$ rpki-client -vvf repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/323430333a653630303a6630303a3a2f34302d3430203d3e203538333736.roa File: 323430333a653630303a6630303a3a2f34302d3430203d3e203538333736.roa (raw, json) Hash identifier: AgqSIkRIGOrQPc+1mZW5lGFc3zRhyUQtTv3vz8FdAPU= Subject key identifier: D6:47:07:5B:F1:FE:30:22:5F:AD:CB:C3:AD:04:62:D3:67:E1:CC:45 Certificate issuer: /CN=4E52504397B6835784BD4E67D8048C0D1CE3B242 Certificate serial: 1BF5C9C907AFC264E0B36CB5ACB8FE35940F2123 Authority key identifier: 4E:52:50:43:97:B6:83:57:84:BD:4E:67:D8:04:8C:0D:1C:E3:B2:42 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E52504397B6835784BD4E67D8048C0D1CE3B242.cer Subject info access: rsync://repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/323430333a653630303a6630303a3a2f34302d3430203d3e203538333736.roa Signing time: Tue 22 Jul 2025 17:00:01 +0000 ROA not before: Tue 22 Jul 2025 16:55:01 +0000 ROA not after: Tue 21 Jul 2026 17:00:01 +0000 asID: 58376 IP address blocks: 2403:e600:f00::/40 maxlen: 40 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/4E52504397B6835784BD4E67D8048C0D1CE3B242.crl rsync://repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/4E52504397B6835784BD4E67D8048C0D1CE3B242.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E52504397B6835784BD4E67D8048C0D1CE3B242.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 19:28:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:f5:c9:c9:07:af:c2:64:e0:b3:6c:b5:ac:b8:fe:35:94:0f:21:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4E52504397B6835784BD4E67D8048C0D1CE3B242 Validity Not Before: Jul 22 16:55:01 2025 GMT Not After : Jul 21 17:00:01 2026 GMT Subject: CN=D647075BF1FE30225FADCBC3AD0462D367E1CC45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:bf:b4:4a:29:df:13:34:4d:d6:3e:a3:38:0e: 0e:9c:10:64:c6:bf:8c:e6:52:6f:e8:24:5c:1f:23: 24:91:79:93:ba:f0:b4:44:c8:c5:22:47:29:bf:6e: 88:05:7d:48:e6:10:a9:c8:c7:13:15:af:e4:0c:2f: 79:15:0e:e3:26:8f:f6:ad:8b:93:f1:84:05:7e:8f: 2a:cc:62:40:29:a5:8c:0a:6b:38:0e:88:71:8c:0e: ce:0f:47:5e:9b:7c:a6:a6:b9:b2:1c:2d:6e:ad:8f: e5:df:2e:27:89:58:fe:c4:77:8f:9f:04:36:63:3e: 29:04:df:4c:a1:1a:08:1a:03:e0:90:13:b6:21:2d: e5:1b:1f:5e:e4:02:31:13:6f:1d:0b:a4:44:97:34: d6:f3:2d:21:22:7d:7f:49:97:2c:be:2d:96:a6:65: 70:17:1a:58:95:d2:bd:f5:cd:9c:88:af:58:22:a1: df:b7:dc:ff:70:c8:b4:aa:63:63:d9:3e:e3:b3:a0: a5:e3:5c:9a:3d:08:14:e7:36:cf:8a:03:21:50:02: ea:e6:31:73:99:6e:ed:1c:3c:de:9c:e3:e5:55:4c: c0:1a:fd:78:d5:80:cd:2a:17:1f:c7:27:5d:37:23: d3:45:60:20:d7:30:10:cb:69:58:d0:ad:cb:f5:b9: e7:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:47:07:5B:F1:FE:30:22:5F:AD:CB:C3:AD:04:62:D3:67:E1:CC:45 X509v3 Authority Key Identifier: keyid:4E:52:50:43:97:B6:83:57:84:BD:4E:67:D8:04:8C:0D:1C:E3:B2:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/4E52504397B6835784BD4E67D8048C0D1CE3B242.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E52504397B6835784BD4E67D8048C0D1CE3B242.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/323430333a653630303a6630303a3a2f34302d3430203d3e203538333736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:e600:f00::/40 Signature Algorithm: sha256WithRSAEncryption 12:80:f7:0d:27:9a:85:99:ee:3e:70:d4:eb:73:3e:6f:4b:96: c9:21:7c:1b:aa:c6:2e:5d:03:08:b7:55:b5:6b:b3:6a:69:70: 73:be:b5:42:a6:51:bf:88:7e:48:ee:53:b9:14:f0:a8:5a:b3: 51:4a:9b:41:c1:f4:95:5b:6b:23:60:99:7d:31:f5:69:a2:40: cd:1e:51:cc:ab:9e:f8:b1:18:e1:55:ae:f8:69:b5:fa:58:32: 57:b3:f3:87:16:f5:a3:f4:b8:c0:d7:91:f7:42:2c:da:42:c2: 47:1f:3b:f6:7d:fe:a2:9a:15:e1:2e:51:8a:95:33:b0:76:d7: e0:c1:3b:69:8b:4e:cc:75:e4:f0:a3:a6:ce:bc:88:4b:7a:bb: 62:0b:33:db:fc:8f:74:6c:03:2c:8f:37:bd:50:99:54:bd:aa: f6:f0:09:bb:ef:da:65:da:0e:f0:7d:41:58:80:77:ef:8c:40: 3f:72:6e:ab:7d:17:5d:f0:bf:58:1b:ad:3a:94:6e:92:0d:30: ee:fe:60:24:60:ed:29:0c:e4:74:f8:53:29:ef:4b:f1:9f:0b: 87:9d:80:02:b8:a0:88:3e:bc:f3:19:ce:fa:37:51:4c:08:6c: 10:aa:8c:ae:bd:0c:a5:c3:82:1c:32:fb:ce:6a:5a:74:27:83: cf:68:f6:62 -----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgIUG/XJyQevwmTgs2y1rLj+NZQPISMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEU1MjUwNDM5N0I2ODM1Nzg0QkQ0RTY3RDgwNDhDMEQx Q0UzQjI0MjAeFw0yNTA3MjIxNjU1MDFaFw0yNjA3MjExNzAwMDFaMDMxMTAvBgNV BAMTKEQ2NDcwNzVCRjFGRTMwMjI1RkFEQ0JDM0FEMDQ2MkQzNjdFMUNDNDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBv7RKKd8TNE3WPqM4Dg6cEGTG v4zmUm/oJFwfIySReZO68LREyMUiRym/bogFfUjmEKnIxxMVr+QML3kVDuMmj/at i5PxhAV+jyrMYkAppYwKazgOiHGMDs4PR16bfKamubIcLW6tj+XfLieJWP7Ed4+f BDZjPikE30yhGggaA+CQE7YhLeUbH17kAjETbx0LpESXNNbzLSEifX9Jlyy+LZam ZXAXGliV0r31zZyIr1giod+33P9wyLSqY2PZPuOzoKXjXJo9CBTnNs+KAyFQAurm MXOZbu0cPN6c4+VVTMAa/XjVgM0qFx/HJ103I9NFYCDXMBDLaVjQrcv1uefvAgMB AAGjggI6MIICNjAdBgNVHQ4EFgQU1kcHW/H+MCJfrcvDrQRi02fhzEUwHwYDVR0j BBgwFoAUTlJQQ5e2g1eEvU5n2ASMDRzjskIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 OTFkM2MzMC05NWRjLTRiNzItYWUxYi1hZDFlOThiMGUxNzkvMC80RTUyNTA0Mzk3 QjY4MzU3ODRCRDRFNjdEODA0OEMwRDFDRTNCMjQyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEU1MjUwNDM5N0I2ODM1Nzg0QkQ0RTY3RDgwNDhDMEQxQ0Uz QjI0Mi5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg5MWQzYzMwLTk1ZGMtNGI3Mi1h ZTFiLWFkMWU5OGIwZTE3OS8wLzMyMzQzMDMzM2E2NTM2MzAzMDNhNjYzMDMwM2Ez YTJmMzQzMDJkMzQzMDIwM2QzZTIwMzUzODMzMzczNi5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACQD5gAP MA0GCSqGSIb3DQEBCwUAA4IBAQASgPcNJ5qFme4+cNTrcz5vS5bJIXwbqsYuXQMI t1W1a7NqaXBzvrVCplG/iH5I7lO5FPCoWrNRSptBwfSVW2sjYJl9MfVpokDNHlHM q574sRjhVa74abX6WDJXs/OHFvWj9LjA15H3QizaQsJHHzv2ff6imhXhLlGKlTOw dtfgwTtpi07MdeTwo6bOvIhLertiCzPb/I90bAMsjze9UJlUvar28Am779pl2g7w fUFYgHfvjEA/cm6rfRdd8L9YG606lG6SDTDu/mAkYO0pDOR0+FMp70vxnwuHnYAC uKCIPrzzGc76N1FMCGwQqoyuvQylw4IcMvvOalp0J4PPaPZi -----END CERTIFICATE-----Generated at Wed Jul 23 23:41:10 2025 by rpki-client