$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a666163653a3a2f34382d3438203d3e203539323832.roa File: 323430303a643638303a666163653a3a2f34382d3438203d3e203539323832.roa (raw, json) Hash identifier: u5dDjhuBvBzcqNjKEeW7vizdTx58v6wY4rfkMiHiI5I= Subject key identifier: 55:7E:C7:E6:0A:9A:49:E8:CA:BE:36:F6:29:E0:1F:84:83:A7:70:13 Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA Certificate serial: 0C0374A83C8FCCF6B87B5B193B7141FCAA69E901 Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a666163653a3a2f34382d3438203d3e203539323832.roa Signing time: Sun 13 Jul 2025 11:46:14 +0000 ROA not before: Sun 13 Jul 2025 11:41:14 +0000 ROA not after: Sun 12 Jul 2026 11:46:14 +0000 asID: 59282 IP address blocks: 2400:d680:face::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Jul 2025 22:28:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:03:74:a8:3c:8f:cc:f6:b8:7b:5b:19:3b:71:41:fc:aa:69:e9:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA Validity Not Before: Jul 13 11:41:14 2025 GMT Not After : Jul 12 11:46:14 2026 GMT Subject: CN=557EC7E60A9A49E8CABE36F629E01F8483A77013 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:cb:93:56:6a:33:a2:c4:ba:9f:75:d4:f5:74: 45:b1:cb:80:a6:a0:8e:e8:98:41:62:7c:60:3e:a7: 53:bc:a2:a7:62:2d:14:89:e7:1b:c3:2d:c2:29:00: 3c:ae:ce:be:3b:7e:39:ab:80:ff:43:47:fa:4f:b1: fe:98:0e:8c:f4:61:bc:cf:6c:66:26:f0:fa:63:0c: b2:45:67:63:fc:44:17:3a:c3:66:1a:f4:33:2d:e2: 9f:46:86:5e:f3:57:44:c3:26:2b:51:11:88:7b:7f: 3f:d2:51:a4:36:d0:45:c3:08:57:56:39:77:27:e0: 78:a8:af:b2:60:47:e2:e5:aa:35:dd:c7:08:d8:7a: 33:35:69:e8:9f:07:64:70:3a:87:81:86:7e:58:1a: 53:d6:21:11:e3:84:18:72:7b:0f:aa:63:c5:ac:4f: 0f:b3:de:34:85:0f:04:b5:55:4d:75:55:d6:bf:fa: 54:28:08:1c:26:66:89:de:fa:41:5c:86:c2:fb:b4: 11:26:8c:17:10:b3:a3:ee:56:12:dd:cd:d4:9d:1f: 27:0d:c2:4a:2d:f2:73:5f:4c:03:d0:43:64:38:d2: 7d:26:d3:b7:8e:d3:dd:74:91:de:0e:24:8c:f2:25: 36:78:35:f0:2c:22:5a:a9:8e:ff:9c:d3:b5:34:fd: 7c:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:7E:C7:E6:0A:9A:49:E8:CA:BE:36:F6:29:E0:1F:84:83:A7:70:13 X509v3 Authority Key Identifier: keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a666163653a3a2f34382d3438203d3e203539323832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d680:face::/48 Signature Algorithm: sha256WithRSAEncryption 85:2d:9b:10:a7:95:06:7e:83:ac:75:f9:20:b0:56:9b:07:07: 5d:31:96:bc:b7:5a:28:b2:d2:6e:b8:04:1b:56:73:ca:ee:ac: 05:a8:f0:1a:c7:b5:d7:74:6d:ad:bb:3f:c0:0a:5d:44:1e:84: b0:8f:96:ba:7e:dc:b9:42:41:b7:ea:f0:14:89:62:44:82:0e: 2e:34:83:c3:92:a4:fe:4f:34:10:7d:0b:6b:f1:4d:0d:43:ab: f8:95:77:29:1d:3e:9b:f1:9f:82:2a:b7:56:69:d4:21:20:2b: 4e:17:98:9c:a4:da:35:aa:e4:d8:a9:6a:f3:e3:74:ab:75:34: 7f:e1:26:3f:51:e1:02:58:2c:cc:1c:c0:7a:bf:c8:b5:9f:91: 85:59:b7:a6:a1:d2:e3:98:42:3e:a2:ca:99:ed:db:26:2f:54: 09:b5:95:a2:b5:a3:23:ac:36:a0:9c:ea:30:ce:b5:10:e1:b1: 74:d2:68:b3:bf:3c:4e:c7:92:2f:ac:ea:57:2d:7c:6a:ca:97: 80:41:0c:da:c1:b2:b9:57:20:aa:3f:ff:82:12:57:4e:8e:9c: 1a:bf:34:ed:de:41:ac:e6:10:d0:d4:5e:86:92:81:31:cd:b4: f0:e2:b3:f2:02:aa:84:fe:f4:3e:1a:a5:7c:78:ee:b8:ed:d1: df:8d:a2:5b -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUDAN0qDyPzPa4e1sZO3FB/Kpp6QEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG MDBFNzFBQTAeFw0yNTA3MTMxMTQxMTRaFw0yNjA3MTIxMTQ2MTRaMDMxMTAvBgNV BAMTKDU1N0VDN0U2MEE5QTQ5RThDQUJFMzZGNjI5RTAxRjg0ODNBNzcwMTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXy5NWajOixLqfddT1dEWxy4Cm oI7omEFifGA+p1O8oqdiLRSJ5xvDLcIpADyuzr47fjmrgP9DR/pPsf6YDoz0YbzP bGYm8PpjDLJFZ2P8RBc6w2Ya9DMt4p9Ghl7zV0TDJitREYh7fz/SUaQ20EXDCFdW OXcn4Hior7JgR+LlqjXdxwjYejM1aeifB2RwOoeBhn5YGlPWIRHjhBhyew+qY8Ws Tw+z3jSFDwS1VU11Vda/+lQoCBwmZone+kFchsL7tBEmjBcQs6PuVhLdzdSdHycN wkot8nNfTAPQQ2Q40n0m07eO0910kd4OJIzyJTZ4NfAsIlqpjv+c07U0/XzNAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUVX7H5gqaSejKvjb2KeAfhIOncBMwHwYDVR0j BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF NzFBQS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04 MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhNjY2MTYzNjUz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzNTM5MzIzODMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJADW gPrOMA0GCSqGSIb3DQEBCwUAA4IBAQCFLZsQp5UGfoOsdfkgsFabBwddMZa8t1oo stJuuAQbVnPK7qwFqPAax7XXdG2tuz/ACl1EHoSwj5a6fty5QkG36vAUiWJEgg4u NIPDkqT+TzQQfQtr8U0NQ6v4lXcpHT6b8Z+CKrdWadQhICtOF5icpNo1quTYqWrz 43SrdTR/4SY/UeECWCzMHMB6v8i1n5GFWbemodLjmEI+osqZ7dsmL1QJtZWitaMj rDagnOowzrUQ4bF00mizvzxOx5IvrOpXLXxqypeAQQzawbK5VyCqP/+CEldOjpwa vzTt3kGs5hDQ1F6GkoExzbTw4rPyAqqE/vQ+GqV8eO647dHfjaJb -----END CERTIFICATE-----Generated at Mon Jul 21 14:29:15 2025 by rpki-client