$ rpki-client -vvf repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a353a3a2f34382d3438203d3e20313338353938.roa File: 323430343a356434303a353a3a2f34382d3438203d3e20313338353938.roa (raw, json) Hash identifier: Lbx56bi7U9t4V4gIX7m4fulkNS6DqtlvmzQW0U2Yss4= Subject key identifier: 23:CD:71:83:76:BB:B9:C6:EE:4D:3C:01:CE:24:EB:D9:A4:6B:A8:21 Certificate issuer: /CN=284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA Certificate serial: 6D4A90FFA0070FAEC336B93EB174A08331E8F4BB Authority key identifier: 28:4B:8A:DA:D3:E0:98:E9:BF:BE:AC:6A:91:29:EF:A6:44:4D:F2:EA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a353a3a2f34382d3438203d3e20313338353938.roa Signing time: Mon 14 Jul 2025 10:02:25 +0000 ROA not before: Mon 14 Jul 2025 09:57:25 +0000 ROA not after: Mon 13 Jul 2026 10:02:25 +0000 asID: 138598 IP address blocks: 2404:5d40:5::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.crl rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 14:03:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:4a:90:ff:a0:07:0f:ae:c3:36:b9:3e:b1:74:a0:83:31:e8:f4:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA Validity Not Before: Jul 14 09:57:25 2025 GMT Not After : Jul 13 10:02:25 2026 GMT Subject: CN=23CD718376BBB9C6EE4D3C01CE24EBD9A46BA821 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:67:b3:47:f9:c1:36:06:74:db:a2:21:09:5d: 12:4c:a9:fa:f3:c9:fd:13:43:af:28:c0:87:72:60: 50:cc:38:b9:df:62:d5:1b:39:03:26:c3:18:8f:c9: a3:fc:5c:15:1a:fc:cb:0d:3d:be:c3:1a:eb:f2:4c: ce:22:f0:e5:f7:41:b8:ad:d0:de:ae:5b:fe:d8:f1: d8:a8:20:b4:9f:a5:dc:fe:45:53:af:c4:ef:e2:88: 30:6e:d2:9d:3b:ee:18:a0:d3:fb:2e:49:12:c2:af: 97:81:8a:55:82:79:fa:c1:46:b5:5d:20:af:86:43: 2d:ef:68:a7:4d:61:d2:d3:63:a5:71:1e:0c:0f:80: 12:36:60:fd:8f:e9:1d:25:86:8b:54:12:80:f6:78: 42:ee:dc:17:65:b0:4c:4b:97:c5:eb:65:44:99:b4: 6c:8c:da:c0:32:4e:94:44:38:ce:de:7f:28:e8:53: 17:f0:f3:cf:22:72:35:0a:b5:2b:75:73:b0:20:11: 2c:28:cc:f5:a2:6f:3a:86:3d:ed:cf:a5:cd:df:60: df:9d:4c:99:1f:dd:fc:fb:49:dc:e0:9e:a1:38:30: d4:50:c9:a3:94:36:39:b0:00:4f:12:06:56:56:88: e6:04:82:f5:3e:b2:1a:b4:52:f9:cb:d6:4c:6a:49: fb:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:CD:71:83:76:BB:B9:C6:EE:4D:3C:01:CE:24:EB:D9:A4:6B:A8:21 X509v3 Authority Key Identifier: keyid:28:4B:8A:DA:D3:E0:98:E9:BF:BE:AC:6A:91:29:EF:A6:44:4D:F2:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a353a3a2f34382d3438203d3e20313338353938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:5d40:5::/48 Signature Algorithm: sha256WithRSAEncryption cd:6c:1e:8c:04:72:49:49:0a:41:cf:2e:7b:16:82:7a:1a:86: 59:b9:1a:c9:2d:89:c8:6f:f3:2d:df:6a:57:f0:dc:ae:d1:b9: 9b:b1:c6:9b:fa:78:34:16:00:fb:2b:39:6a:01:0f:34:5f:18: e7:c9:f0:11:a0:87:f5:a6:f0:ce:f2:35:e1:a8:18:09:87:e9: e8:ee:08:33:c7:4b:62:9c:23:44:9d:4c:bd:c7:11:8b:f0:75: ee:e1:9a:07:32:9b:6b:06:3b:51:ce:ac:cf:c9:3b:e4:39:de: 29:e0:48:20:6a:2e:b5:93:c3:27:cc:30:8b:b9:ea:4b:19:12: c9:36:a9:b0:ef:46:fb:a3:d5:24:09:78:e0:08:c1:c2:ce:5c: d7:9e:52:12:4b:e9:2b:9d:d8:72:03:ea:53:c5:f7:3f:1b:ce: 0c:b0:d7:0f:32:e6:19:22:c0:ce:c2:f8:cd:0c:52:a5:4e:a4: 1b:00:66:62:ce:1f:9f:bc:26:1b:d4:53:26:ac:b4:33:94:f6: 8b:a0:84:3e:4f:dd:bd:d4:0e:4a:0c:9c:a4:e2:90:6a:a8:2d: 0e:ac:b6:85:21:47:80:d9:2d:8a:c5:bc:14:7e:5d:0e:9c:24: 2f:5d:80:7c:2d:09:c4:0d:45:f2:b9:7c:d5:be:3b:63:6e:b3: a5:61:63:5b -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUbUqQ/6AHD67DNrk+sXSggzHo9LswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg0QjhBREFEM0UwOThFOUJGQkVBQzZBOTEyOUVGQTY0 NDRERjJFQTAeFw0yNTA3MTQwOTU3MjVaFw0yNjA3MTMxMDAyMjVaMDMxMTAvBgNV BAMTKDIzQ0Q3MTgzNzZCQkI5QzZFRTREM0MwMUNFMjRFQkQ5QTQ2QkE4MjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOZ7NH+cE2BnTboiEJXRJMqfrz yf0TQ68owIdyYFDMOLnfYtUbOQMmwxiPyaP8XBUa/MsNPb7DGuvyTM4i8OX3Qbit 0N6uW/7Y8dioILSfpdz+RVOvxO/iiDBu0p077hig0/suSRLCr5eBilWCefrBRrVd IK+GQy3vaKdNYdLTY6VxHgwPgBI2YP2P6R0lhotUEoD2eELu3BdlsExLl8XrZUSZ tGyM2sAyTpREOM7efyjoUxfw888icjUKtSt1c7AgESwozPWibzqGPe3Ppc3fYN+d TJkf3fz7SdzgnqE4MNRQyaOUNjmwAE8SBlZWiOYEgvU+shq0UvnL1kxqSfuHAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUI81xg3a7ucbuTTwBziTr2aRrqCEwHwYDVR0j BBgwFoAUKEuK2tPgmOm/vqxqkSnvpkRN8uowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 Yzg1YzZiOS0zNGY5LTRhODUtOWNlYS1jMTZlOThhOGI1ZTAvMC8yODRCOEFEQUQz RTA5OEU5QkZCRUFDNkE5MTI5RUZBNjQ0NERGMkVBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjg0QjhBREFEM0UwOThFOUJGQkVBQzZBOTEyOUVGQTY0NDRE RjJFQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzljODVjNmI5LTM0ZjktNGE4NS05 Y2VhLWMxNmU5OGE4YjVlMC8wLzMyMzQzMDM0M2EzNTY0MzQzMDNhMzUzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzNTM5Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBF1AAAUw DQYJKoZIhvcNAQELBQADggEBAM1sHowEcklJCkHPLnsWgnoahlm5Gsktichv8y3f alfw3K7RuZuxxpv6eDQWAPsrOWoBDzRfGOfJ8BGgh/Wm8M7yNeGoGAmH6ejuCDPH S2KcI0SdTL3HEYvwde7hmgcym2sGO1HOrM/JO+Q53ingSCBqLrWTwyfMMIu56ksZ Esk2qbDvRvuj1SQJeOAIwcLOXNeeUhJL6Sud2HID6lPF9z8bzgyw1w8y5hkiwM7C +M0MUqVOpBsAZmLOH5+8JhvUUyastDOU9oughD5P3b3UDkoMnKTikGqoLQ6stoUh R4DZLYrFvBR+XQ6cJC9dgHwtCcQNRfK5fNW+O2Nus6VhY1s= -----END CERTIFICATE-----Generated at Mon Jul 21 18:04:44 2025 by rpki-client