$ rpki-client -vvf repo-rpki.idnic.net/repo/7488d4c0-dc92-4aa8-b169-52cab2a61ba1/0/323430343a653930303a343030303a3a2f33342d3334203d3e203436303632.roa File: 323430343a653930303a343030303a3a2f33342d3334203d3e203436303632.roa (raw, json) Hash identifier: KX+TcfWMtFMWBw+/wMS/PSYWDCnYN7O3lGExEaabLIU= Subject key identifier: 8A:22:EE:C7:9B:22:15:33:EA:AB:60:AB:32:D0:90:AF:68:BE:B4:09 Certificate issuer: /CN=247D705AC2F14A763F3EB87E2E41158A251F3D76 Certificate serial: 35FDF0ECB8FDD1E370D84847539F9964123E2A10 Authority key identifier: 24:7D:70:5A:C2:F1:4A:76:3F:3E:B8:7E:2E:41:15:8A:25:1F:3D:76 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/247D705AC2F14A763F3EB87E2E41158A251F3D76.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7488d4c0-dc92-4aa8-b169-52cab2a61ba1/0/323430343a653930303a343030303a3a2f33342d3334203d3e203436303632.roa Signing time: Tue 08 Jul 2025 06:00:00 +0000 ROA not before: Tue 08 Jul 2025 05:55:00 +0000 ROA not after: Tue 07 Jul 2026 06:00:00 +0000 asID: 46062 IP address blocks: 2404:e900:4000::/34 maxlen: 34 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7488d4c0-dc92-4aa8-b169-52cab2a61ba1/0/247D705AC2F14A763F3EB87E2E41158A251F3D76.crl rsync://repo-rpki.idnic.net/repo/7488d4c0-dc92-4aa8-b169-52cab2a61ba1/0/247D705AC2F14A763F3EB87E2E41158A251F3D76.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/247D705AC2F14A763F3EB87E2E41158A251F3D76.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Jul 2025 00:58:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:fd:f0:ec:b8:fd:d1:e3:70:d8:48:47:53:9f:99:64:12:3e:2a:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=247D705AC2F14A763F3EB87E2E41158A251F3D76 Validity Not Before: Jul 8 05:55:00 2025 GMT Not After : Jul 7 06:00:00 2026 GMT Subject: CN=8A22EEC79B221533EAAB60AB32D090AF68BEB409 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:ff:5f:97:e1:b5:c5:9f:55:0a:7b:4d:1e:cb: 21:b5:de:cb:6c:9d:ec:0e:fc:10:13:e1:76:f7:d5: 3c:d0:26:5d:b7:12:3e:83:35:9b:48:9b:f2:7d:4d: be:97:da:9b:b3:23:ab:63:46:03:ca:84:d7:0f:00: 8b:76:02:4e:79:c8:1a:97:90:9a:73:e1:c2:f0:6a: b1:4b:f0:2f:e0:a1:61:eb:68:81:5a:17:d4:07:1b: 34:fe:f6:1d:42:96:c0:ca:cb:e2:4a:07:e7:dc:e2: c3:68:d9:5a:88:c1:76:4f:5a:6c:25:8d:3c:2c:fa: 3d:0a:bf:84:7c:9d:92:a1:a3:d8:1f:dd:b8:e6:fb: a2:3e:44:27:21:76:25:69:a6:9a:08:84:f4:8e:b0: d6:82:47:f9:92:1d:bb:a3:fa:ac:b9:ce:7b:15:a0: fb:0f:33:e3:32:f5:d5:23:41:72:23:16:ec:0e:5a: 93:45:bb:67:74:ed:23:be:63:6d:68:fd:42:2f:09: a4:b7:71:63:8d:5b:6e:77:30:80:43:22:5c:14:c3: dd:80:4a:3b:f5:91:4f:0a:de:41:79:f6:b5:eb:cd: 2c:05:32:8f:42:fd:a5:91:be:69:e8:fc:32:12:0a: a5:25:d3:ac:ee:cd:40:6c:c8:63:22:42:76:2c:ae: 1e:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:22:EE:C7:9B:22:15:33:EA:AB:60:AB:32:D0:90:AF:68:BE:B4:09 X509v3 Authority Key Identifier: keyid:24:7D:70:5A:C2:F1:4A:76:3F:3E:B8:7E:2E:41:15:8A:25:1F:3D:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7488d4c0-dc92-4aa8-b169-52cab2a61ba1/0/247D705AC2F14A763F3EB87E2E41158A251F3D76.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/247D705AC2F14A763F3EB87E2E41158A251F3D76.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7488d4c0-dc92-4aa8-b169-52cab2a61ba1/0/323430343a653930303a343030303a3a2f33342d3334203d3e203436303632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:e900:4000::/34 Signature Algorithm: sha256WithRSAEncryption 70:e0:11:a7:8e:e5:7b:b6:e5:99:56:45:05:8d:5b:f4:3f:28: 49:00:25:48:68:90:c6:0b:44:b0:8a:80:bf:d3:86:7b:13:f6: f5:c2:ec:c1:73:b7:0d:79:28:91:ed:11:0f:9d:61:8e:85:56: 61:36:d9:df:f4:7f:3b:f5:5f:9d:a8:f6:aa:c0:02:43:76:ed: 42:52:c5:d0:a0:2c:5f:d4:7c:c4:3f:1d:97:fb:aa:1c:85:39: 37:37:3d:aa:2b:b6:88:68:a7:9a:07:73:2d:13:0d:49:6a:ad: e9:7e:77:5c:50:3e:dc:11:31:34:16:2d:3a:af:7e:c0:8a:86: cc:92:27:19:cf:83:6f:ae:ec:cc:0f:89:02:b7:e1:a4:4e:03: 79:c6:b4:13:03:24:1d:b8:ba:25:5f:ab:f2:41:8b:48:14:26: 57:6a:0a:0c:11:6f:32:66:6c:e1:bd:36:cb:17:54:78:be:2d: b1:8c:be:1b:01:b7:f6:60:64:6c:e1:71:0e:b5:1b:f8:52:10: ff:63:91:b8:42:28:d2:7f:e3:c0:32:d1:bb:f9:45:8d:5b:c1: 63:d2:c5:9f:01:23:09:44:f4:cd:3c:f5:6f:d2:e9:a5:75:ad: 11:cf:01:6f:84:f8:49:64:b1:eb:d2:9e:11:38:ff:41:a7:bf: 46:cc:e1:72 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUNf3w7Lj90eNw2EhHU5+ZZBI+KhAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjQ3RDcwNUFDMkYxNEE3NjNGM0VCODdFMkU0MTE1OEEy NTFGM0Q3NjAeFw0yNTA3MDgwNTU1MDBaFw0yNjA3MDcwNjAwMDBaMDMxMTAvBgNV BAMTKDhBMjJFRUM3OUIyMjE1MzNFQUFCNjBBQjMyRDA5MEFGNjhCRUI0MDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+/1+X4bXFn1UKe00eyyG13sts newO/BAT4Xb31TzQJl23Ej6DNZtIm/J9Tb6X2puzI6tjRgPKhNcPAIt2Ak55yBqX kJpz4cLwarFL8C/goWHraIFaF9QHGzT+9h1ClsDKy+JKB+fc4sNo2VqIwXZPWmwl jTws+j0Kv4R8nZKho9gf3bjm+6I+RCchdiVpppoIhPSOsNaCR/mSHbuj+qy5znsV oPsPM+My9dUjQXIjFuwOWpNFu2d07SO+Y21o/UIvCaS3cWONW253MIBDIlwUw92A Sjv1kU8K3kF59rXrzSwFMo9C/aWRvmno/DISCqUl06zuzUBsyGMiQnYsrh5bAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUiiLux5siFTPqq2CrMtCQr2i+tAkwHwYDVR0j BBgwFoAUJH1wWsLxSnY/Prh+LkEViiUfPXYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 NDg4ZDRjMC1kYzkyLTRhYTgtYjE2OS01MmNhYjJhNjFiYTEvMC8yNDdENzA1QUMy RjE0QTc2M0YzRUI4N0UyRTQxMTU4QTI1MUYzRDc2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjQ3RDcwNUFDMkYxNEE3NjNGM0VCODdFMkU0MTE1OEEyNTFG M0Q3Ni5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc0ODhkNGMwLWRjOTItNGFhOC1i MTY5LTUyY2FiMmE2MWJhMS8wLzMyMzQzMDM0M2E2NTM5MzAzMDNhMzQzMDMwMzAz YTNhMmYzMzM0MmQzMzM0MjAzZDNlMjAzNDM2MzAzNjMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYGJATp AEAwDQYJKoZIhvcNAQELBQADggEBAHDgEaeO5Xu25ZlWRQWNW/Q/KEkAJUhokMYL RLCKgL/ThnsT9vXC7MFztw15KJHtEQ+dYY6FVmE22d/0fzv1X52o9qrAAkN27UJS xdCgLF/UfMQ/HZf7qhyFOTc3Paortohop5oHcy0TDUlqrel+d1xQPtwRMTQWLTqv fsCKhsySJxnPg2+u7MwPiQK34aROA3nGtBMDJB24uiVfq/JBi0gUJldqCgwRbzJm bOG9NssXVHi+LbGMvhsBt/ZgZGzhcQ61G/hSEP9jkbhCKNJ/48Ay0bv5RY1bwWPS xZ8BIwlE9M089W/S6aV1rRHPAW+E+ElksevSnhE4/0Gnv0bM4XI= -----END CERTIFICATE-----Generated at Mon Jul 21 06:51:08 2025 by rpki-client