$ rpki-client -vvf repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a646564653a3a2f34382d3438203d3e20313336303838.roa File: 323430303a643934303a646564653a3a2f34382d3438203d3e20313336303838.roa (raw, json) Hash identifier: pGI4/Kwvdhil44H0XWJAjsDRNFz8v7WG9O+CZDRu6VE= Subject key identifier: 8D:45:D1:70:D2:BA:2C:5D:4B:5F:0B:9F:12:C9:43:9C:A0:A8:C8:D4 Certificate issuer: /CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Certificate serial: 46F2D1DB0C90FC860936F61AC139FC43A4426FCB Authority key identifier: D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a646564653a3a2f34382d3438203d3e20313336303838.roa Signing time: Sat 17 May 2025 04:00:01 +0000 ROA not before: Sat 17 May 2025 03:55:01 +0000 ROA not after: Sat 16 May 2026 04:00:01 +0000 asID: 136088 IP address blocks: 2400:d940:dede::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 05:47:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:f2:d1:db:0c:90:fc:86:09:36:f6:1a:c1:39:fc:43:a4:42:6f:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Validity Not Before: May 17 03:55:01 2025 GMT Not After : May 16 04:00:01 2026 GMT Subject: CN=8D45D170D2BA2C5D4B5F0B9F12C9439CA0A8C8D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:fb:07:15:1b:9d:d6:0b:20:60:b6:0d:71:50: a6:b1:23:dc:15:70:46:5b:92:f6:3a:71:f6:dd:17: 32:b2:5a:77:5f:0c:9b:55:fb:a6:3a:6e:e2:97:9e: 32:79:81:f8:22:73:ca:44:75:75:14:ed:c3:d4:4c: f8:fe:66:3d:06:5c:96:e5:91:19:ce:0e:32:54:ea: df:ca:3f:64:9d:c4:9a:4d:02:0f:c4:34:81:33:de: 1b:3e:0e:be:d0:64:d5:b9:15:d4:db:4f:e9:60:e1: aa:25:a2:3f:22:e2:84:bb:ff:bf:59:fa:d4:8e:89: b0:5f:a0:fa:a9:b0:6c:a5:6a:ce:e3:33:6f:16:c5: a8:74:63:8a:ab:9a:b8:55:06:80:e9:82:fe:24:90: 10:0c:1d:8f:87:89:9b:1a:1c:fd:69:f1:f5:b8:75: 92:44:c0:bf:22:aa:ee:d4:ed:43:46:71:c9:7d:77: e3:f9:b6:c1:98:ef:ea:58:c0:46:93:f5:8d:61:f2: fc:1f:7f:ce:c1:be:03:89:6a:93:58:58:c6:d4:d6: 28:1a:19:f5:c5:7e:92:87:32:e5:71:3d:43:85:ff: 1d:04:56:95:a8:07:50:26:0c:ac:ff:99:10:58:b0: 8f:19:9c:b5:ea:3f:99:c9:07:f0:f0:b7:61:ee:60: 40:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:45:D1:70:D2:BA:2C:5D:4B:5F:0B:9F:12:C9:43:9C:A0:A8:C8:D4 X509v3 Authority Key Identifier: keyid:D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a646564653a3a2f34382d3438203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d940:dede::/48 Signature Algorithm: sha256WithRSAEncryption 2d:d8:19:ec:41:5e:5e:3d:a5:93:a1:0d:01:be:31:5e:99:fc: 8d:7c:93:84:a0:2a:c2:6b:1d:a0:8f:75:3c:ed:9a:11:d4:bc: a5:e6:75:d8:1e:95:7b:11:8a:73:bb:1e:e8:73:92:c3:b9:3c: f3:a7:b9:c9:bc:90:02:1d:34:b2:bd:ef:59:ed:15:92:b3:43: c4:ed:19:b4:1b:c4:97:43:9e:b9:26:95:08:51:ad:18:b7:34: 9a:3f:d7:ce:43:2e:bc:a9:78:de:fe:a1:32:d5:08:f7:7e:5a: 61:bf:6e:21:35:71:09:14:44:79:34:08:e7:de:27:83:b8:7b: 99:be:f5:f3:30:5a:6c:f7:4b:c5:2e:19:3d:8f:10:9f:db:67: cf:9f:1a:d6:c3:a7:9d:2c:bb:cd:b3:a1:c4:00:92:9c:c9:41: 82:44:11:b6:08:70:7e:6a:a0:6f:6a:69:8e:fd:da:f9:c7:5a: d0:e7:b2:3d:94:74:02:46:c9:9e:6c:9c:ca:df:79:0e:80:fa: 06:b2:64:cb:2a:6c:f5:a8:1b:0a:20:1c:04:bf:6d:4e:78:c8: 64:d4:6b:4f:81:29:a6:e7:11:f1:9c:98:93:e3:c1:c3:f1:03: 5a:5b:4c:4d:e5:e0:1b:5e:3c:55:34:bb:14:5f:d3:1a:66:3d: 79:43:cf:91 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIURvLR2wyQ/IYJNvYawTn8Q6RCb8swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhE MEJFOTIzRjAeFw0yNTA1MTcwMzU1MDFaFw0yNjA1MTYwNDAwMDFaMDMxMTAvBgNV BAMTKDhENDVEMTcwRDJCQTJDNUQ0QjVGMEI5RjEyQzk0MzlDQTBBOEM4RDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2+wcVG53WCyBgtg1xUKaxI9wV cEZbkvY6cfbdFzKyWndfDJtV+6Y6buKXnjJ5gfgic8pEdXUU7cPUTPj+Zj0GXJbl kRnODjJU6t/KP2SdxJpNAg/ENIEz3hs+Dr7QZNW5FdTbT+lg4aoloj8i4oS7/79Z +tSOibBfoPqpsGylas7jM28Wxah0Y4qrmrhVBoDpgv4kkBAMHY+HiZsaHP1p8fW4 dZJEwL8iqu7U7UNGccl9d+P5tsGY7+pYwEaT9Y1h8vwff87BvgOJapNYWMbU1iga GfXFfpKHMuVxPUOF/x0EVpWoB1AmDKz/mRBYsI8ZnLXqP5nJB/Dwt2HuYEAdAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUjUXRcNK6LF1LXwufEslDnKCoyNQwHwYDVR0j BBgwFoAU0/th10akR2fUUY1un9H72NC+kj8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2Y0ZWMxYy05NTM1LTRjYmYtOWM3YS1mZDMyYzgzMGVkYmEvMC9EM0ZCNjFENzQ2 QTQ0NzY3RDQ1MThENkU5RkQxRkJEOEQwQkU5MjNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhEMEJF OTIzRi5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczZjRlYzFjLTk1MzUtNGNiZi05 YzdhLWZkMzJjODMwZWRiYS8wLzMyMzQzMDMwM2E2NDM5MzQzMDNhNjQ2NTY0NjUz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzYzMDM4Mzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk ANlA3t4wDQYJKoZIhvcNAQELBQADggEBAC3YGexBXl49pZOhDQG+MV6Z/I18k4Sg KsJrHaCPdTztmhHUvKXmddgelXsRinO7HuhzksO5PPOnucm8kAIdNLK971ntFZKz Q8TtGbQbxJdDnrkmlQhRrRi3NJo/185DLrypeN7+oTLVCPd+WmG/biE1cQkURHk0 COfeJ4O4e5m+9fMwWmz3S8UuGT2PEJ/bZ8+fGtbDp50su82zocQAkpzJQYJEEbYI cH5qoG9qaY792vnHWtDnsj2UdAJGyZ5snMrfeQ6A+gayZMsqbPWoGwogHAS/bU54 yGTUa0+BKabnEfGcmJPjwcPxA1pbTE3l4BtePFU0uxRf0xpmPXlDz5E= -----END CERTIFICATE-----Generated at Sun Jun 8 02:36:39 2025 by rpki-client