$ rpki-client -vvf repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a343a3a2f34382d3438203d3e20313338353938.roa File: 323430343a356434303a343a3a2f34382d3438203d3e20313338353938.roa (raw, json) Hash identifier: /selJRjYRY2RXdacberK6RXbNBqDD4h8KJuD+6tSmiM= Subject key identifier: 6F:90:FE:FB:93:04:DF:D9:81:F5:12:9E:A1:1C:1C:51:C6:B7:44:E8 Certificate issuer: /CN=284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA Certificate serial: 4AA5701121CE02A5171583F9C12DCB2D24B1EAC9 Authority key identifier: 28:4B:8A:DA:D3:E0:98:E9:BF:BE:AC:6A:91:29:EF:A6:44:4D:F2:EA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a343a3a2f34382d3438203d3e20313338353938.roa Signing time: Mon 14 Jul 2025 10:02:25 +0000 ROA not before: Mon 14 Jul 2025 09:57:25 +0000 ROA not after: Mon 13 Jul 2026 10:02:25 +0000 asID: 138598 IP address blocks: 2404:5d40:4::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.crl rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 14:03:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:a5:70:11:21:ce:02:a5:17:15:83:f9:c1:2d:cb:2d:24:b1:ea:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA Validity Not Before: Jul 14 09:57:25 2025 GMT Not After : Jul 13 10:02:25 2026 GMT Subject: CN=6F90FEFB9304DFD981F5129EA11C1C51C6B744E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:c4:10:88:9a:b5:b5:02:f1:cf:9b:65:d9:5d: 21:cd:8c:11:8d:08:95:7f:44:da:cb:8b:e3:2b:cb: 1a:76:fc:1c:5e:3f:86:e1:ef:da:1d:db:53:ac:9a: 60:f5:28:5b:22:67:82:9b:3f:6c:bd:93:92:db:84: a1:e4:e5:30:f7:4c:1d:eb:1a:44:94:b0:b1:4c:5d: 24:de:85:98:70:8a:ab:fe:4c:51:74:92:eb:e2:4f: ad:95:4e:ff:4e:91:ba:4d:2f:7e:bd:b6:97:cf:7b: db:ad:c8:a1:c9:25:8d:02:d1:5f:4b:d5:7d:57:49: 3c:e6:89:16:0e:39:d6:6d:f1:5e:b9:5e:d5:dc:03: 12:2b:0a:36:40:74:b8:9b:72:be:a6:a0:d7:9a:98: 47:b4:90:a9:38:60:93:5a:8e:da:fc:6d:3f:47:e9: 1b:00:88:49:87:c4:37:c0:08:48:f9:d1:d3:a1:d4: 19:b0:74:ae:3f:62:9d:6e:92:79:b4:74:02:e7:e7: f5:19:c6:b2:3a:57:a7:99:50:d3:b1:07:b2:7a:c9: 3c:c1:3f:33:1a:27:43:5a:0a:5b:f3:ef:4a:a8:d2: 2d:b5:8f:38:b4:b5:5b:a0:f1:27:db:d1:a5:a6:f1: c2:e3:6b:89:25:f8:34:e4:e1:49:cc:9d:ae:83:89: 95:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:90:FE:FB:93:04:DF:D9:81:F5:12:9E:A1:1C:1C:51:C6:B7:44:E8 X509v3 Authority Key Identifier: keyid:28:4B:8A:DA:D3:E0:98:E9:BF:BE:AC:6A:91:29:EF:A6:44:4D:F2:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a343a3a2f34382d3438203d3e20313338353938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:5d40:4::/48 Signature Algorithm: sha256WithRSAEncryption 72:20:c1:04:67:d9:f9:c5:4f:2e:31:96:53:fe:49:21:a9:74: 11:13:bb:59:47:68:48:be:46:8e:b5:07:45:dd:01:68:54:a1: 6e:0b:3b:0e:c3:1e:4f:cb:a3:bc:d2:71:cb:91:35:ea:d9:df: e1:45:e9:97:0e:d2:df:61:23:0b:00:f3:6e:e4:41:20:61:dd: 01:75:d7:4d:1f:8f:c3:5e:84:d7:fb:d0:37:58:32:ab:72:28: b3:f4:ca:5d:f8:40:58:cf:de:61:2e:7c:d4:6c:ba:64:a7:51: 44:f6:63:30:9f:5f:e9:c0:c3:35:db:f0:74:57:59:ba:02:94: 78:5c:88:d8:9b:12:e0:60:72:a2:82:2d:f2:41:a3:27:57:2b: b2:10:0e:1c:fc:f2:48:54:6f:01:05:c9:0b:75:f7:53:41:13: 6d:4a:cd:fa:de:6d:6e:34:df:38:bd:5f:cf:04:35:e6:09:07: 43:82:3c:b4:0f:ce:0a:42:77:c6:9b:13:25:98:25:2a:be:e2: 6f:82:fb:79:a4:59:c6:b2:d0:c0:cb:b4:21:84:33:6c:b3:9d: bd:d2:bb:5e:6a:c0:3f:6c:d0:49:77:60:63:b0:14:51:60:fa: 32:ec:0d:0e:59:06:9d:ae:30:55:51:08:a1:60:c2:ce:5a:37: 35:9a:53:95 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUSqVwESHOAqUXFYP5wS3LLSSx6skwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg0QjhBREFEM0UwOThFOUJGQkVBQzZBOTEyOUVGQTY0 NDRERjJFQTAeFw0yNTA3MTQwOTU3MjVaFw0yNjA3MTMxMDAyMjVaMDMxMTAvBgNV BAMTKDZGOTBGRUZCOTMwNERGRDk4MUY1MTI5RUExMUMxQzUxQzZCNzQ0RTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMxBCImrW1AvHPm2XZXSHNjBGN CJV/RNrLi+Mryxp2/BxeP4bh79od21OsmmD1KFsiZ4KbP2y9k5LbhKHk5TD3TB3r GkSUsLFMXSTehZhwiqv+TFF0kuviT62VTv9OkbpNL369tpfPe9utyKHJJY0C0V9L 1X1XSTzmiRYOOdZt8V65XtXcAxIrCjZAdLibcr6moNeamEe0kKk4YJNajtr8bT9H 6RsAiEmHxDfACEj50dOh1BmwdK4/Yp1uknm0dALn5/UZxrI6V6eZUNOxB7J6yTzB PzMaJ0NaClvz70qo0i21jzi0tVug8Sfb0aWm8cLja4kl+DTk4UnMna6DiZXbAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUb5D++5ME39mB9RKeoRwcUca3ROgwHwYDVR0j BBgwFoAUKEuK2tPgmOm/vqxqkSnvpkRN8uowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 Yzg1YzZiOS0zNGY5LTRhODUtOWNlYS1jMTZlOThhOGI1ZTAvMC8yODRCOEFEQUQz RTA5OEU5QkZCRUFDNkE5MTI5RUZBNjQ0NERGMkVBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjg0QjhBREFEM0UwOThFOUJGQkVBQzZBOTEyOUVGQTY0NDRE RjJFQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzljODVjNmI5LTM0ZjktNGE4NS05 Y2VhLWMxNmU5OGE4YjVlMC8wLzMyMzQzMDM0M2EzNTY0MzQzMDNhMzQzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzNTM5Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBF1AAAQw DQYJKoZIhvcNAQELBQADggEBAHIgwQRn2fnFTy4xllP+SSGpdBETu1lHaEi+Ro61 B0XdAWhUoW4LOw7DHk/Lo7zSccuRNerZ3+FF6ZcO0t9hIwsA827kQSBh3QF1100f j8NehNf70DdYMqtyKLP0yl34QFjP3mEufNRsumSnUUT2YzCfX+nAwzXb8HRXWboC lHhciNibEuBgcqKCLfJBoydXK7IQDhz88khUbwEFyQt191NBE21KzfrebW403zi9 X88ENeYJB0OCPLQPzgpCd8abEyWYJSq+4m+C+3mkWcay0MDLtCGEM2yznb3Su15q wD9s0El3YGOwFFFg+jLsDQ5ZBp2uMFVRCKFgws5aNzWaU5U= -----END CERTIFICATE-----Generated at Mon Jul 21 18:04:44 2025 by rpki-client