:be:0f:ba:c7:c4:ac:6b:f9:5b:93:7d: 4f:66:d4:52:d2:05:e3:78:ff:cb:99:8d:12:ba:1c: 85:65:0d:4f:ea:8d:64:b6:5f:29:89:ef:9b:6f:c5: 47:6e:d0:30:56:b6:62:7f:b0:70:bc:07:7d:95:7f: 51:4a:cd:8c:47:7c:ea:11:a2:df:5c:84:3e:9c:bb: b9:36:36:78:65:ae:e1:90:9d:14:93:0d:80:91:e1: 46:dc:a0:0c:a9:03:73:88:26:39:a4:63:5d:3c:5c: 3c:bf:1d:75:b9:23:60:b1:eb:07:24:9b:06:aa:c4: 94:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:8F:25:13:B4:4D:3C:76:E1:66:89:6C:D4:82:65:CD:5B:05:BD:8E X509v3 Authority Key Identifier: keyid:FC:D0:53:85:90:4E:00:F3:C1:0A:33:9E:E1:9D:92:4D:72:FF:AE:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/FCD05385904E00F3C10A339EE19D924D72FFAE0E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FCD05385904E00F3C10A339EE19D924D72FFAE0E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/478fd4af-fe67-45c8-80b7-06fc118df8e2/0/323430323a393830303a343030363a3a2f34382d3438203d3e20313338313338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:9800:4006::/48 Signature Algorithm: sha256WithRSAEncryption 19:90:16:22:a0:09:3b:6a:8a:a3:db:c3:ca:3a:3e:0c:de:50: 33:0b:d9:1a:bc:cc:16:cd:6e:32:72:63:4e:ff:37:16:f4:c0: 48:da:55:cc:5f:46:2c:c5:29:dd:c0:e6:fb:aa:0f:64:df:98: ff:0d:52:4b:3f:be:6b:90:84:f8:a1:96:83:44:d0:6c:6b:fe: 8d:cf:ff:c8:80:c5:00:59:0d:5f:3f:38:ed:b4:46:da:d5:8c: 3f:5e:08:04:3a:55:2c:bf:4a:45:96:b7:34:4c:2c:9c:fc:4c: f8:f0:0b:89:d6:41:d8:2a:e3:34:5c:63:3f:32:33:ac:32:11: ee:e9:0f:7f:7c:df:57:20:15:2c:23:fa:5f:dc:c6:77:26:d0: 1d:63:83:5e:99:45:23:ba:f7:a1:63:ab:f9:ab:04:bb:93:5e: bf:dd:0b:94:66:fc:75:1b:6f:2e:a8:49:d1:08:ec:c2:1f:ec: 79:ab:07:50:70:3d:63:6c:50:24:a5:11:8d:a2:ea:63:1b:9d: d3:50:7a:33:82:f1:ff:f4:b8:7c:43:d3:bd:26:f7:7b:08:7e: 62:85:db:75:8a:fd:12:db:27:cc:6e:4d:ba:72:1a:43:84:81: fa:3d:eb:e1:1b:26:e6:2e:4a:46:39:e4:6d:33:25:29:de:b8: 40:23:f5:fc -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUElSDUwR01/Ekhe0bgDttbViQ/5wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkNEMDUzODU5MDRFMDBGM0MxMEEzMzlFRTE5RDkyNEQ3 MkZGQUUwRTAeFw0yNTA3MTgwMDU1MDJaFw0yNjA3MTcwMTAwMDJaMDMxMTAvBgNV BAMTKDU5OEYyNTEzQjQ0RDNDNzZFMTY2ODk2Q0Q0ODI2NUNENUIwNUJEOEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOsQBe2UBvH56XMc/qNlU+n8eQ W8GI8suehs2OIofcbRSKqdeSfRuTduItf+EXhEyqzhBBRF3c4cbSTNYQ9bmE35vK n6I5ksuzxA08DnZIYbPS9/gVJ7vJrSiodK+gpEJ+VP+zyMjL34Uy5vmmzAddGm/y YfA+AZkAFRZGMt3L5KfsHK6Ytl6gBlK+D7rHxKxr+VuTfU9m1FLSBeN4/8uZjRK6 HIVlDU/qjWS2XymJ75tvxUdu0DBWtmJ/sHC8B32Vf1FKzYxHfOoRot9chD6cu7k2 NnhlruGQnRSTDYCR4UbcoAypA3OIJjmkY108XDy/HXW5I2Cx6wckmwaqxJRDAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUWY8lE7RNPHbhZols1IJlzVsFvY4wHwYDVR0j BBgwFoAU/NBThZBOAPPBCjOe4Z2STXL/rg4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NzhmZDRhZi1mZTY3LTQ1YzgtODBiNy0wNmZjMTE4ZGY4ZTIvMC9GQ0QwNTM4NTkw NEUwMEYzQzEwQTMzOUVFMTlEOTI0RDcyRkZBRTBFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkNEMDUzODU5MDRFMDBGM0MxMEEzMzlFRTE5RDkyNEQ3MkZG QUUwRS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ3OGZkNGFmLWZlNjctNDVjOC04 MGI3LTA2ZmMxMThkZjhlMi8wLzMyMzQzMDMyM2EzOTM4MzAzMDNhMzQzMDMwMzYz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzMTMzMzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk ApgAQAYwDQYJKoZIhvcNAQELBQADggEBABmQFiKgCTtqiqPbw8o6PgzeUDML2Rq8 zBbNbjJyY07/Nxb0wEjaVcxfRizFKd3A5vuqD2TfmP8NUks/vmuQhPihloNE0Gxr /o3P/8iAxQBZDV8/OO20RtrVjD9eCAQ6VSy/SkWWtzRMLJz8TPjwC4nWQdgq4zRc Yz8yM6wyEe7pD39831cgFSwj+l/cxncm0B1jg16ZRSO696Fjq/mrBLuTXr/dC5Rm /HUbby6oSdEI7MIf7HmrB1BwPWNsUCSlEY2i6mMbndNQejOC8f/0uHxD070m93sI fmKF23WK/RLbJ8xuTbpyGkOEgfo96+EbJuYuSkY55G0zJSneuEAj9fw= -----END CERTIFICATE-----Generated at Sat Jul 26 07:34:10 2025 by rpki-client