$ rpki-client -vvf repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a626563613a3a2f34382d3438203d3e20313336303838.roa File: 323430303a643934303a626563613a3a2f34382d3438203d3e20313336303838.roa (raw, json) Hash identifier: sx7Ai/XKUoWhDvvqEtGwymbGQ4Y2JINv0ygpz/5KsWo= Subject key identifier: CD:6F:BD:48:9D:02:7B:95:65:D7:70:A5:BA:D4:19:4A:02:45:F1:2A Certificate issuer: /CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Certificate serial: 4BF2FF13CAED5F72E3637A504D4E81F866664D02 Authority key identifier: D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a626563613a3a2f34382d3438203d3e20313336303838.roa Signing time: Sat 17 May 2025 04:00:01 +0000 ROA not before: Sat 17 May 2025 03:55:01 +0000 ROA not after: Sat 16 May 2026 04:00:01 +0000 asID: 136088 IP address blocks: 2400:d940:beca::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 05:47:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:f2:ff:13:ca:ed:5f:72:e3:63:7a:50:4d:4e:81:f8:66:66:4d:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Validity Not Before: May 17 03:55:01 2025 GMT Not After : May 16 04:00:01 2026 GMT Subject: CN=CD6FBD489D027B9565D770A5BAD4194A0245F12A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:07:b1:40:e8:c5:ea:60:9d:fa:29:07:67:fd: ae:09:55:43:a8:7b:f8:0e:f2:c0:07:7b:c7:64:9c: 86:07:31:d2:64:2b:d1:22:c3:97:43:9d:23:e4:f5: 58:2e:7f:2b:9c:84:ce:04:e4:31:9f:7d:71:b6:4c: 0d:7b:fe:08:f1:c7:be:15:1a:48:c1:4f:6c:ae:4f: a9:68:9b:f0:6a:99:07:61:c8:8e:03:e3:a1:4e:51: f1:c6:1c:e4:b3:68:c2:32:a2:e7:a8:12:c5:e8:06: 98:15:82:ea:53:c7:e1:1b:04:1b:2d:3b:2d:0f:d7: 2e:f4:8c:d5:d1:21:88:fd:9b:57:ff:48:b6:fe:cc: 53:ed:31:08:b6:3c:0e:64:aa:ba:ad:d8:9c:dc:e1: 05:27:84:b1:e3:58:e4:cb:d6:ca:98:bd:ef:f6:40: 32:ee:da:c8:a7:77:c9:33:8c:42:5b:97:7e:67:af: 07:73:01:00:d0:4a:33:dc:29:3d:64:c2:69:c5:59: 1c:a6:df:cc:fb:a5:2c:14:02:7c:36:31:9c:69:1e: 11:e9:54:ca:a0:45:9c:e1:2d:40:ea:29:b7:ee:80: 28:d6:4a:0a:4e:47:77:21:f7:68:ae:09:2b:81:f0: df:60:be:b2:a7:1c:59:04:91:05:f1:ab:3f:52:b9: 55:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:6F:BD:48:9D:02:7B:95:65:D7:70:A5:BA:D4:19:4A:02:45:F1:2A X509v3 Authority Key Identifier: keyid:D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a626563613a3a2f34382d3438203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d940:beca::/48 Signature Algorithm: sha256WithRSAEncryption 1d:a8:05:8d:09:6f:e1:ae:03:a9:81:42:29:e0:83:13:16:33: 67:38:54:ad:b2:6c:28:6e:ba:69:1a:45:69:57:ac:47:ff:19: 61:b8:d4:3a:f8:bc:31:3d:ba:97:61:c2:bb:19:b0:aa:31:1b: b6:44:dd:33:08:84:2d:29:8c:57:7c:97:73:f0:5a:bd:26:07: d2:66:49:e5:36:8a:06:c4:71:4b:53:17:01:11:0e:b4:38:cc: 8c:4d:e8:85:e3:5b:f6:be:80:91:90:59:47:13:09:2b:18:e7: 5f:f4:0b:e8:f1:83:d2:b3:b3:0f:e5:e8:d7:45:fc:f0:8c:4e: 8a:ad:ed:49:d8:9a:9e:7d:eb:f2:8a:93:6f:b2:8d:c0:79:67: 7a:d8:e8:63:57:85:b1:ee:2c:07:75:3b:12:57:9d:67:18:5c: 29:82:42:5e:a4:fd:20:01:11:04:32:dd:c0:3d:f6:66:04:42: d9:0a:f9:d4:de:72:de:b4:6e:a6:51:92:9a:d3:80:09:47:eb: 79:9a:e8:89:84:7a:59:c9:b6:df:75:34:0b:fb:c3:19:4d:36: 5c:e6:15:ad:9c:62:51:54:88:21:50:d4:b3:8b:4f:81:02:ed: f2:68:2a:eb:3a:7c:a4:66:fe:e8:6f:cc:14:39:8b:87:8d:e1: 4d:e5:14:ef -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUS/L/E8rtX3LjY3pQTU6B+GZmTQIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhE MEJFOTIzRjAeFw0yNTA1MTcwMzU1MDFaFw0yNjA1MTYwNDAwMDFaMDMxMTAvBgNV BAMTKENENkZCRDQ4OUQwMjdCOTU2NUQ3NzBBNUJBRDQxOTRBMDI0NUYxMkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZB7FA6MXqYJ36KQdn/a4JVUOo e/gO8sAHe8dknIYHMdJkK9Eiw5dDnSPk9VgufyuchM4E5DGffXG2TA17/gjxx74V GkjBT2yuT6lom/BqmQdhyI4D46FOUfHGHOSzaMIyoueoEsXoBpgVgupTx+EbBBst Oy0P1y70jNXRIYj9m1f/SLb+zFPtMQi2PA5kqrqt2Jzc4QUnhLHjWOTL1sqYve/2 QDLu2sind8kzjEJbl35nrwdzAQDQSjPcKT1kwmnFWRym38z7pSwUAnw2MZxpHhHp VMqgRZzhLUDqKbfugCjWSgpOR3ch92iuCSuB8N9gvrKnHFkEkQXxqz9SuVV3AgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUzW+9SJ0Ce5Vl13ClutQZSgJF8SowHwYDVR0j BBgwFoAU0/th10akR2fUUY1un9H72NC+kj8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2Y0ZWMxYy05NTM1LTRjYmYtOWM3YS1mZDMyYzgzMGVkYmEvMC9EM0ZCNjFENzQ2 QTQ0NzY3RDQ1MThENkU5RkQxRkJEOEQwQkU5MjNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhEMEJF OTIzRi5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczZjRlYzFjLTk1MzUtNGNiZi05 YzdhLWZkMzJjODMwZWRiYS8wLzMyMzQzMDMwM2E2NDM5MzQzMDNhNjI2NTYzNjEz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzYzMDM4Mzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk ANlAvsowDQYJKoZIhvcNAQELBQADggEBAB2oBY0Jb+GuA6mBQinggxMWM2c4VK2y bChuumkaRWlXrEf/GWG41Dr4vDE9updhwrsZsKoxG7ZE3TMIhC0pjFd8l3PwWr0m B9JmSeU2igbEcUtTFwERDrQ4zIxN6IXjW/a+gJGQWUcTCSsY51/0C+jxg9Kzsw/l 6NdF/PCMToqt7UnYmp596/KKk2+yjcB5Z3rY6GNXhbHuLAd1OxJXnWcYXCmCQl6k /SABEQQy3cA99mYEQtkK+dTect60bqZRkprTgAlH63ma6ImEelnJtt91NAv7wxlN NlzmFa2cYlFUiCFQ1LOLT4EC7fJoKus6fKRm/uhvzBQ5i4eN4U3lFO8= -----END CERTIFICATE-----Generated at Sun Jun 8 06:41:46 2025 by rpki-client