$ rpki-client -vvf repo-rpki.idnic.net/repo/b7b87f6d-29a7-4b4c-81c7-5b4cbdb2cb6a/0/323430353a633763303a3a2f33322d3332203d3e20313339393738.roa File: 323430353a633763303a3a2f33322d3332203d3e20313339393738.roa (raw, json) Hash identifier: piwF7+ON2R793sJiaX+4aFfo5D7cOZdp7goWhivyjxE= Subject key identifier: B0:5A:04:3A:DC:20:9D:08:84:7F:5A:D9:AC:B3:02:DA:F2:4B:9C:E0 Certificate issuer: /CN=8603B0F726A05AB356D10DB170BD8E27963AFE1A Certificate serial: 30B1A3F36DAE1A13DCD4EF000B98A9A4833B3962 Authority key identifier: 86:03:B0:F7:26:A0:5A:B3:56:D1:0D:B1:70:BD:8E:27:96:3A:FE:1A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8603B0F726A05AB356D10DB170BD8E27963AFE1A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b7b87f6d-29a7-4b4c-81c7-5b4cbdb2cb6a/0/323430353a633763303a3a2f33322d3332203d3e20313339393738.roa Signing time: Mon 21 Jul 2025 08:00:00 +0000 ROA not before: Mon 21 Jul 2025 07:55:00 +0000 ROA not after: Mon 20 Jul 2026 08:00:00 +0000 asID: 139978 IP address blocks: 2405:c7c0::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b7b87f6d-29a7-4b4c-81c7-5b4cbdb2cb6a/0/8603B0F726A05AB356D10DB170BD8E27963AFE1A.crl rsync://repo-rpki.idnic.net/repo/b7b87f6d-29a7-4b4c-81c7-5b4cbdb2cb6a/0/8603B0F726A05AB356D10DB170BD8E27963AFE1A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8603B0F726A05AB356D10DB170BD8E27963AFE1A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 11:04:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:b1:a3:f3:6d:ae:1a:13:dc:d4:ef:00:0b:98:a9:a4:83:3b:39:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8603B0F726A05AB356D10DB170BD8E27963AFE1A Validity Not Before: Jul 21 07:55:00 2025 GMT Not After : Jul 20 08:00:00 2026 GMT Subject: CN=B05A043ADC209D08847F5AD9ACB302DAF24B9CE0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:df:73:25:4d:ac:0d:86:65:b5:7a:5b:21:34: 85:d1:97:dd:f9:ec:0e:e3:00:86:8a:65:f1:c3:c9: e6:dd:f4:7b:81:e3:20:dd:d8:d5:a9:55:dd:d6:25: 3d:76:b5:56:77:92:fb:29:bc:02:0f:34:f6:58:c2: 12:38:71:b5:61:d6:d5:a7:b7:f3:c2:83:26:ee:01: e6:3b:84:3e:59:cf:51:12:7e:1c:9b:cd:88:77:a4: 39:1c:b7:a5:1d:df:3d:ea:69:09:62:37:1a:1f:f2: ee:18:ff:f5:16:8b:89:f8:49:e7:99:cf:7d:2d:35: 0d:02:33:fd:1c:c3:a2:56:a4:47:78:99:40:d4:7f: d5:ee:61:ab:19:39:ff:6f:08:89:81:04:50:fc:ae: c9:65:a3:32:f5:1e:31:af:48:9e:b3:cd:cf:32:2e: 4f:f6:0e:a2:35:54:67:a6:89:0e:91:14:8b:97:b0: c8:8c:a0:98:ac:a7:74:e9:85:07:47:e6:17:bf:8e: 66:fb:cb:14:dc:ba:aa:c6:31:70:cf:d9:a4:d5:af: c7:b1:06:ec:79:20:be:d1:29:7a:e0:b9:a1:68:5d: 59:f5:3d:0c:24:e7:0e:f3:c6:1b:a2:67:c4:a8:e5: 88:60:69:02:89:cb:2b:20:6e:dd:6d:c5:50:a9:38: e7:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:5A:04:3A:DC:20:9D:08:84:7F:5A:D9:AC:B3:02:DA:F2:4B:9C:E0 X509v3 Authority Key Identifier: keyid:86:03:B0:F7:26:A0:5A:B3:56:D1:0D:B1:70:BD:8E:27:96:3A:FE:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b7b87f6d-29a7-4b4c-81c7-5b4cbdb2cb6a/0/8603B0F726A05AB356D10DB170BD8E27963AFE1A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8603B0F726A05AB356D10DB170BD8E27963AFE1A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b7b87f6d-29a7-4b4c-81c7-5b4cbdb2cb6a/0/323430353a633763303a3a2f33322d3332203d3e20313339393738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:c7c0::/32 Signature Algorithm: sha256WithRSAEncryption 4a:f6:19:ae:59:c0:55:c1:b1:96:7e:92:3f:6e:e9:a5:b7:70: 21:a9:55:d3:68:c2:55:7c:5f:54:9b:d5:4c:ca:74:eb:ba:41: e3:fd:e5:cd:66:b4:e4:a7:ea:d2:56:2c:ae:61:05:69:e8:6a: 78:d6:86:e2:f3:d5:65:67:72:88:be:a2:6b:66:09:c8:6e:f5: 7e:3f:df:b2:cf:d9:42:65:8c:f3:95:ab:46:d6:c4:89:0a:36: 0a:da:4f:e5:2a:7f:32:9d:64:32:d8:0b:71:ae:8c:0b:33:5e: 1b:f3:81:fb:d6:eb:de:73:c2:43:db:ca:49:82:b2:05:2b:21: ab:aa:c8:4a:54:f5:28:de:57:8c:45:f5:d3:db:cc:4a:2d:ca: 50:a0:fb:4b:cb:5c:c4:b7:94:18:c8:96:0b:d8:10:c5:e5:4c: 94:16:f7:84:13:3f:98:54:e8:0e:4d:94:d0:fb:13:4e:ca:53: 3b:c6:82:17:7e:fd:7c:3a:5b:e5:36:37:37:37:04:84:82:9a: f9:a3:a9:9e:f8:49:f2:3f:26:3b:ec:21:27:72:7d:ff:53:4e: b0:51:d1:7b:8f:ba:8d:40:33:64:05:cc:3e:a2:4a:40:b5:95: ae:43:dc:bc:09:63:bd:58:52:bb:ad:e2:36:87:82:73:fc:f6: fd:0a:8e:8c -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUMLGj822uGhPc1O8AC5ippIM7OWIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODYwM0IwRjcyNkEwNUFCMzU2RDEwREIxNzBCRDhFMjc5 NjNBRkUxQTAeFw0yNTA3MjEwNzU1MDBaFw0yNjA3MjAwODAwMDBaMDMxMTAvBgNV BAMTKEIwNUEwNDNBREMyMDlEMDg4NDdGNUFEOUFDQjMwMkRBRjI0QjlDRTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDs33MlTawNhmW1elshNIXRl935 7A7jAIaKZfHDyebd9HuB4yDd2NWpVd3WJT12tVZ3kvspvAIPNPZYwhI4cbVh1tWn t/PCgybuAeY7hD5Zz1ESfhybzYh3pDkct6Ud3z3qaQliNxof8u4Y//UWi4n4SeeZ z30tNQ0CM/0cw6JWpEd4mUDUf9XuYasZOf9vCImBBFD8rsllozL1HjGvSJ6zzc8y Lk/2DqI1VGemiQ6RFIuXsMiMoJisp3TphQdH5he/jmb7yxTcuqrGMXDP2aTVr8ex Bux5IL7RKXrguaFoXVn1PQwk5w7zxhuiZ8So5YhgaQKJyysgbt1txVCpOOfLAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUsFoEOtwgnQiEf1rZrLMC2vJLnOAwHwYDVR0j BBgwFoAUhgOw9yagWrNW0Q2xcL2OJ5Y6/howDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i N2I4N2Y2ZC0yOWE3LTRiNGMtODFjNy01YjRjYmRiMmNiNmEvMC84NjAzQjBGNzI2 QTA1QUIzNTZEMTBEQjE3MEJEOEUyNzk2M0FGRTFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODYwM0IwRjcyNkEwNUFCMzU2RDEwREIxNzBCRDhFMjc5NjNB RkUxQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I3Yjg3ZjZkLTI5YTctNGI0Yy04 MWM3LTViNGNiZGIyY2I2YS8wLzMyMzQzMDM1M2E2MzM3NjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzOTM5MzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQFx8AwDQYJKoZI hvcNAQELBQADggEBAEr2Ga5ZwFXBsZZ+kj9u6aW3cCGpVdNowlV8X1Sb1UzKdOu6 QeP95c1mtOSn6tJWLK5hBWnoanjWhuLz1WVncoi+omtmCchu9X4/37LP2UJljPOV q0bWxIkKNgraT+UqfzKdZDLYC3GujAszXhvzgfvW695zwkPbykmCsgUrIauqyEpU 9SjeV4xF9dPbzEotylCg+0vLXMS3lBjIlgvYEMXlTJQW94QTP5hU6A5NlND7E07K UzvGghd+/Xw6W+U2Nzc3BISCmvmjqZ74SfI/JjvsISdyff9TTrBR0XuPuo1AM2QF zD6iSkC1la5D3LwJY71YUrut4jaHgnP89v0Kjow= -----END CERTIFICATE-----Generated at Wed Jul 23 23:47:56 2025 by rpki-client