$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a323a3a2f34382d3438203d3e203539323832.roa File: 323430303a643638303a323a3a2f34382d3438203d3e203539323832.roa (raw, json) Hash identifier: qLkIroWnbqSVivBGqvgi5oF8E8eNhXgrJocCdlawdNk= Subject key identifier: B6:D6:11:A3:D4:D9:20:CD:37:1C:13:0B:C0:F5:B7:DE:6F:30:1F:A2 Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA Certificate serial: 2ADDE7A1D06410B5A783CC3604D42D34B6E8D954 Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a323a3a2f34382d3438203d3e203539323832.roa Signing time: Sun 13 Jul 2025 11:46:08 +0000 ROA not before: Sun 13 Jul 2025 11:41:08 +0000 ROA not after: Sun 12 Jul 2026 11:46:08 +0000 asID: 59282 IP address blocks: 2400:d680:2::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Jul 2025 22:28:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:dd:e7:a1:d0:64:10:b5:a7:83:cc:36:04:d4:2d:34:b6:e8:d9:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA Validity Not Before: Jul 13 11:41:08 2025 GMT Not After : Jul 12 11:46:08 2026 GMT Subject: CN=B6D611A3D4D920CD371C130BC0F5B7DE6F301FA2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:3a:de:32:01:c2:30:54:5f:c5:13:e2:b0:d7: 48:60:3e:1d:0d:43:04:f1:35:99:fe:18:fa:b4:c8: ef:64:51:8b:dc:8e:f9:7f:c1:9d:ce:cf:ff:fe:84: 3d:64:59:8c:87:5f:71:05:ad:7e:34:cc:93:1b:3c: 24:83:8c:10:b4:34:be:47:93:48:99:b5:f5:d2:ed: fe:fb:48:de:90:34:d1:4a:bb:eb:3d:ff:68:d2:e7: d6:63:bd:29:34:85:ec:46:60:bd:02:b3:10:2c:ed: 77:a6:a4:e1:e3:da:7a:89:fa:d7:2f:b2:42:c5:57: 17:d2:66:ee:11:1f:67:d8:61:fa:e5:b5:b7:09:a1: a2:93:15:74:b6:a6:a1:a2:47:5e:aa:b4:8b:e5:6e: 97:61:d1:24:34:7a:c6:9b:f9:d2:2e:45:38:43:53: 61:4b:21:1f:37:17:5c:0f:d4:fb:d1:d8:1f:72:96: b7:f0:5a:29:ed:17:13:7f:74:aa:b8:af:94:72:87: 4a:99:2e:29:22:91:df:13:83:f5:6f:7d:e6:b3:42: fa:7c:88:7d:5b:4f:76:b9:9d:27:cb:5b:6a:fe:8c: 28:a2:53:c1:36:da:9b:c9:41:81:eb:8f:5d:9a:45: 00:fd:d9:50:38:19:18:d9:d1:a5:e1:49:c2:82:54: ca:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:D6:11:A3:D4:D9:20:CD:37:1C:13:0B:C0:F5:B7:DE:6F:30:1F:A2 X509v3 Authority Key Identifier: keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a323a3a2f34382d3438203d3e203539323832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d680:2::/48 Signature Algorithm: sha256WithRSAEncryption 68:56:85:8b:e2:26:92:cf:42:db:f8:66:ff:38:2d:65:a7:a1: 56:bf:20:02:21:a1:e7:73:2e:4c:b1:b8:e6:d6:40:a5:33:65: 4c:f6:14:71:31:d8:f5:47:52:1c:72:75:73:9d:d0:5a:39:ae: d7:7d:03:af:c5:d3:12:4f:f4:86:e5:2b:1d:8a:26:cf:d0:fd: bb:74:b1:4c:b0:48:43:4a:20:9e:6c:d8:ce:6d:f6:45:26:b6: 55:31:c3:19:27:0b:22:b6:85:6c:68:39:37:ad:c1:5d:e3:e1: 76:0e:ab:88:85:d8:cb:ea:b2:10:00:a6:04:ab:21:4c:23:4e: 5b:b2:de:e9:8e:81:02:b3:bf:d5:a0:81:5b:2d:92:3f:43:fa: 77:d7:fc:5e:cc:eb:39:82:a0:21:5d:1d:2e:1a:4a:3e:25:a1: 78:8e:9c:03:47:f5:49:15:61:d7:6b:79:a4:fb:e4:a9:4a:27: 45:60:4a:9c:f2:49:d0:fd:62:83:c0:f5:3d:74:67:17:c5:80: 55:9f:58:16:13:86:b9:5e:61:a3:f2:4d:e5:65:8c:a2:72:c7: f8:2b:3b:b2:9d:8d:cb:24:b7:91:75:0f:21:8c:bb:0a:07:4c: c9:f9:eb:66:c2:04:0e:0d:49:9c:59:32:5c:75:65:26:98:48: db:15:2b:5f -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUKt3nodBkELWng8w2BNQtNLbo2VQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG MDBFNzFBQTAeFw0yNTA3MTMxMTQxMDhaFw0yNjA3MTIxMTQ2MDhaMDMxMTAvBgNV BAMTKEI2RDYxMUEzRDREOTIwQ0QzNzFDMTMwQkMwRjVCN0RFNkYzMDFGQTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdOt4yAcIwVF/FE+Kw10hgPh0N QwTxNZn+GPq0yO9kUYvcjvl/wZ3Oz//+hD1kWYyHX3EFrX40zJMbPCSDjBC0NL5H k0iZtfXS7f77SN6QNNFKu+s9/2jS59ZjvSk0hexGYL0CsxAs7XempOHj2nqJ+tcv skLFVxfSZu4RH2fYYfrltbcJoaKTFXS2pqGiR16qtIvlbpdh0SQ0esab+dIuRThD U2FLIR83F1wP1PvR2B9ylrfwWintFxN/dKq4r5Ryh0qZLikikd8Tg/VvfeazQvp8 iH1bT3a5nSfLW2r+jCiiU8E22pvJQYHrj12aRQD92VA4GRjZ0aXhScKCVMrrAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUttYRo9TZIM03HBMLwPW33m8wH6IwHwYDVR0j BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF NzFBQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04 MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzNTM5MzIzODMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJADWgAACMA0G CSqGSIb3DQEBCwUAA4IBAQBoVoWL4iaSz0Lb+Gb/OC1lp6FWvyACIaHncy5Msbjm 1kClM2VM9hRxMdj1R1IccnVzndBaOa7XfQOvxdMST/SG5SsdiibP0P27dLFMsEhD SiCebNjObfZFJrZVMcMZJwsitoVsaDk3rcFd4+F2DquIhdjL6rIQAKYEqyFMI05b st7pjoECs7/VoIFbLZI/Q/p31/xezOs5gqAhXR0uGko+JaF4jpwDR/VJFWHXa3mk ++SpSidFYEqc8knQ/WKDwPU9dGcXxYBVn1gWE4a5XmGj8k3lZYyicsf4KzuynY3L JLeRdQ8hjLsKB0zJ+etmwgQODUmcWTJcdWUmmEjbFStf -----END CERTIFICATE-----Generated at Mon Jul 21 14:31:24 2025 by rpki-client