$ rpki-client -vvf repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a32303a3a2f34382d3438203d3e20313336303838.roa File: 323430303a643934303a32303a3a2f34382d3438203d3e20313336303838.roa (raw, json) Hash identifier: u3+Gv4d4/BRtcFioQ3iXkvS00ZPXgNATtZCq1qGFDDg= Subject key identifier: 72:64:6D:A0:50:B0:B7:F8:4B:B5:84:EA:18:3D:CC:66:5F:5C:54:BE Certificate issuer: /CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Certificate serial: 11DC20807488A0ADFD0B879F380E0589518E4D60 Authority key identifier: D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a32303a3a2f34382d3438203d3e20313336303838.roa Signing time: Mon 02 Jun 2025 02:03:22 +0000 ROA not before: Mon 02 Jun 2025 01:58:22 +0000 ROA not after: Mon 01 Jun 2026 02:03:22 +0000 asID: 136088 IP address blocks: 2400:d940:20::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 05:47:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:dc:20:80:74:88:a0:ad:fd:0b:87:9f:38:0e:05:89:51:8e:4d:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Validity Not Before: Jun 2 01:58:22 2025 GMT Not After : Jun 1 02:03:22 2026 GMT Subject: CN=72646DA050B0B7F84BB584EA183DCC665F5C54BE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:e3:0c:c7:f7:ca:dd:dd:7d:1b:1a:65:13:2f: a2:96:1c:f9:bb:ea:57:04:d7:00:c9:3b:1c:12:d7: 3d:63:e0:17:35:49:35:d2:3f:d1:b4:f9:ca:53:2b: df:21:51:36:61:0a:7b:85:d5:da:09:c5:f3:ea:48: c4:20:f8:dd:7e:fc:bd:d4:1f:65:80:95:51:04:9a: 9c:76:8f:5c:03:4a:60:f4:79:66:89:45:76:26:dd: 84:38:3a:5b:82:81:f2:98:bb:85:3a:62:84:33:03: b7:c6:7f:94:82:b2:1c:ad:4a:c3:ab:c8:96:70:a5: 34:9d:d0:61:fb:49:71:94:09:84:47:22:1a:79:a9: 92:39:2f:36:3e:a6:f7:f3:f4:3d:d2:1e:d7:2f:2b: f7:69:00:e2:10:f3:d3:56:53:6e:4c:3d:33:34:50: 2a:1e:81:49:75:d9:0f:00:67:d6:63:31:23:b5:b4: fc:03:6d:42:97:7f:e1:5e:6b:bc:47:e5:6a:91:79: f0:8c:73:ef:90:00:a9:53:4c:1d:56:57:19:49:df: db:32:90:19:8a:9f:ee:36:9c:d6:09:04:0d:04:94: 62:3f:61:2e:4c:41:cb:99:30:c3:e0:c8:cd:c4:44: 79:0a:24:3e:fe:a6:88:ba:13:29:f6:14:d1:c0:17: e4:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:64:6D:A0:50:B0:B7:F8:4B:B5:84:EA:18:3D:CC:66:5F:5C:54:BE X509v3 Authority Key Identifier: keyid:D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a32303a3a2f34382d3438203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d940:20::/48 Signature Algorithm: sha256WithRSAEncryption 67:6c:76:fc:18:fa:ca:df:12:9b:01:84:91:86:bd:5a:c6:4c: 37:fb:dc:6d:de:a0:5c:92:d1:6c:79:01:77:8d:91:c0:8f:2c: 7a:e5:d0:b7:cb:fe:50:21:dc:9d:02:6c:d4:d8:9d:6e:1f:84: 6a:5f:b7:a4:0f:db:7a:f4:ed:a0:e5:dc:7c:42:de:64:37:75: 1e:56:78:f9:4f:54:b6:13:04:c2:0b:0b:5a:20:08:78:e6:1a: b0:1b:04:47:3d:42:dc:9b:32:98:f4:b3:00:4c:85:5a:b0:94: cb:3b:d7:ed:f7:29:11:22:a2:a2:c2:2b:fa:e2:e3:ae:af:9c: 4c:06:c4:ce:9d:a0:60:34:09:6a:42:21:78:9d:d5:c2:d3:46: a8:8d:0d:c9:c0:b3:0c:1d:0f:9d:0c:b6:4c:a5:75:8f:5e:f9: 82:b4:54:7f:27:14:65:04:37:b9:1a:5b:fa:c3:f7:ba:da:0d: 15:fe:89:3f:ad:bb:39:f4:d3:37:7c:2a:c1:9b:9e:16:0a:00: 09:80:42:2c:1b:8e:d3:d1:45:c1:ef:8d:b1:ee:f9:6f:e2:e8: 50:1c:76:e7:01:0e:08:55:26:53:01:e9:0d:5d:b3:13:6b:e1: bf:59:b3:39:03:08:83:57:33:81:64:93:66:f4:26:72:44:86: 17:c6:2b:67 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUEdwggHSIoK39C4efOA4FiVGOTWAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhE MEJFOTIzRjAeFw0yNTA2MDIwMTU4MjJaFw0yNjA2MDEwMjAzMjJaMDMxMTAvBgNV BAMTKDcyNjQ2REEwNTBCMEI3Rjg0QkI1ODRFQTE4M0RDQzY2NUY1QzU0QkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCk4wzH98rd3X0bGmUTL6KWHPm7 6lcE1wDJOxwS1z1j4Bc1STXSP9G0+cpTK98hUTZhCnuF1doJxfPqSMQg+N1+/L3U H2WAlVEEmpx2j1wDSmD0eWaJRXYm3YQ4OluCgfKYu4U6YoQzA7fGf5SCshytSsOr yJZwpTSd0GH7SXGUCYRHIhp5qZI5LzY+pvfz9D3SHtcvK/dpAOIQ89NWU25MPTM0 UCoegUl12Q8AZ9ZjMSO1tPwDbUKXf+Fea7xH5WqRefCMc++QAKlTTB1WVxlJ39sy kBmKn+42nNYJBA0ElGI/YS5MQcuZMMPgyM3ERHkKJD7+poi6Eyn2FNHAF+RZAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUcmRtoFCwt/hLtYTqGD3MZl9cVL4wHwYDVR0j BBgwFoAU0/th10akR2fUUY1un9H72NC+kj8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2Y0ZWMxYy05NTM1LTRjYmYtOWM3YS1mZDMyYzgzMGVkYmEvMC9EM0ZCNjFENzQ2 QTQ0NzY3RDQ1MThENkU5RkQxRkJEOEQwQkU5MjNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhEMEJF OTIzRi5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczZjRlYzFjLTk1MzUtNGNiZi05 YzdhLWZkMzJjODMwZWRiYS8wLzMyMzQzMDMwM2E2NDM5MzQzMDNhMzIzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzNjMwMzgzOC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA2UAA IDANBgkqhkiG9w0BAQsFAAOCAQEAZ2x2/Bj6yt8SmwGEkYa9WsZMN/vcbd6gXJLR bHkBd42RwI8seuXQt8v+UCHcnQJs1Nidbh+Eal+3pA/bevTtoOXcfELeZDd1HlZ4 +U9UthMEwgsLWiAIeOYasBsERz1C3JsymPSzAEyFWrCUyzvX7fcpESKiosIr+uLj rq+cTAbEzp2gYDQJakIheJ3VwtNGqI0NycCzDB0PnQy2TKV1j175grRUfycUZQQ3 uRpb+sP3utoNFf6JP627OfTTN3wqwZueFgoACYBCLBuO09FFwe+Nse75b+LoUBx2 5wEOCFUmUwHpDV2zE2vhv1mzOQMIg1czgWSTZvQmckSGF8YrZw== -----END CERTIFICATE-----Generated at Sun Jun 8 05:01:39 2025 by rpki-client