$ rpki-client -vvf repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a633030303a3a2f34382d3438203d3e20313336303838.roa File: 323430303a643934303a633030303a3a2f34382d3438203d3e20313336303838.roa (raw, json) Hash identifier: /9+wQDA/pPBkivDuenKeLQSITF6OhmVLuuy1cGgfjlw= Subject key identifier: D3:F5:CA:B1:75:9F:A3:3E:92:45:49:FB:CA:8D:DF:2D:EE:CE:F0:95 Certificate issuer: /CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Certificate serial: 7D77AC707B2A68848AA9455FAC89E852A5833DA6 Authority key identifier: D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a633030303a3a2f34382d3438203d3e20313336303838.roa Signing time: Mon 02 Jun 2025 02:03:24 +0000 ROA not before: Mon 02 Jun 2025 01:58:24 +0000 ROA not after: Mon 01 Jun 2026 02:03:24 +0000 asID: 136088 IP address blocks: 2400:d940:c000::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 05:47:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:77:ac:70:7b:2a:68:84:8a:a9:45:5f:ac:89:e8:52:a5:83:3d:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Validity Not Before: Jun 2 01:58:24 2025 GMT Not After : Jun 1 02:03:24 2026 GMT Subject: CN=D3F5CAB1759FA33E924549FBCA8DDF2DEECEF095 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:55:99:e3:8b:39:3e:ee:3c:ca:05:fa:10:91: a0:17:56:fa:6b:5f:0b:9c:09:66:59:01:2e:b2:73: c3:91:a8:52:17:86:46:4e:d1:94:e4:18:a9:75:41: c6:5d:d6:f6:d6:06:94:db:56:9a:20:83:17:b3:cf: 74:ba:5d:dc:39:68:15:2c:f8:51:23:34:f0:51:a8: 7c:30:bc:9d:4c:4a:03:6a:59:24:3c:6f:a9:25:60: fe:52:5a:c9:8e:2a:0e:b2:0d:ad:fe:89:17:d4:ec: d7:35:a6:37:0a:84:9c:cd:6f:65:7d:0b:7b:1b:38: 2c:80:3a:67:63:a1:54:ac:b7:f5:dd:fd:9e:87:c5: 1d:35:1c:77:db:0e:90:d5:f0:b8:78:32:b1:cf:fd: d9:0a:81:1e:ca:51:4e:62:88:fa:07:d5:00:0e:49: 1b:27:11:b7:29:f8:89:b1:f6:a3:50:65:e9:42:03: ce:81:3a:1e:16:07:79:5f:c4:8d:1d:2e:a7:2e:c1: 1e:5b:3f:4f:91:e1:f0:ae:f4:c3:94:80:48:8a:05: b9:48:7e:84:d6:10:e2:21:32:76:28:59:6a:7b:a1: 13:44:4b:0b:d5:b1:3e:42:ef:2f:a0:3d:9e:71:ac: 49:49:80:6c:61:9c:b3:5d:da:1f:36:b8:71:85:36: b5:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:F5:CA:B1:75:9F:A3:3E:92:45:49:FB:CA:8D:DF:2D:EE:CE:F0:95 X509v3 Authority Key Identifier: keyid:D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a633030303a3a2f34382d3438203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d940:c000::/48 Signature Algorithm: sha256WithRSAEncryption 40:4e:9f:5f:7c:f3:13:4f:fb:0b:fc:e7:c0:33:66:13:87:53: cc:49:91:24:32:3d:13:e0:fd:f0:07:8c:23:15:a2:d9:38:71: f7:02:f2:c9:c2:e2:93:5c:15:0f:b9:d0:cd:73:5f:b4:c6:28: 26:f7:ab:e1:55:32:a9:4f:5f:23:43:2f:c5:e5:17:16:c5:06: c3:53:06:c9:a3:11:51:cf:26:0e:20:ab:91:dd:71:5d:49:a8: 4d:a8:ae:94:9b:0b:c3:c9:68:69:33:84:a3:29:8a:10:72:35: fd:90:c5:56:d0:7b:d3:b0:1e:de:86:c5:8e:c0:29:eb:6a:1d: 4c:bb:07:46:e6:c7:c1:0c:c0:53:85:d6:ab:76:6d:78:64:8f: c2:cf:69:1b:a4:21:48:e3:28:a7:3d:eb:83:75:34:4f:56:70: f4:21:a1:9f:46:f5:c4:9d:e8:c9:15:2f:1e:cf:b3:9b:09:e0: e0:1b:5f:86:09:34:be:2f:9e:85:41:6a:ef:f8:fd:be:c2:3d: 33:5b:9c:2a:e0:f4:b1:35:00:50:11:45:88:00:85:e8:e2:e8: 9b:cd:8f:4b:0f:4e:b9:cc:7c:e3:ce:45:34:a0:e1:7f:66:80: 46:d9:e4:79:57:13:97:7e:97:73:25:87:25:09:fa:1e:04:cb: c2:19:e3:22 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUfXescHsqaISKqUVfrInoUqWDPaYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhE MEJFOTIzRjAeFw0yNTA2MDIwMTU4MjRaFw0yNjA2MDEwMjAzMjRaMDMxMTAvBgNV BAMTKEQzRjVDQUIxNzU5RkEzM0U5MjQ1NDlGQkNBOERERjJERUVDRUYwOTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD1VZnjizk+7jzKBfoQkaAXVvpr XwucCWZZAS6yc8ORqFIXhkZO0ZTkGKl1QcZd1vbWBpTbVpoggxezz3S6Xdw5aBUs +FEjNPBRqHwwvJ1MSgNqWSQ8b6klYP5SWsmOKg6yDa3+iRfU7Nc1pjcKhJzNb2V9 C3sbOCyAOmdjoVSst/Xd/Z6HxR01HHfbDpDV8Lh4MrHP/dkKgR7KUU5iiPoH1QAO SRsnEbcp+Imx9qNQZelCA86BOh4WB3lfxI0dLqcuwR5bP0+R4fCu9MOUgEiKBblI foTWEOIhMnYoWWp7oRNESwvVsT5C7y+gPZ5xrElJgGxhnLNd2h82uHGFNrVnAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQU0/XKsXWfoz6SRUn7yo3fLe7O8JUwHwYDVR0j BBgwFoAU0/th10akR2fUUY1un9H72NC+kj8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2Y0ZWMxYy05NTM1LTRjYmYtOWM3YS1mZDMyYzgzMGVkYmEvMC9EM0ZCNjFENzQ2 QTQ0NzY3RDQ1MThENkU5RkQxRkJEOEQwQkU5MjNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhEMEJF OTIzRi5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczZjRlYzFjLTk1MzUtNGNiZi05 YzdhLWZkMzJjODMwZWRiYS8wLzMyMzQzMDMwM2E2NDM5MzQzMDNhNjMzMDMwMzAz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzYzMDM4Mzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk ANlAwAAwDQYJKoZIhvcNAQELBQADggEBAEBOn1988xNP+wv858AzZhOHU8xJkSQy PRPg/fAHjCMVotk4cfcC8snC4pNcFQ+50M1zX7TGKCb3q+FVMqlPXyNDL8XlFxbF BsNTBsmjEVHPJg4gq5HdcV1JqE2orpSbC8PJaGkzhKMpihByNf2QxVbQe9OwHt6G xY7AKetqHUy7B0bmx8EMwFOF1qt2bXhkj8LPaRukIUjjKKc964N1NE9WcPQhoZ9G 9cSd6MkVLx7Ps5sJ4OAbX4YJNL4vnoVBau/4/b7CPTNbnCrg9LE1AFARRYgAheji 6JvNj0sPTrnMfOPORTSg4X9mgEbZ5HlXE5d+l3MlhyUJ+h4Ey8IZ4yI= -----END CERTIFICATE-----Generated at Sun Jun 8 07:45:12 2025 by rpki-client