$ rpki-client -vvf repo-rpki.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/323430343a613634303a3935363a3a2f34382d3438203d3e20313333383237.roa File: 323430343a613634303a3935363a3a2f34382d3438203d3e20313333383237.roa (raw, json) Hash identifier: TdPV1Ae9NsfX/q2I6yHzDhMS8SBCOPuv6qM2EykOC0U= Subject key identifier: 08:D1:A5:5F:4E:BB:04:30:60:EA:D7:6D:DD:CF:EE:19:3A:5D:39:88 Certificate issuer: /CN=0CE6A79D53D829F2A55623676E8D2A9A569F836F Certificate serial: 6C11D0A733A49AACD87018E2D23639BC3DB8D806 Authority key identifier: 0C:E6:A7:9D:53:D8:29:F2:A5:56:23:67:6E:8D:2A:9A:56:9F:83:6F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0CE6A79D53D829F2A55623676E8D2A9A569F836F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/323430343a613634303a3935363a3a2f34382d3438203d3e20313333383237.roa Signing time: Thu 10 Jul 2025 04:02:22 +0000 ROA not before: Thu 10 Jul 2025 03:57:22 +0000 ROA not after: Thu 09 Jul 2026 04:02:22 +0000 asID: 133827 IP address blocks: 2404:a640:956::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/0CE6A79D53D829F2A55623676E8D2A9A569F836F.crl rsync://repo-rpki.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/0CE6A79D53D829F2A55623676E8D2A9A569F836F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0CE6A79D53D829F2A55623676E8D2A9A569F836F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 03:59:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:11:d0:a7:33:a4:9a:ac:d8:70:18:e2:d2:36:39:bc:3d:b8:d8:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0CE6A79D53D829F2A55623676E8D2A9A569F836F Validity Not Before: Jul 10 03:57:22 2025 GMT Not After : Jul 9 04:02:22 2026 GMT Subject: CN=08D1A55F4EBB043060EAD76DDDCFEE193A5D3988 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:cd:1f:9d:10:13:4d:b0:26:e0:1a:30:83:af: d1:e0:08:45:7e:72:dc:7a:4e:88:c6:d1:dc:f7:a1: 5e:7b:f3:79:22:3e:2d:9a:35:55:78:9d:78:3f:13: 84:b9:03:8b:90:09:de:37:5c:3c:5c:60:3b:6e:60: 60:cb:0e:e0:9e:d7:1b:3e:cb:45:aa:44:df:a6:cb: 24:fc:64:a5:7e:61:c5:3d:ae:47:5d:8e:24:94:dc: 62:22:f8:e0:da:17:04:02:67:c6:dc:53:7f:45:4d: 75:aa:07:09:3e:fe:d9:c9:25:83:b3:54:3e:cf:70: ca:67:37:e2:b3:9f:07:3c:61:1a:79:bc:a4:a8:6e: a7:7f:e8:95:0f:98:49:c2:fa:cd:76:29:af:fa:6b: af:6e:0f:56:c9:df:73:bb:42:82:4e:eb:37:7b:b2: 99:aa:ec:2a:6f:a3:2f:d9:45:e4:8a:9f:8b:92:d0: 92:a8:0d:6b:69:b3:d0:de:dd:dd:59:06:18:b3:01: 8d:d8:a7:16:7c:bc:32:dd:73:bf:92:cd:97:33:65: c7:92:5c:73:bb:1d:89:53:7e:cd:b9:83:d4:61:14: b3:21:1a:00:af:01:89:bf:3d:af:4f:01:8a:af:ff: bf:71:52:a7:72:10:61:6e:a2:02:fd:ab:a7:f8:3f: 69:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:D1:A5:5F:4E:BB:04:30:60:EA:D7:6D:DD:CF:EE:19:3A:5D:39:88 X509v3 Authority Key Identifier: keyid:0C:E6:A7:9D:53:D8:29:F2:A5:56:23:67:6E:8D:2A:9A:56:9F:83:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/0CE6A79D53D829F2A55623676E8D2A9A569F836F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0CE6A79D53D829F2A55623676E8D2A9A569F836F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/323430343a613634303a3935363a3a2f34382d3438203d3e20313333383237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:a640:956::/48 Signature Algorithm: sha256WithRSAEncryption 29:7a:c7:6a:59:8e:48:61:51:43:8f:a5:06:a0:44:01:81:22: 96:c4:73:74:ae:f6:9c:7f:42:dc:79:07:d4:77:21:70:9a:c2: 2a:57:a7:1f:82:d5:21:f6:eb:4a:bd:59:af:bd:b5:fc:12:7b: 38:bc:7a:f7:02:02:25:d6:6a:73:23:0c:b1:6b:57:ef:f4:1f: 7b:55:92:c8:01:1a:b3:8b:fe:5a:aa:3a:2d:5f:69:5d:e5:80: 1a:35:21:45:5c:f4:6f:4a:ed:4a:dc:f3:52:88:e5:f6:f2:fa: 7b:d5:32:ee:c6:9a:1a:34:28:d1:e2:c9:5b:8d:b3:49:33:e4: 33:0f:08:cd:28:60:23:ef:14:a7:ba:8b:1d:a6:b2:ff:ac:e4: 6b:3c:53:90:e6:80:cd:7a:2c:2d:27:b0:47:81:79:45:45:2f: 0a:f9:75:6d:d3:d9:09:fc:db:17:4e:0e:4b:f2:c9:a9:56:93: da:04:9b:4f:a8:16:4c:f8:ce:16:23:b6:f0:73:76:be:11:a4: 9a:13:b7:65:61:d4:1f:2a:62:89:ee:3a:17:49:c4:27:34:64: 89:7c:71:31:e3:00:85:3c:3f:7e:7b:ec:27:cc:42:bb:70:b4: ac:6d:c4:b5:3a:70:40:3f:8c:8f:dc:99:0d:57:a7:08:8f:5f: 9a:b8:3d:52 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUbBHQpzOkmqzYcBji0jY5vD242AYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMENFNkE3OUQ1M0Q4MjlGMkE1NTYyMzY3NkU4RDJBOUE1 NjlGODM2RjAeFw0yNTA3MTAwMzU3MjJaFw0yNjA3MDkwNDAyMjJaMDMxMTAvBgNV BAMTKDA4RDFBNTVGNEVCQjA0MzA2MEVBRDc2REREQ0ZFRTE5M0E1RDM5ODgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHzR+dEBNNsCbgGjCDr9HgCEV+ ctx6TojG0dz3oV5783kiPi2aNVV4nXg/E4S5A4uQCd43XDxcYDtuYGDLDuCe1xs+ y0WqRN+myyT8ZKV+YcU9rkddjiSU3GIi+ODaFwQCZ8bcU39FTXWqBwk+/tnJJYOz VD7PcMpnN+Kznwc8YRp5vKSobqd/6JUPmEnC+s12Ka/6a69uD1bJ33O7QoJO6zd7 spmq7Cpvoy/ZReSKn4uS0JKoDWtps9De3d1ZBhizAY3YpxZ8vDLdc7+SzZczZceS XHO7HYlTfs25g9RhFLMhGgCvAYm/Pa9PAYqv/79xUqdyEGFuogL9q6f4P2nzAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUCNGlX067BDBg6tdt3c/uGTpdOYgwHwYDVR0j BBgwFoAUDOannVPYKfKlViNnbo0qmlafg28wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YTk5MDEyNS02MDlhLTQ4YzgtYWM4Ni0xYzNiYzMxNWJhZDYvMC8wQ0U2QTc5RDUz RDgyOUYyQTU1NjIzNjc2RThEMkE5QTU2OUY4MzZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMENFNkE3OUQ1M0Q4MjlGMkE1NTYyMzY3NkU4RDJBOUE1NjlG ODM2Ri5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhOTkwMTI1LTYwOWEtNDhjOC1h Yzg2LTFjM2JjMzE1YmFkNi8wLzMyMzQzMDM0M2E2MTM2MzQzMDNhMzkzNTM2M2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzMzMzgzMjM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJASm QAlWMA0GCSqGSIb3DQEBCwUAA4IBAQApesdqWY5IYVFDj6UGoEQBgSKWxHN0rvac f0LceQfUdyFwmsIqV6cfgtUh9utKvVmvvbX8Ens4vHr3AgIl1mpzIwyxa1fv9B97 VZLIARqzi/5aqjotX2ld5YAaNSFFXPRvSu1K3PNSiOX28vp71TLuxpoaNCjR4slb jbNJM+QzDwjNKGAj7xSnuosdprL/rORrPFOQ5oDNeiwtJ7BHgXlFRS8K+XVt09kJ /NsXTg5L8smpVpPaBJtPqBZM+M4WI7bwc3a+EaSaE7dlYdQfKmKJ7joXScQnNGSJ fHEx4wCFPD9+e+wnzEK7cLSsbcS1OnBAP4yP3JkNV6cIj1+auD1S -----END CERTIFICATE-----Generated at Tue Jul 22 05:12:51 2025 by rpki-client