$ rpki-client -vvf repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a3a2f34382d3438203d3e20313338353938.roa File: 323430343a356434303a3a2f34382d3438203d3e20313338353938.roa (raw, json) Hash identifier: XQn6RBqlg6RuaEoPTX1Jp1jRKOhAgtTrK3uAW566Uwk= Subject key identifier: 66:32:4D:3A:F7:C7:77:8A:0D:59:AD:E2:14:AA:F2:C9:76:1B:FB:6D Certificate issuer: /CN=284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA Certificate serial: 0C1E2CD9D81ECD0F2BA75DB4199D7F1D79A07CA8 Authority key identifier: 28:4B:8A:DA:D3:E0:98:E9:BF:BE:AC:6A:91:29:EF:A6:44:4D:F2:EA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a3a2f34382d3438203d3e20313338353938.roa Signing time: Mon 14 Jul 2025 10:02:25 +0000 ROA not before: Mon 14 Jul 2025 09:57:25 +0000 ROA not after: Mon 13 Jul 2026 10:02:25 +0000 asID: 138598 IP address blocks: 2404:5d40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.crl rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 14:03:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:1e:2c:d9:d8:1e:cd:0f:2b:a7:5d:b4:19:9d:7f:1d:79:a0:7c:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA Validity Not Before: Jul 14 09:57:25 2025 GMT Not After : Jul 13 10:02:25 2026 GMT Subject: CN=66324D3AF7C7778A0D59ADE214AAF2C9761BFB6D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:c1:de:d7:38:97:06:2d:92:bf:e2:67:29:4f: 39:21:53:d3:bf:46:2f:da:c3:ad:47:a9:f4:f4:18: 35:58:fd:72:fa:f8:98:81:60:4b:0e:bf:27:0a:ed: 10:ff:57:32:e7:93:d2:7e:6f:48:4a:a3:01:f5:06: a7:0a:0f:e7:44:34:7a:40:ae:ed:91:de:cb:78:b0: 1b:1d:5a:68:7e:c1:98:6a:3a:fd:42:fb:9d:99:88: 4e:80:3d:82:66:94:e1:54:c3:d1:4c:06:f8:ac:63: 07:80:c1:0c:97:75:be:58:ac:08:f7:68:ec:6d:69: 84:5c:fe:de:ac:67:a9:e7:d8:27:e7:c9:16:2e:48: 43:21:0f:de:5e:57:a3:fd:e5:be:c6:e8:6f:be:a3: fb:c4:47:c3:16:41:cf:60:58:c8:3b:0e:be:36:3f: b2:92:d2:91:a7:42:b8:20:a9:ae:fe:1e:5c:61:b6: 5f:b3:54:af:3d:b6:22:46:fe:7c:23:3f:34:0f:0d: 2c:55:dd:57:1e:3b:1b:96:56:57:e9:99:7b:7f:25: 9e:94:e8:59:af:bd:00:f9:97:81:e6:25:33:d6:74: 04:65:f2:2e:f0:ed:05:f8:7a:c9:66:34:f5:e1:c1: 64:25:20:76:6e:69:8c:0f:e2:a7:bf:b2:c9:cd:a0: 2e:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:32:4D:3A:F7:C7:77:8A:0D:59:AD:E2:14:AA:F2:C9:76:1B:FB:6D X509v3 Authority Key Identifier: keyid:28:4B:8A:DA:D3:E0:98:E9:BF:BE:AC:6A:91:29:EF:A6:44:4D:F2:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/284B8ADAD3E098E9BFBEAC6A9129EFA6444DF2EA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9c85c6b9-34f9-4a85-9cea-c16e98a8b5e0/0/323430343a356434303a3a2f34382d3438203d3e20313338353938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:5d40::/48 Signature Algorithm: sha256WithRSAEncryption 8f:5f:e1:5e:0b:7d:3e:df:4d:54:ee:0c:8c:37:c4:de:2d:b0: e9:31:7f:a3:02:fd:19:3d:78:89:db:74:a8:00:77:e5:c0:71: 16:64:4e:5c:59:f4:8c:41:b9:15:09:0b:50:a5:9b:7f:9a:c7: 6c:6a:0b:b9:01:59:08:0d:54:63:c8:ba:b5:9e:5a:d3:39:d3: 37:c7:49:75:cd:ba:1d:f6:e5:5d:2b:64:63:85:b1:15:c5:a6: 95:dc:05:54:37:8d:d8:8c:83:47:19:b5:99:42:a3:bd:7e:5f: 16:5f:d1:93:58:17:f9:37:b3:81:0f:d5:bd:81:08:42:bd:b8: bf:b6:3f:76:15:41:b0:62:b9:3e:79:62:38:11:9c:98:94:74: fe:b8:12:bd:7b:41:bb:68:53:db:73:17:66:06:94:5f:7b:ce: 54:b6:dd:d5:68:46:11:32:3a:10:97:19:60:73:48:a3:bc:bd: 83:fc:7e:b1:b2:85:0f:7b:cf:fa:bf:d6:86:51:11:df:79:c9: 85:83:44:f9:28:12:f0:7c:00:f1:1e:f5:e6:ff:f8:5c:e8:7f: 83:1c:30:10:75:bb:89:dc:ed:d3:64:b9:3c:45:dd:bc:ac:2e: 16:c8:5b:3a:14:5c:f9:ca:f8:10:f1:10:1a:ed:5e:32:b5:0e: 91:62:bf:9f -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgIUDB4s2dgezQ8rp120GZ1/HXmgfKgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg0QjhBREFEM0UwOThFOUJGQkVBQzZBOTEyOUVGQTY0 NDRERjJFQTAeFw0yNTA3MTQwOTU3MjVaFw0yNjA3MTMxMDAyMjVaMDMxMTAvBgNV BAMTKDY2MzI0RDNBRjdDNzc3OEEwRDU5QURFMjE0QUFGMkM5NzYxQkZCNkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpwd7XOJcGLZK/4mcpTzkhU9O/ Ri/aw61HqfT0GDVY/XL6+JiBYEsOvycK7RD/VzLnk9J+b0hKowH1BqcKD+dENHpA ru2R3st4sBsdWmh+wZhqOv1C+52ZiE6APYJmlOFUw9FMBvisYweAwQyXdb5YrAj3 aOxtaYRc/t6sZ6nn2CfnyRYuSEMhD95eV6P95b7G6G++o/vER8MWQc9gWMg7Dr42 P7KS0pGnQrggqa7+Hlxhtl+zVK89tiJG/nwjPzQPDSxV3VceOxuWVlfpmXt/JZ6U 6FmvvQD5l4HmJTPWdARl8i7w7QX4eslmNPXhwWQlIHZuaYwP4qe/ssnNoC4/AgMB AAGjggI1MIICMTAdBgNVHQ4EFgQUZjJNOvfHd4oNWa3iFKryyXYb+20wHwYDVR0j BBgwFoAUKEuK2tPgmOm/vqxqkSnvpkRN8uowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 Yzg1YzZiOS0zNGY5LTRhODUtOWNlYS1jMTZlOThhOGI1ZTAvMC8yODRCOEFEQUQz RTA5OEU5QkZCRUFDNkE5MTI5RUZBNjQ0NERGMkVBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjg0QjhBREFEM0UwOThFOUJGQkVBQzZBOTEyOUVGQTY0NDRE RjJFQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzljODVjNmI5LTM0ZjktNGE4NS05 Y2VhLWMxNmU5OGE4YjVlMC8wLzMyMzQzMDM0M2EzNTY0MzQzMDNhM2EyZjM0Mzgy ZDM0MzgyMDNkM2UyMDMxMzMzODM1MzkzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQEXUAAADANBgkq hkiG9w0BAQsFAAOCAQEAj1/hXgt9Pt9NVO4MjDfE3i2w6TF/owL9GT14idt0qAB3 5cBxFmROXFn0jEG5FQkLUKWbf5rHbGoLuQFZCA1UY8i6tZ5a0znTN8dJdc26Hfbl XStkY4WxFcWmldwFVDeN2IyDRxm1mUKjvX5fFl/Rk1gX+TezgQ/VvYEIQr24v7Y/ dhVBsGK5PnliOBGcmJR0/rgSvXtBu2hT23MXZgaUX3vOVLbd1WhGETI6EJcZYHNI o7y9g/x+sbKFD3vP+r/WhlER33nJhYNE+SgS8HwA8R715v/4XOh/gxwwEHW7idzt 02S5PEXdvKwuFshbOhRc+cr4EPEQGu1eMrUOkWK/nw== -----END CERTIFICATE-----Generated at Mon Jul 21 18:04:33 2025 by rpki-client