$ rpki-client -vvf repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a3a2f33322d3332203d3e20313336303838.roa File: 323430303a643934303a3a2f33322d3332203d3e20313336303838.roa (raw, json) Hash identifier: amR4nrg/9FRneM1hYFFEXvekiDFUlRRKM/5Rs+DhOGs= Subject key identifier: B3:0B:32:5F:BE:C7:FB:B0:F3:23:11:93:3D:DB:51:85:F7:7B:D1:9D Certificate issuer: /CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Certificate serial: 31495F8894DC765B96E2D0B03108D778D1CE9224 Authority key identifier: D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a3a2f33322d3332203d3e20313336303838.roa Signing time: Sat 17 May 2025 04:00:02 +0000 ROA not before: Sat 17 May 2025 03:55:02 +0000 ROA not after: Sat 16 May 2026 04:00:02 +0000 asID: 136088 IP address blocks: 2400:d940::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 05:47:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:49:5f:88:94:dc:76:5b:96:e2:d0:b0:31:08:d7:78:d1:ce:92:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Validity Not Before: May 17 03:55:02 2025 GMT Not After : May 16 04:00:02 2026 GMT Subject: CN=B30B325FBEC7FBB0F32311933DDB5185F77BD19D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:ce:f9:3c:c0:78:71:84:11:da:9c:be:87:2d: 79:e4:bf:2e:92:c9:21:c8:2c:39:ca:5c:3c:02:c4: 0f:5e:a7:49:8b:73:fe:45:d5:56:07:6b:ca:5b:8d: e8:31:89:25:34:11:1a:03:a2:7a:e3:b2:cf:49:fd: e6:13:48:24:3c:e8:dc:e4:bc:3f:bb:af:55:a9:7b: ec:6e:0a:28:f5:b9:1a:33:53:e0:a7:e8:5e:c5:52: 70:55:f8:4d:04:85:cc:7c:7c:ce:d0:e8:9b:06:22: 55:80:5d:bd:b6:7a:80:0d:48:53:fd:9f:2c:61:ed: c3:ee:47:22:41:92:ab:11:5c:07:44:8b:2d:3d:d2: 96:2d:44:a9:5c:cd:f6:0e:06:b7:ae:f2:3f:0b:a1: db:26:55:b3:95:25:9c:6b:54:08:4a:05:2b:09:fa: 2d:9b:c8:93:a9:7d:33:cd:b7:56:c3:ed:99:55:bd: da:e2:7a:90:39:e8:8d:7b:85:bb:be:73:df:c8:d7: f8:b0:93:d3:94:82:31:d6:a4:ad:3f:01:3b:9c:7d: f7:4c:0d:ce:43:2d:87:ac:7a:2a:31:cc:74:db:85: 9e:d5:c8:af:10:07:4f:03:8f:d5:7d:62:40:1a:2c: 24:9e:bf:a2:00:76:70:1b:07:84:e2:f4:d8:49:d0: e0:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:0B:32:5F:BE:C7:FB:B0:F3:23:11:93:3D:DB:51:85:F7:7B:D1:9D X509v3 Authority Key Identifier: keyid:D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a3a2f33322d3332203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d940::/32 Signature Algorithm: sha256WithRSAEncryption 9b:a4:8a:8e:bc:ba:9f:67:4c:20:85:21:b9:90:03:0d:77:61: 84:ab:9b:cf:46:cb:34:1e:cf:2a:79:71:9a:90:a5:d9:70:29: ce:e4:1e:34:7a:19:44:4e:76:14:e5:16:48:da:27:dd:c4:63: d6:7f:10:f0:e8:d5:c4:80:61:70:45:a0:85:bf:89:5c:b5:20: f5:46:ba:32:17:18:c1:bb:21:b7:78:71:d9:62:33:a2:9e:9d: 5a:30:e8:97:df:38:9e:6e:45:2a:4d:2b:21:ce:f1:a4:a2:c5: 45:40:02:d7:66:ca:36:7f:1c:6d:3f:13:ce:d3:73:de:d8:4e: 0f:b9:58:36:4e:08:53:bc:11:1e:6b:f1:48:01:f9:3c:9e:76: 8c:fb:e9:48:41:34:32:6c:9f:dc:84:e9:54:29:53:32:ff:2b: 1d:74:76:12:57:f9:47:ee:c2:cf:fa:ba:f2:11:27:7f:ad:20: e3:53:41:97:db:48:fd:22:e7:12:a2:59:4d:8b:5c:a8:5e:83: 2e:86:75:e4:c1:02:7f:c8:49:11:a5:a1:58:4d:be:cd:13:ac: 8d:6f:4f:01:9b:19:51:0b:ba:8a:ab:f2:c1:d3:31:ec:98:e2: 05:e6:5e:85:c0:22:48:5a:86:2d:c2:58:5f:87:f7:bb:fe:23: 33:dd:91:3c -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUMUlfiJTcdluW4tCwMQjXeNHOkiQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhE MEJFOTIzRjAeFw0yNTA1MTcwMzU1MDJaFw0yNjA1MTYwNDAwMDJaMDMxMTAvBgNV BAMTKEIzMEIzMjVGQkVDN0ZCQjBGMzIzMTE5MzNEREI1MTg1Rjc3QkQxOUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdzvk8wHhxhBHanL6HLXnkvy6S ySHILDnKXDwCxA9ep0mLc/5F1VYHa8pbjegxiSU0ERoDonrjss9J/eYTSCQ86Nzk vD+7r1Wpe+xuCij1uRozU+Cn6F7FUnBV+E0Ehcx8fM7Q6JsGIlWAXb22eoANSFP9 nyxh7cPuRyJBkqsRXAdEiy090pYtRKlczfYOBreu8j8LodsmVbOVJZxrVAhKBSsJ +i2byJOpfTPNt1bD7ZlVvdriepA56I17hbu+c9/I1/iwk9OUgjHWpK0/ATucffdM Dc5DLYeseioxzHTbhZ7VyK8QB08Dj9V9YkAaLCSev6IAdnAbB4Ti9NhJ0OCzAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUswsyX77H+7DzIxGTPdtRhfd70Z0wHwYDVR0j BBgwFoAU0/th10akR2fUUY1un9H72NC+kj8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2Y0ZWMxYy05NTM1LTRjYmYtOWM3YS1mZDMyYzgzMGVkYmEvMC9EM0ZCNjFENzQ2 QTQ0NzY3RDQ1MThENkU5RkQxRkJEOEQwQkU5MjNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhEMEJF OTIzRi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczZjRlYzFjLTk1MzUtNGNiZi05 YzdhLWZkMzJjODMwZWRiYS8wLzMyMzQzMDMwM2E2NDM5MzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzNjMwMzgzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQA2UAwDQYJKoZI hvcNAQELBQADggEBAJukio68up9nTCCFIbmQAw13YYSrm89GyzQezyp5cZqQpdlw Kc7kHjR6GUROdhTlFkjaJ93EY9Z/EPDo1cSAYXBFoIW/iVy1IPVGujIXGMG7Ibd4 cdliM6KenVow6JffOJ5uRSpNKyHO8aSixUVAAtdmyjZ/HG0/E87Tc97YTg+5WDZO CFO8ER5r8UgB+Tyedoz76UhBNDJsn9yE6VQpUzL/Kx10dhJX+Ufuws/6uvIRJ3+t IONTQZfbSP0i5xKiWU2LXKhegy6GdeTBAn/ISRGloVhNvs0TrI1vTwGbGVELuoqr 8sHTMeyY4gXmXoXAIkhahi3CWF+H97v+IzPdkTw= -----END CERTIFICATE-----Generated at Sun Jun 8 04:58:30 2025 by rpki-client