$ rpki-client -vvf repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a636162653a3a2f34382d3438203d3e20313336303838.roa File: 323430303a643934303a636162653a3a2f34382d3438203d3e20313336303838.roa (raw, json) Hash identifier: V3W/3hcFKl4/DOk4z/ipZIeDt+GJvtUyOIrpUDtwmvw= Subject key identifier: A8:3F:0A:73:0A:00:F0:46:81:4B:F2:DB:65:81:27:12:7C:46:B0:5D Certificate issuer: /CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Certificate serial: 4F6E8C4FC4DFD5984E9FB8E80BF07F6344F2026A Authority key identifier: D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a636162653a3a2f34382d3438203d3e20313336303838.roa Signing time: Sat 17 May 2025 04:00:01 +0000 ROA not before: Sat 17 May 2025 03:55:01 +0000 ROA not after: Sat 16 May 2026 04:00:01 +0000 asID: 136088 IP address blocks: 2400:d940:cabe::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 05:47:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:6e:8c:4f:c4:df:d5:98:4e:9f:b8:e8:0b:f0:7f:63:44:f2:02:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Validity Not Before: May 17 03:55:01 2025 GMT Not After : May 16 04:00:01 2026 GMT Subject: CN=A83F0A730A00F046814BF2DB658127127C46B05D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:57:e2:f7:0a:27:5a:7b:aa:a9:85:d3:3e:bc: b7:32:e0:9a:3d:b5:b2:2a:52:97:90:b4:19:54:03: a5:c6:87:f3:5e:7b:b2:39:24:e6:34:a5:59:99:4d: d1:e7:a5:96:53:0c:53:9b:12:f0:1a:fe:06:b4:e1: a2:c3:d7:b7:ef:53:3a:a8:2f:fb:e4:f7:0a:a4:9d: fd:7b:5e:c8:5d:5b:b6:94:e0:54:a8:bf:15:6c:de: af:53:4d:3e:86:69:3c:e3:83:9c:c9:d9:5b:30:a0: 52:15:ab:ac:c1:4d:cb:06:84:75:49:be:b5:7a:15: a1:21:ed:62:31:4e:17:62:d3:2c:86:30:43:40:f5: a4:ca:bb:64:9d:ab:c0:9d:35:53:70:98:89:36:6d: 10:d9:bc:78:ad:2b:97:18:b2:6d:3a:c6:6b:c8:d2: 57:12:c2:01:67:3c:ae:d7:fc:3a:5a:82:b8:04:80: 72:95:0f:e5:67:2b:04:b5:e7:dd:d1:6d:9c:1b:94: 7e:a7:56:d9:9b:e6:24:9b:ab:7c:48:65:f3:78:30: e4:19:38:a9:80:58:a4:3d:43:0f:61:1e:a9:08:c5: b2:37:e1:d5:03:ea:f6:50:00:a6:65:02:8d:ab:1e: 97:5d:89:87:f6:42:c3:48:fe:5e:9e:75:85:77:c8: e2:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:3F:0A:73:0A:00:F0:46:81:4B:F2:DB:65:81:27:12:7C:46:B0:5D X509v3 Authority Key Identifier: keyid:D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a636162653a3a2f34382d3438203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d940:cabe::/48 Signature Algorithm: sha256WithRSAEncryption c4:6a:4e:94:1b:ae:3c:8a:cd:5e:ac:a5:e1:8e:8f:1d:09:ad: 02:d5:a4:78:57:d6:32:bf:e6:fb:25:bd:84:ca:e2:06:ec:ae: 9b:4e:97:de:9b:4f:bc:f5:cf:33:39:a6:48:57:ea:c4:1e:ea: 55:3d:80:87:1c:e7:f6:09:fa:6f:25:12:1b:37:16:80:94:19: ef:f3:5a:43:0d:7a:8d:f4:24:e3:64:47:0c:4d:ac:b9:60:ac: 68:27:f7:61:49:5b:69:2b:c4:04:9a:07:52:d5:7f:e8:41:c6: 6b:8e:c1:f3:b2:d8:87:e0:60:ca:93:0d:73:05:38:2b:cb:f1: 22:3f:f4:1a:2f:06:b1:1a:01:74:81:12:d0:81:88:79:37:59: 33:76:c9:96:15:d7:9d:dc:b9:48:da:5b:39:0a:30:9b:02:ff: eb:b1:72:e8:85:b6:2f:b0:1a:20:d3:14:12:3a:85:d4:5e:86: cd:94:37:81:8f:bf:35:10:dd:20:89:73:c4:17:dc:fd:dc:1a: 4e:68:b2:f5:a6:d8:43:f6:b4:af:b3:ff:03:86:a7:b9:10:68: 32:4d:04:c6:49:01:f3:cb:14:da:b3:88:8a:f2:ad:5f:3b:ac: 77:b5:e7:37:05:96:f7:5e:88:c1:30:c4:de:a2:5f:6c:a4:b1: d9:ef:9b:42 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUT26MT8Tf1ZhOn7joC/B/Y0TyAmowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhE MEJFOTIzRjAeFw0yNTA1MTcwMzU1MDFaFw0yNjA1MTYwNDAwMDFaMDMxMTAvBgNV BAMTKEE4M0YwQTczMEEwMEYwNDY4MTRCRjJEQjY1ODEyNzEyN0M0NkIwNUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7V+L3Cidae6qphdM+vLcy4Jo9 tbIqUpeQtBlUA6XGh/Nee7I5JOY0pVmZTdHnpZZTDFObEvAa/ga04aLD17fvUzqo L/vk9wqknf17XshdW7aU4FSovxVs3q9TTT6GaTzjg5zJ2VswoFIVq6zBTcsGhHVJ vrV6FaEh7WIxThdi0yyGMENA9aTKu2Sdq8CdNVNwmIk2bRDZvHitK5cYsm06xmvI 0lcSwgFnPK7X/DpagrgEgHKVD+VnKwS1593RbZwblH6nVtmb5iSbq3xIZfN4MOQZ OKmAWKQ9Qw9hHqkIxbI34dUD6vZQAKZlAo2rHpddiYf2QsNI/l6edYV3yOKhAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUqD8KcwoA8EaBS/LbZYEnEnxGsF0wHwYDVR0j BBgwFoAU0/th10akR2fUUY1un9H72NC+kj8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2Y0ZWMxYy05NTM1LTRjYmYtOWM3YS1mZDMyYzgzMGVkYmEvMC9EM0ZCNjFENzQ2 QTQ0NzY3RDQ1MThENkU5RkQxRkJEOEQwQkU5MjNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhEMEJF OTIzRi5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczZjRlYzFjLTk1MzUtNGNiZi05 YzdhLWZkMzJjODMwZWRiYS8wLzMyMzQzMDMwM2E2NDM5MzQzMDNhNjM2MTYyNjUz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzYzMDM4Mzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk ANlAyr4wDQYJKoZIhvcNAQELBQADggEBAMRqTpQbrjyKzV6speGOjx0JrQLVpHhX 1jK/5vslvYTK4gbsrptOl96bT7z1zzM5pkhX6sQe6lU9gIcc5/YJ+m8lEhs3FoCU Ge/zWkMNeo30JONkRwxNrLlgrGgn92FJW2krxASaB1LVf+hBxmuOwfOy2IfgYMqT DXMFOCvL8SI/9BovBrEaAXSBEtCBiHk3WTN2yZYV153cuUjaWzkKMJsC/+uxcuiF ti+wGiDTFBI6hdRehs2UN4GPvzUQ3SCJc8QX3P3cGk5osvWm2EP2tK+z/wOGp7kQ aDJNBMZJAfPLFNqziIryrV87rHe15zcFlvdeiMEwxN6iX2yksdnvm0I= -----END CERTIFICATE-----Generated at Sun Jun 8 07:46:55 2025 by rpki-client