$ rpki-client -vvf repo-rpki.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0/323430343a623238303a3a2f33322d3438203d3e203137363730.roa File: 323430343a623238303a3a2f33322d3438203d3e203137363730.roa (raw, json) Hash identifier: S1hTgzRInefDZ+nv4OU9cj+WPrGD6wknjfAjdl1JFoo= Subject key identifier: 63:E3:37:EE:90:46:6C:3C:A6:6C:EF:06:CD:74:67:2E:82:53:D7:BE Certificate issuer: /CN=89402655017312B8CFCB367BA82966AA21E11F90 Certificate serial: 1458A69157A5AACB1CDCF8395A513BC07A0657C3 Authority key identifier: 89:40:26:55:01:73:12:B8:CF:CB:36:7B:A8:29:66:AA:21:E1:1F:90 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/89402655017312B8CFCB367BA82966AA21E11F90.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0/323430343a623238303a3a2f33322d3438203d3e203137363730.roa Signing time: Sun 06 Jul 2025 19:00:00 +0000 ROA not before: Sun 06 Jul 2025 18:55:00 +0000 ROA not after: Sun 05 Jul 2026 19:00:00 +0000 asID: 17670 IP address blocks: 2404:b280::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0/89402655017312B8CFCB367BA82966AA21E11F90.crl rsync://repo-rpki.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0/89402655017312B8CFCB367BA82966AA21E11F90.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/89402655017312B8CFCB367BA82966AA21E11F90.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Jul 2025 17:27:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:58:a6:91:57:a5:aa:cb:1c:dc:f8:39:5a:51:3b:c0:7a:06:57:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89402655017312B8CFCB367BA82966AA21E11F90 Validity Not Before: Jul 6 18:55:00 2025 GMT Not After : Jul 5 19:00:00 2026 GMT Subject: CN=63E337EE90466C3CA66CEF06CD74672E8253D7BE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:4a:3d:0a:ee:3e:ea:c9:76:aa:83:d5:e7:c9: 6d:f7:94:84:3d:be:e4:f0:17:0c:5c:f4:d9:01:d9: 8a:49:11:bf:51:4d:7f:8a:8d:e2:df:6b:21:1d:1c: 83:1e:4c:55:96:ab:92:32:e4:1c:dc:1d:a3:62:e0: cb:95:eb:40:39:ed:7c:fc:63:b7:72:06:15:d1:11: 4f:d9:15:d8:7f:fe:39:8c:27:1b:52:bf:35:b3:64: eb:49:0e:39:9d:42:48:05:c3:44:59:41:89:fe:71: 74:5e:90:c0:65:bc:b0:eb:29:09:aa:58:e9:0a:98: 7a:83:ca:03:70:32:55:63:c6:75:ed:39:cb:ce:e1: 33:09:5f:5e:b2:6b:70:55:2b:6a:80:79:e5:1e:04: 64:49:62:f0:15:d0:4d:05:b8:dd:1d:d5:39:96:f9: 7d:3b:8c:d2:a7:17:65:77:1f:35:36:2f:1c:b4:68: e9:f0:50:c6:0d:53:3d:0a:19:40:d4:28:d1:d2:d8: 08:05:d7:20:c9:31:d4:a6:da:c2:a1:6e:0f:46:f4: c0:ce:f1:af:94:f0:84:ec:25:b5:14:cd:7e:82:69: 3e:81:bc:08:35:94:f9:82:cd:d8:f2:c3:74:05:34: bb:69:94:1e:3a:0f:15:8d:00:57:33:eb:05:ef:8a: a7:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:E3:37:EE:90:46:6C:3C:A6:6C:EF:06:CD:74:67:2E:82:53:D7:BE X509v3 Authority Key Identifier: keyid:89:40:26:55:01:73:12:B8:CF:CB:36:7B:A8:29:66:AA:21:E1:1F:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0/89402655017312B8CFCB367BA82966AA21E11F90.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/89402655017312B8CFCB367BA82966AA21E11F90.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0/323430343a623238303a3a2f33322d3438203d3e203137363730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:b280::/32 Signature Algorithm: sha256WithRSAEncryption 11:8e:2a:f3:17:70:1e:e1:c7:6a:9c:3b:0d:ca:65:13:87:7e: 6c:cc:cb:6d:85:31:5d:37:10:69:3d:20:57:22:79:08:64:ec: 72:d1:57:9c:9c:2a:0b:f1:da:8d:f1:64:00:be:51:b4:e1:97: 52:90:b0:73:12:bb:07:24:34:18:bd:24:78:22:e2:ca:36:8a: 50:87:42:53:0c:bc:7b:ba:04:9c:e2:58:19:85:b8:22:ea:62: 6f:07:c3:44:23:84:da:43:4b:75:7f:07:09:a7:ac:e7:5e:f0: f7:ab:2d:14:e7:f6:6d:f9:5c:14:a6:60:39:17:83:f7:9e:bf: 63:fd:c4:33:f0:ad:c9:34:36:a5:63:ff:cc:90:57:05:22:70: ba:14:13:58:97:8f:5f:95:0a:cf:65:90:7b:80:15:7b:3d:a7: 37:d5:c7:9c:78:b7:52:ce:f6:60:8e:9d:ef:6b:38:2e:74:73: 1c:91:41:d9:93:e5:ea:81:9e:1e:57:b3:ed:65:75:07:ad:e0: 3d:65:20:00:88:37:cf:f6:cf:77:7c:ba:fa:dd:fe:6a:67:2c: cc:55:7b:13:dc:fd:05:ad:69:59:61:c8:dc:d9:55:58:e3:20: 3d:3d:c2:72:b1:c8:74:ec:53:27:14:5a:5c:e0:2f:43:db:28: 65:a1:f0:dd -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUFFimkVelqssc3Pg5WlE7wHoGV8MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODk0MDI2NTUwMTczMTJCOENGQ0IzNjdCQTgyOTY2QUEy MUUxMUY5MDAeFw0yNTA3MDYxODU1MDBaFw0yNjA3MDUxOTAwMDBaMDMxMTAvBgNV BAMTKDYzRTMzN0VFOTA0NjZDM0NBNjZDRUYwNkNENzQ2NzJFODI1M0Q3QkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrSj0K7j7qyXaqg9XnyW33lIQ9 vuTwFwxc9NkB2YpJEb9RTX+KjeLfayEdHIMeTFWWq5Iy5BzcHaNi4MuV60A57Xz8 Y7dyBhXREU/ZFdh//jmMJxtSvzWzZOtJDjmdQkgFw0RZQYn+cXRekMBlvLDrKQmq WOkKmHqDygNwMlVjxnXtOcvO4TMJX16ya3BVK2qAeeUeBGRJYvAV0E0FuN0d1TmW +X07jNKnF2V3HzU2Lxy0aOnwUMYNUz0KGUDUKNHS2AgF1yDJMdSm2sKhbg9G9MDO 8a+U8ITsJbUUzX6CaT6BvAg1lPmCzdjyw3QFNLtplB46DxWNAFcz6wXviqddAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUY+M37pBGbDymbO8GzXRnLoJT174wHwYDVR0j BBgwFoAUiUAmVQFzErjPyzZ7qClmqiHhH5AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZmIxYzgwYy00ZDZjLTQ0MDgtODk0Ny1mYmE2ZTdjNGJlN2MvMC84OTQwMjY1NTAx NzMxMkI4Q0ZDQjM2N0JBODI5NjZBQTIxRTExRjkwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODk0MDI2NTUwMTczMTJCOENGQ0IzNjdCQTgyOTY2QUEyMUUx MUY5MC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVmYjFjODBjLTRkNmMtNDQwOC04 OTQ3LWZiYTZlN2M0YmU3Yy8wLzMyMzQzMDM0M2E2MjMyMzgzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzczNjM3MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBLKAMA0GCSqGSIb3 DQEBCwUAA4IBAQARjirzF3Ae4cdqnDsNymUTh35szMtthTFdNxBpPSBXInkIZOxy 0VecnCoL8dqN8WQAvlG04ZdSkLBzErsHJDQYvSR4IuLKNopQh0JTDLx7ugSc4lgZ hbgi6mJvB8NEI4TaQ0t1fwcJp6znXvD3qy0U5/Zt+VwUpmA5F4P3nr9j/cQz8K3J NDalY//MkFcFInC6FBNYl49flQrPZZB7gBV7Pac31ceceLdSzvZgjp3vazgudHMc kUHZk+XqgZ4eV7PtZXUHreA9ZSAAiDfP9s93fLr63f5qZyzMVXsT3P0FrWlZYcjc 2VVY4yA9PcJysch07FMnFFpc4C9D2yhlofDd -----END CERTIFICATE-----Generated at Mon Jul 21 07:24:59 2025 by rpki-client