$ rpki-client -vvf repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a39303a3a2f34382d3438203d3e20313336303838.roa File: 323430303a643934303a39303a3a2f34382d3438203d3e20313336303838.roa (raw, json) Hash identifier: 7VOIfqkhYV7A27hR2M6TBmFMxRIbI/EYr5T6urcxa98= Subject key identifier: F5:F3:B7:1D:95:0A:EF:6C:43:3C:E3:62:02:0F:6E:3D:6C:D0:10:D2 Certificate issuer: /CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Certificate serial: 11349F77418EBDF5D5BBA64BBE36BBC1998C44F1 Authority key identifier: D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a39303a3a2f34382d3438203d3e20313336303838.roa Signing time: Mon 02 Jun 2025 02:03:23 +0000 ROA not before: Mon 02 Jun 2025 01:58:23 +0000 ROA not after: Mon 01 Jun 2026 02:03:23 +0000 asID: 136088 IP address blocks: 2400:d940:90::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 05:47:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:34:9f:77:41:8e:bd:f5:d5:bb:a6:4b:be:36:bb:c1:99:8c:44:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Validity Not Before: Jun 2 01:58:23 2025 GMT Not After : Jun 1 02:03:23 2026 GMT Subject: CN=F5F3B71D950AEF6C433CE362020F6E3D6CD010D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:70:5e:c1:e3:9b:d5:22:86:ef:bb:4c:73:d1: ec:43:e2:d7:0f:97:1a:20:66:73:7e:5c:02:5c:de: 3b:55:66:ee:7f:e9:92:83:ef:8d:a0:ad:ce:7f:dd: a5:7d:73:ef:84:b4:c9:d2:e0:2a:f6:1e:10:bc:2f: a9:bd:67:a0:cb:8d:f0:43:d2:0d:c8:43:49:1e:80: b3:07:1a:45:5c:5f:94:53:d3:f7:2d:64:c8:3c:d1: 5c:0d:08:c9:02:ea:2f:e8:08:ea:19:2e:77:1f:af: dc:89:61:19:26:fc:95:31:aa:4e:52:e9:a7:60:50: 9e:15:ce:1d:26:ef:7c:2f:44:ab:dd:19:01:20:dd: 59:b7:b0:b9:41:52:bc:81:5f:03:0b:99:a9:fe:ec: 53:5d:be:74:b2:6d:e8:08:1b:7e:6d:2f:a5:18:20: ec:d9:53:e6:3e:c9:08:50:0c:e5:4e:a3:58:f7:19: 94:5e:c8:a0:6c:60:2a:47:60:2d:61:08:46:9b:f7: 96:67:c1:14:bf:0b:14:77:11:cd:5c:c3:b0:23:da: f5:d5:1d:c1:29:bb:89:25:c0:37:53:69:26:80:4f: 77:7a:1e:13:4a:de:ee:43:0c:3e:a4:ed:39:ef:25: 2d:b1:e8:b0:35:b6:7e:45:50:2b:8a:f8:c8:eb:3a: 21:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:F3:B7:1D:95:0A:EF:6C:43:3C:E3:62:02:0F:6E:3D:6C:D0:10:D2 X509v3 Authority Key Identifier: keyid:D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a39303a3a2f34382d3438203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d940:90::/48 Signature Algorithm: sha256WithRSAEncryption 95:cd:f0:d5:14:a0:92:db:4b:cd:d0:00:3a:38:14:98:09:64: 59:de:f3:d5:bc:7e:cb:2b:98:23:8e:ab:89:87:f9:60:05:68: a8:84:6a:53:e6:a0:91:ce:e0:e0:7e:9e:d8:3e:60:39:a2:21: ea:96:bf:70:13:d2:34:30:f3:f8:95:fb:00:ca:4d:26:8a:ff: e9:20:79:66:68:6d:70:0d:58:74:ca:a9:b5:e8:71:98:cf:d4: f1:5f:39:a7:78:a0:3f:be:b7:c3:3f:af:4e:f3:da:28:c8:7f: 43:da:65:dc:8c:e3:dc:16:aa:78:b1:3e:83:1f:69:65:97:94: ed:b0:a6:5b:56:50:02:dd:da:ac:c6:4e:4f:dd:dc:54:4e:4e: cc:61:4c:b4:83:a5:6a:80:56:a8:0e:40:9a:3d:c6:4a:5a:78: af:42:28:4b:c7:3e:2d:91:da:7d:18:01:b8:28:83:eb:79:94: 93:f8:79:42:ba:7d:09:e4:00:3a:01:e8:dd:3a:f4:04:24:b9: 6b:2e:a1:3a:ca:b9:a8:de:18:cf:c1:97:61:4a:a6:a6:41:c2: cd:17:89:9c:78:0d:da:aa:74:98:0c:86:89:e1:14:eb:2b:bb: c1:c7:a1:ec:eb:84:e1:2e:64:ca:c5:68:6b:aa:28:a4:f7:c0: 7d:3d:66:11 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUETSfd0GOvfXVu6ZLvja7wZmMRPEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhE MEJFOTIzRjAeFw0yNTA2MDIwMTU4MjNaFw0yNjA2MDEwMjAzMjNaMDMxMTAvBgNV BAMTKEY1RjNCNzFEOTUwQUVGNkM0MzNDRTM2MjAyMEY2RTNENkNEMDEwRDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtcF7B45vVIobvu0xz0exD4tcP lxogZnN+XAJc3jtVZu5/6ZKD742grc5/3aV9c++EtMnS4Cr2HhC8L6m9Z6DLjfBD 0g3IQ0kegLMHGkVcX5RT0/ctZMg80VwNCMkC6i/oCOoZLncfr9yJYRkm/JUxqk5S 6adgUJ4Vzh0m73wvRKvdGQEg3Vm3sLlBUryBXwMLman+7FNdvnSybegIG35tL6UY IOzZU+Y+yQhQDOVOo1j3GZReyKBsYCpHYC1hCEab95ZnwRS/CxR3Ec1cw7Aj2vXV HcEpu4klwDdTaSaAT3d6HhNK3u5DDD6k7TnvJS2x6LA1tn5FUCuK+MjrOiFVAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQU9fO3HZUK72xDPONiAg9uPWzQENIwHwYDVR0j BBgwFoAU0/th10akR2fUUY1un9H72NC+kj8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2Y0ZWMxYy05NTM1LTRjYmYtOWM3YS1mZDMyYzgzMGVkYmEvMC9EM0ZCNjFENzQ2 QTQ0NzY3RDQ1MThENkU5RkQxRkJEOEQwQkU5MjNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhEMEJF OTIzRi5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczZjRlYzFjLTk1MzUtNGNiZi05 YzdhLWZkMzJjODMwZWRiYS8wLzMyMzQzMDMwM2E2NDM5MzQzMDNhMzkzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzNjMwMzgzOC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA2UAA kDANBgkqhkiG9w0BAQsFAAOCAQEAlc3w1RSgkttLzdAAOjgUmAlkWd7z1bx+yyuY I46riYf5YAVoqIRqU+agkc7g4H6e2D5gOaIh6pa/cBPSNDDz+JX7AMpNJor/6SB5 ZmhtcA1YdMqptehxmM/U8V85p3igP763wz+vTvPaKMh/Q9pl3Izj3BaqeLE+gx9p ZZeU7bCmW1ZQAt3arMZOT93cVE5OzGFMtIOlaoBWqA5Amj3GSlp4r0IoS8c+LZHa fRgBuCiD63mUk/h5Qrp9CeQAOgHo3Tr0BCS5ay6hOsq5qN4Yz8GXYUqmpkHCzReJ nHgN2qp0mAyGieEU6yu7wceh7OuE4S5kysVoa6oopPfAfT1mEQ== -----END CERTIFICATE-----Generated at Sun Jun 8 06:29:13 2025 by rpki-client