$ rpki-client -vvf repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a333a3a2f34382d3438203d3e20313338353938.roa File: 323430343a356434303a333a3a2f34382d3438203d3e20313338353938.roa (raw, json) Hash identifier: xTc48z78x2hTWAz50fsj2u48rca6GyIeaspfgC6Ied0= Subject key identifier: 66:95:1E:DE:BE:D8:D6:B8:AF:39:E4:1A:D4:A8:7A:81:C5:55:E2:0F Certificate issuer: /CN=284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA Certificate serial: 294D3E58808B3BB85978E0AB2D75A6E3ADA3ED4C Authority key identifier: 28:4B:8A:DA:D3:E0:98:E9:BF:BE:AC:6A:91:29:EF:A6:44:4D:F2:EA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a333a3a2f34382d3438203d3e20313338353938.roa Signing time: Mon 14 Jul 2025 10:02:26 +0000 ROA not before: Mon 14 Jul 2025 09:57:26 +0000 ROA not after: Mon 13 Jul 2026 10:02:26 +0000 asID: 138598 IP address blocks: 2404:5d40:3::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.crl rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 14:03:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:4d:3e:58:80:8b:3b:b8:59:78:e0:ab:2d:75:a6:e3:ad:a3:ed:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA Validity Not Before: Jul 14 09:57:26 2025 GMT Not After : Jul 13 10:02:26 2026 GMT Subject: CN=66951EDEBED8D6B8AF39E41AD4A87A81C555E20F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:93:d2:e5:3c:ac:bb:a3:7b:71:ee:86:55:fd: 2b:5b:fa:83:ec:43:ec:e5:fc:18:1d:e6:ad:b4:24: a8:4c:d4:bc:dd:ea:5a:9e:df:0f:91:f3:b5:16:a9: 2a:b8:b1:99:e2:61:bb:72:e0:8c:fd:a4:83:6f:77: d5:5d:b5:4b:1b:6a:c9:55:fd:4a:9d:87:97:68:3e: 9a:cb:8e:46:e3:65:07:d6:f2:82:a4:5c:21:42:a1: 55:d1:e1:a5:33:4d:e5:dd:49:f3:98:ab:0a:52:5f: bc:2c:b3:16:12:f5:c4:56:db:1a:c0:cf:7f:b8:47: 8b:c5:ac:a3:3b:9e:6b:8f:c8:de:7b:f6:76:10:e6: 50:fd:a6:2d:a9:63:c0:ef:b8:2d:ee:43:79:5b:9d: 0c:11:5f:44:73:8b:55:03:ea:ab:1e:54:35:94:3e: 72:92:99:f7:ce:fd:81:23:f7:f0:37:3e:44:a9:24: 9f:07:4e:ec:d5:49:93:4b:a2:15:d3:dc:db:51:b7: fb:c3:6f:5e:34:8a:3c:fa:42:14:09:52:ab:ee:80: c8:e5:c7:3a:cf:fa:39:46:47:83:70:7b:84:2e:7f: 19:23:1d:09:46:cb:e6:c9:3a:ab:71:d0:07:44:8f: 5c:a5:69:96:b9:d9:5d:15:09:76:16:a6:2d:55:73: 71:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:95:1E:DE:BE:D8:D6:B8:AF:39:E4:1A:D4:A8:7A:81:C5:55:E2:0F X509v3 Authority Key Identifier: keyid:28:4B:8A:DA:D3:E0:98:E9:BF:BE:AC:6A:91:29:EF:A6:44:4D:F2:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a333a3a2f34382d3438203d3e20313338353938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:5d40:3::/48 Signature Algorithm: sha256WithRSAEncryption 4c:20:14:a6:c0:50:e5:51:9b:c1:f1:0b:4a:d3:46:4f:7d:ca: 04:ff:bc:7f:a3:54:10:49:25:50:26:55:79:8f:f7:be:9d:69: 46:6c:e7:04:c5:d0:73:be:59:cf:b5:3d:64:0b:ef:fd:31:aa: ef:8a:34:2e:f4:91:c3:49:83:e0:45:ec:a9:c1:c7:75:d0:f5: 5f:ae:84:23:64:ed:de:4b:c5:88:a0:93:12:97:cf:7f:9e:9d: cd:04:7c:a8:ac:42:c4:64:5a:3e:2d:5e:bd:ce:74:57:d5:de: 1f:19:7a:bb:4d:85:00:24:f8:b7:e6:f5:a0:65:db:5a:1b:2a: 20:d6:e2:22:aa:2e:36:47:79:cf:2f:2d:f4:8a:6f:6b:26:e3: 25:1d:c8:fd:b6:5e:c5:f7:0e:77:a1:1a:32:1c:e1:56:94:62: 5a:cb:d4:c6:73:c6:81:1f:bc:32:50:73:34:5c:37:be:5a:f1: 3f:a6:1e:c3:b6:e0:a4:bf:91:21:25:d3:15:b5:fb:a3:56:b0: 97:1b:29:38:f5:57:3e:d5:36:85:28:6a:7e:ea:2f:ff:8e:74: 53:6a:41:06:0a:b1:17:1b:c3:6d:59:0e:89:19:c8:1a:e1:41: 24:c2:d7:f4:c5:4c:7a:da:85:8a:56:3a:b7:c6:24:5e:e9:8c: 22:01:b7:13 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUKU0+WICLO7hZeOCrLXWm462j7UwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg0QjhBREFEM0UwOThFOUJGQkVBQzZBOTEyOUVGQTY0 NDRERjJFQTAeFw0yNTA3MTQwOTU3MjZaFw0yNjA3MTMxMDAyMjZaMDMxMTAvBgNV BAMTKDY2OTUxRURFQkVEOEQ2QjhBRjM5RTQxQUQ0QTg3QTgxQzU1NUUyMEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSk9LlPKy7o3tx7oZV/Stb+oPs Q+zl/Bgd5q20JKhM1Lzd6lqe3w+R87UWqSq4sZniYbty4Iz9pINvd9VdtUsbaslV /Uqdh5doPprLjkbjZQfW8oKkXCFCoVXR4aUzTeXdSfOYqwpSX7wssxYS9cRW2xrA z3+4R4vFrKM7nmuPyN579nYQ5lD9pi2pY8DvuC3uQ3lbnQwRX0Rzi1UD6qseVDWU PnKSmffO/YEj9/A3PkSpJJ8HTuzVSZNLohXT3NtRt/vDb140ijz6QhQJUqvugMjl xzrP+jlGR4Nwe4QufxkjHQlGy+bJOqtx0AdEj1ylaZa52V0VCXYWpi1Vc3EFAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUZpUe3r7Y1rivOeQa1Kh6gcVV4g8wHwYDVR0j BBgwFoAUKEuK2tPgmOm/vqxqkSnvpkRN8uowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 Yzg1YzZiOS0zNGY5LTRhODUtOWNlYS1jMTZlOThhOGI1ZTAvMC8yODRCOEFEQUQz RTA5OEU5QkZCRUFDNkE5MTI5RUZBNjQ0NERGMkVBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjg0QjhBREFEM0UwOThFOUJGQkVBQzZBOTEyOUVGQTY0NDRE RjJFQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzljODVjNmI5LTM0ZjktNGE4NS05 Y2VhLWMxNmU5OGE4YjVlMC8wLzMyMzQzMDM0M2EzNTY0MzQzMDNhMzMzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzNTM5Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBF1AAAMw DQYJKoZIhvcNAQELBQADggEBAEwgFKbAUOVRm8HxC0rTRk99ygT/vH+jVBBJJVAm VXmP976daUZs5wTF0HO+Wc+1PWQL7/0xqu+KNC70kcNJg+BF7KnBx3XQ9V+uhCNk 7d5LxYigkxKXz3+enc0EfKisQsRkWj4tXr3OdFfV3h8ZertNhQAk+Lfm9aBl21ob KiDW4iKqLjZHec8vLfSKb2sm4yUdyP22XsX3DnehGjIc4VaUYlrL1MZzxoEfvDJQ czRcN75a8T+mHsO24KS/kSEl0xW1+6NWsJcbKTj1Vz7VNoUoan7qL/+OdFNqQQYK sRcbw21ZDokZyBrhQSTC1/TFTHrahYpWOrfGJF7pjCIBtxM= -----END CERTIFICATE-----Generated at Mon Jul 21 18:04:42 2025 by rpki-client