$ rpki-client -vvf repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a3330303a3a2f34382d3438203d3e20313336303838.roa File: 323430303a643934303a3330303a3a2f34382d3438203d3e20313336303838.roa (raw, json) Hash identifier: jnP7c+pGP7PrVIikM4daA4hESYwCEHPqKerxGkWW0Ys= Subject key identifier: D6:C6:1A:A5:37:52:24:9C:1A:B3:E7:17:71:68:0E:B4:86:12:C8:2F Certificate issuer: /CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Certificate serial: 61E73E1CA663CE60AFE2D418AD125C3B119981A1 Authority key identifier: D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a3330303a3a2f34382d3438203d3e20313336303838.roa Signing time: Mon 02 Jun 2025 02:03:22 +0000 ROA not before: Mon 02 Jun 2025 01:58:22 +0000 ROA not after: Mon 01 Jun 2026 02:03:22 +0000 asID: 136088 IP address blocks: 2400:d940:300::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 05:47:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:e7:3e:1c:a6:63:ce:60:af:e2:d4:18:ad:12:5c:3b:11:99:81:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Validity Not Before: Jun 2 01:58:22 2025 GMT Not After : Jun 1 02:03:22 2026 GMT Subject: CN=D6C61AA53752249C1AB3E71771680EB48612C82F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:4b:28:94:66:f6:f0:63:cf:22:16:ef:59:0d: dd:bc:3f:6c:d3:25:16:bc:1b:a7:34:4f:d5:c8:ba: 87:d2:27:83:60:bc:be:f5:96:41:d3:96:27:82:67: 00:da:45:0f:47:da:3e:2a:4d:f8:80:f0:d1:b6:bd: 27:83:ba:84:f0:9f:ba:1a:56:98:df:2c:b5:0d:cc: 54:34:e6:28:63:34:d9:b2:ab:b5:7f:60:cf:62:7a: 3d:f8:f8:07:aa:4c:bb:62:1a:83:9f:0f:f1:b1:3b: 2f:ce:d5:01:16:0e:a6:90:f5:d9:6c:71:4b:f6:cd: f9:aa:2a:2e:9c:40:0e:46:08:81:5f:7c:8a:af:be: 80:15:35:3f:b9:c0:65:31:2a:d7:8d:ee:6f:8a:d2: cb:3c:cf:84:c3:73:b2:d4:a2:27:2b:62:bb:94:88: 47:8f:72:87:84:ea:85:39:d5:51:d9:0d:01:27:a1: 10:77:2f:76:63:b8:12:1e:08:ef:f0:11:34:d6:20: 2a:17:ab:60:77:4e:17:17:c6:2e:98:4c:9f:1e:69: d4:06:86:8d:da:59:b0:8b:c7:24:21:f2:b0:07:6b: 18:2c:a2:f5:a6:07:ff:a4:71:8e:c8:09:5b:50:d9: 7e:c2:18:58:ea:d0:c7:de:63:19:f2:83:46:6d:3f: 81:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:C6:1A:A5:37:52:24:9C:1A:B3:E7:17:71:68:0E:B4:86:12:C8:2F X509v3 Authority Key Identifier: keyid:D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a3330303a3a2f34382d3438203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d940:300::/48 Signature Algorithm: sha256WithRSAEncryption 17:63:4a:ad:3c:6e:74:02:f3:d0:cd:10:1d:e8:04:d7:72:f6: f5:32:5e:a7:a1:50:e8:15:1d:63:bb:bc:ca:78:f1:30:48:95: 52:79:b6:0a:58:71:c8:ad:7d:2e:5c:37:a2:94:21:3b:84:75: 7d:08:3c:87:6b:b2:33:a5:fd:e5:fb:01:d2:48:4d:65:61:72: 94:1f:3c:04:72:78:af:cf:5f:ed:8e:5b:51:50:6d:23:3c:dc: 40:82:f0:7f:e1:7d:51:a5:32:ae:ae:bb:a1:ec:95:10:18:c3: 1b:d0:5f:e4:9c:6f:dc:1e:90:ec:eb:15:9e:a2:6f:50:58:c8: 43:59:ae:0a:2a:e2:db:d3:9f:f4:05:9c:99:ab:76:da:19:ab: 39:90:a3:56:0c:12:73:64:8d:00:e4:56:66:40:e7:4d:df:6d: db:3a:f3:6e:c8:fb:48:44:6b:4b:ff:a2:9c:30:49:c4:cc:06: 6b:52:0b:fd:6a:d9:58:be:75:0e:b6:3e:e3:0e:48:62:71:b4: 2b:63:20:90:aa:4d:af:98:78:2a:31:a7:d6:e2:7a:68:f1:72: 0e:7c:a0:54:44:43:ac:09:d4:31:13:e2:a4:8a:43:f8:62:8b: b3:80:5c:76:04:8e:65:cf:c7:7f:46:c3:06:1d:95:e5:96:00: 11:1f:3a:0d -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUYec+HKZjzmCv4tQYrRJcOxGZgaEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhE MEJFOTIzRjAeFw0yNTA2MDIwMTU4MjJaFw0yNjA2MDEwMjAzMjJaMDMxMTAvBgNV BAMTKEQ2QzYxQUE1Mzc1MjI0OUMxQUIzRTcxNzcxNjgwRUI0ODYxMkM4MkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCSyiUZvbwY88iFu9ZDd28P2zT JRa8G6c0T9XIuofSJ4NgvL71lkHTlieCZwDaRQ9H2j4qTfiA8NG2vSeDuoTwn7oa VpjfLLUNzFQ05ihjNNmyq7V/YM9iej34+AeqTLtiGoOfD/GxOy/O1QEWDqaQ9dls cUv2zfmqKi6cQA5GCIFffIqvvoAVNT+5wGUxKteN7m+K0ss8z4TDc7LUoicrYruU iEePcoeE6oU51VHZDQEnoRB3L3ZjuBIeCO/wETTWICoXq2B3ThcXxi6YTJ8eadQG ho3aWbCLxyQh8rAHaxgsovWmB/+kcY7ICVtQ2X7CGFjq0MfeYxnyg0ZtP4GrAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU1sYapTdSJJwas+cXcWgOtIYSyC8wHwYDVR0j BBgwFoAU0/th10akR2fUUY1un9H72NC+kj8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2Y0ZWMxYy05NTM1LTRjYmYtOWM3YS1mZDMyYzgzMGVkYmEvMC9EM0ZCNjFENzQ2 QTQ0NzY3RDQ1MThENkU5RkQxRkJEOEQwQkU5MjNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhEMEJF OTIzRi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczZjRlYzFjLTk1MzUtNGNiZi05 YzdhLWZkMzJjODMwZWRiYS8wLzMyMzQzMDMwM2E2NDM5MzQzMDNhMzMzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM2MzAzODM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJADZ QAMAMA0GCSqGSIb3DQEBCwUAA4IBAQAXY0qtPG50AvPQzRAd6ATXcvb1Ml6noVDo FR1ju7zKePEwSJVSebYKWHHIrX0uXDeilCE7hHV9CDyHa7Izpf3l+wHSSE1lYXKU HzwEcnivz1/tjltRUG0jPNxAgvB/4X1RpTKurruh7JUQGMMb0F/knG/cHpDs6xWe om9QWMhDWa4KKuLb05/0BZyZq3baGas5kKNWDBJzZI0A5FZmQOdN323bOvNuyPtI RGtL/6KcMEnEzAZrUgv9atlYvnUOtj7jDkhicbQrYyCQqk2vmHgqMafW4npo8XIO fKBUREOsCdQxE+KkikP4YouzgFx2BI5lz8d/RsMGHZXllgARHzoN -----END CERTIFICATE-----Generated at Sun Jun 8 06:24:48 2025 by rpki-client