$ rpki-client -vvf repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a626162613a3a2f34382d3438203d3e20313336303838.roa File: 323430303a643934303a626162613a3a2f34382d3438203d3e20313336303838.roa (raw, json) Hash identifier: z/2LdyQoJ/vUvRAoMVBjAtXimeSSxsGynq/LixqHwBo= Subject key identifier: 81:C0:65:88:3A:CB:C9:1E:B4:C0:88:87:7E:B6:6B:6D:20:9A:76:18 Certificate issuer: /CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Certificate serial: 5767114121F9F6BA3BCEBED9EEEA2CFA2B702102 Authority key identifier: D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a626162613a3a2f34382d3438203d3e20313336303838.roa Signing time: Sat 17 May 2025 04:00:02 +0000 ROA not before: Sat 17 May 2025 03:55:02 +0000 ROA not after: Sat 16 May 2026 04:00:02 +0000 asID: 136088 IP address blocks: 2400:d940:baba::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 05:47:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:67:11:41:21:f9:f6:ba:3b:ce:be:d9:ee:ea:2c:fa:2b:70:21:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Validity Not Before: May 17 03:55:02 2025 GMT Not After : May 16 04:00:02 2026 GMT Subject: CN=81C065883ACBC91EB4C088877EB66B6D209A7618 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:42:cc:c6:11:19:7d:90:ed:76:65:0b:5d:e1: d7:85:1f:b3:9d:94:c5:a4:1c:71:90:b2:a3:cd:cd: c5:5d:ac:58:40:2b:bc:1a:2b:99:bf:b3:76:88:67: 96:13:a4:b5:d3:91:2f:ec:fc:c6:c7:36:1b:66:22: 33:04:49:6e:27:dd:9e:91:64:98:42:d7:c9:46:ff: 65:d1:b8:ef:51:16:84:2b:b1:5e:7a:0c:09:f4:87: ff:81:cd:58:e4:36:44:f6:57:68:3b:fc:3e:c3:ed: 32:c4:18:c5:0a:1c:69:88:50:f4:94:13:01:87:8a: 56:f9:3e:3c:17:ce:b3:c6:2c:a7:bc:02:d6:c2:fe: dd:51:33:6e:7a:96:72:75:4f:8a:43:e4:54:a9:29: 3e:a5:0c:d4:c9:30:52:91:31:08:28:55:d3:27:4c: b9:ac:3a:6c:51:cc:94:b0:c7:e5:6e:e4:8d:f8:f7: 6a:cf:d4:a6:e4:c5:30:5b:5b:20:a6:f5:e9:84:f6: 84:54:e2:66:7b:73:59:51:59:a6:ca:b4:15:f2:d2: 91:26:4c:0f:82:33:89:6d:4e:bd:2b:6f:59:0f:44: 7d:28:0e:0d:f8:bf:38:ea:87:54:75:66:10:1d:9e: 05:1f:37:80:46:57:3e:94:54:ed:9d:71:18:10:24: de:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:C0:65:88:3A:CB:C9:1E:B4:C0:88:87:7E:B6:6B:6D:20:9A:76:18 X509v3 Authority Key Identifier: keyid:D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a626162613a3a2f34382d3438203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d940:baba::/48 Signature Algorithm: sha256WithRSAEncryption 91:1e:7c:41:70:e3:af:a0:4e:94:53:db:1e:49:1a:94:e5:ed: e2:b6:2d:8a:d4:a6:80:a3:96:74:84:69:37:2a:c6:11:2f:c0: 4b:12:20:8d:71:44:bf:1d:d7:a7:1d:e9:df:98:e0:33:2e:b5: 74:96:fd:0b:25:67:14:2e:db:75:0d:32:11:0b:02:58:de:b3: ae:fc:42:ae:b8:a5:f2:31:41:94:4f:46:f7:f2:23:9b:3b:31: d2:b1:74:2e:b2:58:75:cd:ef:b3:74:a7:3a:fd:90:39:5a:89: 2b:e9:c0:f1:09:2e:ea:40:d6:f1:72:62:8a:27:22:ad:9c:4b: a1:e5:75:f6:dc:a1:b2:f7:01:04:df:04:73:48:65:b1:c3:07: 6d:b3:92:ae:ec:52:14:97:1f:66:8c:b0:6b:53:a2:43:b2:4d: f6:d5:2c:0e:df:e7:09:9b:27:02:c8:75:e5:4b:02:45:6e:b8: 09:f2:f3:00:b1:ec:56:96:5c:55:c0:06:cd:39:e2:63:6a:9c: 53:9d:ab:d9:d0:74:52:e7:4e:2f:ce:fd:c4:6b:56:1d:bb:e6: 4c:7f:03:f1:1e:d3:90:27:30:12:b5:26:12:84:2c:b8:68:a8: 47:b8:3c:86:c8:90:c8:81:89:67:23:ed:4c:84:67:fa:33:7c: fd:f0:78:c7 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUV2cRQSH59ro7zr7Z7uos+itwIQIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhE MEJFOTIzRjAeFw0yNTA1MTcwMzU1MDJaFw0yNjA1MTYwNDAwMDJaMDMxMTAvBgNV BAMTKDgxQzA2NTg4M0FDQkM5MUVCNEMwODg4NzdFQjY2QjZEMjA5QTc2MTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD6QszGERl9kO12ZQtd4deFH7Od lMWkHHGQsqPNzcVdrFhAK7waK5m/s3aIZ5YTpLXTkS/s/MbHNhtmIjMESW4n3Z6R ZJhC18lG/2XRuO9RFoQrsV56DAn0h/+BzVjkNkT2V2g7/D7D7TLEGMUKHGmIUPSU EwGHilb5PjwXzrPGLKe8AtbC/t1RM256lnJ1T4pD5FSpKT6lDNTJMFKRMQgoVdMn TLmsOmxRzJSwx+Vu5I3492rP1KbkxTBbWyCm9emE9oRU4mZ7c1lRWabKtBXy0pEm TA+CM4ltTr0rb1kPRH0oDg34vzjqh1R1ZhAdngUfN4BGVz6UVO2dcRgQJN7pAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUgcBliDrLyR60wIiHfrZrbSCadhgwHwYDVR0j BBgwFoAU0/th10akR2fUUY1un9H72NC+kj8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2Y0ZWMxYy05NTM1LTRjYmYtOWM3YS1mZDMyYzgzMGVkYmEvMC9EM0ZCNjFENzQ2 QTQ0NzY3RDQ1MThENkU5RkQxRkJEOEQwQkU5MjNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhEMEJF OTIzRi5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczZjRlYzFjLTk1MzUtNGNiZi05 YzdhLWZkMzJjODMwZWRiYS8wLzMyMzQzMDMwM2E2NDM5MzQzMDNhNjI2MTYyNjEz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzYzMDM4Mzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk ANlAurowDQYJKoZIhvcNAQELBQADggEBAJEefEFw46+gTpRT2x5JGpTl7eK2LYrU poCjlnSEaTcqxhEvwEsSII1xRL8d16cd6d+Y4DMutXSW/QslZxQu23UNMhELAlje s678Qq64pfIxQZRPRvfyI5s7MdKxdC6yWHXN77N0pzr9kDlaiSvpwPEJLupA1vFy YoonIq2cS6HldfbcobL3AQTfBHNIZbHDB22zkq7sUhSXH2aMsGtTokOyTfbVLA7f 5wmbJwLIdeVLAkVuuAny8wCx7FaWXFXABs054mNqnFOdq9nQdFLnTi/O/cRrVh27 5kx/A/Ee05AnMBK1JhKELLhoqEe4PIbIkMiBiWcj7UyEZ/ozfP3weMc= -----END CERTIFICATE-----Generated at Sun Jun 8 06:09:47 2025 by rpki-client