$ rpki-client -vvf repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/323430303a383030303a333030323a3a2f34382d3438203d3e2034383030.roa File: 323430303a383030303a333030323a3a2f34382d3438203d3e2034383030.roa (raw, json) Hash identifier: 303zAc3VEIjyvdE2sUMgPjZIjowi/v6ZGpmMSQ52WMQ= Subject key identifier: 47:D2:12:6A:8A:3E:58:46:9D:3A:E6:11:B8:A8:5B:76:A5:C6:50:93 Certificate issuer: /CN=44BF6682B6B493048C6F1864A0DEA47ECF66752B Certificate serial: 235614B6D6510EE917B97E877FED440E9D70E196 Authority key identifier: 44:BF:66:82:B6:B4:93:04:8C:6F:18:64:A0:DE:A4:7E:CF:66:75:2B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/323430303a383030303a333030323a3a2f34382d3438203d3e2034383030.roa Signing time: Fri 11 Jul 2025 10:00:01 +0000 ROA not before: Fri 11 Jul 2025 09:55:01 +0000 ROA not after: Fri 10 Jul 2026 10:00:01 +0000 asID: 4800 IP address blocks: 2400:8000:3002::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.crl rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 11:49:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:56:14:b6:d6:51:0e:e9:17:b9:7e:87:7f:ed:44:0e:9d:70:e1:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=44BF6682B6B493048C6F1864A0DEA47ECF66752B Validity Not Before: Jul 11 09:55:01 2025 GMT Not After : Jul 10 10:00:01 2026 GMT Subject: CN=47D2126A8A3E58469D3AE611B8A85B76A5C65093 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:25:3f:7d:95:c0:68:0c:d7:cd:60:2a:22:44: 7d:80:5a:d2:07:98:8a:62:0f:e2:8e:81:18:48:6e: ea:a5:7e:4f:09:34:a4:48:1b:f7:7b:02:18:98:c6: 33:f1:1b:c1:01:13:dd:2f:60:72:97:d8:61:b2:f5: 57:fa:c7:86:69:e9:0e:78:48:bb:22:a9:c5:d2:ad: 33:1f:23:7e:b7:05:13:81:21:67:e8:7e:6f:08:0d: e5:54:85:ec:fa:60:50:73:7e:da:9e:28:02:72:70: 4f:15:90:f2:03:3f:7e:13:2d:d7:4b:26:ef:d7:f4: 4f:57:19:20:fa:a0:a2:9a:fb:99:ec:b8:bd:9f:82: 18:c7:03:c9:b1:97:39:8a:88:83:63:fe:ee:c9:d8: a1:53:1a:5b:4d:87:22:87:07:22:a4:bd:b4:10:3f: 22:e5:2d:97:ac:e1:b9:1c:b5:24:d5:1e:6d:ef:a0: 28:0b:16:aa:d0:0d:5e:15:68:6d:e6:8b:1f:d5:0f: 67:1c:c8:5e:ca:88:5e:0b:20:0a:eb:6e:40:ac:0d: 6c:ef:81:6a:a8:86:95:22:4d:f3:12:0e:df:a4:26: a1:c1:26:b4:f1:d8:19:ac:91:95:de:8e:5e:56:9d: 9f:4f:32:57:9c:70:0d:e2:38:19:22:7b:d6:71:19: 55:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:D2:12:6A:8A:3E:58:46:9D:3A:E6:11:B8:A8:5B:76:A5:C6:50:93 X509v3 Authority Key Identifier: keyid:44:BF:66:82:B6:B4:93:04:8C:6F:18:64:A0:DE:A4:7E:CF:66:75:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/323430303a383030303a333030323a3a2f34382d3438203d3e2034383030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:8000:3002::/48 Signature Algorithm: sha256WithRSAEncryption 60:e8:2f:bc:65:59:4e:70:e0:72:b7:66:f8:3f:a4:45:00:5d: 43:07:9f:fc:e8:72:11:c0:42:06:bb:f0:87:ca:9e:97:05:37: d6:1a:5f:e7:35:1f:ce:ec:1d:01:2a:63:2b:b7:dd:e9:c5:92: 92:1a:51:55:12:a4:33:48:66:29:d3:ee:ed:18:45:7f:6c:65: 4f:27:00:88:77:ed:db:b2:79:a7:54:70:06:9a:e8:59:c3:12: 8e:ba:bf:1b:50:8b:1e:0a:4b:00:31:49:87:9e:18:da:4e:10: 81:45:ca:d1:ee:e9:f3:a0:ac:4d:07:92:6a:59:49:c6:dc:68: e0:2e:6d:eb:70:80:71:5d:6c:03:d4:2f:f2:f1:78:92:56:0d: c3:1e:7c:3f:65:d6:10:87:82:b2:48:59:2d:58:3c:3d:84:4b: 0d:a5:90:c6:2f:81:71:c9:fe:2f:21:b0:fd:c3:31:49:88:97: 90:bc:15:e8:e0:9c:b9:92:c1:7d:ad:fe:14:76:ce:ea:2e:a3: 5b:0d:1b:b3:b6:18:6a:f7:7d:b7:16:d4:03:25:ca:6f:61:44: 56:4d:04:74:cd:4c:71:0b:dc:1f:9c:ef:ef:3d:65:d0:e9:e7: 20:b8:13:fa:2b:ea:3e:92:47:74:00:2d:aa:eb:7c:bb:e0:5c: 17:35:20:42 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUI1YUttZRDukXuX6Hf+1EDp1w4ZYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDRCRjY2ODJCNkI0OTMwNDhDNkYxODY0QTBERUE0N0VD RjY2NzUyQjAeFw0yNTA3MTEwOTU1MDFaFw0yNjA3MTAxMDAwMDFaMDMxMTAvBgNV BAMTKDQ3RDIxMjZBOEEzRTU4NDY5RDNBRTYxMUI4QTg1Qjc2QTVDNjUwOTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4JT99lcBoDNfNYCoiRH2AWtIH mIpiD+KOgRhIbuqlfk8JNKRIG/d7AhiYxjPxG8EBE90vYHKX2GGy9Vf6x4Zp6Q54 SLsiqcXSrTMfI363BROBIWfofm8IDeVUhez6YFBzftqeKAJycE8VkPIDP34TLddL Ju/X9E9XGSD6oKKa+5nsuL2fghjHA8mxlzmKiINj/u7J2KFTGltNhyKHByKkvbQQ PyLlLZes4bkctSTVHm3voCgLFqrQDV4VaG3mix/VD2ccyF7KiF4LIArrbkCsDWzv gWqohpUiTfMSDt+kJqHBJrTx2BmskZXejl5WnZ9PMleccA3iOBkie9ZxGVVvAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUR9ISaoo+WEadOuYRuKhbdqXGUJMwHwYDVR0j BBgwFoAURL9mgra0kwSMbxhkoN6kfs9mdSswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 NWNlMzZkZS1mOTIxLTQyNzQtODQ5Ny0yOTg3ZDkwOTU0M2UvMC80NEJGNjY4MkI2 QjQ5MzA0OEM2RjE4NjRBMERFQTQ3RUNGNjY3NTJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDRCRjY2ODJCNkI0OTMwNDhDNkYxODY0QTBERUE0N0VDRjY2 NzUyQi5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU1Y2UzNmRlLWY5MjEtNDI3NC04 NDk3LTI5ODdkOTA5NTQzZS8wLzMyMzQzMDMwM2EzODMwMzAzMDNhMzMzMDMwMzIz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzNDM4MzAzMC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQAgAAw AjANBgkqhkiG9w0BAQsFAAOCAQEAYOgvvGVZTnDgcrdm+D+kRQBdQwef/OhyEcBC Brvwh8qelwU31hpf5zUfzuwdASpjK7fd6cWSkhpRVRKkM0hmKdPu7RhFf2xlTycA iHft27J5p1RwBproWcMSjrq/G1CLHgpLADFJh54Y2k4QgUXK0e7p86CsTQeSallJ xtxo4C5t63CAcV1sA9Qv8vF4klYNwx58P2XWEIeCskhZLVg8PYRLDaWQxi+Bccn+ LyGw/cMxSYiXkLwV6OCcuZLBfa3+FHbO6i6jWw0bs7YYavd9txbUAyXKb2FEVk0E dM1McQvcH5zv7z1l0OnnILgT+ivqPpJHdAAtqut8u+BcFzUgQg== -----END CERTIFICATE-----Generated at Tue Jul 22 12:05:24 2025 by rpki-client