$ rpki-client -vvf repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a646561643a3a2f34382d3438203d3e20313336303838.roa File: 323430303a643934303a646561643a3a2f34382d3438203d3e20313336303838.roa (raw, json) Hash identifier: /5tB0DAJa4sen7YCfad9KHCwDszSFMjEl56O7fFNIMo= Subject key identifier: 7F:CF:75:93:04:AF:B4:ED:31:60:41:D4:FF:2D:24:7F:A7:3E:C1:97 Certificate issuer: /CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Certificate serial: 2C3608597DF0F3FF7310FB145F2D0283FCC5FAFB Authority key identifier: D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a646561643a3a2f34382d3438203d3e20313336303838.roa Signing time: Sat 17 May 2025 04:00:02 +0000 ROA not before: Sat 17 May 2025 03:55:02 +0000 ROA not after: Sat 16 May 2026 04:00:02 +0000 asID: 136088 IP address blocks: 2400:d940:dead::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 05:47:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:36:08:59:7d:f0:f3:ff:73:10:fb:14:5f:2d:02:83:fc:c5:fa:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Validity Not Before: May 17 03:55:02 2025 GMT Not After : May 16 04:00:02 2026 GMT Subject: CN=7FCF759304AFB4ED316041D4FF2D247FA73EC197 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:b3:ee:a3:0f:09:33:30:db:d6:42:1c:7d:64: 69:1d:42:c5:87:0c:0f:bc:81:16:78:38:44:e8:ed: f6:2d:0b:3e:db:f8:a9:e7:77:f9:ea:aa:bb:58:70: 4d:8a:77:af:ed:e5:b4:e5:0a:41:c3:e2:92:93:0f: ee:f8:3f:6f:56:bd:c2:11:f2:a3:90:f8:7c:9f:16: 33:5c:a2:46:2f:93:63:30:a1:60:d2:00:0c:e4:04: 95:3f:de:58:71:1b:37:ce:70:86:42:47:44:3b:f8: f5:31:e0:68:0b:a2:e7:a6:12:2c:cc:38:85:a9:99: f7:9f:0b:21:f6:9f:82:3e:88:d8:52:46:e2:cb:02: 48:d8:18:82:12:e8:a8:41:a0:2a:94:8a:ab:b9:17: a5:d8:e7:b4:d6:ca:00:06:77:03:f3:0f:f5:28:2f: 9d:dc:0c:5c:cb:25:2b:d1:65:d5:f8:5c:ed:5d:91: 84:95:16:53:91:05:3e:86:6b:a4:dd:ca:81:9e:38: 63:6f:ba:8c:83:b8:23:3d:4b:e7:56:fd:13:74:f0: 1c:e7:ce:fc:ac:8f:ba:ad:0e:da:69:66:81:5b:7d: fb:51:97:93:6c:3e:9a:2f:6f:74:32:f9:54:c9:a1: 47:8d:2e:b6:38:01:e2:57:7d:2d:aa:98:03:f3:33: eb:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:CF:75:93:04:AF:B4:ED:31:60:41:D4:FF:2D:24:7F:A7:3E:C1:97 X509v3 Authority Key Identifier: keyid:D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a646561643a3a2f34382d3438203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d940:dead::/48 Signature Algorithm: sha256WithRSAEncryption 32:00:10:90:16:80:cc:26:b6:5d:98:01:4b:f3:7f:43:40:bc: 00:7c:52:b3:2f:78:eb:0c:6a:32:a8:dc:6e:31:92:7f:6e:bb: f1:a3:5e:6a:d2:14:8e:b3:1b:38:94:7c:96:83:13:cc:7f:b3: 8d:5c:ed:46:b8:cb:31:f5:93:a0:4b:91:0f:26:91:2c:1a:a3: 8a:07:56:0c:ea:d7:32:3d:67:9d:4e:46:d0:c0:bc:70:12:03: 85:a4:cb:9d:fa:3b:65:43:8c:7d:a5:04:51:2b:25:4a:e8:24: 75:ab:24:03:7c:4d:d8:e5:84:80:c2:08:d0:ee:15:fb:7d:89: 6e:f2:cc:4d:28:0f:43:f1:64:2a:0e:cf:54:f7:3a:73:08:cd: 11:9b:c0:c3:ed:a9:56:2c:c3:5b:31:0b:7a:cd:0e:01:e9:e3: 76:96:ff:3e:e1:9e:37:1c:a0:b7:a1:96:3c:ad:7d:6e:47:cd: ea:ae:3e:df:3c:e6:be:70:ab:44:3f:72:a5:ad:d4:e2:1b:d2: ef:05:10:a8:13:ea:87:1b:5f:d8:31:42:d0:f2:a6:e5:c3:3a: e0:1c:b0:f1:24:4c:38:eb:79:65:c5:d2:e7:a0:18:25:4a:6c: cc:bf:c0:a9:7a:4f:21:ec:97:3a:f6:36:c8:c5:04:23:ac:31: f0:73:81:1a -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIULDYIWX3w8/9zEPsUXy0Cg/zF+vswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhE MEJFOTIzRjAeFw0yNTA1MTcwMzU1MDJaFw0yNjA1MTYwNDAwMDJaMDMxMTAvBgNV BAMTKDdGQ0Y3NTkzMDRBRkI0RUQzMTYwNDFENEZGMkQyNDdGQTczRUMxOTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCts+6jDwkzMNvWQhx9ZGkdQsWH DA+8gRZ4OETo7fYtCz7b+Knnd/nqqrtYcE2Kd6/t5bTlCkHD4pKTD+74P29WvcIR 8qOQ+HyfFjNcokYvk2MwoWDSAAzkBJU/3lhxGzfOcIZCR0Q7+PUx4GgLouemEizM OIWpmfefCyH2n4I+iNhSRuLLAkjYGIIS6KhBoCqUiqu5F6XY57TWygAGdwPzD/Uo L53cDFzLJSvRZdX4XO1dkYSVFlORBT6Ga6TdyoGeOGNvuoyDuCM9S+dW/RN08Bzn zvysj7qtDtppZoFbfftRl5NsPpovb3Qy+VTJoUeNLrY4AeJXfS2qmAPzM+tjAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUf891kwSvtO0xYEHU/y0kf6c+wZcwHwYDVR0j BBgwFoAU0/th10akR2fUUY1un9H72NC+kj8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2Y0ZWMxYy05NTM1LTRjYmYtOWM3YS1mZDMyYzgzMGVkYmEvMC9EM0ZCNjFENzQ2 QTQ0NzY3RDQ1MThENkU5RkQxRkJEOEQwQkU5MjNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhEMEJF OTIzRi5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczZjRlYzFjLTk1MzUtNGNiZi05 YzdhLWZkMzJjODMwZWRiYS8wLzMyMzQzMDMwM2E2NDM5MzQzMDNhNjQ2NTYxNjQz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzYzMDM4Mzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk ANlA3q0wDQYJKoZIhvcNAQELBQADggEBADIAEJAWgMwmtl2YAUvzf0NAvAB8UrMv eOsMajKo3G4xkn9uu/GjXmrSFI6zGziUfJaDE8x/s41c7Ua4yzH1k6BLkQ8mkSwa o4oHVgzq1zI9Z51ORtDAvHASA4Wky536O2VDjH2lBFErJUroJHWrJAN8TdjlhIDC CNDuFft9iW7yzE0oD0PxZCoOz1T3OnMIzRGbwMPtqVYsw1sxC3rNDgHp43aW/z7h njccoLehljytfW5HzequPt885r5wq0Q/cqWt1OIb0u8FEKgT6ocbX9gxQtDypuXD OuAcsPEkTDjreWXF0uegGCVKbMy/wKl6TyHslzr2NsjFBCOsMfBzgRo= -----END CERTIFICATE-----Generated at Sun Jun 8 05:59:02 2025 by rpki-client