$ rpki-client -vvf repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a363a3a2f34382d3438203d3e20313338353938.roa File: 323430343a356434303a363a3a2f34382d3438203d3e20313338353938.roa (raw, json) Hash identifier: BMaPZKd4S9fQAuwU5kc5O93/vGGp5sulKN1fvWKFFuE= Subject key identifier: 17:D5:CE:49:C3:6E:8F:D0:0A:75:67:96:77:E0:35:0F:B1:FA:2C:C1 Certificate issuer: /CN=284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA Certificate serial: 02EEE8E6FC904341A065CB13AC7AA5095F6CB668 Authority key identifier: 28:4B:8A:DA:D3:E0:98:E9:BF:BE:AC:6A:91:29:EF:A6:44:4D:F2:EA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a363a3a2f34382d3438203d3e20313338353938.roa Signing time: Mon 14 Jul 2025 10:02:25 +0000 ROA not before: Mon 14 Jul 2025 09:57:25 +0000 ROA not after: Mon 13 Jul 2026 10:02:25 +0000 asID: 138598 IP address blocks: 2404:5d40:6::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.crl rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 14:03:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:ee:e8:e6:fc:90:43:41:a0:65:cb:13:ac:7a:a5:09:5f:6c:b6:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA Validity Not Before: Jul 14 09:57:25 2025 GMT Not After : Jul 13 10:02:25 2026 GMT Subject: CN=17D5CE49C36E8FD00A75679677E0350FB1FA2CC1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:21:00:f7:b4:4a:ee:79:f5:8a:86:8d:84:70: a7:7d:1e:5b:0b:c2:a9:7a:0e:dd:35:cc:60:46:36: 4b:06:57:44:c0:61:35:4d:df:3f:00:3c:a8:62:ce: 9e:5f:32:03:ce:c1:10:81:78:6d:ab:3e:8e:5f:e5: fa:ef:1f:af:4a:11:2e:dc:f4:a7:d7:b9:62:bc:57: a6:e6:17:eb:28:b3:99:ce:e5:eb:89:41:38:a7:17: 34:2d:9a:f8:4b:2a:ab:3d:93:8e:78:2c:76:15:98: d6:1d:75:c5:dc:eb:89:2e:e6:05:d5:5e:2a:57:3a: 08:ce:73:f6:d3:2e:0e:a5:04:71:de:02:3d:fb:58: 73:f2:d3:3d:08:5d:b1:00:55:fa:58:4f:e6:a0:2f: a2:2e:01:80:32:14:57:c9:46:e7:29:cb:28:d7:3f: ec:7e:9f:a4:93:11:09:5b:a7:3f:7c:2c:a2:81:91: e5:ab:23:32:9d:f2:8a:21:4f:e9:2e:0c:a4:5c:27: 20:93:70:ae:be:4d:71:64:2a:42:76:99:84:00:0d: 01:01:17:79:0a:1d:75:0f:c7:e6:78:c0:df:d2:d7: a9:ca:09:c7:89:ba:34:5d:40:64:58:17:19:ab:05: 5d:92:3e:31:10:c8:68:f7:43:cf:33:af:5f:fc:77: f2:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:D5:CE:49:C3:6E:8F:D0:0A:75:67:96:77:E0:35:0F:B1:FA:2C:C1 X509v3 Authority Key Identifier: keyid:28:4B:8A:DA:D3:E0:98:E9:BF:BE:AC:6A:91:29:EF:A6:44:4D:F2:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a363a3a2f34382d3438203d3e20313338353938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:5d40:6::/48 Signature Algorithm: sha256WithRSAEncryption b1:38:d0:fe:8d:06:65:00:ee:fc:b5:e2:21:55:5f:81:18:83: 74:c3:6c:9b:7c:bb:3e:71:6d:ae:b3:3a:6c:18:bc:e7:e1:79: 67:6b:81:0c:4c:94:70:d3:a5:da:35:a1:ff:68:47:79:ee:0f: f0:45:77:cf:80:a2:a1:b8:ea:a2:83:70:e2:07:d2:27:e0:74: 57:92:f0:1d:1b:0f:d8:33:d2:90:d3:69:84:87:d1:e7:04:0e: 83:aa:c4:21:49:95:fb:42:9c:66:0f:f0:4b:53:76:70:07:93: 97:9f:0a:93:03:f9:dc:0e:2d:7d:b7:e0:91:c7:af:4a:09:0a: 64:41:65:63:32:61:58:db:0f:d5:fa:ab:21:88:24:28:11:fd: e8:48:85:06:df:41:c5:e6:98:7e:24:32:fd:17:0b:5e:11:f8: c1:1b:7f:6a:d5:8e:d6:d8:6b:2e:3e:dc:fa:77:08:6b:36:89: 8c:ab:e3:08:7f:6c:42:b6:65:ba:67:f9:0e:67:c6:59:3c:d0: f5:9c:6a:45:af:58:41:8d:f3:d9:87:b0:ce:87:78:d6:c2:3f: 22:4d:c0:65:01:99:df:ff:71:28:cf:45:ff:0f:b4:f6:4e:d7: 52:04:47:3c:a4:ab:7e:00:5f:af:28:bb:8a:c4:46:dd:1e:89: 4a:9f:fe:34 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUAu7o5vyQQ0GgZcsTrHqlCV9stmgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg0QjhBREFEM0UwOThFOUJGQkVBQzZBOTEyOUVGQTY0 NDRERjJFQTAeFw0yNTA3MTQwOTU3MjVaFw0yNjA3MTMxMDAyMjVaMDMxMTAvBgNV BAMTKDE3RDVDRTQ5QzM2RThGRDAwQTc1Njc5Njc3RTAzNTBGQjFGQTJDQzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBIQD3tEruefWKho2EcKd9HlsL wql6Dt01zGBGNksGV0TAYTVN3z8APKhizp5fMgPOwRCBeG2rPo5f5frvH69KES7c 9KfXuWK8V6bmF+sos5nO5euJQTinFzQtmvhLKqs9k454LHYVmNYddcXc64ku5gXV XipXOgjOc/bTLg6lBHHeAj37WHPy0z0IXbEAVfpYT+agL6IuAYAyFFfJRucpyyjX P+x+n6STEQlbpz98LKKBkeWrIzKd8oohT+kuDKRcJyCTcK6+TXFkKkJ2mYQADQEB F3kKHXUPx+Z4wN/S16nKCceJujRdQGRYFxmrBV2SPjEQyGj3Q88zr1/8d/JFAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUF9XOScNuj9AKdWeWd+A1D7H6LMEwHwYDVR0j BBgwFoAUKEuK2tPgmOm/vqxqkSnvpkRN8uowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 Yzg1YzZiOS0zNGY5LTRhODUtOWNlYS1jMTZlOThhOGI1ZTAvMC8yODRCOEFEQUQz RTA5OEU5QkZCRUFDNkE5MTI5RUZBNjQ0NERGMkVBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjg0QjhBREFEM0UwOThFOUJGQkVBQzZBOTEyOUVGQTY0NDRE RjJFQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzljODVjNmI5LTM0ZjktNGE4NS05 Y2VhLWMxNmU5OGE4YjVlMC8wLzMyMzQzMDM0M2EzNTY0MzQzMDNhMzYzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzNTM5Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBF1AAAYw DQYJKoZIhvcNAQELBQADggEBALE40P6NBmUA7vy14iFVX4EYg3TDbJt8uz5xba6z OmwYvOfheWdrgQxMlHDTpdo1of9oR3nuD/BFd8+AoqG46qKDcOIH0ifgdFeS8B0b D9gz0pDTaYSH0ecEDoOqxCFJlftCnGYP8EtTdnAHk5efCpMD+dwOLX234JHHr0oJ CmRBZWMyYVjbD9X6qyGIJCgR/ehIhQbfQcXmmH4kMv0XC14R+MEbf2rVjtbYay4+ 3Pp3CGs2iYyr4wh/bEK2Zbpn+Q5nxlk80PWcakWvWEGN89mHsM6HeNbCPyJNwGUB md//cSjPRf8PtPZO11IERzykq34AX68ou4rERt0eiUqf/jQ= -----END CERTIFICATE-----Generated at Mon Jul 21 18:07:11 2025 by rpki-client