$ rpki-client -vvf repo-rpki.idnic.net/repo/7d6ea7fa-94d2-4ddc-a8e6-5dc626c291d4/0/323430303a666230303a3a2f33322d3438203d3e203535363730.roa File: 323430303a666230303a3a2f33322d3438203d3e203535363730.roa (raw, json) Hash identifier: FVA48wGL4/cskX5JvDPv5QyssORBEsld3N+rmhCU4Gc= Subject key identifier: 46:E2:5F:4B:58:80:05:5F:99:AA:26:80:E0:DC:73:B5:51:CF:2E:F9 Certificate issuer: /CN=6967012EFCA43698E8E1B724B91DFC5EFE3E7C3E Certificate serial: 6AD7A14BE9B6EFEC3A4454E2C3048F2D28AED4DB Authority key identifier: 69:67:01:2E:FC:A4:36:98:E8:E1:B7:24:B9:1D:FC:5E:FE:3E:7C:3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6967012EFCA43698E8E1B724B91DFC5EFE3E7C3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7d6ea7fa-94d2-4ddc-a8e6-5dc626c291d4/0/323430303a666230303a3a2f33322d3438203d3e203535363730.roa Signing time: Tue 20 May 2025 02:00:01 +0000 ROA not before: Tue 20 May 2025 01:55:01 +0000 ROA not after: Tue 19 May 2026 02:00:01 +0000 asID: 55670 IP address blocks: 2400:fb00::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7d6ea7fa-94d2-4ddc-a8e6-5dc626c291d4/0/6967012EFCA43698E8E1B724B91DFC5EFE3E7C3E.crl rsync://repo-rpki.idnic.net/repo/7d6ea7fa-94d2-4ddc-a8e6-5dc626c291d4/0/6967012EFCA43698E8E1B724B91DFC5EFE3E7C3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6967012EFCA43698E8E1B724B91DFC5EFE3E7C3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 19:52:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:d7:a1:4b:e9:b6:ef:ec:3a:44:54:e2:c3:04:8f:2d:28:ae:d4:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6967012EFCA43698E8E1B724B91DFC5EFE3E7C3E Validity Not Before: May 20 01:55:01 2025 GMT Not After : May 19 02:00:01 2026 GMT Subject: CN=46E25F4B5880055F99AA2680E0DC73B551CF2EF9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:99:78:d0:18:91:bd:8f:9e:c9:04:8a:f2:81: f3:d7:00:41:5e:a8:01:68:13:61:6d:64:f4:ff:1c: 13:78:d1:b6:47:ff:1d:db:58:5c:31:c9:a9:cd:c4: 95:d4:29:af:82:0a:c8:a7:32:bf:c7:24:f9:df:13: c2:71:a7:71:c2:42:d0:e9:a5:26:e6:97:0c:9a:0a: 52:a5:f2:c9:74:f2:27:43:b5:ca:b5:57:34:91:80: 9f:19:a9:4d:33:ea:db:2f:a2:68:b4:89:8f:45:90: 92:63:56:ae:b2:57:fb:96:1a:ce:49:44:6e:55:e8: d4:a7:8f:71:9f:0a:4a:40:c1:3f:6f:ea:5e:a6:1d: a2:fb:33:96:bc:78:23:5c:03:3f:1b:f8:70:04:2a: bf:3a:68:29:b7:01:63:38:05:81:8e:0e:54:12:b6: b1:79:a3:10:1d:ac:e3:fd:12:45:b0:5b:34:31:99: 98:cf:93:ee:c7:3c:df:b0:a0:4a:0b:19:e7:e1:54: 78:a3:8b:48:93:66:4c:c2:61:a0:ee:ef:03:3e:84: 79:d4:76:eb:70:de:2b:a4:83:1c:22:e8:4e:d2:90: 44:d1:3f:47:93:01:b5:a8:c0:1f:2a:3f:02:c9:5f: 9c:f0:db:d1:4e:1d:06:29:07:cc:3f:21:53:e8:a5: 7f:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:E2:5F:4B:58:80:05:5F:99:AA:26:80:E0:DC:73:B5:51:CF:2E:F9 X509v3 Authority Key Identifier: keyid:69:67:01:2E:FC:A4:36:98:E8:E1:B7:24:B9:1D:FC:5E:FE:3E:7C:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7d6ea7fa-94d2-4ddc-a8e6-5dc626c291d4/0/6967012EFCA43698E8E1B724B91DFC5EFE3E7C3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6967012EFCA43698E8E1B724B91DFC5EFE3E7C3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7d6ea7fa-94d2-4ddc-a8e6-5dc626c291d4/0/323430303a666230303a3a2f33322d3438203d3e203535363730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:fb00::/32 Signature Algorithm: sha256WithRSAEncryption 4a:fe:d2:0e:ad:fc:21:9f:b2:2a:23:48:f7:16:41:b7:b3:fc: c7:52:d7:d0:55:9b:fa:e0:ae:63:09:55:17:8e:ee:1c:6e:19: 6a:4f:25:24:8d:4c:40:32:82:b7:77:9f:7a:9a:92:88:f0:9a: 19:e7:d0:8c:75:ab:8f:25:8f:b0:3c:b7:62:43:8f:1b:cc:1b: 8c:8d:fc:a1:c6:ba:4e:7f:78:f6:72:48:d6:80:ae:63:f4:e9: 0e:4c:bf:3c:59:bd:a1:8d:46:6d:95:11:af:ed:fd:9e:ba:27: 04:87:4d:ff:86:ae:3e:50:ff:54:c0:e0:2a:da:92:d9:bb:a7: ef:ec:39:e8:07:0b:a4:c8:09:32:20:07:70:d4:30:42:24:c6: 3f:92:6f:5c:2b:b5:86:4e:9a:76:b2:70:4c:06:c6:2e:da:7d: f4:89:fa:55:82:3b:49:de:1a:d7:ef:8f:6e:34:19:c4:2b:2d: f2:f7:76:fe:0a:b5:50:c4:02:76:e2:87:a0:47:ba:34:c5:31: 80:d3:e8:98:c2:3c:ce:2d:e9:ad:f1:33:9c:6d:9a:54:74:09: e3:b2:8c:51:af:4f:59:69:f2:22:3a:03:0d:b2:7a:ad:13:6a: 42:4d:8f:93:8b:fd:5c:b1:a0:7d:60:f6:9d:79:be:48:1e:0a: de:58:58:e7 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUatehS+m27+w6RFTiwwSPLSiu1NswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjk2NzAxMkVGQ0E0MzY5OEU4RTFCNzI0QjkxREZDNUVG RTNFN0MzRTAeFw0yNTA1MjAwMTU1MDFaFw0yNjA1MTkwMjAwMDFaMDMxMTAvBgNV BAMTKDQ2RTI1RjRCNTg4MDA1NUY5OUFBMjY4MEUwREM3M0I1NTFDRjJFRjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9mXjQGJG9j57JBIrygfPXAEFe qAFoE2FtZPT/HBN40bZH/x3bWFwxyanNxJXUKa+CCsinMr/HJPnfE8Jxp3HCQtDp pSbmlwyaClKl8sl08idDtcq1VzSRgJ8ZqU0z6tsvomi0iY9FkJJjVq6yV/uWGs5J RG5V6NSnj3GfCkpAwT9v6l6mHaL7M5a8eCNcAz8b+HAEKr86aCm3AWM4BYGODlQS trF5oxAdrOP9EkWwWzQxmZjPk+7HPN+woEoLGefhVHiji0iTZkzCYaDu7wM+hHnU dutw3iukgxwi6E7SkETRP0eTAbWowB8qPwLJX5zw29FOHQYpB8w/IVPopX8VAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQURuJfS1iABV+ZqiaA4NxztVHPLvkwHwYDVR0j BBgwFoAUaWcBLvykNpjo4bckuR38Xv4+fD4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZDZlYTdmYS05NGQyLTRkZGMtYThlNi01ZGM2MjZjMjkxZDQvMC82OTY3MDEyRUZD QTQzNjk4RThFMUI3MjRCOTFERkM1RUZFM0U3QzNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjk2NzAxMkVGQ0E0MzY5OEU4RTFCNzI0QjkxREZDNUVGRTNF N0MzRS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdkNmVhN2ZhLTk0ZDItNGRkYy1h OGU2LTVkYzYyNmMyOTFkNC8wLzMyMzQzMDMwM2E2NjYyMzAzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDM1MzUzNjM3MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAPsAMA0GCSqGSIb3 DQEBCwUAA4IBAQBK/tIOrfwhn7IqI0j3FkG3s/zHUtfQVZv64K5jCVUXju4cbhlq TyUkjUxAMoK3d596mpKI8JoZ59CMdauPJY+wPLdiQ48bzBuMjfyhxrpOf3j2ckjW gK5j9OkOTL88Wb2hjUZtlRGv7f2euicEh03/hq4+UP9UwOAq2pLZu6fv7DnoBwuk yAkyIAdw1DBCJMY/km9cK7WGTpp2snBMBsYu2n30ifpVgjtJ3hrX749uNBnEKy3y 93b+CrVQxAJ24oegR7o0xTGA0+iYwjzOLemt8TOcbZpUdAnjsoxRr09ZafIiOgMN snqtE2pCTY+Ti/1csaB9YPadeb5IHgreWFjn -----END CERTIFICATE-----Generated at Mon Oct 27 12:01:42 2025 by rpki-client