$ rpki-client -vvf repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/323430303a383030303a383030323a3a2f34382d3438203d3e2034383030.roa File: 323430303a383030303a383030323a3a2f34382d3438203d3e2034383030.roa (raw, json) Hash identifier: 90wEZgLfupA3EVWK73lj9552fNHro49/uYbgSgVGKKM= Subject key identifier: 89:B7:6B:81:E0:37:18:9A:AC:60:A1:03:89:11:BA:E8:CE:A9:09:4D Certificate issuer: /CN=44BF6682B6B493048C6F1864A0DEA47ECF66752B Certificate serial: 1EAD7E3E3B894E9C7530ED2A54F95F9CC7C5C27D Authority key identifier: 44:BF:66:82:B6:B4:93:04:8C:6F:18:64:A0:DE:A4:7E:CF:66:75:2B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/323430303a383030303a383030323a3a2f34382d3438203d3e2034383030.roa Signing time: Fri 11 Jul 2025 09:00:00 +0000 ROA not before: Fri 11 Jul 2025 08:55:00 +0000 ROA not after: Fri 10 Jul 2026 09:00:00 +0000 asID: 4800 IP address blocks: 2400:8000:8002::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.crl rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 11:49:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:ad:7e:3e:3b:89:4e:9c:75:30:ed:2a:54:f9:5f:9c:c7:c5:c2:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=44BF6682B6B493048C6F1864A0DEA47ECF66752B Validity Not Before: Jul 11 08:55:00 2025 GMT Not After : Jul 10 09:00:00 2026 GMT Subject: CN=89B76B81E037189AAC60A1038911BAE8CEA9094D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:10:8e:9e:36:b3:6b:23:da:25:ec:90:f2:85: 34:c8:6c:8d:4a:95:1d:6c:68:c4:5d:44:53:e0:e0: 15:6f:63:9b:14:01:21:b5:70:19:2f:5e:39:b7:77: 27:f9:26:80:e7:14:75:ed:31:93:79:fb:94:c0:c2: e0:b1:db:31:da:16:11:14:ae:29:64:3a:35:ff:b4: e7:e5:45:30:47:aa:a0:e3:26:d4:20:92:62:91:12: 88:be:17:a7:ca:1c:64:37:f3:07:39:96:74:4e:8d: 40:d8:f9:96:03:59:4d:d9:0e:4e:e0:ac:bc:ae:51: c2:50:0d:e7:68:13:bf:81:98:f5:18:b0:ef:3f:53: 95:14:71:28:30:d5:f6:75:de:1e:71:22:3d:91:13: b4:60:6d:62:cf:74:fb:aa:4c:de:f1:39:31:bd:ab: 50:4f:15:8d:15:74:db:83:d2:aa:16:bc:72:6d:1e: 34:4a:42:e1:db:c0:22:ea:70:a5:95:37:3a:6d:00: f5:d0:9b:85:d8:37:80:f5:7d:ad:7d:1d:01:59:42: b1:61:16:35:34:b5:eb:5b:1e:f1:39:8b:cd:e2:03: fb:ef:95:85:76:3e:bb:f0:8e:26:07:27:4b:f3:f4: 0e:02:0c:af:92:ca:4a:f9:8d:53:7a:21:d3:d4:b9: a7:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:B7:6B:81:E0:37:18:9A:AC:60:A1:03:89:11:BA:E8:CE:A9:09:4D X509v3 Authority Key Identifier: keyid:44:BF:66:82:B6:B4:93:04:8C:6F:18:64:A0:DE:A4:7E:CF:66:75:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/44BF6682B6B493048C6F1864A0DEA47ECF66752B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44BF6682B6B493048C6F1864A0DEA47ECF66752B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/55ce36de-f921-4274-8497-2987d909543e/0/323430303a383030303a383030323a3a2f34382d3438203d3e2034383030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:8000:8002::/48 Signature Algorithm: sha256WithRSAEncryption 15:c6:87:69:2b:2f:c4:24:32:5b:81:a4:6d:aa:74:3b:22:6e: 35:5c:7b:f5:d2:41:78:5d:3f:1d:66:51:fd:8f:b0:56:81:ae: e4:6b:44:27:c5:73:79:2d:04:7c:b9:34:5f:f5:33:3a:43:05: 44:86:02:ab:f0:1a:3c:8f:36:00:4c:20:f4:0a:6b:44:99:c5: ea:58:f4:33:cf:77:e0:a8:ec:68:b3:2d:6a:a0:b5:f0:fa:ed: 3a:ee:41:60:f0:74:9c:13:58:ed:46:67:a3:ed:9b:47:97:26: b1:49:55:9c:88:63:f7:e8:6d:a8:e8:42:da:bd:67:4b:55:ee: fa:9c:91:68:31:4e:2b:25:12:6a:c9:c2:0c:7f:21:ee:1a:a9: 45:33:72:f8:31:19:a5:37:be:62:8f:13:96:e1:16:cf:2b:17: 11:14:bd:45:1f:cc:8d:ab:fc:59:12:88:28:21:a4:49:4a:72: f0:72:02:dc:68:c6:52:10:e3:e5:11:09:20:0d:e2:65:29:ce: 52:bc:1b:49:47:f2:df:03:0e:54:43:ab:e0:85:dd:2f:45:d4: 36:71:54:12:15:cb:33:c6:cf:64:e5:37:c9:c2:c9:8e:b4:02: e8:64:a6:24:aa:8d:40:c6:17:1c:37:8a:31:3e:17:c0:82:06: 2d:c2:46:bf -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUHq1+PjuJTpx1MO0qVPlfnMfFwn0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDRCRjY2ODJCNkI0OTMwNDhDNkYxODY0QTBERUE0N0VD RjY2NzUyQjAeFw0yNTA3MTEwODU1MDBaFw0yNjA3MTAwOTAwMDBaMDMxMTAvBgNV BAMTKDg5Qjc2QjgxRTAzNzE4OUFBQzYwQTEwMzg5MTFCQUU4Q0VBOTA5NEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoEI6eNrNrI9ol7JDyhTTIbI1K lR1saMRdRFPg4BVvY5sUASG1cBkvXjm3dyf5JoDnFHXtMZN5+5TAwuCx2zHaFhEU rilkOjX/tOflRTBHqqDjJtQgkmKREoi+F6fKHGQ38wc5lnROjUDY+ZYDWU3ZDk7g rLyuUcJQDedoE7+BmPUYsO8/U5UUcSgw1fZ13h5xIj2RE7RgbWLPdPuqTN7xOTG9 q1BPFY0VdNuD0qoWvHJtHjRKQuHbwCLqcKWVNzptAPXQm4XYN4D1fa19HQFZQrFh FjU0tetbHvE5i83iA/vvlYV2PrvwjiYHJ0vz9A4CDK+Sykr5jVN6IdPUuac3AgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUibdrgeA3GJqsYKEDiRG66M6pCU0wHwYDVR0j BBgwFoAURL9mgra0kwSMbxhkoN6kfs9mdSswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 NWNlMzZkZS1mOTIxLTQyNzQtODQ5Ny0yOTg3ZDkwOTU0M2UvMC80NEJGNjY4MkI2 QjQ5MzA0OEM2RjE4NjRBMERFQTQ3RUNGNjY3NTJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDRCRjY2ODJCNkI0OTMwNDhDNkYxODY0QTBERUE0N0VDRjY2 NzUyQi5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU1Y2UzNmRlLWY5MjEtNDI3NC04 NDk3LTI5ODdkOTA5NTQzZS8wLzMyMzQzMDMwM2EzODMwMzAzMDNhMzgzMDMwMzIz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzNDM4MzAzMC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQAgACA AjANBgkqhkiG9w0BAQsFAAOCAQEAFcaHaSsvxCQyW4Gkbap0OyJuNVx79dJBeF0/ HWZR/Y+wVoGu5GtEJ8VzeS0EfLk0X/UzOkMFRIYCq/AaPI82AEwg9AprRJnF6lj0 M8934KjsaLMtaqC18PrtOu5BYPB0nBNY7UZno+2bR5cmsUlVnIhj9+htqOhC2r1n S1Xu+pyRaDFOKyUSasnCDH8h7hqpRTNy+DEZpTe+Yo8TluEWzysXERS9RR/Mjav8 WRKIKCGkSUpy8HIC3GjGUhDj5REJIA3iZSnOUrwbSUfy3wMOVEOr4IXdL0XUNnFU EhXLM8bPZOU3ycLJjrQC6GSmJKqNQMYXHDeKMT4XwIIGLcJGvw== -----END CERTIFICATE-----Generated at Wed Jul 23 02:18:25 2025 by rpki-client