$ rpki-client -vvf repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/323430313a383434303a3a2f33322d3332203d3e20313336313331.roa File: 323430313a383434303a3a2f33322d3332203d3e20313336313331.roa (raw, json) Hash identifier: J/TKA4DxZMeIQk5lGShBOGO9FvcMo90L9nK349bvEzs= Subject key identifier: F5:36:17:46:BD:35:88:E9:27:09:66:75:85:BE:49:92:95:0F:28:2E Certificate issuer: /CN=7D64B8F4CFB687141137D10F9E73FFD0BAB93F67 Certificate serial: 496E08007EED84B77D5FFC90980B3447AF0F6330 Authority key identifier: 7D:64:B8:F4:CF:B6:87:14:11:37:D1:0F:9E:73:FF:D0:BA:B9:3F:67 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.cer Subject info access: rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/323430313a383434303a3a2f33322d3332203d3e20313336313331.roa Signing time: Fri 16 May 2025 14:02:23 +0000 ROA not before: Fri 16 May 2025 13:57:23 +0000 ROA not after: Fri 15 May 2026 14:02:23 +0000 asID: 136131 IP address blocks: 2401:8440::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.crl rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 12:14:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:6e:08:00:7e:ed:84:b7:7d:5f:fc:90:98:0b:34:47:af:0f:63:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D64B8F4CFB687141137D10F9E73FFD0BAB93F67 Validity Not Before: May 16 13:57:23 2025 GMT Not After : May 15 14:02:23 2026 GMT Subject: CN=F5361746BD3588E92709667585BE4992950F282E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:ca:54:99:91:2d:39:da:78:b8:2f:5f:2d:b0: dd:5b:6c:5b:f0:0a:31:a8:03:81:58:10:72:b7:72: a0:19:31:f9:92:48:71:ef:93:a2:10:cc:57:cc:7a: a2:d6:d4:1f:42:5b:15:01:e7:be:48:44:3f:94:5b: fb:a5:6c:a2:d6:c2:34:2a:b4:aa:4e:b7:ba:17:d7: 6b:f9:18:a6:59:41:d3:20:95:e9:38:30:4c:70:b5: 3b:f6:d6:f7:a1:16:ae:5f:8c:f8:cd:b9:58:6c:bf: d1:72:22:84:0f:de:e3:3a:a4:f3:81:85:16:32:3d: 80:48:05:d4:dc:f2:8d:2e:96:87:c6:e3:d3:6e:1a: 9f:7a:f2:54:05:f1:9e:c6:97:12:3c:bf:df:2a:af: b1:83:fb:45:09:ea:29:39:e5:14:1f:61:f6:31:30: c3:3a:ca:0a:bb:4d:f4:41:62:d4:d7:21:a5:78:33: d2:00:1a:7a:8c:10:84:4a:a9:26:dd:bc:58:e4:f7: 62:71:7c:82:da:79:f9:30:f0:15:04:13:a9:cd:af: 29:8b:ce:29:3c:a8:f0:eb:9d:99:35:cf:cb:5a:be: 7b:15:80:b1:4d:29:71:ae:53:e9:64:d9:ac:f2:ac: f3:85:25:2e:ec:f3:d0:1c:f3:59:f0:f2:30:30:1e: c5:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:36:17:46:BD:35:88:E9:27:09:66:75:85:BE:49:92:95:0F:28:2E X509v3 Authority Key Identifier: keyid:7D:64:B8:F4:CF:B6:87:14:11:37:D1:0F:9E:73:FF:D0:BA:B9:3F:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D64B8F4CFB687141137D10F9E73FFD0BAB93F67.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/957b0d7e-eade-4318-ab20-8c7f2d5be69f/0/323430313a383434303a3a2f33322d3332203d3e20313336313331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:8440::/32 Signature Algorithm: sha256WithRSAEncryption 5b:0a:c1:83:35:d9:d6:3e:0e:d1:2b:7a:ea:0f:6e:2d:c0:78: ba:08:cf:f6:f4:e6:89:3a:33:ab:d7:c7:d9:c4:d6:8c:5e:3f: 4b:45:60:f0:d1:d0:62:a3:76:dc:9a:77:ef:3c:c5:33:2f:e0: bf:03:c1:cc:c4:5b:91:89:10:2e:f1:9b:46:1a:64:88:c8:3c: 0d:cc:4b:cc:82:b0:2e:aa:ef:b1:e6:c2:c7:a2:7e:ec:8f:9e: ac:db:bd:3a:ae:f1:87:69:08:5d:d0:ba:dd:c1:5d:b3:6a:d2: d4:c3:93:62:6a:f7:43:37:17:a1:c7:33:4a:8b:3d:75:54:ba: 00:0a:12:44:75:4b:73:fc:7b:f5:3c:33:1e:ab:9d:dd:f3:11: bb:7a:5b:d6:9e:d7:b4:8d:78:62:5d:6a:cc:0a:88:11:5a:1e: 8d:b0:3e:98:fe:ca:12:ea:c6:54:40:2e:b2:bb:14:90:f4:b0: 0b:67:44:27:51:e2:21:ad:60:68:b4:cd:98:a1:e9:1f:fb:d4: 00:ac:85:91:17:44:d3:a7:fb:52:da:99:cf:c9:90:ed:a4:20: fb:18:4f:f5:d1:05:c8:5b:32:39:55:04:8c:95:89:8a:fc:18: be:f9:e8:96:bf:eb:bf:ca:40:85:92:45:8f:af:24:71:0e:21: 13:6b:ab:08 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUSW4IAH7thLd9X/yQmAs0R68PYzAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0Q2NEI4RjRDRkI2ODcxNDExMzdEMTBGOUU3M0ZGRDBC QUI5M0Y2NzAeFw0yNTA1MTYxMzU3MjNaFw0yNjA1MTUxNDAyMjNaMDMxMTAvBgNV BAMTKEY1MzYxNzQ2QkQzNTg4RTkyNzA5NjY3NTg1QkU0OTkyOTUwRjI4MkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGylSZkS052ni4L18tsN1bbFvw CjGoA4FYEHK3cqAZMfmSSHHvk6IQzFfMeqLW1B9CWxUB575IRD+UW/ulbKLWwjQq tKpOt7oX12v5GKZZQdMglek4MExwtTv21vehFq5fjPjNuVhsv9FyIoQP3uM6pPOB hRYyPYBIBdTc8o0ulofG49NuGp968lQF8Z7GlxI8v98qr7GD+0UJ6ik55RQfYfYx MMM6ygq7TfRBYtTXIaV4M9IAGnqMEIRKqSbdvFjk92JxfILaefkw8BUEE6nNrymL zik8qPDrnZk1z8tavnsVgLFNKXGuU+lk2azyrPOFJS7s89Ac81nw8jAwHsXBAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQU9TYXRr01iOknCWZ1hb5JkpUPKC4wHwYDVR0j BBgwFoAUfWS49M+2hxQRN9EPnnP/0Lq5P2cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NTdiMGQ3ZS1lYWRlLTQzMTgtYWIyMC04YzdmMmQ1YmU2OWYvMC83RDY0QjhGNENG QjY4NzE0MTEzN0QxMEY5RTczRkZEMEJBQjkzRjY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0Q2NEI4RjRDRkI2ODcxNDExMzdEMTBGOUU3M0ZGRDBCQUI5 M0Y2Ny5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk1N2IwZDdlLWVhZGUtNDMxOC1h YjIwLThjN2YyZDViZTY5Zi8wLzMyMzQzMDMxM2EzODM0MzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzNjMxMzMzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQBhEAwDQYJKoZI hvcNAQELBQADggEBAFsKwYM12dY+DtEreuoPbi3AeLoIz/b05ok6M6vXx9nE1oxe P0tFYPDR0GKjdtyad+88xTMv4L8DwczEW5GJEC7xm0YaZIjIPA3MS8yCsC6q77Hm wseifuyPnqzbvTqu8YdpCF3Qut3BXbNq0tTDk2Jq90M3F6HHM0qLPXVUugAKEkR1 S3P8e/U8Mx6rnd3zEbt6W9ae17SNeGJdaswKiBFaHo2wPpj+yhLqxlRALrK7FJD0 sAtnRCdR4iGtYGi0zZih6R/71ACshZEXRNOn+1Lamc/JkO2kIPsYT/XRBchbMjlV BIyViYr8GL756Ja/67/KQIWSRY+vJHEOIRNrqwg= -----END CERTIFICATE-----Generated at Thu Jun 5 18:25:14 2025 by rpki-client