$ rpki-client -vvf repo-rpki.idnic.net/repo/2c326f4e-6605-496a-b9f8-d6e77b29bcc6/0/323430303a656134303a3a2f33322d3332203d3e203436303631.roa File: 323430303a656134303a3a2f33322d3332203d3e203436303631.roa (raw, json) Hash identifier: 2pAFw4pCfgppnXNzn4U9fVaUZRHA5FxGk6QsaeCqBJY= Subject key identifier: EE:9D:C5:50:B7:A8:0F:99:39:F0:93:CA:CF:91:70:E3:92:09:81:70 Certificate issuer: /CN=667078BDA093F84040F3016D179CABA67F68A647 Certificate serial: 57509447D7A4552B38A225823D2093F610BEB06F Authority key identifier: 66:70:78:BD:A0:93:F8:40:40:F3:01:6D:17:9C:AB:A6:7F:68:A6:47 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/667078BDA093F84040F3016D179CABA67F68A647.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2c326f4e-6605-496a-b9f8-d6e77b29bcc6/0/323430303a656134303a3a2f33322d3332203d3e203436303631.roa Signing time: Wed 03 Sep 2025 15:00:02 +0000 ROA not before: Wed 03 Sep 2025 14:55:02 +0000 ROA not after: Wed 02 Sep 2026 15:00:02 +0000 asID: 46061 IP address blocks: 2400:ea40::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2c326f4e-6605-496a-b9f8-d6e77b29bcc6/0/667078BDA093F84040F3016D179CABA67F68A647.crl rsync://repo-rpki.idnic.net/repo/2c326f4e-6605-496a-b9f8-d6e77b29bcc6/0/667078BDA093F84040F3016D179CABA67F68A647.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/667078BDA093F84040F3016D179CABA67F68A647.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 03:34:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:50:94:47:d7:a4:55:2b:38:a2:25:82:3d:20:93:f6:10:be:b0:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=667078BDA093F84040F3016D179CABA67F68A647 Validity Not Before: Sep 3 14:55:02 2025 GMT Not After : Sep 2 15:00:02 2026 GMT Subject: CN=EE9DC550B7A80F9939F093CACF9170E392098170 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:b8:d5:80:1f:9c:06:bc:db:b9:aa:e8:1b:ca: 14:70:89:7d:48:43:e0:c6:46:45:b4:fd:17:1d:c1: 42:36:40:07:22:b7:34:28:d6:fb:a5:81:9e:8d:33: 3f:c7:dd:1a:4b:62:d3:8f:e6:cb:4b:9d:ca:33:44: cf:af:89:37:9d:6d:01:6a:e3:60:7d:5a:5b:3c:27: 26:09:59:9b:84:9b:6c:74:95:f1:8a:1b:9d:5a:43: 83:30:31:62:5a:3e:21:74:eb:ac:36:7a:88:89:de: c5:d9:99:47:ec:38:ae:67:70:76:fb:83:a8:91:41: 23:d0:e5:54:42:70:2e:de:e1:64:b0:e1:ac:f3:77: 96:24:1b:97:01:89:b1:f3:58:20:70:f3:b6:c0:db: 00:9a:bf:c7:71:01:7a:d6:e8:de:6f:81:9d:97:53: 52:5c:08:40:d8:3d:a2:e7:fc:98:4d:ef:30:9f:77: 15:50:fc:72:f2:dc:57:17:59:e9:92:14:e9:40:03: a2:fb:9d:c3:70:48:ab:e8:3f:60:f1:30:97:87:4a: 90:74:5b:51:8b:f5:f4:49:45:54:4f:77:93:8a:98: 27:0e:00:54:e4:b1:a5:98:69:63:5a:c1:c1:c5:65: 01:27:2f:90:d3:47:d5:fe:f2:9f:8f:ba:65:a4:7b: 10:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:9D:C5:50:B7:A8:0F:99:39:F0:93:CA:CF:91:70:E3:92:09:81:70 X509v3 Authority Key Identifier: keyid:66:70:78:BD:A0:93:F8:40:40:F3:01:6D:17:9C:AB:A6:7F:68:A6:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2c326f4e-6605-496a-b9f8-d6e77b29bcc6/0/667078BDA093F84040F3016D179CABA67F68A647.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/667078BDA093F84040F3016D179CABA67F68A647.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2c326f4e-6605-496a-b9f8-d6e77b29bcc6/0/323430303a656134303a3a2f33322d3332203d3e203436303631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:ea40::/32 Signature Algorithm: sha256WithRSAEncryption 83:2d:12:1a:51:54:c6:a4:66:d0:fd:cf:30:d3:3a:9c:c0:87: 98:0c:bd:7f:1e:64:c4:e1:ce:80:d2:a2:e0:34:6e:36:9c:58: 10:8d:c5:4d:5b:ba:b6:4f:df:c0:89:c1:80:78:68:8a:08:ba: 8f:58:03:dc:f8:4a:5d:54:21:2a:85:65:8c:ed:97:c3:55:68: ce:23:43:fc:e9:ad:ac:a5:4a:5d:bc:6a:a0:45:2b:b4:6e:69: b1:ee:7e:16:3c:ed:e2:96:96:13:d8:44:99:02:0d:71:67:63: 95:04:6d:5f:b3:7a:48:78:cf:27:eb:f3:a4:8a:05:0a:b7:4f: a1:e6:ab:39:0e:1b:72:8d:8d:e7:98:d6:52:41:a5:51:2a:47: 45:db:6b:66:22:e2:7e:f9:6d:e3:96:ee:bc:c8:96:9c:c7:7e: 87:27:e3:c7:eb:c3:0f:ce:d8:bf:de:33:6d:e1:40:69:a1:b9: 61:1f:5a:2f:c8:70:f3:76:52:91:02:e9:df:9e:88:72:c4:67: 07:ad:7b:65:61:8a:87:da:5d:6b:0b:a0:89:6d:08:d3:4e:0c: d1:1f:0c:74:49:88:45:c4:dd:cc:39:93:2a:c9:a9:5b:70:cd: 94:4a:09:8a:02:c9:e4:39:4d:91:39:86:24:eb:80:b4:62:ce: 57:d2:0a:16 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUV1CUR9ekVSs4oiWCPSCT9hC+sG8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjY3MDc4QkRBMDkzRjg0MDQwRjMwMTZEMTc5Q0FCQTY3 RjY4QTY0NzAeFw0yNTA5MDMxNDU1MDJaFw0yNjA5MDIxNTAwMDJaMDMxMTAvBgNV BAMTKEVFOURDNTUwQjdBODBGOTkzOUYwOTNDQUNGOTE3MEUzOTIwOTgxNzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkuNWAH5wGvNu5qugbyhRwiX1I Q+DGRkW0/RcdwUI2QAcitzQo1vulgZ6NMz/H3RpLYtOP5stLncozRM+viTedbQFq 42B9Wls8JyYJWZuEm2x0lfGKG51aQ4MwMWJaPiF066w2eoiJ3sXZmUfsOK5ncHb7 g6iRQSPQ5VRCcC7e4WSw4azzd5YkG5cBibHzWCBw87bA2wCav8dxAXrW6N5vgZ2X U1JcCEDYPaLn/JhN7zCfdxVQ/HLy3FcXWemSFOlAA6L7ncNwSKvoP2DxMJeHSpB0 W1GL9fRJRVRPd5OKmCcOAFTksaWYaWNawcHFZQEnL5DTR9X+8p+PumWkexADAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQU7p3FULeoD5k58JPKz5Fw45IJgXAwHwYDVR0j BBgwFoAUZnB4vaCT+EBA8wFtF5yrpn9opkcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YzMyNmY0ZS02NjA1LTQ5NmEtYjlmOC1kNmU3N2IyOWJjYzYvMC82NjcwNzhCREEw OTNGODQwNDBGMzAxNkQxNzlDQUJBNjdGNjhBNjQ3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjY3MDc4QkRBMDkzRjg0MDQwRjMwMTZEMTc5Q0FCQTY3RjY4 QTY0Ny5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJjMzI2ZjRlLTY2MDUtNDk2YS1i OWY4LWQ2ZTc3YjI5YmNjNi8wLzMyMzQzMDMwM2E2NTYxMzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDM0MzYzMDM2MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAOpAMA0GCSqGSIb3 DQEBCwUAA4IBAQCDLRIaUVTGpGbQ/c8w0zqcwIeYDL1/HmTE4c6A0qLgNG42nFgQ jcVNW7q2T9/AicGAeGiKCLqPWAPc+EpdVCEqhWWM7ZfDVWjOI0P86a2spUpdvGqg RSu0bmmx7n4WPO3ilpYT2ESZAg1xZ2OVBG1fs3pIeM8n6/OkigUKt0+h5qs5Dhty jY3nmNZSQaVRKkdF22tmIuJ++W3jlu68yJacx36HJ+PH68MPzti/3jNt4UBpoblh H1ovyHDzdlKRAunfnohyxGcHrXtlYYqH2l1rC6CJbQjTTgzRHwx0SYhFxN3MOZMq yalbcM2USgmKAsnkOU2ROYYk64C0Ys5X0goW -----END CERTIFICATE-----Generated at Mon Sep 8 09:30:28 2025 by rpki-client