$ rpki-client -vvf repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a3230303a3a2f34382d3438203d3e20313336303838.roa File: 323430303a643934303a3230303a3a2f34382d3438203d3e20313336303838.roa (raw, json) Hash identifier: 38Z8RhmOGwuZZ8bo8ApZ8Vt6uHkxh6jkggk/GIF6j2w= Subject key identifier: 8F:53:B7:53:BC:A9:70:CC:77:30:75:8F:AF:0A:6C:F5:71:05:2B:46 Certificate issuer: /CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Certificate serial: 54485957FBED572067EDA461B04842F8E2D8F61E Authority key identifier: D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a3230303a3a2f34382d3438203d3e20313336303838.roa Signing time: Mon 02 Jun 2025 02:03:24 +0000 ROA not before: Mon 02 Jun 2025 01:58:24 +0000 ROA not after: Mon 01 Jun 2026 02:03:24 +0000 asID: 136088 IP address blocks: 2400:d940:200::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 05:47:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:48:59:57:fb:ed:57:20:67:ed:a4:61:b0:48:42:f8:e2:d8:f6:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Validity Not Before: Jun 2 01:58:24 2025 GMT Not After : Jun 1 02:03:24 2026 GMT Subject: CN=8F53B753BCA970CC7730758FAF0A6CF571052B46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:c1:16:e2:b3:67:d2:57:ea:cd:a2:e7:c7:c9: 29:2c:ea:67:83:81:f9:7b:be:02:91:e7:23:13:0e: 54:a7:92:09:d9:ca:0b:9c:92:6c:4c:93:71:ff:5c: 0b:a7:74:16:b9:ff:06:aa:a7:52:04:95:46:0b:e7: 17:34:11:b9:e9:05:6b:8e:3f:3b:8a:23:dc:75:6c: 30:0c:65:42:27:cd:cd:a4:3e:48:6f:f9:dc:b2:07: 20:7c:e2:3e:7f:43:85:d2:04:da:92:b1:8f:35:de: 92:e0:4e:50:09:f1:e2:73:b4:92:60:5a:97:13:09: 5d:7a:78:5b:b5:bb:d4:7b:ba:04:84:cd:52:10:63: 80:d2:98:fe:cf:4f:0d:bc:8b:a1:2f:f8:d6:c4:65: 80:b7:08:87:58:b4:5f:5f:b0:65:38:48:23:fd:ec: 48:c1:23:1e:d6:9e:75:e8:a0:52:dd:bd:ae:05:e8: 1b:9c:03:79:aa:ea:3b:79:d6:f0:5e:54:a3:c3:18: 6b:ea:a1:a3:1a:a6:bb:9b:2b:d8:ff:51:8a:1d:b1: d2:c0:ac:28:bf:22:c8:55:a0:19:fe:d4:61:ad:a1: bc:c5:e7:40:e6:f1:93:1b:9e:49:ad:01:a8:7e:b8: d2:75:bf:f6:c9:34:a4:ce:00:b3:7f:de:fd:3c:01: 91:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:53:B7:53:BC:A9:70:CC:77:30:75:8F:AF:0A:6C:F5:71:05:2B:46 X509v3 Authority Key Identifier: keyid:D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a3230303a3a2f34382d3438203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d940:200::/48 Signature Algorithm: sha256WithRSAEncryption 8b:23:c1:07:ec:3a:93:85:4e:3a:d3:4b:dc:c1:69:88:ef:d0: 86:01:cd:a0:26:5f:6b:d8:2d:43:94:26:da:72:ca:f8:3b:54: da:e3:b3:18:34:78:91:e5:34:b7:cd:0a:07:a4:b7:2a:c1:9f: c0:57:28:af:a6:b2:2d:fb:0a:5c:fb:de:07:10:b9:3e:04:87: 46:fa:fb:39:29:c9:d9:8c:0b:be:74:b0:bb:51:36:d1:cb:3e: f4:e3:94:88:ea:d8:3e:f0:c4:b1:22:42:4d:44:31:a1:34:33: 8f:d7:c9:fd:b0:ca:ca:b9:c3:35:e9:ad:41:6d:e7:51:f0:a5: b5:f3:8a:e5:ba:65:95:9d:0d:33:b2:e5:b8:9c:ae:e2:fd:c8: 48:bc:4d:e5:f1:a1:21:4c:95:9c:1f:62:42:a8:e8:72:10:2c: a4:85:19:11:d0:c6:d1:63:ed:fb:0f:f7:b0:cb:35:13:cf:03: 5f:eb:55:61:eb:a2:df:0c:cc:71:82:15:0b:63:91:f5:b2:d5: 15:0d:88:b7:f0:21:c5:73:55:0b:64:40:82:ee:b3:55:b9:d8: 79:09:f0:af:3d:5b:e1:a7:7c:6c:17:d4:89:70:b5:9d:3f:26: 04:8e:6f:10:79:31:41:b5:40:75:69:14:a4:40:cb:96:1e:04: 04:d6:38:33 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUVEhZV/vtVyBn7aRhsEhC+OLY9h4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhE MEJFOTIzRjAeFw0yNTA2MDIwMTU4MjRaFw0yNjA2MDEwMjAzMjRaMDMxMTAvBgNV BAMTKDhGNTNCNzUzQkNBOTcwQ0M3NzMwNzU4RkFGMEE2Q0Y1NzEwNTJCNDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0wRbis2fSV+rNoufHySks6meD gfl7vgKR5yMTDlSnkgnZyguckmxMk3H/XAundBa5/waqp1IElUYL5xc0EbnpBWuO PzuKI9x1bDAMZUInzc2kPkhv+dyyByB84j5/Q4XSBNqSsY813pLgTlAJ8eJztJJg WpcTCV16eFu1u9R7ugSEzVIQY4DSmP7PTw28i6Ev+NbEZYC3CIdYtF9fsGU4SCP9 7EjBIx7WnnXooFLdva4F6BucA3mq6jt51vBeVKPDGGvqoaMaprubK9j/UYodsdLA rCi/IshVoBn+1GGtobzF50Dm8ZMbnkmtAah+uNJ1v/bJNKTOALN/3v08AZHVAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUj1O3U7ypcMx3MHWPrwps9XEFK0YwHwYDVR0j BBgwFoAU0/th10akR2fUUY1un9H72NC+kj8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2Y0ZWMxYy05NTM1LTRjYmYtOWM3YS1mZDMyYzgzMGVkYmEvMC9EM0ZCNjFENzQ2 QTQ0NzY3RDQ1MThENkU5RkQxRkJEOEQwQkU5MjNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhEMEJF OTIzRi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczZjRlYzFjLTk1MzUtNGNiZi05 YzdhLWZkMzJjODMwZWRiYS8wLzMyMzQzMDMwM2E2NDM5MzQzMDNhMzIzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM2MzAzODM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJADZ QAIAMA0GCSqGSIb3DQEBCwUAA4IBAQCLI8EH7DqThU4600vcwWmI79CGAc2gJl9r 2C1DlCbacsr4O1Ta47MYNHiR5TS3zQoHpLcqwZ/AVyivprIt+wpc+94HELk+BIdG +vs5KcnZjAu+dLC7UTbRyz7045SI6tg+8MSxIkJNRDGhNDOP18n9sMrKucM16a1B bedR8KW184rlumWVnQ0zsuW4nK7i/chIvE3l8aEhTJWcH2JCqOhyECykhRkR0MbR Y+37D/ewyzUTzwNf61Vh66LfDMxxghULY5H1stUVDYi38CHFc1ULZECC7rNVudh5 CfCvPVvhp3xsF9SJcLWdPyYEjm8QeTFBtUB1aRSkQMuWHgQE1jgz -----END CERTIFICATE-----Generated at Sun Jun 8 08:21:13 2025 by rpki-client