$ rpki-client -vvf repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a3a2f33322d3332203d3e203633383632.roa File: 323430313a663938303a3a2f33322d3332203d3e203633383632.roa (raw, json) Hash identifier: vp7VR25cL+7Dj8J5Als0e0/zfWMWTajGC19u/9W7zjc= Subject key identifier: B6:72:30:CF:B8:22:83:11:87:72:90:C2:59:53:8F:8C:3A:45:5B:D8 Certificate issuer: /CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9 Certificate serial: 087F655C570BC6C58F52A99A3218ED35A35CFB35 Authority key identifier: 76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a3a2f33322d3332203d3e203633383632.roa Signing time: Mon 02 Jun 2025 02:05:04 +0000 ROA not before: Mon 02 Jun 2025 02:00:04 +0000 ROA not after: Mon 01 Jun 2026 02:05:04 +0000 asID: 63862 IP address blocks: 2401:f980::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.crl rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 01:20:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:7f:65:5c:57:0b:c6:c5:8f:52:a9:9a:32:18:ed:35:a3:5c:fb:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9 Validity Not Before: Jun 2 02:00:04 2025 GMT Not After : Jun 1 02:05:04 2026 GMT Subject: CN=B67230CFB8228311877290C259538F8C3A455BD8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:c6:02:14:02:d7:d5:59:01:25:d4:32:3c:59: d3:43:b9:a2:a7:06:8d:10:dc:0b:7b:4f:ac:e4:7b: 05:99:5a:4c:20:fb:f5:93:ef:81:72:e1:bc:c9:b4: 58:01:78:4c:bd:1d:fb:5f:20:36:a6:4c:19:ec:6d: 65:35:55:ed:6c:d9:ab:54:1d:38:a4:d0:9a:18:0c: f7:52:09:07:29:5d:39:e6:a0:00:fb:6b:66:b7:c6: 3f:87:7d:38:08:15:8d:5e:ea:9b:e3:8d:63:db:0f: 8a:06:16:66:81:ea:1b:37:9d:5f:0a:8c:cc:fd:ea: ce:88:43:60:b7:76:54:1a:d4:fb:74:55:1b:66:07: d3:09:1d:0e:20:8a:74:ab:7e:49:2f:9c:9b:07:20: f2:94:96:42:46:e4:90:d0:8c:71:1e:27:d6:fa:d4: 4d:53:cf:42:19:7a:1f:7a:e8:eb:e3:0e:ce:f0:fb: f0:e8:ea:a9:48:f8:7c:ca:48:96:0b:dc:1d:58:6b: 91:d6:25:dd:56:b7:7d:10:ea:18:25:b2:b8:44:25: b6:c0:62:9f:7d:c5:1b:08:11:79:77:97:f7:48:1d: b7:79:ad:8d:73:c5:e7:c2:ee:20:b8:39:06:23:dc: c7:9d:9c:15:ac:ae:01:a7:33:7e:8e:4d:74:4c:1d: 91:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:72:30:CF:B8:22:83:11:87:72:90:C2:59:53:8F:8C:3A:45:5B:D8 X509v3 Authority Key Identifier: keyid:76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/323430313a663938303a3a2f33322d3332203d3e203633383632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:f980::/32 Signature Algorithm: sha256WithRSAEncryption 8d:da:d8:78:4e:90:52:51:f7:52:0a:12:7e:34:f7:3f:55:59: 75:99:be:ae:17:6c:79:b8:91:99:76:ce:56:f3:5b:5d:30:a2: bd:0e:ab:fc:9c:61:5c:06:98:86:41:5c:5a:51:38:91:36:4a: fa:90:02:f2:24:04:3a:3b:f0:19:45:d6:f6:8e:a7:eb:9b:ef: b3:0a:d4:b8:c8:a8:66:64:83:e9:4d:68:c8:84:98:bb:9f:58: ac:e9:a2:df:5e:76:85:ba:d5:01:e9:bc:ec:a8:4e:68:60:aa: e6:f0:66:70:3e:67:80:ae:69:98:04:07:82:00:92:cd:e9:7b: d1:c1:46:bd:c5:3c:66:cb:d2:5b:71:37:ac:66:42:eb:5f:21: 97:9b:27:97:cf:2c:03:d7:d8:38:96:85:16:c5:dd:77:d3:ad: 7f:2d:8d:35:d2:1f:d3:b8:bd:22:b4:48:65:e8:4b:24:c5:dc: 05:40:f3:99:e0:e2:9f:99:cf:39:98:89:38:e9:49:03:9b:ac: e1:85:76:db:59:54:28:9f:f0:94:7f:2f:cf:e1:ab:fb:b8:49: 5d:ba:6e:a3:98:d9:10:11:c3:00:7a:19:d8:4b:86:ac:76:cc: 60:be:21:46:e8:5b:75:2f:b5:8a:67:13:52:4b:af:2f:a6:40: 7f:b5:a8:c0 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUCH9lXFcLxsWPUqmaMhjtNaNc+zUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzY0QjIzRUI2QzYzRkZDQUEzMDVGMzdEQkU5QjkwNEFF MDFENjBDOTAeFw0yNTA2MDIwMjAwMDRaFw0yNjA2MDEwMjA1MDRaMDMxMTAvBgNV BAMTKEI2NzIzMENGQjgyMjgzMTE4NzcyOTBDMjU5NTM4RjhDM0E0NTVCRDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIxgIUAtfVWQEl1DI8WdNDuaKn Bo0Q3At7T6zkewWZWkwg+/WT74Fy4bzJtFgBeEy9HftfIDamTBnsbWU1Ve1s2atU HTik0JoYDPdSCQcpXTnmoAD7a2a3xj+HfTgIFY1e6pvjjWPbD4oGFmaB6hs3nV8K jMz96s6IQ2C3dlQa1Pt0VRtmB9MJHQ4ginSrfkkvnJsHIPKUlkJG5JDQjHEeJ9b6 1E1Tz0IZeh966OvjDs7w+/Do6qlI+HzKSJYL3B1Ya5HWJd1Wt30Q6hglsrhEJbbA Yp99xRsIEXl3l/dIHbd5rY1zxefC7iC4OQYj3MednBWsrgGnM36OTXRMHZG1AgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUtnIwz7gigxGHcpDCWVOPjDpFW9gwHwYDVR0j BBgwFoAUdksj62xj/8qjBfN9vpuQSuAdYMkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 N2U4MzBjOC1kNTU5LTQ1NmEtODgzNS00ZjZlYjU1MjdhYTIvMC83NjRCMjNFQjZD NjNGRkNBQTMwNUYzN0RCRTlCOTA0QUUwMUQ2MEM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzY0QjIzRUI2QzYzRkZDQUEzMDVGMzdEQkU5QjkwNEFFMDFE NjBDOS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3ZTgzMGM4LWQ1NTktNDU2YS04 ODM1LTRmNmViNTUyN2FhMi8wLzMyMzQzMDMxM2E2NjM5MzgzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDM2MzMzODM2MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAfmAMA0GCSqGSIb3 DQEBCwUAA4IBAQCN2th4TpBSUfdSChJ+NPc/VVl1mb6uF2x5uJGZds5W81tdMKK9 Dqv8nGFcBpiGQVxaUTiRNkr6kALyJAQ6O/AZRdb2jqfrm++zCtS4yKhmZIPpTWjI hJi7n1is6aLfXnaFutUB6bzsqE5oYKrm8GZwPmeArmmYBAeCAJLN6XvRwUa9xTxm y9JbcTesZkLrXyGXmyeXzywD19g4loUWxd13061/LY010h/TuL0itEhl6EskxdwF QPOZ4OKfmc85mIk46UkDm6zhhXbbWVQon/CUfy/P4av7uEldum6jmNkQEcMAehnY S4asdsxgviFG6Ft1L7WKZxNSS68vpkB/tajA -----END CERTIFICATE-----Generated at Sun Jun 8 15:23:43 2025 by rpki-client