$ rpki-client -vvf repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a313a3a2f34382d3438203d3e20313338353938.roa File: 323430343a356434303a313a3a2f34382d3438203d3e20313338353938.roa (raw, json) Hash identifier: 7Ra3Fe83WVldtrwmBn6CcKZZT+lK+aCd/JbT64/wrRw= Subject key identifier: AD:55:83:15:87:93:1D:38:C6:F1:CB:AD:F4:92:30:B8:EA:8F:F4:97 Certificate issuer: /CN=284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA Certificate serial: 3E41DBDA2B499881EBBE9658CC565FFEF5A16BDC Authority key identifier: 28:4B:8A:DA:D3:E0:98:E9:BF:BE:AC:6A:91:29:EF:A6:44:4D:F2:EA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a313a3a2f34382d3438203d3e20313338353938.roa Signing time: Mon 14 Jul 2025 10:02:25 +0000 ROA not before: Mon 14 Jul 2025 09:57:25 +0000 ROA not after: Mon 13 Jul 2026 10:02:25 +0000 asID: 138598 IP address blocks: 2404:5d40:1::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.crl rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 06:47:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:41:db:da:2b:49:98:81:eb:be:96:58:cc:56:5f:fe:f5:a1:6b:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA Validity Not Before: Jul 14 09:57:25 2025 GMT Not After : Jul 13 10:02:25 2026 GMT Subject: CN=AD55831587931D38C6F1CBADF49230B8EA8FF497 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:12:62:8a:24:36:6f:bd:13:b2:d0:b6:9f:00: b1:85:ea:1f:59:6a:f4:3d:27:7c:93:7d:d8:b3:9b: 9b:91:9c:42:16:01:94:2b:f6:b2:ff:ac:47:09:5e: 64:4a:79:17:61:1c:d7:87:cb:bb:07:a6:b1:91:e6: 07:36:8e:43:6e:d2:5c:7f:4d:68:a8:6c:6e:75:18: c9:7e:4d:4d:70:99:47:7e:e2:ff:15:f5:e7:1d:0b: 81:43:3b:97:24:35:84:41:2b:20:94:0f:e5:5e:91: f3:27:6e:34:da:eb:62:b5:f2:88:3f:61:bc:38:77: 64:44:83:49:ce:52:b0:b0:7b:ff:fa:1f:ab:b0:bb: 51:8c:97:3d:ba:94:6f:75:47:94:4f:37:e5:4b:54: c4:01:f8:36:b4:91:73:da:7e:db:ff:5f:f6:33:13: 9b:9d:06:66:0c:e2:2c:40:45:97:79:a4:f5:b3:e0: 8f:49:11:26:e9:98:46:5d:26:66:ed:07:8c:a8:b9: c9:e0:96:dd:4e:5f:0b:2a:0d:f7:9e:bd:f3:7f:c8: 0a:88:1a:54:b0:8c:8d:33:5e:73:2c:cf:a2:9c:f8: aa:15:09:42:0e:94:f2:fb:59:c2:99:04:5a:8a:cf: 61:36:33:a1:65:4d:74:09:ca:f1:ce:f0:8c:68:ff: bf:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:55:83:15:87:93:1D:38:C6:F1:CB:AD:F4:92:30:B8:EA:8F:F4:97 X509v3 Authority Key Identifier: keyid:28:4B:8A:DA:D3:E0:98:E9:BF:BE:AC:6A:91:29:EF:A6:44:4D:F2:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a313a3a2f34382d3438203d3e20313338353938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:5d40:1::/48 Signature Algorithm: sha256WithRSAEncryption 1c:4a:e5:96:b8:fc:f1:24:89:02:5b:da:a4:16:7e:b3:cc:d9: ce:72:9e:9d:d7:74:e8:31:38:94:65:a1:43:2c:17:e9:ed:7c: 4a:6a:2e:d8:e9:b5:4e:3f:a5:73:45:c7:50:7b:29:7b:ee:9d: ca:b2:fd:f8:d6:a5:b6:75:d6:54:3a:e8:54:53:fb:1a:1b:cc: bc:b1:ee:f6:59:af:74:97:1f:28:4f:2c:a0:e8:88:8c:e3:ae: a1:86:46:96:4f:ec:2e:3a:e5:36:eb:83:9d:9f:8d:bb:da:27: 70:0e:f5:e7:d2:46:25:fe:06:b6:b9:a4:61:e5:a7:12:8f:6f: 00:e2:6f:95:9d:b0:6a:38:bb:0a:1f:21:a8:85:3c:3e:a7:45: 9c:58:88:77:22:87:57:54:91:ab:dc:1c:97:c3:c3:d6:bc:7b: 98:30:6b:35:bb:ca:d4:53:99:ea:22:5e:e9:70:4e:57:7f:18: 02:6f:76:b3:6c:f4:90:e0:69:cf:9b:99:4c:2e:59:58:81:ca: 2a:c8:82:45:e8:fe:d0:d6:1e:8d:de:51:e0:5a:ef:04:1b:95: 2f:f3:c5:98:52:8c:81:16:68:be:8a:5a:b5:12:d4:6e:c3:0e: e0:05:05:90:31:50:6a:da:91:a6:b7:14:93:f2:be:ab:8a:b3: 4c:3d:4f:cd -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUPkHb2itJmIHrvpZYzFZf/vWha9wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg0QjhBREFEM0UwOThFOUJGQkVBQzZBOTEyOUVGQTY0 NDRERjJFQTAeFw0yNTA3MTQwOTU3MjVaFw0yNjA3MTMxMDAyMjVaMDMxMTAvBgNV BAMTKEFENTU4MzE1ODc5MzFEMzhDNkYxQ0JBREY0OTIzMEI4RUE4RkY0OTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvEmKKJDZvvROy0LafALGF6h9Z avQ9J3yTfdizm5uRnEIWAZQr9rL/rEcJXmRKeRdhHNeHy7sHprGR5gc2jkNu0lx/ TWiobG51GMl+TU1wmUd+4v8V9ecdC4FDO5ckNYRBKyCUD+VekfMnbjTa62K18og/ Ybw4d2REg0nOUrCwe//6H6uwu1GMlz26lG91R5RPN+VLVMQB+Da0kXPaftv/X/Yz E5udBmYM4ixARZd5pPWz4I9JESbpmEZdJmbtB4youcnglt1OXwsqDfeevfN/yAqI GlSwjI0zXnMsz6Kc+KoVCUIOlPL7WcKZBFqKz2E2M6FlTXQJyvHO8Ixo/7/rAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUrVWDFYeTHTjG8cut9JIwuOqP9JcwHwYDVR0j BBgwFoAUKEuK2tPgmOm/vqxqkSnvpkRN8uowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 Yzg1YzZiOS0zNGY5LTRhODUtOWNlYS1jMTZlOThhOGI1ZTAvMC8yODRCOEFEQUQz RTA5OEU5QkZCRUFDNkE5MTI5RUZBNjQ0NERGMkVBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjg0QjhBREFEM0UwOThFOUJGQkVBQzZBOTEyOUVGQTY0NDRE RjJFQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzljODVjNmI5LTM0ZjktNGE4NS05 Y2VhLWMxNmU5OGE4YjVlMC8wLzMyMzQzMDM0M2EzNTY0MzQzMDNhMzEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzNTM5Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBF1AAAEw DQYJKoZIhvcNAQELBQADggEBABxK5Za4/PEkiQJb2qQWfrPM2c5ynp3XdOgxOJRl oUMsF+ntfEpqLtjptU4/pXNFx1B7KXvuncqy/fjWpbZ11lQ66FRT+xobzLyx7vZZ r3SXHyhPLKDoiIzjrqGGRpZP7C465Tbrg52fjbvaJ3AO9efSRiX+Bra5pGHlpxKP bwDib5WdsGo4uwofIaiFPD6nRZxYiHcih1dUkavcHJfDw9a8e5gwazW7ytRTmeoi XulwTld/GAJvdrNs9JDgac+bmUwuWViByirIgkXo/tDWHo3eUeBa7wQblS/zxZhS jIEWaL6KWrUS1G7DDuAFBZAxUGrakaa3FJPyvquKs0w9T80= -----END CERTIFICATE-----Generated at Mon Jul 21 08:01:30 2025 by rpki-client