$ rpki-client -vvf repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a646164613a3a2f34382d3438203d3e20313336303838.roa File: 323430303a643934303a646164613a3a2f34382d3438203d3e20313336303838.roa (raw, json) Hash identifier: pZ5vmt3P3V8uH/pHzOPkvbypUprjrLuGJdhlSVtPm9g= Subject key identifier: 28:39:1D:C4:11:5B:DA:E0:61:2E:24:2C:C0:03:61:DD:EC:11:3E:99 Certificate issuer: /CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Certificate serial: 7FAA0AFBCEFDF2280671576FD319C4B3A53AD2B3 Authority key identifier: D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a646164613a3a2f34382d3438203d3e20313336303838.roa Signing time: Sat 17 May 2025 04:00:01 +0000 ROA not before: Sat 17 May 2025 03:55:01 +0000 ROA not after: Sat 16 May 2026 04:00:01 +0000 asID: 136088 IP address blocks: 2400:d940:dada::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 05:47:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:aa:0a:fb:ce:fd:f2:28:06:71:57:6f:d3:19:c4:b3:a5:3a:d2:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Validity Not Before: May 17 03:55:01 2025 GMT Not After : May 16 04:00:01 2026 GMT Subject: CN=28391DC4115BDAE0612E242CC00361DDEC113E99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:dd:2a:8f:7f:01:f0:ac:03:74:4a:db:2a:f7: 68:44:80:78:f4:bf:df:f9:54:b7:3b:57:49:1d:2b: 99:74:81:2e:1f:10:64:fe:88:e9:4a:76:f0:57:da: 65:5d:7f:40:d2:58:aa:a0:e0:1f:4a:6e:39:39:94: 5f:e2:75:95:1c:8c:f3:8c:42:14:ea:17:d0:07:36: 3b:45:22:cf:21:82:5a:c0:ac:b8:87:6f:5e:b3:df: ff:cc:65:92:fd:77:66:ad:ed:e6:5e:4a:02:a9:f7: c1:f5:bf:ec:a0:d8:ac:3d:7b:91:cb:2d:49:da:f3: c9:a3:b5:e9:23:29:eb:54:cc:57:59:72:0f:90:3f: 19:b6:46:a4:9b:cf:bd:f8:a1:13:ce:15:44:19:36: 53:7d:60:02:05:9f:1b:f1:c8:4e:f9:28:a7:7a:60: 81:31:96:79:30:6c:01:01:e4:09:4c:59:9d:5e:0e: 81:11:e0:1e:75:c7:b0:f1:56:37:d6:0a:62:ba:9e: 32:0e:4e:bf:e7:a6:be:01:bd:84:8c:15:03:9d:ce: 5b:6a:50:0f:27:a0:ac:b9:4e:93:08:48:d9:3a:83: 73:c6:76:3f:8d:c8:47:62:d3:0d:7e:4b:a4:f5:4c: d7:be:47:47:7d:83:48:4b:20:e5:14:89:e5:9c:2a: 8d:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:39:1D:C4:11:5B:DA:E0:61:2E:24:2C:C0:03:61:DD:EC:11:3E:99 X509v3 Authority Key Identifier: keyid:D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a646164613a3a2f34382d3438203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d940:dada::/48 Signature Algorithm: sha256WithRSAEncryption b5:d8:e4:d5:d8:0d:e0:9e:d2:3e:4d:6d:52:92:7c:0a:34:d5: c8:b2:d8:56:6a:c5:ea:38:a3:85:71:8f:93:56:ff:2c:d6:5b: 47:22:a4:fb:63:d5:3e:ef:b7:7e:c7:d7:9e:d0:9d:1b:b4:62: 32:fb:fe:9b:bd:87:d2:8a:d3:cc:75:e5:bd:5f:b1:e9:e7:10: fb:93:61:e9:92:84:8e:27:bb:55:4f:38:71:c2:f0:83:70:84: 0e:9d:e5:70:55:e1:3c:74:87:d5:58:e7:f3:f6:c1:bb:f7:fe: 9c:36:c8:96:61:56:9b:fd:e5:0c:f2:da:df:31:33:52:08:87: bc:4d:5f:fb:7f:82:48:34:a3:a6:a1:6e:78:8c:24:d6:2f:06: 82:17:c7:c5:89:1e:0a:b0:e3:37:da:c8:b8:3c:1b:ea:f4:ae: 87:10:87:33:9a:32:7a:a3:6d:0b:a6:9d:27:a6:a5:b6:ef:51: f8:16:50:d7:ff:3a:c7:c5:82:7d:0a:50:0f:9b:5d:c8:03:37: b4:a1:22:0f:0a:e2:5d:42:53:8a:5c:cd:53:b1:52:3c:c2:69: 57:e8:b6:3e:64:d4:0b:79:8f:3d:9d:f0:b4:29:fc:32:ff:58: 14:56:07:76:07:e0:ee:78:39:f3:aa:5c:d8:42:99:b6:f5:1b: 44:ba:c6:70 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUf6oK+8798igGcVdv0xnEs6U60rMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhE MEJFOTIzRjAeFw0yNTA1MTcwMzU1MDFaFw0yNjA1MTYwNDAwMDFaMDMxMTAvBgNV BAMTKDI4MzkxREM0MTE1QkRBRTA2MTJFMjQyQ0MwMDM2MURERUMxMTNFOTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDe3SqPfwHwrAN0Stsq92hEgHj0 v9/5VLc7V0kdK5l0gS4fEGT+iOlKdvBX2mVdf0DSWKqg4B9Kbjk5lF/idZUcjPOM QhTqF9AHNjtFIs8hglrArLiHb16z3//MZZL9d2at7eZeSgKp98H1v+yg2Kw9e5HL LUna88mjtekjKetUzFdZcg+QPxm2RqSbz734oRPOFUQZNlN9YAIFnxvxyE75KKd6 YIExlnkwbAEB5AlMWZ1eDoER4B51x7DxVjfWCmK6njIOTr/npr4BvYSMFQOdzltq UA8noKy5TpMISNk6g3PGdj+NyEdi0w1+S6T1TNe+R0d9g0hLIOUUieWcKo3BAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUKDkdxBFb2uBhLiQswANh3ewRPpkwHwYDVR0j BBgwFoAU0/th10akR2fUUY1un9H72NC+kj8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2Y0ZWMxYy05NTM1LTRjYmYtOWM3YS1mZDMyYzgzMGVkYmEvMC9EM0ZCNjFENzQ2 QTQ0NzY3RDQ1MThENkU5RkQxRkJEOEQwQkU5MjNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhEMEJF OTIzRi5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczZjRlYzFjLTk1MzUtNGNiZi05 YzdhLWZkMzJjODMwZWRiYS8wLzMyMzQzMDMwM2E2NDM5MzQzMDNhNjQ2MTY0NjEz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzYzMDM4Mzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk ANlA2towDQYJKoZIhvcNAQELBQADggEBALXY5NXYDeCe0j5NbVKSfAo01ciy2FZq xeo4o4Vxj5NW/yzWW0cipPtj1T7vt37H157QnRu0YjL7/pu9h9KK08x15b1fsenn EPuTYemShI4nu1VPOHHC8INwhA6d5XBV4Tx0h9VY5/P2wbv3/pw2yJZhVpv95Qzy 2t8xM1IIh7xNX/t/gkg0o6ahbniMJNYvBoIXx8WJHgqw4zfayLg8G+r0rocQhzOa MnqjbQumnSempbbvUfgWUNf/OsfFgn0KUA+bXcgDN7ShIg8K4l1CU4pczVOxUjzC aVfotj5k1At5jz2d8LQp/DL/WBRWB3YH4O54OfOqXNhCmbb1G0S6xnA= -----END CERTIFICATE-----Generated at Sun Jun 8 06:16:39 2025 by rpki-client