$ rpki-client -vvf repo-rpki.idnic.net/repo/df551ab9-8041-4a9a-9b50-c7c6dec2166f/0/323430353a313634303a3a2f33322d3438203d3e20313338383836.roa File: 323430353a313634303a3a2f33322d3438203d3e20313338383836.roa (raw, json) Hash identifier: MItE47EaO9IAk0e+oiW0dyxlfEYvief1VP6PIxAt77c= Subject key identifier: 72:AF:73:88:65:AB:96:D7:7C:AD:C1:64:E0:E7:1F:1C:F2:6E:36:AB Certificate issuer: /CN=15B7EBF92B35FDB5BC6990BB8ECA2C297B45CB35 Certificate serial: 4CD8952CDA37E35780A077C1C258219EBA9CD681 Authority key identifier: 15:B7:EB:F9:2B:35:FD:B5:BC:69:90:BB:8E:CA:2C:29:7B:45:CB:35 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/15B7EBF92B35FDB5BC6990BB8ECA2C297B45CB35.cer Subject info access: rsync://repo-rpki.idnic.net/repo/df551ab9-8041-4a9a-9b50-c7c6dec2166f/0/323430353a313634303a3a2f33322d3438203d3e20313338383836.roa Signing time: Mon 21 Jul 2025 05:02:23 +0000 ROA not before: Mon 21 Jul 2025 04:57:23 +0000 ROA not after: Mon 20 Jul 2026 05:02:23 +0000 asID: 138886 IP address blocks: 2405:1640::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/df551ab9-8041-4a9a-9b50-c7c6dec2166f/0/15B7EBF92B35FDB5BC6990BB8ECA2C297B45CB35.crl rsync://repo-rpki.idnic.net/repo/df551ab9-8041-4a9a-9b50-c7c6dec2166f/0/15B7EBF92B35FDB5BC6990BB8ECA2C297B45CB35.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/15B7EBF92B35FDB5BC6990BB8ECA2C297B45CB35.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 21:07:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:d8:95:2c:da:37:e3:57:80:a0:77:c1:c2:58:21:9e:ba:9c:d6:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15B7EBF92B35FDB5BC6990BB8ECA2C297B45CB35 Validity Not Before: Jul 21 04:57:23 2025 GMT Not After : Jul 20 05:02:23 2026 GMT Subject: CN=72AF738865AB96D77CADC164E0E71F1CF26E36AB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:37:67:1f:d1:02:4e:0c:dc:1c:f9:81:d9:29: 60:f6:66:36:a2:9d:07:37:c6:bc:64:b9:3c:ab:43: 88:e4:7f:d2:0a:6a:c6:e4:c7:30:92:8c:10:03:50: bf:43:a4:1f:42:53:bb:84:2e:4d:e9:0e:0b:3a:22: d1:ba:f1:f5:5f:36:ca:da:c3:8c:86:66:cb:4e:d2: 0a:0b:bd:54:95:21:a8:70:41:dc:2a:00:5f:21:32: 0e:27:5e:4c:f6:2e:f8:8a:22:ba:63:a5:74:99:98: 09:e9:34:1b:57:84:e4:1e:6a:7d:62:a6:8e:d8:37: 49:29:df:ec:90:8d:bf:78:b5:81:fb:c5:4c:f3:9f: a7:bd:ad:62:9e:b0:05:fc:70:af:55:6c:b1:fb:c5: 0f:8f:23:c6:e4:76:64:99:76:48:8c:a3:5d:30:94: b9:8a:25:19:e8:74:67:b1:a6:f7:88:ff:c2:9e:91: e5:37:4a:f2:6e:8d:00:92:0d:8d:b5:9e:d4:30:e6: eb:9b:8b:c3:3c:88:42:e7:7c:cb:44:e0:59:8b:d0: 42:e0:aa:50:6e:55:90:c2:b4:5b:ab:c9:c3:54:c7: 64:49:19:01:23:db:2b:89:25:d0:9a:3b:5e:22:f0: 96:3f:d9:c6:48:d4:ec:63:4d:af:62:25:9c:ba:36: 5c:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:AF:73:88:65:AB:96:D7:7C:AD:C1:64:E0:E7:1F:1C:F2:6E:36:AB X509v3 Authority Key Identifier: keyid:15:B7:EB:F9:2B:35:FD:B5:BC:69:90:BB:8E:CA:2C:29:7B:45:CB:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/df551ab9-8041-4a9a-9b50-c7c6dec2166f/0/15B7EBF92B35FDB5BC6990BB8ECA2C297B45CB35.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/15B7EBF92B35FDB5BC6990BB8ECA2C297B45CB35.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/df551ab9-8041-4a9a-9b50-c7c6dec2166f/0/323430353a313634303a3a2f33322d3438203d3e20313338383836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:1640::/32 Signature Algorithm: sha256WithRSAEncryption 3f:3d:25:f7:81:e6:e8:46:4c:72:4e:d7:6c:5a:ab:1c:53:a5: b2:58:fa:ad:52:da:5a:8a:74:be:77:43:7b:01:af:e5:3a:dc: 49:93:2f:1b:a9:e8:cb:59:4b:82:c3:9d:8e:34:8c:b9:c9:df: b2:f0:6f:6c:9f:23:e5:60:4e:56:0f:e1:09:7a:32:ae:47:33: 63:43:e8:be:7a:1d:cc:9f:42:6e:94:de:15:51:0f:fc:fe:47: 3a:89:64:aa:54:d7:de:31:1b:9f:2b:83:bc:12:e3:14:d7:84: 26:90:1a:ae:99:10:e3:fe:aa:bf:55:9f:72:58:f2:da:6c:a6: ab:9b:20:26:73:d2:d1:58:dd:05:eb:c5:9d:80:9a:3d:b5:8b: 41:09:2b:3e:03:87:39:76:24:49:f7:5e:f0:c1:8f:99:66:74: 2d:3e:61:9b:15:79:eb:53:38:ea:55:85:4f:01:46:93:2e:78: 55:29:1d:33:28:97:6c:e5:51:e4:fe:a2:e5:73:71:a7:6f:07: 00:7e:ad:be:88:cf:51:66:c3:de:e1:78:25:af:73:d9:4d:35: bb:2f:eb:a9:c2:a4:3e:77:95:1b:5a:e8:7f:ba:cc:8c:fb:1c: 20:4c:fe:13:d8:3f:f4:39:43:33:b0:37:38:97:93:36:6c:80: 28:d2:56:5a -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUTNiVLNo341eAoHfBwlghnrqc1oEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTVCN0VCRjkyQjM1RkRCNUJDNjk5MEJCOEVDQTJDMjk3 QjQ1Q0IzNTAeFw0yNTA3MjEwNDU3MjNaFw0yNjA3MjAwNTAyMjNaMDMxMTAvBgNV BAMTKDcyQUY3Mzg4NjVBQjk2RDc3Q0FEQzE2NEUwRTcxRjFDRjI2RTM2QUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTN2cf0QJODNwc+YHZKWD2Zjai nQc3xrxkuTyrQ4jkf9IKasbkxzCSjBADUL9DpB9CU7uELk3pDgs6ItG68fVfNsra w4yGZstO0goLvVSVIahwQdwqAF8hMg4nXkz2LviKIrpjpXSZmAnpNBtXhOQean1i po7YN0kp3+yQjb94tYH7xUzzn6e9rWKesAX8cK9VbLH7xQ+PI8bkdmSZdkiMo10w lLmKJRnodGexpveI/8KekeU3SvJujQCSDY21ntQw5uubi8M8iELnfMtE4FmL0ELg qlBuVZDCtFurycNUx2RJGQEj2yuJJdCaO14i8JY/2cZI1OxjTa9iJZy6Nlx9AgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUcq9ziGWrltd8rcFk4OcfHPJuNqswHwYDVR0j BBgwFoAUFbfr+Ss1/bW8aZC7jsosKXtFyzUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZjU1MWFiOS04MDQxLTRhOWEtOWI1MC1jN2M2ZGVjMjE2NmYvMC8xNUI3RUJGOTJC MzVGREI1QkM2OTkwQkI4RUNBMkMyOTdCNDVDQjM1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTVCN0VCRjkyQjM1RkRCNUJDNjk5MEJCOEVDQTJDMjk3QjQ1 Q0IzNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RmNTUxYWI5LTgwNDEtNGE5YS05 YjUwLWM3YzZkZWMyMTY2Zi8wLzMyMzQzMDM1M2EzMTM2MzQzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzODM4MzgzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQFFkAwDQYJKoZI hvcNAQELBQADggEBAD89JfeB5uhGTHJO12xaqxxTpbJY+q1S2lqKdL53Q3sBr+U6 3EmTLxup6MtZS4LDnY40jLnJ37Lwb2yfI+VgTlYP4Ql6Mq5HM2ND6L56HcyfQm6U 3hVRD/z+RzqJZKpU194xG58rg7wS4xTXhCaQGq6ZEOP+qr9Vn3JY8tpspqubICZz 0tFY3QXrxZ2Amj21i0EJKz4Dhzl2JEn3XvDBj5lmdC0+YZsVeetTOOpVhU8BRpMu eFUpHTMol2zlUeT+ouVzcadvBwB+rb6Iz1Fmw97heCWvc9lNNbsv66nCpD53lRta 6H+6zIz7HCBM/hPYP/Q5QzOwNziXkzZsgCjSVlo= -----END CERTIFICATE-----Generated at Fri Jul 25 13:00:58 2025 by rpki-client