$ rpki-client -vvf repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/323430343a636534303a3a2f33362d3336203d3e20313338383834.roa File: 323430343a636534303a3a2f33362d3336203d3e20313338383834.roa (raw, json) Hash identifier: Qn8e6r99j+EuTQtrHbDbOQqJz+jY/ebvh6ZX3n1vOEk= Subject key identifier: BF:7D:B8:91:A3:8E:EB:D5:C5:5F:98:23:4D:70:88:9D:0F:32:8D:35 Certificate issuer: /CN=88BD1AAEA16D8A24550416CDB95E232152249B3E Certificate serial: 080C57EA2A2860134664CBF96EAE2B6E1DBB23AE Authority key identifier: 88:BD:1A:AE:A1:6D:8A:24:55:04:16:CD:B9:5E:23:21:52:24:9B:3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88BD1AAEA16D8A24550416CDB95E232152249B3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/323430343a636534303a3a2f33362d3336203d3e20313338383834.roa Signing time: Sat 12 Jul 2025 11:00:01 +0000 ROA not before: Sat 12 Jul 2025 10:55:01 +0000 ROA not after: Sat 11 Jul 2026 11:00:01 +0000 asID: 138884 IP address blocks: 2404:ce40::/36 maxlen: 36 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/88BD1AAEA16D8A24550416CDB95E232152249B3E.crl rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/88BD1AAEA16D8A24550416CDB95E232152249B3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88BD1AAEA16D8A24550416CDB95E232152249B3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 04:30:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:0c:57:ea:2a:28:60:13:46:64:cb:f9:6e:ae:2b:6e:1d:bb:23:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=88BD1AAEA16D8A24550416CDB95E232152249B3E Validity Not Before: Jul 12 10:55:01 2025 GMT Not After : Jul 11 11:00:01 2026 GMT Subject: CN=BF7DB891A38EEBD5C55F98234D70889D0F328D35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:93:df:7a:b8:3b:50:00:7d:e2:9e:dc:2b:f8: a5:fb:66:d6:85:9d:4c:f3:d5:e3:9e:29:b2:2b:fb: df:4c:30:83:94:f0:3e:bb:0b:74:de:39:5d:d2:8c: d0:ce:34:82:21:5f:b0:26:bc:fe:8d:0b:ea:b3:54: 0d:d6:b0:18:63:87:31:93:38:65:a6:54:e9:29:95: ee:95:df:52:45:46:33:70:c8:05:b6:4c:a1:60:65: 22:30:d1:64:02:08:b5:1e:a9:21:20:ff:cf:9a:85: 03:1d:00:13:c7:6b:72:88:df:93:76:37:40:af:84: be:70:85:e7:60:f6:21:c5:d6:a4:30:17:be:cb:31: fd:20:2e:c6:bb:dc:59:ae:c7:58:7e:8d:c1:9c:b7: 1c:5b:f2:24:16:de:62:4b:11:e6:1b:86:f8:8c:2a: ac:50:00:c4:6f:0f:c6:9c:48:29:a9:7d:6b:8a:bc: 96:3a:21:7f:e3:a1:ad:e0:99:a9:98:a0:80:18:63: 7f:8e:ef:3c:59:77:a7:75:ca:e4:cd:32:e9:13:92: 80:20:ef:61:4d:38:9c:b2:31:f9:c0:fc:ca:bd:c2: a1:c7:ad:1e:21:6d:92:34:77:43:82:44:ee:02:12: 3b:f5:29:3a:b6:ab:1c:b7:ce:e6:92:17:1e:a0:67: 57:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:7D:B8:91:A3:8E:EB:D5:C5:5F:98:23:4D:70:88:9D:0F:32:8D:35 X509v3 Authority Key Identifier: keyid:88:BD:1A:AE:A1:6D:8A:24:55:04:16:CD:B9:5E:23:21:52:24:9B:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/88BD1AAEA16D8A24550416CDB95E232152249B3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/88BD1AAEA16D8A24550416CDB95E232152249B3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b20c6d69-6290-402f-a84e-d289c6e93a73/0/323430343a636534303a3a2f33362d3336203d3e20313338383834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:ce40::/36 Signature Algorithm: sha256WithRSAEncryption 5e:fa:94:5b:25:3f:6a:7e:d7:b7:c2:36:8d:01:49:db:70:32: 64:f6:7a:3f:89:4b:85:91:9d:ac:96:6a:7f:a4:1b:a0:80:33: ed:e6:49:83:e4:b9:ed:f5:36:44:fe:21:d8:1d:46:5b:bf:82: 50:f6:80:d2:19:46:45:f6:b7:4e:15:fd:cb:8e:1d:91:8f:c3: ae:84:82:44:5f:03:54:a6:de:6b:32:3b:ec:2b:f6:af:30:dd: 41:f5:94:8b:e3:90:df:d0:59:75:3d:64:18:36:af:de:9f:41: 88:63:8d:d8:22:84:ef:a2:63:97:66:5a:8d:90:d8:48:8d:d8: 22:61:38:cc:2c:8a:2c:61:c4:4a:18:a5:a6:a3:67:38:d4:bb: a6:ef:f3:b1:05:00:51:46:73:46:6e:1d:66:52:3d:14:d2:54: 2a:bb:b3:46:8f:b9:8d:43:06:79:3c:b3:5d:8b:02:59:b9:9f: da:04:9d:e2:80:36:2b:d5:74:ca:a1:a2:c9:b2:fa:fc:5d:9c: cd:e4:9b:5a:3e:6c:83:30:ff:10:79:e7:f3:15:f5:42:08:03: 16:e4:95:f2:14:13:d0:a9:79:0d:f0:94:3a:4c:ba:1a:90:08: 5a:bb:fd:09:c6:3d:2b:80:ff:b2:e1:e7:cf:0a:19:56:48:65: 73:c7:41:87 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUCAxX6iooYBNGZMv5bq4rbh27I64wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODhCRDFBQUVBMTZEOEEyNDU1MDQxNkNEQjk1RTIzMjE1 MjI0OUIzRTAeFw0yNTA3MTIxMDU1MDFaFw0yNjA3MTExMTAwMDFaMDMxMTAvBgNV BAMTKEJGN0RCODkxQTM4RUVCRDVDNTVGOTgyMzRENzA4ODlEMEYzMjhEMzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmk996uDtQAH3intwr+KX7ZtaF nUzz1eOeKbIr+99MMIOU8D67C3TeOV3SjNDONIIhX7AmvP6NC+qzVA3WsBhjhzGT OGWmVOkple6V31JFRjNwyAW2TKFgZSIw0WQCCLUeqSEg/8+ahQMdABPHa3KI35N2 N0CvhL5whedg9iHF1qQwF77LMf0gLsa73Fmux1h+jcGctxxb8iQW3mJLEeYbhviM KqxQAMRvD8acSCmpfWuKvJY6IX/joa3gmamYoIAYY3+O7zxZd6d1yuTNMukTkoAg 72FNOJyyMfnA/Mq9wqHHrR4hbZI0d0OCRO4CEjv1KTq2qxy3zuaSFx6gZ1f/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUv324kaOO69XFX5gjTXCInQ8yjTUwHwYDVR0j BBgwFoAUiL0arqFtiiRVBBbNuV4jIVIkmz4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MjBjNmQ2OS02MjkwLTQwMmYtYTg0ZS1kMjg5YzZlOTNhNzMvMC84OEJEMUFBRUEx NkQ4QTI0NTUwNDE2Q0RCOTVFMjMyMTUyMjQ5QjNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODhCRDFBQUVBMTZEOEEyNDU1MDQxNkNEQjk1RTIzMjE1MjI0 OUIzRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IyMGM2ZDY5LTYyOTAtNDAyZi1h ODRlLWQyODljNmU5M2E3My8wLzMyMzQzMDM0M2E2MzY1MzQzMDNhM2EyZjMzMzYy ZDMzMzYyMDNkM2UyMDMxMzMzODM4MzgzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBCQEzkAAMA0GCSqG SIb3DQEBCwUAA4IBAQBe+pRbJT9qfte3wjaNAUnbcDJk9no/iUuFkZ2slmp/pBug gDPt5kmD5Lnt9TZE/iHYHUZbv4JQ9oDSGUZF9rdOFf3Ljh2Rj8OuhIJEXwNUpt5r MjvsK/avMN1B9ZSL45Df0Fl1PWQYNq/en0GIY43YIoTvomOXZlqNkNhIjdgiYTjM LIosYcRKGKWmo2c41Lum7/OxBQBRRnNGbh1mUj0U0lQqu7NGj7mNQwZ5PLNdiwJZ uZ/aBJ3igDYr1XTKoaLJsvr8XZzN5JtaPmyDMP8QeefzFfVCCAMW5JXyFBPQqXkN 8JQ6TLoakAhau/0Jxj0rgP+y4efPChlWSGVzx0GH -----END CERTIFICATE-----Generated at Wed Jul 23 14:49:54 2025 by rpki-client