$ rpki-client -vvf repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/323430353a326363303a373a3a2f34382d3438203d3e20313336303739.roa File: 323430353a326363303a373a3a2f34382d3438203d3e20313336303739.roa (raw, json) Hash identifier: QqkYw4dvuAxz/Z71BLxdsCFvca35TsWBzdDiFc7djzY= Subject key identifier: 09:B6:01:6C:A2:66:2B:3E:0F:83:1C:A5:66:9A:6E:5B:FC:75:6D:21 Certificate issuer: /CN=F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837 Certificate serial: 0112ECFA9CE7416D142806A92B086D7D49088F64 Authority key identifier: F3:AB:A8:F3:C2:DD:89:25:DD:47:BF:7E:A2:13:73:02:A7:2B:58:37 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/323430353a326363303a373a3a2f34382d3438203d3e20313336303739.roa Signing time: Tue 15 Jul 2025 02:00:01 +0000 ROA not before: Tue 15 Jul 2025 01:55:01 +0000 ROA not after: Tue 14 Jul 2026 02:00:01 +0000 asID: 136079 IP address blocks: 2405:2cc0:7::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.crl rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 22 Jul 2025 22:15:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:12:ec:fa:9c:e7:41:6d:14:28:06:a9:2b:08:6d:7d:49:08:8f:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837 Validity Not Before: Jul 15 01:55:01 2025 GMT Not After : Jul 14 02:00:01 2026 GMT Subject: CN=09B6016CA2662B3E0F831CA5669A6E5BFC756D21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:ab:db:00:ee:f4:e3:7b:0f:fb:44:16:6b:82: 67:61:62:68:8e:e8:9b:20:6f:56:1c:9b:cb:7d:59: a4:34:7c:59:24:b8:c0:71:b2:e3:72:21:d8:67:74: 60:43:36:03:17:58:86:b7:30:03:63:c3:06:d6:8c: 06:d2:e7:bf:8b:28:1e:69:aa:f7:5c:12:e6:9e:ea: 17:9a:3b:ac:48:6c:ce:42:93:45:a9:06:95:f0:ab: 55:fb:61:38:fa:c2:97:9a:46:be:e3:8b:eb:d8:e1: 2d:0c:ef:00:1c:33:f8:cb:bc:71:7c:bf:87:fa:a5: a9:3f:f0:c7:9b:ad:6b:99:74:07:d4:eb:bc:56:45: 88:38:ce:cf:54:b8:dd:82:2b:d2:19:a0:12:80:6a: 5b:a8:c8:6e:d5:eb:45:ad:cf:64:22:50:c6:44:44: d9:70:a5:ef:a2:33:30:30:4a:6c:b4:e1:bf:55:fa: dd:dd:47:74:51:22:92:9b:c7:cf:23:f0:7a:aa:a4: f9:8f:ff:30:46:43:57:7b:2c:96:b6:8b:99:14:56: 13:bb:95:48:f3:38:f9:07:96:e6:63:8a:7f:56:11: 51:68:5f:e5:d9:64:83:57:72:45:b4:7e:75:d5:cf: 52:17:fd:a5:13:ff:d2:46:7f:02:74:7c:f0:c1:46: 9a:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:B6:01:6C:A2:66:2B:3E:0F:83:1C:A5:66:9A:6E:5B:FC:75:6D:21 X509v3 Authority Key Identifier: keyid:F3:AB:A8:F3:C2:DD:89:25:DD:47:BF:7E:A2:13:73:02:A7:2B:58:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3ABA8F3C2DD8925DD47BF7EA2137302A72B5837.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8e693b89-4597-40b5-92b0-b299fa769afa/0/323430353a326363303a373a3a2f34382d3438203d3e20313336303739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:2cc0:7::/48 Signature Algorithm: sha256WithRSAEncryption 78:52:c5:07:69:4e:d6:b7:a6:fa:2d:98:f0:9c:1d:84:a4:30: 6e:4b:df:c8:80:f2:5d:35:7d:14:a8:4d:94:a5:d7:d4:a2:d3: ed:01:f3:7c:1e:87:c9:53:2e:c4:a2:57:5f:fc:eb:6d:e8:1e: 19:ce:61:2d:46:22:c2:98:55:3f:76:f2:13:04:b6:3d:ea:a3: 1b:8d:ac:8d:d4:b9:a9:32:c6:41:40:b6:6d:5c:7a:26:9f:11: 56:69:eb:de:1b:d6:52:0e:db:51:8f:e4:b5:95:d4:a1:98:64: b9:d5:d6:a6:6a:31:1f:70:1c:34:5b:8e:83:fe:9f:2c:d4:56: 85:19:dd:14:d4:08:33:63:84:00:09:82:f1:6d:76:99:28:90: 7a:d1:3f:ab:48:2a:23:2c:c2:57:3f:24:b1:40:9d:1e:98:61: 3f:e2:1c:8b:14:f0:12:3d:56:03:50:12:d9:dd:5a:a4:46:68: ef:9e:08:37:05:17:bf:cf:68:5f:d2:9e:a3:74:b0:08:dc:b4: c2:38:44:99:83:c9:c8:cf:81:3e:f5:5a:0a:d1:62:28:52:39: 2d:d4:de:d8:0d:43:38:41:e4:6f:5c:3d:ff:7f:24:e5:53:b4: e4:f3:41:bf:1e:18:27:32:fb:c9:c4:75:fe:f0:75:6a:47:0f: d3:f5:9f:0c -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUARLs+pznQW0UKAapKwhtfUkIj2QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjNBQkE4RjNDMkREODkyNURENDdCRjdFQTIxMzczMDJB NzJCNTgzNzAeFw0yNTA3MTUwMTU1MDFaFw0yNjA3MTQwMjAwMDFaMDMxMTAvBgNV BAMTKDA5QjYwMTZDQTI2NjJCM0UwRjgzMUNBNTY2OUE2RTVCRkM3NTZEMjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJq9sA7vTjew/7RBZrgmdhYmiO 6Jsgb1Ycm8t9WaQ0fFkkuMBxsuNyIdhndGBDNgMXWIa3MANjwwbWjAbS57+LKB5p qvdcEuae6heaO6xIbM5Ck0WpBpXwq1X7YTj6wpeaRr7ji+vY4S0M7wAcM/jLvHF8 v4f6pak/8MebrWuZdAfU67xWRYg4zs9UuN2CK9IZoBKAaluoyG7V60Wtz2QiUMZE RNlwpe+iMzAwSmy04b9V+t3dR3RRIpKbx88j8HqqpPmP/zBGQ1d7LJa2i5kUVhO7 lUjzOPkHluZjin9WEVFoX+XZZINXckW0fnXVz1IX/aUT/9JGfwJ0fPDBRpp1AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUCbYBbKJmKz4PgxylZppuW/x1bSEwHwYDVR0j BBgwFoAU86uo88LdiSXdR79+ohNzAqcrWDcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZTY5M2I4OS00NTk3LTQwYjUtOTJiMC1iMjk5ZmE3NjlhZmEvMC9GM0FCQThGM0My REQ4OTI1REQ0N0JGN0VBMjEzNzMwMkE3MkI1ODM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjNBQkE4RjNDMkREODkyNURENDdCRjdFQTIxMzczMDJBNzJC NTgzNy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhlNjkzYjg5LTQ1OTctNDBiNS05 MmIwLWIyOTlmYTc2OWFmYS8wLzMyMzQzMDM1M2EzMjYzNjMzMDNhMzczYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzYzMDM3Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBSzAAAcw DQYJKoZIhvcNAQELBQADggEBAHhSxQdpTta3pvotmPCcHYSkMG5L38iA8l01fRSo TZSl19Si0+0B83weh8lTLsSiV1/8623oHhnOYS1GIsKYVT928hMEtj3qoxuNrI3U uakyxkFAtm1ceiafEVZp694b1lIO21GP5LWV1KGYZLnV1qZqMR9wHDRbjoP+nyzU VoUZ3RTUCDNjhAAJgvFtdpkokHrRP6tIKiMswlc/JLFAnR6YYT/iHIsU8BI9VgNQ EtndWqRGaO+eCDcFF7/PaF/SnqN0sAjctMI4RJmDycjPgT71WgrRYihSOS3U3tgN QzhB5G9cPf9/JOVTtOTzQb8eGCcy+8nEdf7wdWpHD9P1nww= -----END CERTIFICATE-----Generated at Mon Jul 21 08:27:01 2025 by rpki-client