$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a35393a3a2f34382d3438203d3e203539323832.roa File: 323430303a643638303a35393a3a2f34382d3438203d3e203539323832.roa (raw, json) Hash identifier: 0AzZnlQLCCzpiwYH8VB91hQfBqmdrJ+ok40Qb8sCeko= Subject key identifier: 72:17:A2:9B:52:B6:93:73:2B:DB:D9:5E:7B:D3:C5:D2:55:AB:AD:0D Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA Certificate serial: 6C9A79A628367CEA774CC235470C089097DBA103 Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a35393a3a2f34382d3438203d3e203539323832.roa Signing time: Sun 13 Jul 2025 12:43:24 +0000 ROA not before: Sun 13 Jul 2025 12:38:24 +0000 ROA not after: Sun 12 Jul 2026 12:43:24 +0000 asID: 59282 IP address blocks: 2400:d680:59::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Jul 2025 22:28:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:9a:79:a6:28:36:7c:ea:77:4c:c2:35:47:0c:08:90:97:db:a1:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA Validity Not Before: Jul 13 12:38:24 2025 GMT Not After : Jul 12 12:43:24 2026 GMT Subject: CN=7217A29B52B693732BDBD95E7BD3C5D255ABAD0D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:f3:21:f9:c7:29:fd:d8:34:7b:15:67:4b:ad: a2:ec:8b:a4:c9:8b:d1:51:f9:31:70:4a:80:2f:0e: 1d:a8:e4:1c:e7:aa:80:bf:cd:3d:11:73:e5:2f:61: bd:f3:d4:33:0e:5b:86:e4:ba:9f:ff:22:07:2e:79: d2:05:0b:0b:a0:72:7e:c4:91:40:3c:50:74:b8:65: aa:15:04:1c:ab:dd:b3:8c:35:8a:c6:39:ea:bb:a6: f7:f1:eb:a9:25:63:dc:67:ec:cd:d2:9a:96:2f:d7: e2:6e:90:9d:4d:c9:a7:30:a6:35:71:21:21:2c:88: 0c:96:e0:ae:62:8f:70:42:a0:4c:85:78:f2:20:e9: a3:be:69:47:e3:7f:8d:45:60:4b:b5:cd:a9:f3:0a: 88:80:2b:4b:dd:a2:f2:5d:7b:3c:81:33:53:79:78: 1d:48:87:65:5e:bc:4b:79:0d:7d:ad:c0:8a:54:5d: cc:b4:9e:bf:bb:22:ef:3f:f3:26:1a:ba:c9:7b:bf: 98:0a:36:5d:54:7a:85:8a:a4:97:f0:ef:29:42:06: 18:4d:a5:ad:ad:2f:2f:8a:1a:42:66:12:fc:5e:b5: 5e:40:d0:a7:3f:28:af:bc:d1:38:d5:eb:aa:e0:ae: 4b:1e:36:b9:33:27:f4:1e:ef:d4:33:2e:f5:79:88: 02:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:17:A2:9B:52:B6:93:73:2B:DB:D9:5E:7B:D3:C5:D2:55:AB:AD:0D X509v3 Authority Key Identifier: keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a35393a3a2f34382d3438203d3e203539323832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d680:59::/48 Signature Algorithm: sha256WithRSAEncryption a1:0e:ae:bd:48:b8:81:87:9e:46:7f:79:a7:66:46:cc:d4:d5: 9e:80:90:42:fa:91:ba:88:1d:02:e7:7a:8a:1b:c4:1e:97:45: dd:5b:72:4a:48:32:6b:0a:0b:fe:00:4b:17:c0:ef:9b:57:c2: ef:3c:a6:7f:3a:90:c6:c3:06:fe:5a:34:49:e1:7c:b7:35:3f: c4:7d:c2:a2:ef:3a:b3:a6:01:17:72:db:8b:9a:f9:14:8d:ca: 24:9c:8d:d2:83:fd:de:40:4f:0a:2f:df:c7:3c:65:b7:a8:5a: 81:38:19:cb:a2:db:df:57:77:76:12:b8:32:44:fc:4c:a3:89: 96:0a:8c:b7:71:ab:bd:75:f1:9c:b6:f5:83:70:8c:d3:b1:a4: f1:0c:10:43:35:5f:99:08:14:bb:aa:0d:30:fc:2f:2d:0f:d5: 47:5d:42:fb:4f:65:b0:29:16:99:3b:7f:8b:8a:39:0a:ad:3f: fa:1c:11:99:2f:0a:12:84:80:1f:42:fa:ce:c0:08:a1:3b:2a: 11:06:8e:fc:15:eb:83:93:af:fe:a3:19:f6:33:10:3c:3f:89: 1d:5f:c6:96:f1:d9:07:e5:08:42:05:8f:85:e9:80:ed:ae:ed: 61:83:41:ef:29:32:ea:fd:e8:97:c1:7b:db:d3:b9:b6:41:b8: ce:bd:db:b8 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUbJp5pig2fOp3TMI1RwwIkJfboQMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG MDBFNzFBQTAeFw0yNTA3MTMxMjM4MjRaFw0yNjA3MTIxMjQzMjRaMDMxMTAvBgNV BAMTKDcyMTdBMjlCNTJCNjkzNzMyQkRCRDk1RTdCRDNDNUQyNTVBQkFEMEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDm8yH5xyn92DR7FWdLraLsi6TJ i9FR+TFwSoAvDh2o5BznqoC/zT0Rc+UvYb3z1DMOW4bkup//IgcuedIFCwugcn7E kUA8UHS4ZaoVBByr3bOMNYrGOeq7pvfx66klY9xn7M3SmpYv1+JukJ1NyacwpjVx ISEsiAyW4K5ij3BCoEyFePIg6aO+aUfjf41FYEu1zanzCoiAK0vdovJdezyBM1N5 eB1Ih2VevEt5DX2twIpUXcy0nr+7Iu8/8yYausl7v5gKNl1UeoWKpJfw7ylCBhhN pa2tLy+KGkJmEvxetV5A0Kc/KK+80TjV66rgrkseNrkzJ/Qe79QzLvV5iAL3AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUcheim1K2k3Mr29lee9PF0lWrrQ0wHwYDVR0j BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF NzFBQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04 MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzUzOTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzkzMjM4MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkANaAAFkw DQYJKoZIhvcNAQELBQADggEBAKEOrr1IuIGHnkZ/eadmRszU1Z6AkEL6kbqIHQLn eoobxB6XRd1bckpIMmsKC/4ASxfA75tXwu88pn86kMbDBv5aNEnhfLc1P8R9wqLv OrOmARdy24ua+RSNyiScjdKD/d5ATwov38c8ZbeoWoE4Gcui299Xd3YSuDJE/Eyj iZYKjLdxq7118Zy29YNwjNOxpPEMEEM1X5kIFLuqDTD8Ly0P1UddQvtPZbApFpk7 f4uKOQqtP/ocEZkvChKEgB9C+s7ACKE7KhEGjvwV64OTr/6jGfYzEDw/iR1fxpbx 2QflCEIFj4XpgO2u7WGDQe8pMur96JfBe9vTubZBuM6927g= -----END CERTIFICATE-----Generated at Mon Jul 21 14:29:13 2025 by rpki-client