$ rpki-client -vvf repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a38303a3a2f34382d3438203d3e20313336303838.roa File: 323430303a643934303a38303a3a2f34382d3438203d3e20313336303838.roa (raw, json) Hash identifier: MdLxnaQRIgohnJ5EF+rgtm0ISUaZP3ORSkVcAUCFKs8= Subject key identifier: 06:1C:28:BD:2D:A7:2B:27:CB:11:EB:FA:E5:13:65:6D:44:1C:8E:62 Certificate issuer: /CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Certificate serial: 71CBE990156574C132666381E632C5B7B21CB246 Authority key identifier: D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a38303a3a2f34382d3438203d3e20313336303838.roa Signing time: Mon 02 Jun 2025 02:03:22 +0000 ROA not before: Mon 02 Jun 2025 01:58:22 +0000 ROA not after: Mon 01 Jun 2026 02:03:22 +0000 asID: 136088 IP address blocks: 2400:d940:80::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 05:47:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:cb:e9:90:15:65:74:c1:32:66:63:81:e6:32:c5:b7:b2:1c:b2:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Validity Not Before: Jun 2 01:58:22 2025 GMT Not After : Jun 1 02:03:22 2026 GMT Subject: CN=061C28BD2DA72B27CB11EBFAE513656D441C8E62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:1a:37:6e:f5:05:25:65:99:81:53:fa:95:3d: 1a:da:5b:a6:60:d4:28:d7:3d:1b:6c:38:9e:a1:20: 4a:ae:6a:4d:3f:68:b1:02:12:79:3d:8f:92:54:94: 99:c1:e8:b7:77:ee:70:11:5e:2e:66:1f:2a:cc:56: 36:5e:e6:1c:5d:c7:4e:42:4c:24:24:5b:c3:14:6d: 78:15:30:99:e1:85:e4:1b:82:9f:33:b1:e0:64:7f: f3:b2:2a:04:19:d1:d3:18:34:df:ba:ab:42:6a:b1: f6:83:10:5c:fb:ed:63:92:d3:bd:e9:d1:93:1d:8e: d1:36:6e:99:54:26:6d:39:c8:04:37:a9:04:fd:3e: e3:89:b7:71:a9:a8:9c:17:ab:f4:44:f8:1e:d4:bd: 38:32:15:aa:02:57:e4:c6:b8:7d:f6:ba:cc:b2:56: 25:c0:fb:69:f4:cc:2f:e3:96:e5:d8:c5:84:57:85: e4:6f:e7:ac:de:06:76:01:83:d2:e5:03:6b:a2:cd: 79:7b:5c:5a:29:83:ca:fa:bd:ec:a7:0f:92:13:b9: 76:76:a4:40:ad:da:d1:19:69:19:08:0b:30:53:aa: cd:33:8e:f2:1d:84:a4:52:d8:a5:de:bb:58:8b:ef: 8c:b1:f1:13:34:9d:d6:12:45:ff:34:d4:6b:0b:17: ec:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:1C:28:BD:2D:A7:2B:27:CB:11:EB:FA:E5:13:65:6D:44:1C:8E:62 X509v3 Authority Key Identifier: keyid:D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a38303a3a2f34382d3438203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d940:80::/48 Signature Algorithm: sha256WithRSAEncryption c5:f1:1f:7c:18:42:a2:96:db:f7:29:88:f6:2a:ba:8e:47:2e: 8c:cd:50:0e:77:8a:a7:e5:26:48:ec:ef:42:5b:53:e6:30:88: 14:2a:d4:89:c9:13:d9:40:3e:8a:e0:5f:df:e1:2c:d0:2d:33: 4b:ea:bf:1e:19:7d:50:13:62:71:c0:80:c6:db:f3:88:50:88: 1c:c5:3d:37:5c:ab:10:13:5e:be:f7:9d:31:11:1d:6c:5c:b5: c9:ad:4b:d1:65:7d:47:06:97:e9:12:e8:4c:c7:2c:d7:a5:65: 58:26:94:b6:67:cf:79:f9:85:86:69:e5:91:b3:43:cf:f9:81: 57:64:0e:52:2f:90:8d:ae:eb:1f:2c:35:67:f1:e3:4c:84:bc: 97:c2:da:3b:ec:93:65:4d:13:55:b5:77:d6:73:3b:5d:64:c4: 68:2a:69:fd:a9:68:31:20:58:df:da:60:ea:32:61:4a:8e:5e: 59:a5:6e:7c:33:a1:cd:00:d9:8e:1d:0b:5c:a1:3a:8b:86:e2: 6b:6f:84:4e:a1:37:bc:f0:90:f3:05:08:da:4b:e3:b1:cd:e1: 2c:c4:1c:e8:36:15:23:a8:22:59:75:91:ae:b2:b1:f5:20:0d: 58:28:c7:6d:fc:e9:24:f6:21:63:ae:da:24:e2:00:3c:9e:2a: b5:0d:5e:73 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUccvpkBVldMEyZmOB5jLFt7IcskYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhE MEJFOTIzRjAeFw0yNTA2MDIwMTU4MjJaFw0yNjA2MDEwMjAzMjJaMDMxMTAvBgNV BAMTKDA2MUMyOEJEMkRBNzJCMjdDQjExRUJGQUU1MTM2NTZENDQxQzhFNjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDoGjdu9QUlZZmBU/qVPRraW6Zg 1CjXPRtsOJ6hIEquak0/aLECEnk9j5JUlJnB6Ld37nARXi5mHyrMVjZe5hxdx05C TCQkW8MUbXgVMJnhheQbgp8zseBkf/OyKgQZ0dMYNN+6q0JqsfaDEFz77WOS073p 0ZMdjtE2bplUJm05yAQ3qQT9PuOJt3GpqJwXq/RE+B7UvTgyFaoCV+TGuH32usyy ViXA+2n0zC/jluXYxYRXheRv56zeBnYBg9LlA2uizXl7XFopg8r6veynD5ITuXZ2 pECt2tEZaRkICzBTqs0zjvIdhKRS2KXeu1iL74yx8RM0ndYSRf801GsLF+y/AgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUBhwovS2nKyfLEev65RNlbUQcjmIwHwYDVR0j BBgwFoAU0/th10akR2fUUY1un9H72NC+kj8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2Y0ZWMxYy05NTM1LTRjYmYtOWM3YS1mZDMyYzgzMGVkYmEvMC9EM0ZCNjFENzQ2 QTQ0NzY3RDQ1MThENkU5RkQxRkJEOEQwQkU5MjNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhEMEJF OTIzRi5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczZjRlYzFjLTk1MzUtNGNiZi05 YzdhLWZkMzJjODMwZWRiYS8wLzMyMzQzMDMwM2E2NDM5MzQzMDNhMzgzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzNjMwMzgzOC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA2UAA gDANBgkqhkiG9w0BAQsFAAOCAQEAxfEffBhCopbb9ymI9iq6jkcujM1QDneKp+Um SOzvQltT5jCIFCrUickT2UA+iuBf3+Es0C0zS+q/Hhl9UBNiccCAxtvziFCIHMU9 N1yrEBNevvedMREdbFy1ya1L0WV9RwaX6RLoTMcs16VlWCaUtmfPefmFhmnlkbND z/mBV2QOUi+Qja7rHyw1Z/HjTIS8l8LaO+yTZU0TVbV31nM7XWTEaCpp/aloMSBY 39pg6jJhSo5eWaVufDOhzQDZjh0LXKE6i4bia2+ETqE3vPCQ8wUI2kvjsc3hLMQc 6DYVI6giWXWRrrKx9SANWCjHbfzpJPYhY67aJOIAPJ4qtQ1ecw== -----END CERTIFICATE-----Generated at Sun Jun 8 07:32:57 2025 by rpki-client