$ rpki-client -vvf repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a37303a3a2f34382d3438203d3e20313336303838.roa File: 323430303a643934303a37303a3a2f34382d3438203d3e20313336303838.roa (raw, json) Hash identifier: YmPVLnSWobx5YhLdzaTVU3ly0HHNz0UejiZ/btj52uk= Subject key identifier: 7B:68:7F:B2:15:36:34:E7:48:23:1F:03:8C:D2:41:03:9A:6D:91:7E Certificate issuer: /CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Certificate serial: 382BE5594D3683A491F7B1119FD2782B0C22CFB9 Authority key identifier: D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a37303a3a2f34382d3438203d3e20313336303838.roa Signing time: Mon 02 Jun 2025 02:03:21 +0000 ROA not before: Mon 02 Jun 2025 01:58:21 +0000 ROA not after: Mon 01 Jun 2026 02:03:21 +0000 asID: 136088 IP address blocks: 2400:d940:70::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 05:47:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:2b:e5:59:4d:36:83:a4:91:f7:b1:11:9f:d2:78:2b:0c:22:cf:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Validity Not Before: Jun 2 01:58:21 2025 GMT Not After : Jun 1 02:03:21 2026 GMT Subject: CN=7B687FB2153634E748231F038CD241039A6D917E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:18:b4:59:c8:0e:b7:75:0c:c6:bd:cb:88:7b: fa:87:6d:3b:35:f9:56:59:ce:66:05:6b:0b:90:97: 2d:cf:db:e9:e9:aa:5f:e2:e9:b6:cf:dd:03:c2:ae: f4:4f:8b:54:8f:84:a6:9c:38:84:db:db:18:3d:f2: 42:d8:b0:9a:3c:d2:80:60:7f:e6:86:05:47:98:0c: 09:a2:ea:07:aa:b9:ca:cf:c6:37:05:28:c5:4c:4d: d0:67:4c:e1:98:0d:e4:82:02:99:84:fe:67:4d:3f: 7f:11:bc:70:71:72:5c:6c:46:ee:27:78:0d:d6:6e: 07:e2:48:cf:61:d4:dc:89:74:07:ef:94:f8:b7:61: 93:5f:51:75:ff:ce:ea:a6:4d:b8:82:b8:d0:51:9b: 46:53:b5:b9:de:59:2c:11:e8:b5:c8:2c:c7:1d:c0: 56:f5:ff:68:6f:45:ca:84:da:5d:1f:25:23:e7:59: 38:98:82:82:f3:e0:0c:1a:c8:65:d9:e3:d3:85:07: 36:81:1a:bf:31:49:06:e1:df:fd:cf:d4:d0:d1:6b: 1e:23:d5:21:3e:49:95:b7:04:40:45:32:9c:d3:db: f0:3f:2e:b6:9c:7e:ef:b6:a7:ed:0f:2a:f9:15:6b: 42:7a:c2:f3:2e:4b:9d:80:96:62:d1:3e:a1:08:fe: 2a:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:68:7F:B2:15:36:34:E7:48:23:1F:03:8C:D2:41:03:9A:6D:91:7E X509v3 Authority Key Identifier: keyid:D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a37303a3a2f34382d3438203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d940:70::/48 Signature Algorithm: sha256WithRSAEncryption 09:05:a7:aa:44:7c:1c:bb:a2:c5:be:49:91:4e:a0:a0:1e:62: 68:f6:1a:8e:d4:8b:b6:29:44:33:10:c3:eb:7e:b7:bf:47:a0: ed:0f:7e:aa:9f:ff:d4:cc:60:9b:aa:33:7b:04:4c:b8:b7:84: 8f:73:e4:53:e9:95:e4:ae:71:66:5f:03:e9:4a:77:ea:47:8a: e5:02:18:b9:c1:0b:49:f4:44:83:a1:79:bc:ea:ad:6c:f9:cf: 1e:7e:c0:0b:16:3d:44:fe:f4:c5:14:28:bc:43:ff:ee:24:c8: b2:33:ac:d3:ab:0d:73:b9:13:78:88:ee:db:be:5c:4c:2d:fe: 1b:06:a5:e0:d9:d8:d1:9e:1d:cb:ae:dc:24:5f:46:44:b0:5b: fa:97:38:3f:43:81:b4:2a:c5:f2:3b:70:e1:d3:96:1f:d3:d3: 26:4f:fa:9e:a4:f8:73:3b:b6:f9:78:11:e2:08:af:04:67:87: f0:d1:f8:c3:5d:5d:d7:59:e0:7d:bc:9b:8d:25:2f:a0:e7:f4: bc:5c:6c:da:12:8c:10:d3:91:de:1a:2e:51:77:53:29:fa:68: f7:c8:51:3a:5a:3b:f9:54:47:ba:b6:0e:69:02:3f:0a:c9:ff: 57:62:8a:ff:d1:15:cf:56:18:18:69:cd:85:59:74:b0:1c:4b: 67:6a:33:4c -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUOCvlWU02g6SR97ERn9J4Kwwiz7kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhE MEJFOTIzRjAeFw0yNTA2MDIwMTU4MjFaFw0yNjA2MDEwMjAzMjFaMDMxMTAvBgNV BAMTKDdCNjg3RkIyMTUzNjM0RTc0ODIzMUYwMzhDRDI0MTAzOUE2RDkxN0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPGLRZyA63dQzGvcuIe/qHbTs1 +VZZzmYFawuQly3P2+npql/i6bbP3QPCrvRPi1SPhKacOITb2xg98kLYsJo80oBg f+aGBUeYDAmi6gequcrPxjcFKMVMTdBnTOGYDeSCApmE/mdNP38RvHBxclxsRu4n eA3WbgfiSM9h1NyJdAfvlPi3YZNfUXX/zuqmTbiCuNBRm0ZTtbneWSwR6LXILMcd wFb1/2hvRcqE2l0fJSPnWTiYgoLz4AwayGXZ49OFBzaBGr8xSQbh3/3P1NDRax4j 1SE+SZW3BEBFMpzT2/A/Lracfu+2p+0PKvkVa0J6wvMuS52AlmLRPqEI/irTAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUe2h/shU2NOdIIx8DjNJBA5ptkX4wHwYDVR0j BBgwFoAU0/th10akR2fUUY1un9H72NC+kj8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2Y0ZWMxYy05NTM1LTRjYmYtOWM3YS1mZDMyYzgzMGVkYmEvMC9EM0ZCNjFENzQ2 QTQ0NzY3RDQ1MThENkU5RkQxRkJEOEQwQkU5MjNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhEMEJF OTIzRi5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczZjRlYzFjLTk1MzUtNGNiZi05 YzdhLWZkMzJjODMwZWRiYS8wLzMyMzQzMDMwM2E2NDM5MzQzMDNhMzczMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzNjMwMzgzOC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA2UAA cDANBgkqhkiG9w0BAQsFAAOCAQEACQWnqkR8HLuixb5JkU6goB5iaPYajtSLtilE MxDD6363v0eg7Q9+qp//1Mxgm6ozewRMuLeEj3PkU+mV5K5xZl8D6Up36keK5QIY ucELSfREg6F5vOqtbPnPHn7ACxY9RP70xRQovEP/7iTIsjOs06sNc7kTeIju275c TC3+Gwal4NnY0Z4dy67cJF9GRLBb+pc4P0OBtCrF8jtw4dOWH9PTJk/6nqT4czu2 +XgR4givBGeH8NH4w11d11ngfbybjSUvoOf0vFxs2hKMENOR3houUXdTKfpo98hR Olo7+VRHurYOaQI/Csn/V2KK/9EVz1YYGGnNhVl0sBxLZ2ozTA== -----END CERTIFICATE-----Generated at Sun Jun 8 06:27:12 2025 by rpki-client