$ rpki-client -vvf repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a626162653a3a2f34382d3438203d3e20313336303838.roa File: 323430303a643934303a626162653a3a2f34382d3438203d3e20313336303838.roa (raw, json) Hash identifier: t8xpmwGTwBIEy+kGSQyDv0b1KxVpoPSxkwa6NrrmDaA= Subject key identifier: BA:19:60:E8:C3:82:81:34:12:D5:3E:6D:9A:81:A1:68:69:6E:44:AD Certificate issuer: /CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Certificate serial: 7E092997DF3572A76B86BC40A336EEEAF32881F8 Authority key identifier: D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a626162653a3a2f34382d3438203d3e20313336303838.roa Signing time: Sat 17 May 2025 04:00:01 +0000 ROA not before: Sat 17 May 2025 03:55:01 +0000 ROA not after: Sat 16 May 2026 04:00:01 +0000 asID: 136088 IP address blocks: 2400:d940:babe::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 05:47:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:09:29:97:df:35:72:a7:6b:86:bc:40:a3:36:ee:ea:f3:28:81:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Validity Not Before: May 17 03:55:01 2025 GMT Not After : May 16 04:00:01 2026 GMT Subject: CN=BA1960E8C382813412D53E6D9A81A168696E44AD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:12:a3:93:b6:9f:1a:91:71:db:7d:a0:7e:9f: 54:44:10:59:19:db:44:80:f9:25:d5:c6:7e:70:e9: 9b:6a:e5:39:bc:07:fd:c3:91:fd:34:f7:b3:64:49: 69:bd:57:cb:21:7b:a9:ac:ab:cf:6f:74:94:5a:54: c5:1e:b3:91:13:88:7d:59:96:7b:72:85:1e:e6:4b: 28:51:fe:45:47:c7:d1:18:d5:05:69:47:11:f4:c4: 04:c1:6c:0a:15:80:c4:90:cc:03:c5:f1:a2:84:10: 74:7d:b6:07:09:66:4d:5c:46:70:7d:5b:f4:9f:3b: 73:92:08:e3:d4:80:0f:80:c5:55:a1:51:7a:b4:bd: a6:97:fe:24:e0:b0:86:7e:ef:18:14:a2:68:af:be: b0:d2:0e:d7:9c:73:f2:d7:b7:43:44:83:8a:db:90: 93:90:e3:0d:ac:38:f2:70:34:0b:a8:2a:41:09:84: 26:d8:56:67:73:bc:7d:d4:7f:ad:05:26:0e:02:23: 5c:51:c3:1d:35:ce:44:69:a0:43:cf:cb:58:da:5a: 5a:7c:cd:e8:91:84:f1:24:1f:36:f2:93:6e:53:8f: 46:f8:29:74:e6:86:3c:1c:ac:bd:30:f7:1d:fc:05: b2:de:23:a3:fb:cc:6b:d0:da:c1:79:da:f5:f3:5d: a4:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:19:60:E8:C3:82:81:34:12:D5:3E:6D:9A:81:A1:68:69:6E:44:AD X509v3 Authority Key Identifier: keyid:D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a626162653a3a2f34382d3438203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d940:babe::/48 Signature Algorithm: sha256WithRSAEncryption 36:d4:c9:ad:a5:ac:fe:c5:ec:b7:4b:39:ac:af:a7:54:f4:00: 2d:b5:d2:f0:ad:34:1d:d8:55:d0:32:cc:71:de:76:61:83:83: 7b:94:69:01:d8:05:d6:c5:66:45:91:66:13:3e:99:17:f6:61: bc:7d:5a:33:79:08:1e:2a:5f:34:1b:ee:c0:ec:2d:d2:b3:ec: cc:0d:9d:65:db:4d:00:39:cf:75:77:dc:ac:9f:5e:fb:3b:59: d4:53:61:f4:8b:29:1c:c0:01:18:fa:23:74:12:26:ec:6e:e1: b8:ca:a9:3f:04:03:7f:12:b0:3c:e1:d5:de:8a:3e:eb:e8:cd: 34:55:a0:05:0b:72:bb:d7:86:9a:88:7f:c6:cb:88:83:50:ac: c3:08:b3:ec:53:be:7d:cd:a9:3c:ae:28:f3:7b:81:c5:88:9c: 35:54:08:3e:f1:ff:06:84:8f:1d:c8:8d:ee:1a:1d:92:6c:c5: 5f:60:f5:70:dd:d6:c8:dd:4c:e5:73:7b:c5:ac:38:6d:40:41: 1b:a6:5b:ba:02:67:8e:bd:56:24:29:22:38:3c:d8:54:c1:1f: 41:eb:a7:fa:75:4b:92:f3:cf:6e:1c:af:11:f6:05:59:39:49: 6d:4b:1c:45:b4:85:b7:1b:1a:52:99:1a:68:3f:c4:0f:a5:cf: b2:2c:71:90 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUfgkpl981cqdrhrxAozbu6vMogfgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhE MEJFOTIzRjAeFw0yNTA1MTcwMzU1MDFaFw0yNjA1MTYwNDAwMDFaMDMxMTAvBgNV BAMTKEJBMTk2MEU4QzM4MjgxMzQxMkQ1M0U2RDlBODFBMTY4Njk2RTQ0QUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+EqOTtp8akXHbfaB+n1REEFkZ 20SA+SXVxn5w6Ztq5Tm8B/3Dkf0097NkSWm9V8she6msq89vdJRaVMUes5ETiH1Z lntyhR7mSyhR/kVHx9EY1QVpRxH0xATBbAoVgMSQzAPF8aKEEHR9tgcJZk1cRnB9 W/SfO3OSCOPUgA+AxVWhUXq0vaaX/iTgsIZ+7xgUomivvrDSDtecc/LXt0NEg4rb kJOQ4w2sOPJwNAuoKkEJhCbYVmdzvH3Uf60FJg4CI1xRwx01zkRpoEPPy1jaWlp8 zeiRhPEkHzbyk25Tj0b4KXTmhjwcrL0w9x38BbLeI6P7zGvQ2sF52vXzXaTXAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUuhlg6MOCgTQS1T5tmoGhaGluRK0wHwYDVR0j BBgwFoAU0/th10akR2fUUY1un9H72NC+kj8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2Y0ZWMxYy05NTM1LTRjYmYtOWM3YS1mZDMyYzgzMGVkYmEvMC9EM0ZCNjFENzQ2 QTQ0NzY3RDQ1MThENkU5RkQxRkJEOEQwQkU5MjNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhEMEJF OTIzRi5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczZjRlYzFjLTk1MzUtNGNiZi05 YzdhLWZkMzJjODMwZWRiYS8wLzMyMzQzMDMwM2E2NDM5MzQzMDNhNjI2MTYyNjUz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzYzMDM4Mzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk ANlAur4wDQYJKoZIhvcNAQELBQADggEBADbUya2lrP7F7LdLOayvp1T0AC210vCt NB3YVdAyzHHedmGDg3uUaQHYBdbFZkWRZhM+mRf2Ybx9WjN5CB4qXzQb7sDsLdKz 7MwNnWXbTQA5z3V33KyfXvs7WdRTYfSLKRzAARj6I3QSJuxu4bjKqT8EA38SsDzh 1d6KPuvozTRVoAULcrvXhpqIf8bLiINQrMMIs+xTvn3NqTyuKPN7gcWInDVUCD7x /waEjx3Ije4aHZJsxV9g9XDd1sjdTOVze8WsOG1AQRumW7oCZ469ViQpIjg82FTB H0Hrp/p1S5Lzz24crxH2BVk5SW1LHEW0hbcbGlKZGmg/xA+lz7IscZA= -----END CERTIFICATE-----Generated at Sun Jun 8 08:01:59 2025 by rpki-client