$ rpki-client -vvf repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a33303a3a2f34382d3438203d3e20313336303838.roa File: 323430303a643934303a33303a3a2f34382d3438203d3e20313336303838.roa (raw, json) Hash identifier: lBBQyFRPhNcF77tjvxke5+xF3Cs16rylkx1CIl6we88= Subject key identifier: B7:8A:E9:25:FA:BF:95:ED:14:07:82:F0:99:6D:4C:A6:DB:8D:AA:85 Certificate issuer: /CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Certificate serial: 14943488CB8FEC2B43C9B5DEE9E8FEA5BFAC2F52 Authority key identifier: D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a33303a3a2f34382d3438203d3e20313336303838.roa Signing time: Mon 02 Jun 2025 02:03:23 +0000 ROA not before: Mon 02 Jun 2025 01:58:23 +0000 ROA not after: Mon 01 Jun 2026 02:03:23 +0000 asID: 136088 IP address blocks: 2400:d940:30::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 05:47:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:94:34:88:cb:8f:ec:2b:43:c9:b5:de:e9:e8:fe:a5:bf:ac:2f:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Validity Not Before: Jun 2 01:58:23 2025 GMT Not After : Jun 1 02:03:23 2026 GMT Subject: CN=B78AE925FABF95ED140782F0996D4CA6DB8DAA85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:25:57:c2:75:87:c1:e5:e0:13:66:98:40:6b: da:e0:2a:04:cb:89:c9:5c:48:81:ee:f7:55:dc:8a: f5:d9:59:05:9d:9a:b0:96:3c:f8:5f:31:e7:7e:b1: be:a1:2c:81:65:8e:32:90:be:ac:8c:45:36:85:e7: 91:08:ae:c2:75:9a:7f:e0:a8:ed:c5:4a:ed:07:3f: 9b:d5:f3:7a:5b:1b:23:08:3e:23:ee:fb:a0:25:83: 23:ca:9b:8a:24:41:f6:78:b0:57:44:74:37:48:17: e1:67:5f:46:20:b6:b8:9c:d0:ad:4f:1d:24:46:c6: 71:03:c7:14:47:79:75:3d:6a:14:80:74:0d:b6:c3: cc:a7:27:f3:2b:53:6e:a1:43:bc:c1:1f:77:31:e7: 59:f1:59:60:ab:89:ef:8b:e7:de:6f:38:7d:7d:0b: 1e:a6:c9:83:3e:8c:9f:9c:bc:90:54:f2:bd:80:b5: 42:a1:34:27:36:41:8f:ef:3a:39:51:61:7b:70:38: 75:44:84:2a:1a:c2:4e:f6:ea:de:a9:c1:b4:dd:f6: d8:35:bf:1c:8f:09:ad:a8:1f:f6:70:24:55:13:d3: 51:f6:3c:77:ff:c0:d6:86:fd:b1:6e:24:df:bb:76: e6:a3:d9:a5:f9:0e:93:99:01:37:41:d7:3b:02:c1: 5e:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:8A:E9:25:FA:BF:95:ED:14:07:82:F0:99:6D:4C:A6:DB:8D:AA:85 X509v3 Authority Key Identifier: keyid:D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a33303a3a2f34382d3438203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d940:30::/48 Signature Algorithm: sha256WithRSAEncryption 58:4b:4f:05:c0:d0:35:89:60:ac:96:3d:8a:29:4d:42:ff:9a: 7d:85:56:8e:df:b4:d7:e3:50:ae:21:08:e3:75:88:e9:e0:6f: ed:db:e3:f1:76:fe:ed:c5:7d:44:63:60:1f:96:8c:da:c8:c9: 5a:f2:a5:bd:b7:b1:fe:5c:ce:02:c0:ba:45:2c:7d:c8:9a:9d: 8b:53:cb:25:6a:ec:0c:78:e8:75:37:c2:15:c8:1a:62:cb:2f: f4:e8:e8:c8:20:87:7d:af:f2:cc:29:39:9e:24:ae:a4:58:6c: 18:81:0c:5b:08:da:3e:54:8b:e6:04:d2:b5:6a:03:d6:e8:30: f8:f6:64:80:04:61:96:86:ac:53:9b:c6:c7:c3:a2:7b:15:90: 70:58:2c:d1:2f:78:77:62:f8:08:86:54:0f:fa:42:33:06:35: 98:a8:c6:15:c6:93:d1:9f:21:36:7a:e2:67:41:a7:a3:14:63: 9b:83:03:b6:c2:4d:06:0c:93:b2:24:1d:8d:dc:bc:a2:63:51: 8a:b3:1c:72:fd:d5:ba:ca:46:46:12:2d:d8:84:64:52:c3:11: b2:b9:12:37:20:14:18:65:6e:e8:d8:59:d7:86:6f:be:f7:da: 11:20:d7:45:6b:ce:6f:6b:44:8b:d7:0c:bd:67:74:3c:90:68: 26:7c:0e:55 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUFJQ0iMuP7CtDybXe6ej+pb+sL1IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhE MEJFOTIzRjAeFw0yNTA2MDIwMTU4MjNaFw0yNjA2MDEwMjAzMjNaMDMxMTAvBgNV BAMTKEI3OEFFOTI1RkFCRjk1RUQxNDA3ODJGMDk5NkQ0Q0E2REI4REFBODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQJVfCdYfB5eATZphAa9rgKgTL iclcSIHu91XcivXZWQWdmrCWPPhfMed+sb6hLIFljjKQvqyMRTaF55EIrsJ1mn/g qO3FSu0HP5vV83pbGyMIPiPu+6AlgyPKm4okQfZ4sFdEdDdIF+FnX0Ygtric0K1P HSRGxnEDxxRHeXU9ahSAdA22w8ynJ/MrU26hQ7zBH3cx51nxWWCrie+L595vOH19 Cx6myYM+jJ+cvJBU8r2AtUKhNCc2QY/vOjlRYXtwOHVEhCoawk726t6pwbTd9tg1 vxyPCa2oH/ZwJFUT01H2PHf/wNaG/bFuJN+7duaj2aX5DpOZATdB1zsCwV49AgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUt4rpJfq/le0UB4LwmW1MptuNqoUwHwYDVR0j BBgwFoAU0/th10akR2fUUY1un9H72NC+kj8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2Y0ZWMxYy05NTM1LTRjYmYtOWM3YS1mZDMyYzgzMGVkYmEvMC9EM0ZCNjFENzQ2 QTQ0NzY3RDQ1MThENkU5RkQxRkJEOEQwQkU5MjNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhEMEJF OTIzRi5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczZjRlYzFjLTk1MzUtNGNiZi05 YzdhLWZkMzJjODMwZWRiYS8wLzMyMzQzMDMwM2E2NDM5MzQzMDNhMzMzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzNjMwMzgzOC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA2UAA MDANBgkqhkiG9w0BAQsFAAOCAQEAWEtPBcDQNYlgrJY9iilNQv+afYVWjt+01+NQ riEI43WI6eBv7dvj8Xb+7cV9RGNgH5aM2sjJWvKlvbex/lzOAsC6RSx9yJqdi1PL JWrsDHjodTfCFcgaYssv9OjoyCCHfa/yzCk5niSupFhsGIEMWwjaPlSL5gTStWoD 1ugw+PZkgARhloasU5vGx8OiexWQcFgs0S94d2L4CIZUD/pCMwY1mKjGFcaT0Z8h NnriZ0GnoxRjm4MDtsJNBgyTsiQdjdy8omNRirMccv3VuspGRhIt2IRkUsMRsrkS NyAUGGVu6NhZ14ZvvvfaESDXRWvOb2tEi9cMvWd0PJBoJnwOVQ== -----END CERTIFICATE-----Generated at Sun Jun 8 07:32:46 2025 by rpki-client