$ rpki-client -vvf repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/323430343a636534303a3a2f33322d3332203d3e20313338383834.roa File: 323430343a636534303a3a2f33322d3332203d3e20313338383834.roa (raw, json) Hash identifier: DcgpR3dumYc3Eoce65U1RiuqJ3FJu3j4JD+CZ1GSu4U= Subject key identifier: 75:6A:98:DC:64:13:4F:93:0A:26:8C:80:68:7E:2C:A1:F6:95:50:37 Certificate issuer: /CN=88BD1AAEA16D8A24550416CDB95E232152249B3E Certificate serial: 44596E18F611BBD030900FE5B9AB027D2B5F6F11 Authority key identifier: 88:BD:1A:AE:A1:6D:8A:24:55:04:16:CD:B9:5E:23:21:52:24:9B:3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88BD1AAEA16D8A24550416CDB95E232152249B3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/323430343a636534303a3a2f33322d3332203d3e20313338383834.roa Signing time: Sat 12 Jul 2025 11:00:01 +0000 ROA not before: Sat 12 Jul 2025 10:55:01 +0000 ROA not after: Sat 11 Jul 2026 11:00:01 +0000 asID: 138884 IP address blocks: 2404:ce40::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/88BD1AAEA16D8A24550416CDB95E232152249B3E.crl rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/88BD1AAEA16D8A24550416CDB95E232152249B3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88BD1AAEA16D8A24550416CDB95E232152249B3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 04:30:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:59:6e:18:f6:11:bb:d0:30:90:0f:e5:b9:ab:02:7d:2b:5f:6f:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88BD1AAEA16D8A24550416CDB95E232152249B3E Validity Not Before: Jul 12 10:55:01 2025 GMT Not After : Jul 11 11:00:01 2026 GMT Subject: CN=756A98DC64134F930A268C80687E2CA1F6955037 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:d2:be:62:ea:73:22:b5:aa:3d:04:dd:42:58: bb:38:f5:27:36:5c:8a:c4:0d:43:47:b2:4e:01:d6: f3:7b:ea:2b:04:9d:47:bc:2c:c3:e7:4f:91:bb:50: 65:5f:92:08:ba:dd:77:f0:62:19:e4:64:e0:29:72: 15:18:29:fa:51:78:89:89:28:86:c3:f9:fb:80:08: 00:22:bb:71:2b:c2:bf:b4:de:d4:90:93:f9:12:c9: 06:f9:8c:43:2f:95:b0:15:fc:23:99:95:33:f8:87: f5:b6:ac:ca:e6:73:38:da:31:a2:19:62:ff:a0:d1: 67:f0:5b:b5:43:7a:7d:2e:1d:3d:dc:f4:89:f7:4e: d6:41:4f:d2:da:a5:7b:ce:47:f0:5f:84:8d:7b:a9: 05:bb:15:c2:6c:26:31:6b:11:5e:44:c4:0a:06:3f: 8e:70:a4:9f:93:29:66:e7:f3:0a:92:cf:11:fb:e5: 4e:52:e1:a4:72:e7:4f:c1:e0:cb:be:90:48:bf:33: 0d:f2:d5:0e:66:73:92:08:d6:19:f4:88:17:d7:a5: d0:3c:39:a8:ad:79:85:5d:dd:a2:32:ed:ca:c3:fe: 65:6c:ab:70:91:b2:5b:07:48:7d:9a:b1:2b:3c:4c: 3e:20:0b:2d:aa:de:32:b2:ab:75:2d:d1:5f:9f:29: 29:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:6A:98:DC:64:13:4F:93:0A:26:8C:80:68:7E:2C:A1:F6:95:50:37 X509v3 Authority Key Identifier: keyid:88:BD:1A:AE:A1:6D:8A:24:55:04:16:CD:B9:5E:23:21:52:24:9B:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/88BD1AAEA16D8A24550416CDB95E232152249B3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88BD1AAEA16D8A24550416CDB95E232152249B3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/323430343a636534303a3a2f33322d3332203d3e20313338383834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:ce40::/32 Signature Algorithm: sha256WithRSAEncryption 43:f0:bd:04:1a:c9:11:fc:58:52:e0:f1:77:11:2d:d7:32:fe: 52:fc:5c:e5:1e:83:85:b6:be:c9:8e:e8:29:f5:2d:f5:5e:34: 5b:a7:5e:7f:14:40:1e:b2:8b:00:d6:7c:4b:f9:12:a4:85:7b: e5:3a:4c:44:4d:9c:30:12:64:09:73:15:6a:8e:54:c5:94:25: 5c:7c:fe:74:3c:23:3f:d0:2f:77:fe:f3:2f:a0:27:13:30:bd: 41:4d:dc:8e:3b:3e:95:c6:94:74:ed:53:32:67:55:0a:d7:a7: 38:3e:58:c9:d4:a7:0e:98:71:71:d0:dc:fd:a9:f3:f0:a6:0a: 41:92:72:fd:1e:ec:77:9d:25:9d:13:c9:4e:2f:b2:7c:c1:a2: 3d:67:3b:b8:ed:bc:07:28:a9:e7:95:ca:ad:e3:85:74:5b:4c: 13:06:a3:d3:5b:99:14:95:e1:b0:cc:80:17:a7:f6:6d:8e:b9: 90:8c:a6:63:ab:b5:92:d6:05:10:d3:7a:6f:a9:cd:eb:1f:ad: 5e:33:96:7f:2d:cf:66:1b:dc:9d:0e:4a:28:4c:3c:53:b3:eb: ba:71:ff:bc:6d:f2:25:cb:7d:b5:0b:3f:25:0b:27:96:16:d1: 7e:ab:2f:11:46:8b:74:86:df:e8:3c:88:1b:4b:a0:60:c6:38: e3:99:2d:85 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIURFluGPYRu9AwkA/luasCfStfbxEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODhCRDFBQUVBMTZEOEEyNDU1MDQxNkNEQjk1RTIzMjE1 MjI0OUIzRTAeFw0yNTA3MTIxMDU1MDFaFw0yNjA3MTExMTAwMDFaMDMxMTAvBgNV BAMTKDc1NkE5OERDNjQxMzRGOTMwQTI2OEM4MDY4N0UyQ0ExRjY5NTUwMzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDI0r5i6nMitao9BN1CWLs49Sc2 XIrEDUNHsk4B1vN76isEnUe8LMPnT5G7UGVfkgi63XfwYhnkZOApchUYKfpReImJ KIbD+fuACAAiu3Erwr+03tSQk/kSyQb5jEMvlbAV/COZlTP4h/W2rMrmczjaMaIZ Yv+g0WfwW7VDen0uHT3c9In3TtZBT9LapXvOR/BfhI17qQW7FcJsJjFrEV5ExAoG P45wpJ+TKWbn8wqSzxH75U5S4aRy50/B4Mu+kEi/Mw3y1Q5mc5II1hn0iBfXpdA8 OaiteYVd3aIy7crD/mVsq3CRslsHSH2asSs8TD4gCy2q3jKyq3Ut0V+fKSlNAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUdWqY3GQTT5MKJoyAaH4sofaVUDcwHwYDVR0j BBgwFoAUiL0arqFtiiRVBBbNuV4jIVIkmz4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MjBjNmQ2OS02MjkwLTQwMmYtYTg0ZS1kMjg5YzZlOTNhNzMvMC84OEJEMUFBRUEx NkQ4QTI0NTUwNDE2Q0RCOTVFMjMyMTUyMjQ5QjNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODhCRDFBQUVBMTZEOEEyNDU1MDQxNkNEQjk1RTIzMjE1MjI0 OUIzRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IyMGM2ZDY5LTYyOTAtNDAyZi1h ODRlLWQyODljNmU5M2E3My8wLzMyMzQzMDM0M2E2MzY1MzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzODM4MzgzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQEzkAwDQYJKoZI hvcNAQELBQADggEBAEPwvQQayRH8WFLg8XcRLdcy/lL8XOUeg4W2vsmO6Cn1LfVe NFunXn8UQB6yiwDWfEv5EqSFe+U6TERNnDASZAlzFWqOVMWUJVx8/nQ8Iz/QL3f+ 8y+gJxMwvUFN3I47PpXGlHTtUzJnVQrXpzg+WMnUpw6YcXHQ3P2p8/CmCkGScv0e 7HedJZ0TyU4vsnzBoj1nO7jtvAcoqeeVyq3jhXRbTBMGo9NbmRSV4bDMgBen9m2O uZCMpmOrtZLWBRDTem+pzesfrV4zln8tz2Yb3J0OSihMPFOz67px/7xt8iXLfbUL PyULJ5YW0X6rLxFGi3SG3+g8iBtLoGDGOOOZLYU= -----END CERTIFICATE-----Generated at Wed Jul 23 14:53:25 2025 by rpki-client