$ rpki-client -vvf repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a383a3a2f34382d3438203d3e20313338353938.roa File: 323430343a356434303a383a3a2f34382d3438203d3e20313338353938.roa (raw, json) Hash identifier: LCHOag0uJb1cjVFsg2v6UKKoMu1dXnSpGeS35y1AH+w= Subject key identifier: 46:2B:A8:F3:70:40:FB:89:25:4A:16:E8:CF:85:57:58:10:39:1D:A1 Certificate issuer: /CN=284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA Certificate serial: 1E24A347113D5E7CCC1853BC958653151A6C7A67 Authority key identifier: 28:4B:8A:DA:D3:E0:98:E9:BF:BE:AC:6A:91:29:EF:A6:44:4D:F2:EA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a383a3a2f34382d3438203d3e20313338353938.roa Signing time: Mon 14 Jul 2025 10:02:25 +0000 ROA not before: Mon 14 Jul 2025 09:57:25 +0000 ROA not after: Mon 13 Jul 2026 10:02:25 +0000 asID: 138598 IP address blocks: 2404:5d40:8::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.crl rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 14:03:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:24:a3:47:11:3d:5e:7c:cc:18:53:bc:95:86:53:15:1a:6c:7a:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA Validity Not Before: Jul 14 09:57:25 2025 GMT Not After : Jul 13 10:02:25 2026 GMT Subject: CN=462BA8F37040FB89254A16E8CF85575810391DA1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:5e:ca:75:63:71:8f:db:0d:d1:76:33:62:45: 35:a2:67:3f:35:50:4c:ee:dc:93:a7:0a:96:f7:a1: 4d:7e:fb:d6:16:2e:58:a8:a0:83:63:01:00:e6:2c: 39:3c:e4:95:5b:34:49:39:10:7b:d5:46:47:a0:29: 5a:b3:15:36:9a:77:8e:00:1e:5b:65:44:7c:43:b4: 27:26:62:dc:e8:51:d5:23:bd:31:9a:08:a8:4c:ca: f5:9b:70:bb:20:87:35:61:ff:83:48:de:ac:74:1e: c9:3e:a3:50:03:e9:7f:5b:2c:42:08:0d:d9:d6:5f: 00:d7:f5:e3:4f:cd:bf:48:99:7b:43:02:47:3a:10: 3c:e9:8c:8e:bb:94:4a:ba:c1:77:45:3e:d3:9e:15: 30:41:4f:d6:60:d5:63:df:c2:3e:5c:b1:99:51:ee: fc:4e:b2:f6:0a:c5:66:34:84:76:bb:9a:13:83:50: 0d:3f:f2:77:82:34:dc:c8:49:a8:3f:40:28:23:a0: be:8e:68:c2:04:f6:3d:02:f9:ea:a2:33:ad:62:63: e8:5b:b1:06:4a:7a:95:10:64:1a:68:6f:b8:ba:c4: a2:37:af:c6:e6:23:56:cd:98:60:5a:d5:0f:7c:01: 65:2b:95:2f:ec:23:e4:04:8b:99:5c:b9:61:10:e8: 3c:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:2B:A8:F3:70:40:FB:89:25:4A:16:E8:CF:85:57:58:10:39:1D:A1 X509v3 Authority Key Identifier: keyid:28:4B:8A:DA:D3:E0:98:E9:BF:BE:AC:6A:91:29:EF:A6:44:4D:F2:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a383a3a2f34382d3438203d3e20313338353938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:5d40:8::/48 Signature Algorithm: sha256WithRSAEncryption 82:ed:df:d2:5d:a5:ab:88:48:43:b0:a9:59:97:3f:a0:73:63: e3:14:fb:01:b3:1d:ed:1d:01:9a:23:cc:4d:6b:15:2b:17:48: 8c:a9:a4:7f:f7:cc:7b:25:fb:2d:3b:2e:6b:ab:a6:43:70:06: 10:1d:5c:eb:2c:fe:ff:38:fa:35:47:c8:1a:66:6f:95:bf:16: a0:91:a8:70:32:08:44:19:4f:31:69:49:8f:44:6e:d9:49:d3: 5d:f5:e8:71:45:47:11:95:c4:96:e9:47:88:7d:2e:23:42:e1: a3:5f:d9:13:5f:02:a0:12:89:7e:b4:d1:89:a0:40:ba:fb:36: dc:5f:7f:d3:d7:5b:2b:41:55:01:cc:b0:36:f4:c1:68:fd:ec: b1:8d:7f:36:e1:1f:63:df:71:13:76:8e:ca:6b:00:2c:de:cd: 1d:fc:5b:66:2c:26:2b:21:a7:a4:70:9a:87:d3:78:fa:9d:8b: 29:c3:21:c4:e4:20:2a:08:df:2b:16:96:4c:82:96:b6:3b:24: be:14:d9:86:be:64:f6:fa:15:ef:f0:c3:ef:21:83:5c:b6:5a: 5b:ab:24:04:7a:cb:d3:9a:74:f2:6c:8f:fa:60:3a:3e:db:23: 65:fa:c6:ff:e3:2a:8f:ed:e2:af:c1:b0:53:2e:df:98:37:24: 14:2f:57:1a -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUHiSjRxE9XnzMGFO8lYZTFRpsemcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg0QjhBREFEM0UwOThFOUJGQkVBQzZBOTEyOUVGQTY0 NDRERjJFQTAeFw0yNTA3MTQwOTU3MjVaFw0yNjA3MTMxMDAyMjVaMDMxMTAvBgNV BAMTKDQ2MkJBOEYzNzA0MEZCODkyNTRBMTZFOENGODU1NzU4MTAzOTFEQTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGXsp1Y3GP2w3RdjNiRTWiZz81 UEzu3JOnCpb3oU1++9YWLliooINjAQDmLDk85JVbNEk5EHvVRkegKVqzFTaad44A HltlRHxDtCcmYtzoUdUjvTGaCKhMyvWbcLsghzVh/4NI3qx0Hsk+o1AD6X9bLEII DdnWXwDX9eNPzb9ImXtDAkc6EDzpjI67lEq6wXdFPtOeFTBBT9Zg1WPfwj5csZlR 7vxOsvYKxWY0hHa7mhODUA0/8neCNNzISag/QCgjoL6OaMIE9j0C+eqiM61iY+hb sQZKepUQZBpob7i6xKI3r8bmI1bNmGBa1Q98AWUrlS/sI+QEi5lcuWEQ6DwlAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQURiuo83BA+4klShboz4VXWBA5HaEwHwYDVR0j BBgwFoAUKEuK2tPgmOm/vqxqkSnvpkRN8uowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 Yzg1YzZiOS0zNGY5LTRhODUtOWNlYS1jMTZlOThhOGI1ZTAvMC8yODRCOEFEQUQz RTA5OEU5QkZCRUFDNkE5MTI5RUZBNjQ0NERGMkVBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjg0QjhBREFEM0UwOThFOUJGQkVBQzZBOTEyOUVGQTY0NDRE RjJFQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzljODVjNmI5LTM0ZjktNGE4NS05 Y2VhLWMxNmU5OGE4YjVlMC8wLzMyMzQzMDM0M2EzNTY0MzQzMDNhMzgzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzNTM5Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBF1AAAgw DQYJKoZIhvcNAQELBQADggEBAILt39JdpauISEOwqVmXP6BzY+MU+wGzHe0dAZoj zE1rFSsXSIyppH/3zHsl+y07LmurpkNwBhAdXOss/v84+jVHyBpmb5W/FqCRqHAy CEQZTzFpSY9EbtlJ01316HFFRxGVxJbpR4h9LiNC4aNf2RNfAqASiX600YmgQLr7 Ntxff9PXWytBVQHMsDb0wWj97LGNfzbhH2PfcRN2jsprACzezR38W2YsJishp6Rw mofTePqdiynDIcTkICoI3ysWlkyClrY7JL4U2Ya+ZPb6Fe/ww+8hg1y2WlurJAR6 y9OadPJsj/pgOj7bI2X6xv/jKo/t4q/BsFMu35g3JBQvVxo= -----END CERTIFICATE-----Generated at Mon Jul 21 18:05:56 2025 by rpki-client