$ rpki-client -vvf repo-rpki.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/323430343a613634303a3935373a3a2f34382d3438203d3e20313333383237.roa File: 323430343a613634303a3935373a3a2f34382d3438203d3e20313333383237.roa (raw, json) Hash identifier: FJlkjy7Zh6RrMJcyoFN5uq7ubbcgdbOVveGSZgScDgQ= Subject key identifier: 8F:E6:3E:38:5D:18:63:CF:96:22:C2:BD:5E:11:C2:D9:54:BE:43:21 Certificate issuer: /CN=0CE6A79D53D829F2A55623676E8D2A9A569F836F Certificate serial: 16E92F468E9931C6DD73A267209E918C84DE6D94 Authority key identifier: 0C:E6:A7:9D:53:D8:29:F2:A5:56:23:67:6E:8D:2A:9A:56:9F:83:6F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0CE6A79D53D829F2A55623676E8D2A9A569F836F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/323430343a613634303a3935373a3a2f34382d3438203d3e20313333383237.roa Signing time: Thu 10 Jul 2025 04:02:22 +0000 ROA not before: Thu 10 Jul 2025 03:57:22 +0000 ROA not after: Thu 09 Jul 2026 04:02:22 +0000 asID: 133827 IP address blocks: 2404:a640:957::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/0CE6A79D53D829F2A55623676E8D2A9A569F836F.crl rsync://repo-rpki.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/0CE6A79D53D829F2A55623676E8D2A9A569F836F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0CE6A79D53D829F2A55623676E8D2A9A569F836F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 03:59:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:e9:2f:46:8e:99:31:c6:dd:73:a2:67:20:9e:91:8c:84:de:6d:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0CE6A79D53D829F2A55623676E8D2A9A569F836F Validity Not Before: Jul 10 03:57:22 2025 GMT Not After : Jul 9 04:02:22 2026 GMT Subject: CN=8FE63E385D1863CF9622C2BD5E11C2D954BE4321 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:ea:07:0e:81:c1:df:0f:0b:98:5e:fe:4f:6c: 8f:9f:5d:4e:b5:ce:3a:ad:44:21:df:e4:18:8a:d2: 7a:24:71:97:95:63:66:d6:fc:fa:e9:8d:08:e2:5d: 42:e9:30:73:ea:6c:02:e2:ca:65:a2:33:c4:3f:bb: 33:d0:1f:e2:fa:50:9c:bb:ee:4e:31:d9:24:ee:d0: 6b:c9:78:c3:2b:d2:71:16:80:46:4a:0f:37:61:3b: a0:9c:88:23:e0:64:b4:9c:8a:74:19:b9:db:2b:a6: 57:5d:dd:19:6e:b8:7c:c6:98:71:47:7a:9b:ca:62: 13:02:d8:79:55:92:d3:59:3a:58:ca:d2:03:c3:91: 8e:8d:8c:56:ca:d9:5c:b9:a7:23:f6:99:a5:83:61: 04:a0:28:70:63:c4:92:c0:21:13:50:ef:bc:75:3c: a4:8e:89:79:4a:17:92:a4:f0:50:60:b4:cf:69:0e: 35:82:15:71:7d:61:ec:d2:91:5a:57:91:9d:2f:90: 45:de:99:39:8f:0a:ae:62:59:d2:a1:21:57:dc:19: 76:95:ee:c2:81:db:30:7c:40:69:48:3d:16:1a:c8: f1:64:2d:58:94:0c:ac:65:c3:96:45:db:6a:c6:e8: e4:a4:2c:38:2b:e7:5c:77:0f:c9:af:69:57:8b:9b: 57:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:E6:3E:38:5D:18:63:CF:96:22:C2:BD:5E:11:C2:D9:54:BE:43:21 X509v3 Authority Key Identifier: keyid:0C:E6:A7:9D:53:D8:29:F2:A5:56:23:67:6E:8D:2A:9A:56:9F:83:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/0CE6A79D53D829F2A55623676E8D2A9A569F836F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0CE6A79D53D829F2A55623676E8D2A9A569F836F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5a990125-609a-48c8-ac86-1c3bc315bad6/0/323430343a613634303a3935373a3a2f34382d3438203d3e20313333383237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:a640:957::/48 Signature Algorithm: sha256WithRSAEncryption 8b:54:03:c3:16:51:9b:87:bf:3f:b8:4a:fb:e2:32:ef:f3:07: 0c:49:ab:57:61:c3:4c:d6:db:73:3e:79:88:58:d5:a9:99:c0: a8:42:08:d9:77:67:95:e8:ca:c4:19:ec:06:da:d6:1e:88:6f: a1:7f:af:ab:39:99:9c:46:e9:ef:0e:52:7a:60:2d:eb:48:6a: ff:37:dd:ee:fa:0e:25:a1:e1:2f:74:75:0f:a8:d8:d9:30:86: cb:38:e9:d1:2f:79:7a:a6:5e:05:cf:b4:aa:cb:6a:28:3f:0c: b0:11:ba:42:f5:72:48:00:6b:2f:08:dd:19:d0:7c:0d:5c:28: 54:28:92:a7:e5:45:e1:15:b4:25:f1:2e:cd:84:62:72:b2:f2: 2c:56:27:fd:19:8e:29:6c:76:8d:8e:89:a3:84:6d:08:f7:ad: fa:17:f6:8c:e7:0a:cd:43:2a:75:f8:33:f4:15:47:b3:5f:85: 72:e5:a7:1c:8d:e4:ae:78:fb:17:dd:b3:77:4e:35:2f:d9:4c: 64:cf:7f:eb:9e:6d:a0:cc:85:c0:c7:9f:36:35:4a:1f:7e:09: 9f:2f:80:f6:f2:99:9e:21:bc:d7:05:74:e1:96:e4:cc:9b:e5: 03:79:c8:ec:7c:52:09:2b:d8:87:60:1c:99:7c:92:c8:c4:71: 98:b2:2d:2f -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUFukvRo6ZMcbdc6JnIJ6RjITebZQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMENFNkE3OUQ1M0Q4MjlGMkE1NTYyMzY3NkU4RDJBOUE1 NjlGODM2RjAeFw0yNTA3MTAwMzU3MjJaFw0yNjA3MDkwNDAyMjJaMDMxMTAvBgNV BAMTKDhGRTYzRTM4NUQxODYzQ0Y5NjIyQzJCRDVFMTFDMkQ5NTRCRTQzMjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDH6gcOgcHfDwuYXv5PbI+fXU61 zjqtRCHf5BiK0nokcZeVY2bW/PrpjQjiXULpMHPqbALiymWiM8Q/uzPQH+L6UJy7 7k4x2STu0GvJeMMr0nEWgEZKDzdhO6CciCPgZLScinQZudsrpldd3RluuHzGmHFH epvKYhMC2HlVktNZOljK0gPDkY6NjFbK2Vy5pyP2maWDYQSgKHBjxJLAIRNQ77x1 PKSOiXlKF5Kk8FBgtM9pDjWCFXF9YezSkVpXkZ0vkEXemTmPCq5iWdKhIVfcGXaV 7sKB2zB8QGlIPRYayPFkLViUDKxlw5ZF22rG6OSkLDgr51x3D8mvaVeLm1f7AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUj+Y+OF0YY8+WIsK9XhHC2VS+QyEwHwYDVR0j BBgwFoAUDOannVPYKfKlViNnbo0qmlafg28wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YTk5MDEyNS02MDlhLTQ4YzgtYWM4Ni0xYzNiYzMxNWJhZDYvMC8wQ0U2QTc5RDUz RDgyOUYyQTU1NjIzNjc2RThEMkE5QTU2OUY4MzZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMENFNkE3OUQ1M0Q4MjlGMkE1NTYyMzY3NkU4RDJBOUE1NjlG ODM2Ri5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhOTkwMTI1LTYwOWEtNDhjOC1h Yzg2LTFjM2JjMzE1YmFkNi8wLzMyMzQzMDM0M2E2MTM2MzQzMDNhMzkzNTM3M2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzMzMzgzMjM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJASm QAlXMA0GCSqGSIb3DQEBCwUAA4IBAQCLVAPDFlGbh78/uEr74jLv8wcMSatXYcNM 1ttzPnmIWNWpmcCoQgjZd2eV6MrEGewG2tYeiG+hf6+rOZmcRunvDlJ6YC3rSGr/ N93u+g4loeEvdHUPqNjZMIbLOOnRL3l6pl4Fz7Sqy2ooPwywEbpC9XJIAGsvCN0Z 0HwNXChUKJKn5UXhFbQl8S7NhGJysvIsVif9GY4pbHaNjomjhG0I9636F/aM5wrN Qyp1+DP0FUezX4Vy5accjeSuePsX3bN3TjUv2Uxkz3/rnm2gzIXAx582NUoffgmf L4D28pmeIbzXBXThluTMm+UDecjsfFIJK9iHYByZfJLIxHGYsi0v -----END CERTIFICATE-----Generated at Wed Jul 23 02:28:38 2025 by rpki-client