$ rpki-client -vvf repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a333130303a3a2f34302d3430203d3e20313533303837.roa File: 323430343a393763303a333130303a3a2f34302d3430203d3e20313533303837.roa (raw, json) Hash identifier: GtLJlyIT44yOE5pTxubbE+JVbv879K3iwKIQBgBcJ2I= Subject key identifier: DA:AD:91:F3:AD:FA:59:19:9A:CF:ED:3E:87:4B:E8:AE:80:67:9C:C6 Certificate issuer: /CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Certificate serial: 1B136CFA7704AEAA3CE6EF5255CD4952564FBCA9 Authority key identifier: 4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a333130303a3a2f34302d3430203d3e20313533303837.roa Signing time: Mon 07 Jul 2025 03:23:39 +0000 ROA not before: Mon 07 Jul 2025 03:18:39 +0000 ROA not after: Mon 06 Jul 2026 03:23:39 +0000 asID: 153087 IP address blocks: 2404:97c0:3100::/40 maxlen: 40 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 05:36:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:13:6c:fa:77:04:ae:aa:3c:e6:ef:52:55:cd:49:52:56:4f:bc:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158 Validity Not Before: Jul 7 03:18:39 2025 GMT Not After : Jul 6 03:23:39 2026 GMT Subject: CN=DAAD91F3ADFA59199ACFED3E874BE8AE80679CC6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:15:42:db:47:42:c7:3c:6c:8d:5c:5a:c0:43: b1:9d:95:5b:dd:c2:1f:d9:d2:53:57:0d:d7:36:aa: 44:a9:fb:b2:4b:4d:cf:e7:65:b4:a0:ae:87:d5:82: af:b0:64:d3:4e:90:c9:0b:e4:49:d8:25:93:4a:4c: 61:40:62:17:55:38:06:16:8c:a9:70:c0:e2:80:a6: 5f:99:6f:79:75:d9:6d:ca:83:ef:92:c2:40:a7:28: 61:5d:b2:cf:12:81:84:70:46:10:5f:cc:1b:a5:76: 2c:d9:50:dd:b0:db:ae:74:8c:0f:67:ad:70:f9:89: f4:bb:9e:78:b6:74:d1:47:5e:f5:31:63:37:df:92: 1d:e3:16:0b:a0:19:0e:71:34:e2:2e:c1:64:e9:89: 39:78:fa:4b:f9:2b:75:ea:cb:a9:6b:2b:2f:62:67: f9:25:1a:ff:5a:1a:93:9b:90:72:26:24:8d:1d:6e: a3:ad:16:05:5a:3a:84:26:3a:27:99:ef:fe:d2:c7: 16:3c:ec:09:98:43:88:0b:95:7a:a7:5a:24:d3:30: 97:e4:06:52:00:27:36:8f:df:e0:da:1f:bf:05:ab: 8e:cc:a6:64:6b:62:14:c7:91:7d:ba:9b:7b:da:62: af:a0:5f:47:ca:55:96:91:c7:8e:bb:20:bc:0a:d6: 70:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:AD:91:F3:AD:FA:59:19:9A:CF:ED:3E:87:4B:E8:AE:80:67:9C:C6 X509v3 Authority Key Identifier: keyid:4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a333130303a3a2f34302d3430203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:97c0:3100::/40 Signature Algorithm: sha256WithRSAEncryption 6e:6d:1b:46:68:b5:68:b6:f1:f8:89:f8:e9:f2:42:90:4a:e4: 40:b1:99:b7:19:3f:dd:76:14:f6:d6:a0:5a:35:6c:0a:33:eb: 3d:03:2a:1c:ec:30:2f:84:55:47:4c:8e:16:5b:f1:91:27:a0: aa:d1:6c:0a:ab:8c:4c:7c:35:68:d1:2e:68:d7:b8:19:d6:e6: d6:0f:65:43:38:64:2e:0c:a0:1e:4f:dd:3a:dc:77:d2:04:bd: 64:5e:50:0a:6d:c8:ec:80:6d:75:a8:c7:b9:ea:a6:1b:d6:51: 6a:fb:65:fd:ca:fc:60:8a:65:f2:13:ea:af:46:91:86:59:85: 78:3e:af:a5:54:40:36:0e:e7:80:23:96:cb:c2:37:41:52:34: de:50:05:93:90:b4:c6:a9:4c:b4:97:86:1f:9a:2d:d0:8b:a4: ee:50:4a:ef:6d:ec:98:1f:81:b5:f4:b4:12:be:3d:c5:74:d9: 11:4e:de:49:9b:c9:d9:32:d6:38:f9:a6:2d:ea:c9:9e:1b:ff: 56:ca:73:7d:b9:79:9a:f1:71:59:3d:de:cb:e0:9f:2c:1c:13: 77:47:cd:f0:c1:40:8c:94:59:32:32:3d:1e:c5:16:d0:8e:00: ef:19:f2:16:6a:2c:ce:27:39:42:9a:90:d1:76:2c:fe:b9:a4: 0e:2f:5b:f6 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUGxNs+ncErqo85u9SVc1JUlZPvKkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4 QzFENTE1ODAeFw0yNTA3MDcwMzE4MzlaFw0yNjA3MDYwMzIzMzlaMDMxMTAvBgNV BAMTKERBQUQ5MUYzQURGQTU5MTk5QUNGRUQzRTg3NEJFOEFFODA2NzlDQzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCTFULbR0LHPGyNXFrAQ7GdlVvd wh/Z0lNXDdc2qkSp+7JLTc/nZbSgrofVgq+wZNNOkMkL5EnYJZNKTGFAYhdVOAYW jKlwwOKApl+Zb3l12W3Kg++SwkCnKGFdss8SgYRwRhBfzBuldizZUN2w2650jA9n rXD5ifS7nni2dNFHXvUxYzffkh3jFgugGQ5xNOIuwWTpiTl4+kv5K3Xqy6lrKy9i Z/klGv9aGpObkHImJI0dbqOtFgVaOoQmOieZ7/7SxxY87AmYQ4gLlXqnWiTTMJfk BlIAJzaP3+DaH78Fq47MpmRrYhTHkX26m3vaYq+gX0fKVZaRx467ILwK1nBhAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQU2q2R8636WRmaz+0+h0voroBnnMYwHwYDVR0j BBgwFoAUTfPbPaIdACIgITBzbkzLBIwdUVgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZGVkNTgxMS1iZTUwLTRjYWEtOWY5Ni02M2QzNzIwMzExZGUvMS80REYzREIzREEy MUQwMDIyMjAyMTMwNzM2RTRDQ0IwNDhDMUQ1MTU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNERGM0RCM0RBMjFEMDAyMjIwMjEzMDczNkU0Q0NCMDQ4QzFE NTE1OC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFkZWQ1ODExLWJlNTAtNGNhYS05 Zjk2LTYzZDM3MjAzMTFkZS8xLzMyMzQzMDM0M2EzOTM3NjMzMDNhMzMzMTMwMzAz YTNhMmYzNDMwMmQzNDMwMjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgAk BJfAMTANBgkqhkiG9w0BAQsFAAOCAQEAbm0bRmi1aLbx+In46fJCkErkQLGZtxk/ 3XYU9tagWjVsCjPrPQMqHOwwL4RVR0yOFlvxkSegqtFsCquMTHw1aNEuaNe4Gdbm 1g9lQzhkLgygHk/dOtx30gS9ZF5QCm3I7IBtdajHueqmG9ZRavtl/cr8YIpl8hPq r0aRhlmFeD6vpVRANg7ngCOWy8I3QVI03lAFk5C0xqlMtJeGH5ot0Iuk7lBK723s mB+BtfS0Er49xXTZEU7eSZvJ2TLWOPmmLerJnhv/Vspzfbl5mvFxWT3ey+CfLBwT d0fN8MFAjJRZMjI9HsUW0I4A7xnyFmoszic5QpqQ0XYs/rmkDi9b9g== -----END CERTIFICATE-----Generated at Sat Jul 26 06:56:41 2025 by rpki-client