$ rpki-client -vvf repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a323a3a2f34382d3438203d3e20313338353938.roa File: 323430343a356434303a323a3a2f34382d3438203d3e20313338353938.roa (raw, json) Hash identifier: vUuh6v5PPRzVvuwUZOwe6R6chuRFULbcu3aLCW2qA2Y= Subject key identifier: ED:A8:D3:68:90:BF:E6:F3:1D:D3:51:04:46:B2:3C:F7:9F:7E:16:36 Certificate issuer: /CN=284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA Certificate serial: 28B57CD595A9A47FF3B3792FBEDDDDC8EC93F17A Authority key identifier: 28:4B:8A:DA:D3:E0:98:E9:BF:BE:AC:6A:91:29:EF:A6:44:4D:F2:EA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a323a3a2f34382d3438203d3e20313338353938.roa Signing time: Mon 14 Jul 2025 10:02:25 +0000 ROA not before: Mon 14 Jul 2025 09:57:25 +0000 ROA not after: Mon 13 Jul 2026 10:02:25 +0000 asID: 138598 IP address blocks: 2404:5d40:2::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.crl rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 14:03:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:b5:7c:d5:95:a9:a4:7f:f3:b3:79:2f:be:dd:dd:c8:ec:93:f1:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA Validity Not Before: Jul 14 09:57:25 2025 GMT Not After : Jul 13 10:02:25 2026 GMT Subject: CN=EDA8D36890BFE6F31DD3510446B23CF79F7E1636 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:e3:d9:54:d6:63:ee:0d:20:3b:ab:42:db:6a: 83:87:b9:f8:89:33:42:1e:67:15:06:10:02:e8:e2: 52:93:f9:40:f0:75:f3:31:5d:a2:20:3f:bc:97:e6: a5:82:a6:e1:8d:78:e7:e2:e4:b7:67:e3:94:a5:17: ec:3e:61:78:1f:0e:a9:6a:15:38:08:3a:97:6f:f1: 34:78:bf:99:9a:01:5f:1a:d2:b3:95:78:42:2e:fc: e8:21:a6:e9:94:34:10:3c:aa:ac:59:c3:10:dd:9d: 92:c7:a5:01:54:35:d8:6e:90:4d:fe:1b:6c:7c:69: 34:52:74:62:95:a7:ab:46:d1:83:79:b8:32:be:51: bb:80:a7:00:15:65:0a:7b:6d:1b:9f:93:75:34:fa: df:5a:9c:3d:ec:38:05:3e:05:90:8b:db:5e:2f:ed: f4:bd:85:09:42:4c:15:51:82:31:a3:f4:62:07:3f: b0:e9:a2:b9:fb:00:69:35:b9:3a:b1:d9:10:c1:d3: 7f:64:be:84:e8:63:21:e2:87:67:ce:09:66:c2:12: d0:72:d6:3a:34:d9:3b:57:c6:5a:38:8c:2e:60:0f: 97:3d:db:71:88:91:9d:a8:23:bf:d2:a1:1d:9f:a1: 5b:85:e1:11:93:f4:34:a0:8b:7c:90:ce:cd:5b:aa: 93:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:A8:D3:68:90:BF:E6:F3:1D:D3:51:04:46:B2:3C:F7:9F:7E:16:36 X509v3 Authority Key Identifier: keyid:28:4B:8A:DA:D3:E0:98:E9:BF:BE:AC:6A:91:29:EF:A6:44:4D:F2:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a323a3a2f34382d3438203d3e20313338353938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:5d40:2::/48 Signature Algorithm: sha256WithRSAEncryption b9:82:5e:5e:84:a8:41:cc:42:ac:ef:25:7d:37:6f:62:3c:6b: b4:c6:02:da:51:0b:67:a1:c9:ab:f3:ff:22:cb:02:3a:39:8d: c8:d0:6d:bf:56:af:86:1f:c1:4d:08:c6:16:b5:32:a6:e6:be: a0:b0:d4:0e:40:26:41:fa:77:fe:f0:bd:5e:65:75:c6:40:62: f9:24:dc:6e:77:f3:4f:16:e7:9f:83:a6:ef:a3:22:f9:f5:81: bf:16:ad:a5:5d:19:8a:11:14:8e:23:43:83:63:6e:f7:35:d4: 52:92:67:4c:52:e4:73:ff:13:b2:06:5c:1e:fd:52:91:e0:d5: 68:e7:a5:c6:68:cb:d8:92:a8:dd:6b:59:cd:79:a4:7b:e0:d2: cf:08:8b:e4:80:40:8b:d1:45:f3:e7:89:57:cb:82:2a:85:97: c0:c2:a3:bc:2d:1d:ab:c7:b6:b1:2f:36:a9:d2:77:3d:d4:50: e2:2c:a8:69:30:0e:a1:62:7a:5a:f8:29:6f:5b:1d:b8:fc:b3: 7c:a5:95:42:10:e0:be:24:ab:32:c8:34:1f:33:d4:18:c4:a4: 9f:2b:78:eb:fe:b8:49:c8:0c:e0:16:26:fc:84:98:5c:1e:b4: e8:66:bb:30:ed:cf:1c:d2:a0:e2:d8:24:7b:2f:93:c4:e0:93: 08:28:27:19 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUKLV81ZWppH/zs3kvvt3dyOyT8XowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg0QjhBREFEM0UwOThFOUJGQkVBQzZBOTEyOUVGQTY0 NDRERjJFQTAeFw0yNTA3MTQwOTU3MjVaFw0yNjA3MTMxMDAyMjVaMDMxMTAvBgNV BAMTKEVEQThEMzY4OTBCRkU2RjMxREQzNTEwNDQ2QjIzQ0Y3OUY3RTE2MzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDS49lU1mPuDSA7q0LbaoOHufiJ M0IeZxUGEALo4lKT+UDwdfMxXaIgP7yX5qWCpuGNeOfi5Ldn45SlF+w+YXgfDqlq FTgIOpdv8TR4v5maAV8a0rOVeEIu/OghpumUNBA8qqxZwxDdnZLHpQFUNdhukE3+ G2x8aTRSdGKVp6tG0YN5uDK+UbuApwAVZQp7bRufk3U0+t9anD3sOAU+BZCL214v 7fS9hQlCTBVRgjGj9GIHP7Dporn7AGk1uTqx2RDB039kvoToYyHih2fOCWbCEtBy 1jo02TtXxlo4jC5gD5c923GIkZ2oI7/SoR2foVuF4RGT9DSgi3yQzs1bqpPVAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQU7ajTaJC/5vMd01EERrI8959+FjYwHwYDVR0j BBgwFoAUKEuK2tPgmOm/vqxqkSnvpkRN8uowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 Yzg1YzZiOS0zNGY5LTRhODUtOWNlYS1jMTZlOThhOGI1ZTAvMC8yODRCOEFEQUQz RTA5OEU5QkZCRUFDNkE5MTI5RUZBNjQ0NERGMkVBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjg0QjhBREFEM0UwOThFOUJGQkVBQzZBOTEyOUVGQTY0NDRE RjJFQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzljODVjNmI5LTM0ZjktNGE4NS05 Y2VhLWMxNmU5OGE4YjVlMC8wLzMyMzQzMDM0M2EzNTY0MzQzMDNhMzIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzNTM5Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBF1AAAIw DQYJKoZIhvcNAQELBQADggEBALmCXl6EqEHMQqzvJX03b2I8a7TGAtpRC2ehyavz /yLLAjo5jcjQbb9Wr4YfwU0Ixha1MqbmvqCw1A5AJkH6d/7wvV5ldcZAYvkk3G53 808W55+Dpu+jIvn1gb8WraVdGYoRFI4jQ4Njbvc11FKSZ0xS5HP/E7IGXB79UpHg 1WjnpcZoy9iSqN1rWc15pHvg0s8Ii+SAQIvRRfPniVfLgiqFl8DCo7wtHavHtrEv NqnSdz3UUOIsqGkwDqFielr4KW9bHbj8s3yllUIQ4L4kqzLINB8z1BjEpJ8reOv+ uEnIDOAWJvyEmFwetOhmuzDtzxzSoOLYJHsvk8TgkwgoJxk= -----END CERTIFICATE-----Generated at Mon Jul 21 18:05:55 2025 by rpki-client