$ rpki-client -vvf repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a373a3a2f34382d3438203d3e20313338353938.roa File: 323430343a356434303a373a3a2f34382d3438203d3e20313338353938.roa (raw, json) Hash identifier: 2JoT7M7m37m0xJyrGZ0XzlMJ4mVcLTVKVu699zp/2U0= Subject key identifier: BC:B8:6C:FA:4C:45:F1:8E:F3:7F:BA:42:72:5F:31:91:1A:D6:04:18 Certificate issuer: /CN=284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA Certificate serial: 44E7CEFABA1228C0E8FAD484BAE687D95597D499 Authority key identifier: 28:4B:8A:DA:D3:E0:98:E9:BF:BE:AC:6A:91:29:EF:A6:44:4D:F2:EA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a373a3a2f34382d3438203d3e20313338353938.roa Signing time: Mon 14 Jul 2025 10:02:26 +0000 ROA not before: Mon 14 Jul 2025 09:57:26 +0000 ROA not after: Mon 13 Jul 2026 10:02:26 +0000 asID: 138598 IP address blocks: 2404:5d40:7::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.crl rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 14:03:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:e7:ce:fa:ba:12:28:c0:e8:fa:d4:84:ba:e6:87:d9:55:97:d4:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA Validity Not Before: Jul 14 09:57:26 2025 GMT Not After : Jul 13 10:02:26 2026 GMT Subject: CN=BCB86CFA4C45F18EF37FBA42725F31911AD60418 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:58:04:eb:01:d3:02:60:fd:88:3c:a1:96:55: 83:ec:44:68:29:c2:f2:9b:0a:f4:19:60:93:54:5b: 90:e6:37:83:11:89:e1:b9:68:83:ce:69:a4:5a:75: 01:ea:ee:e4:a2:97:fe:d6:0d:02:62:f2:44:54:46: a5:bc:2d:ba:1e:99:27:cd:50:32:f9:e8:1a:8b:f2: d7:d6:07:3c:bf:35:52:44:cc:bd:6a:af:d3:cc:c4: 90:b1:23:81:11:f3:f4:f1:31:7f:98:e5:2d:f5:92: 9a:89:e3:95:0a:ad:ab:88:4b:3e:89:10:14:e0:5b: f2:e7:d2:a1:c3:4b:b9:ae:7e:2e:84:9d:43:82:21: 38:4a:d3:30:ec:76:77:2b:ae:d6:e8:71:ea:44:8e: c3:99:d0:5d:10:a5:17:5e:19:77:38:cd:07:9e:78: c4:48:b8:2d:e9:13:c5:cc:ae:9b:83:91:66:1d:b4: 8e:f8:dd:85:d6:b8:ae:29:90:64:f3:d5:e8:73:32: 33:44:fc:8c:e5:e0:99:a2:d7:c2:76:ea:16:c7:5d: ed:aa:fc:e7:e1:c2:51:df:f8:42:3e:2f:63:ab:20: c1:17:78:b8:2e:bc:03:ed:2b:15:b4:30:9b:a9:10: 2a:7a:4b:ad:b8:8c:c8:46:c0:78:88:c6:13:7b:ec: ab:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:B8:6C:FA:4C:45:F1:8E:F3:7F:BA:42:72:5F:31:91:1A:D6:04:18 X509v3 Authority Key Identifier: keyid:28:4B:8A:DA:D3:E0:98:E9:BF:BE:AC:6A:91:29:EF:A6:44:4D:F2:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a373a3a2f34382d3438203d3e20313338353938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:5d40:7::/48 Signature Algorithm: sha256WithRSAEncryption 94:c3:70:41:43:c4:e5:39:a7:a4:18:2f:f7:21:9a:ba:0e:b7: 1a:67:c0:6d:fa:c8:51:1f:1d:7a:31:00:16:13:a1:39:97:bc: 8b:7a:a1:3d:cf:a6:59:99:fd:f9:2e:73:c3:82:8f:24:fe:89: 86:dd:7d:41:d1:17:f7:c5:fb:51:20:a3:23:93:7b:da:c2:3b: 81:36:c2:a8:af:54:c2:0b:10:e0:bb:9f:27:87:7b:c3:55:c1: 9e:40:89:ff:82:25:62:0c:9a:1c:65:45:ab:75:8e:5a:74:3c: 9a:6c:fc:fa:52:7c:8d:ce:16:51:45:f6:ec:29:20:f1:cf:b0: 36:3b:e2:12:e0:69:a1:c0:b2:6d:6f:d9:4e:31:7e:85:36:68: 73:b0:f6:e1:f2:15:80:30:af:fd:ae:57:75:74:0e:50:0e:e5: 59:14:7c:61:0e:fa:a1:bd:d9:9b:77:7f:08:41:41:b7:4e:c6: 62:d3:51:6f:94:4b:43:30:1d:7e:3f:a3:47:55:b6:d8:ec:41: dc:d3:6f:1a:b2:95:ab:1a:8b:76:86:75:51:97:ed:b2:4c:88: e8:db:00:31:a6:02:03:ae:d1:6f:59:63:97:e4:d6:35:bb:20: 31:40:ca:2e:86:03:f1:b2:26:ed:74:10:78:2d:3e:7b:45:a8: c3:09:99:a0 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUROfO+roSKMDo+tSEuuaH2VWX1JkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg0QjhBREFEM0UwOThFOUJGQkVBQzZBOTEyOUVGQTY0 NDRERjJFQTAeFw0yNTA3MTQwOTU3MjZaFw0yNjA3MTMxMDAyMjZaMDMxMTAvBgNV BAMTKEJDQjg2Q0ZBNEM0NUYxOEVGMzdGQkE0MjcyNUYzMTkxMUFENjA0MTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAWATrAdMCYP2IPKGWVYPsRGgp wvKbCvQZYJNUW5DmN4MRieG5aIPOaaRadQHq7uSil/7WDQJi8kRURqW8LboemSfN UDL56BqL8tfWBzy/NVJEzL1qr9PMxJCxI4ER8/TxMX+Y5S31kpqJ45UKrauISz6J EBTgW/Ln0qHDS7mufi6EnUOCIThK0zDsdncrrtbocepEjsOZ0F0QpRdeGXc4zQee eMRIuC3pE8XMrpuDkWYdtI743YXWuK4pkGTz1ehzMjNE/Izl4Jmi18J26hbHXe2q /OfhwlHf+EI+L2OrIMEXeLguvAPtKxW0MJupECp6S624jMhGwHiIxhN77KttAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUvLhs+kxF8Y7zf7pCcl8xkRrWBBgwHwYDVR0j BBgwFoAUKEuK2tPgmOm/vqxqkSnvpkRN8uowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 Yzg1YzZiOS0zNGY5LTRhODUtOWNlYS1jMTZlOThhOGI1ZTAvMC8yODRCOEFEQUQz RTA5OEU5QkZCRUFDNkE5MTI5RUZBNjQ0NERGMkVBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjg0QjhBREFEM0UwOThFOUJGQkVBQzZBOTEyOUVGQTY0NDRE RjJFQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzljODVjNmI5LTM0ZjktNGE4NS05 Y2VhLWMxNmU5OGE4YjVlMC8wLzMyMzQzMDM0M2EzNTY0MzQzMDNhMzczYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzNTM5Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBF1AAAcw DQYJKoZIhvcNAQELBQADggEBAJTDcEFDxOU5p6QYL/chmroOtxpnwG36yFEfHXox ABYToTmXvIt6oT3PplmZ/fkuc8OCjyT+iYbdfUHRF/fF+1EgoyOTe9rCO4E2wqiv VMILEOC7nyeHe8NVwZ5Aif+CJWIMmhxlRat1jlp0PJps/PpSfI3OFlFF9uwpIPHP sDY74hLgaaHAsm1v2U4xfoU2aHOw9uHyFYAwr/2uV3V0DlAO5VkUfGEO+qG92Zt3 fwhBQbdOxmLTUW+US0MwHX4/o0dVttjsQdzTbxqylasai3aGdVGX7bJMiOjbADGm AgOu0W9ZY5fk1jW7IDFAyi6GA/GyJu10EHgtPntFqMMJmaA= -----END CERTIFICATE-----Generated at Mon Jul 21 18:05:49 2025 by rpki-client