$ rpki-client -vvf repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/323430313a343863303a3a2f33322d3438203d3e20313336313139.roa File: 323430313a343863303a3a2f33322d3438203d3e20313336313139.roa (raw, json) Hash identifier: J7Eqzk0rLCECjOwGjEdw1vCeBneDceSExg8FEmGDsVA= Subject key identifier: D0:F9:83:CC:30:62:D8:0D:C0:E5:D7:7C:19:2B:1C:32:B2:7E:8B:58 Certificate issuer: /CN=21AC220B77A77D0516BC73B4C29C8363DD00911B Certificate serial: 729C69B48A995E6C218FC959B0F4E22EC36FB2C8 Authority key identifier: 21:AC:22:0B:77:A7:7D:05:16:BC:73:B4:C2:9C:83:63:DD:00:91:1B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/323430313a343863303a3a2f33322d3438203d3e20313336313139.roa Signing time: Sun 20 Jul 2025 07:00:01 +0000 ROA not before: Sun 20 Jul 2025 06:55:01 +0000 ROA not after: Sun 19 Jul 2026 07:00:01 +0000 asID: 136119 IP address blocks: 2401:48c0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.crl rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Jul 2025 13:55:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:9c:69:b4:8a:99:5e:6c:21:8f:c9:59:b0:f4:e2:2e:c3:6f:b2:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21AC220B77A77D0516BC73B4C29C8363DD00911B Validity Not Before: Jul 20 06:55:01 2025 GMT Not After : Jul 19 07:00:01 2026 GMT Subject: CN=D0F983CC3062D80DC0E5D77C192B1C32B27E8B58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:45:ba:60:fd:0a:ee:79:94:cf:c9:79:13:9d: 47:67:f0:bf:e0:8a:22:ed:20:7d:07:8e:8d:e7:e1: f0:00:38:09:1d:65:3a:be:de:85:c5:4c:5b:87:70: 85:07:05:11:30:ec:dd:bd:81:0e:ca:41:f6:34:4a: 14:8c:16:34:2b:44:3b:19:4e:2f:fd:e4:51:58:35: 47:7e:eb:60:66:de:65:04:54:61:17:c1:bb:d5:18: 8d:01:fd:d7:cf:4e:75:21:ba:a5:4c:75:c3:9e:4d: f6:ea:9c:70:31:88:55:ef:42:05:2c:14:fa:aa:af: 92:18:e6:10:9e:42:0e:2f:d7:25:78:92:c3:93:bc: 88:cf:4f:92:df:7a:f3:18:3e:99:f5:25:40:59:af: fb:9e:63:20:81:53:50:31:81:09:82:c8:fb:bb:9e: 7e:65:65:e2:48:6d:76:ff:f3:b8:79:d3:b3:30:38: 9d:b9:bb:08:db:4d:c2:9f:1e:f0:41:20:62:81:ce: 47:c9:50:a5:66:34:4b:6e:b6:d2:a8:b7:f3:a3:88: 9a:c8:de:96:39:7d:5c:8f:91:10:7d:b5:c0:29:78: 32:68:f5:ee:30:21:e2:44:b3:fc:51:87:f1:d5:9b: 0c:ed:e0:a8:e9:70:60:62:61:44:ff:12:d2:dd:70: ee:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:F9:83:CC:30:62:D8:0D:C0:E5:D7:7C:19:2B:1C:32:B2:7E:8B:58 X509v3 Authority Key Identifier: keyid:21:AC:22:0B:77:A7:7D:05:16:BC:73:B4:C2:9C:83:63:DD:00:91:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/323430313a343863303a3a2f33322d3438203d3e20313336313139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:48c0::/32 Signature Algorithm: sha256WithRSAEncryption 7c:e5:7b:ab:51:f5:a2:0b:bc:d2:5a:31:b7:d2:40:b5:51:67: 01:20:ae:93:a2:27:c8:fe:ae:05:76:96:d7:8d:b9:2d:8a:5a: 9d:04:96:67:d4:98:c4:69:21:20:78:90:ba:f7:97:56:77:62: 77:e5:07:3a:99:9e:8d:4c:4a:29:29:99:d4:03:6a:29:5c:e2: 9e:76:b8:de:61:d4:a8:c0:a2:2e:1b:32:e3:f2:ad:87:77:89: ab:dc:12:8d:8e:18:78:55:66:5c:9d:2a:1a:ea:2c:70:b1:46: 69:33:73:e2:ee:47:10:e4:91:a4:5e:5c:7b:dc:64:bd:73:1c: 36:5d:1c:e1:55:48:e2:1a:c1:07:22:ee:4b:f5:bc:13:ee:a1: b2:1f:cc:8a:8a:30:b9:fd:80:39:43:03:0d:2f:f0:95:47:9d: f8:bb:68:ff:20:92:c7:50:89:87:21:b8:f2:ab:5b:c0:ff:9b: 6d:5a:12:10:24:15:1b:da:d0:82:38:72:a0:ed:cb:2b:00:df: 72:4d:6d:04:7f:8b:ce:d2:89:b8:7a:f8:c2:82:b2:58:e0:1d: 25:58:f1:02:8a:82:30:43:47:e1:a8:15:99:b8:9b:45:c8:49: df:c9:55:15:c9:38:07:9c:c6:1e:f6:58:3c:0b:52:46:76:12: 63:6d:37:12 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUcpxptIqZXmwhj8lZsPTiLsNvssgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjFBQzIyMEI3N0E3N0QwNTE2QkM3M0I0QzI5QzgzNjNE RDAwOTExQjAeFw0yNTA3MjAwNjU1MDFaFw0yNjA3MTkwNzAwMDFaMDMxMTAvBgNV BAMTKEQwRjk4M0NDMzA2MkQ4MERDMEU1RDc3QzE5MkIxQzMyQjI3RThCNTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnRbpg/QrueZTPyXkTnUdn8L/g iiLtIH0Hjo3n4fAAOAkdZTq+3oXFTFuHcIUHBREw7N29gQ7KQfY0ShSMFjQrRDsZ Ti/95FFYNUd+62Bm3mUEVGEXwbvVGI0B/dfPTnUhuqVMdcOeTfbqnHAxiFXvQgUs FPqqr5IY5hCeQg4v1yV4ksOTvIjPT5LfevMYPpn1JUBZr/ueYyCBU1AxgQmCyPu7 nn5lZeJIbXb/87h507MwOJ25uwjbTcKfHvBBIGKBzkfJUKVmNEtuttKot/OjiJrI 3pY5fVyPkRB9tcApeDJo9e4wIeJEs/xRh/HVmwzt4KjpcGBiYUT/EtLdcO5TAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQU0PmDzDBi2A3A5dd8GSscMrJ+i1gwHwYDVR0j BBgwFoAUIawiC3enfQUWvHO0wpyDY90AkRswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZGFiYzBiYS05MjIyLTRjNDUtODM0Mi1lYjg2NDNjNDk2N2QvMC8yMUFDMjIwQjc3 QTc3RDA1MTZCQzczQjRDMjlDODM2M0REMDA5MTFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjFBQzIyMEI3N0E3N0QwNTE2QkM3M0I0QzI5QzgzNjNERDAw OTExQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JkYWJjMGJhLTkyMjItNGM0NS04 MzQyLWViODY0M2M0OTY3ZC8wLzMyMzQzMDMxM2EzNDM4NjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzNjMxMzEzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQBSMAwDQYJKoZI hvcNAQELBQADggEBAHzle6tR9aILvNJaMbfSQLVRZwEgrpOiJ8j+rgV2lteNuS2K Wp0ElmfUmMRpISB4kLr3l1Z3YnflBzqZno1MSikpmdQDailc4p52uN5h1KjAoi4b MuPyrYd3iavcEo2OGHhVZlydKhrqLHCxRmkzc+LuRxDkkaReXHvcZL1zHDZdHOFV SOIawQci7kv1vBPuobIfzIqKMLn9gDlDAw0v8JVHnfi7aP8gksdQiYchuPKrW8D/ m21aEhAkFRva0II4cqDtyysA33JNbQR/i87Sibh6+MKCsljgHSVY8QKKgjBDR+Go FZm4m0XISd/JVRXJOAecxh72WDwLUkZ2EmNtNxI= -----END CERTIFICATE-----Generated at Tue Jul 22 04:47:27 2025 by rpki-client