$ rpki-client -vvf repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/323430373a623463303a633a3a2f34382d3438203d3e20313432333636.roa File: 323430373a623463303a633a3a2f34382d3438203d3e20313432333636.roa (raw, json) Hash identifier: PwS8ZteZSgPMYr/+U7TBWB1NbbKeXLIctaDRv9tMXAw= Subject key identifier: C7:88:43:F9:9B:62:20:06:1F:80:35:3B:53:6B:31:C1:61:4F:14:96 Certificate issuer: /CN=0110A7C2C5E7B74C89B036FFF78974619577D31C Certificate serial: 3E67A3570281937B3412E8C87D93700BA2B47C07 Authority key identifier: 01:10:A7:C2:C5:E7:B7:4C:89:B0:36:FF:F7:89:74:61:95:77:D3:1C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0110A7C2C5E7B74C89B036FFF78974619577D31C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/323430373a623463303a633a3a2f34382d3438203d3e20313432333636.roa Signing time: Sat 17 May 2025 10:00:01 +0000 ROA not before: Sat 17 May 2025 09:55:01 +0000 ROA not after: Sat 16 May 2026 10:00:01 +0000 asID: 142366 IP address blocks: 2407:b4c0:c::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/0110A7C2C5E7B74C89B036FFF78974619577D31C.crl rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/0110A7C2C5E7B74C89B036FFF78974619577D31C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0110A7C2C5E7B74C89B036FFF78974619577D31C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 13:14:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:67:a3:57:02:81:93:7b:34:12:e8:c8:7d:93:70:0b:a2:b4:7c:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0110A7C2C5E7B74C89B036FFF78974619577D31C Validity Not Before: May 17 09:55:01 2025 GMT Not After : May 16 10:00:01 2026 GMT Subject: CN=C78843F99B6220061F80353B536B31C1614F1496 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:10:0d:79:05:9d:9c:dd:c1:91:ac:54:81:16: 6d:ca:2f:0a:55:b8:40:b0:0a:1f:2f:20:c1:1e:3f: fc:a6:4c:ec:b5:cd:2a:8c:df:73:d3:43:1e:db:f2: b9:1b:ae:b9:e9:ec:18:bb:77:55:85:4b:bd:e1:ea: 10:e6:22:69:d3:c8:e4:1a:7c:4d:94:fd:c5:72:5a: 01:8e:72:47:dd:6e:75:b3:fb:34:32:33:ba:ca:67: a1:c7:32:c7:7c:bd:21:64:9c:d3:6d:3c:86:eb:8c: f9:ba:37:a3:1b:20:f2:ec:4f:51:d2:4a:e9:1a:91: f5:57:05:b7:0c:06:f5:b2:43:15:23:ab:83:b9:a5: 6e:7a:8c:1f:75:73:dc:82:99:97:c7:76:27:34:f2: 1b:60:e7:bb:10:dd:76:5a:c9:ab:8f:01:42:fb:64: bb:47:91:be:ad:55:f9:87:8b:5e:f5:2a:c1:b2:e0: f2:2a:13:44:9a:1f:75:35:75:48:6f:b1:cc:98:fd: 25:2c:d9:17:75:57:47:82:86:37:f5:b9:72:e9:18: 14:17:ae:6d:a1:5d:34:4d:a9:a2:0d:c7:31:36:c1: 55:dd:86:b0:49:0b:05:11:82:7f:76:82:5d:29:77: 8f:11:d7:bd:40:f1:12:b0:90:8c:38:de:73:b4:62: 55:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:88:43:F9:9B:62:20:06:1F:80:35:3B:53:6B:31:C1:61:4F:14:96 X509v3 Authority Key Identifier: keyid:01:10:A7:C2:C5:E7:B7:4C:89:B0:36:FF:F7:89:74:61:95:77:D3:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/0110A7C2C5E7B74C89B036FFF78974619577D31C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0110A7C2C5E7B74C89B036FFF78974619577D31C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/323430373a623463303a633a3a2f34382d3438203d3e20313432333636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:b4c0:c::/48 Signature Algorithm: sha256WithRSAEncryption 25:79:b1:b3:42:81:bb:e3:53:ff:b7:44:d9:1b:71:1b:93:1b: e9:2c:fc:e9:42:81:1f:e0:e5:c8:06:f4:05:36:09:52:1a:88: 2f:7e:db:d8:87:ae:34:98:80:bd:94:a6:1d:fe:2e:2c:9a:ec: dc:78:89:ce:a4:70:eb:87:0f:ce:29:92:67:c5:6d:c0:a8:2c: d8:36:a5:2a:c6:1d:fe:20:5f:7b:a7:54:7d:19:ce:bb:79:ed: 7f:79:4d:de:16:85:d3:5e:a1:09:35:a1:31:88:fc:ae:94:1f: 2a:78:fe:26:3e:28:90:2d:97:e9:3f:5d:2e:8d:89:e3:09:b9: 56:a8:a9:45:51:4c:42:c5:c4:af:0a:06:a6:26:d8:c0:8c:e0: be:6b:e6:8e:0c:51:ed:40:d0:8c:4f:e8:f2:26:96:36:62:95: 4c:f5:24:dc:eb:3d:29:11:30:2a:31:ae:38:78:2c:0b:dd:79: a1:88:0b:f5:f6:f4:c0:f5:78:25:68:43:e7:2f:01:fd:8c:17: 8c:7d:96:3b:fe:29:44:e2:e8:2b:5f:f9:2b:99:28:08:a3:ac: 39:7f:2c:79:94:70:d9:a1:b1:9a:41:2f:9b:fc:78:a8:63:38: cc:c7:45:31:15:62:0a:ca:e0:30:2e:5f:bf:d9:18:01:db:16: 6d:93:e1:5e -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUPmejVwKBk3s0EujIfZNwC6K0fAcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDExMEE3QzJDNUU3Qjc0Qzg5QjAzNkZGRjc4OTc0NjE5 NTc3RDMxQzAeFw0yNTA1MTcwOTU1MDFaFw0yNjA1MTYxMDAwMDFaMDMxMTAvBgNV BAMTKEM3ODg0M0Y5OUI2MjIwMDYxRjgwMzUzQjUzNkIzMUMxNjE0RjE0OTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/EA15BZ2c3cGRrFSBFm3KLwpV uECwCh8vIMEeP/ymTOy1zSqM33PTQx7b8rkbrrnp7Bi7d1WFS73h6hDmImnTyOQa fE2U/cVyWgGOckfdbnWz+zQyM7rKZ6HHMsd8vSFknNNtPIbrjPm6N6MbIPLsT1HS SukakfVXBbcMBvWyQxUjq4O5pW56jB91c9yCmZfHdic08htg57sQ3XZayauPAUL7 ZLtHkb6tVfmHi171KsGy4PIqE0SaH3U1dUhvscyY/SUs2Rd1V0eChjf1uXLpGBQX rm2hXTRNqaINxzE2wVXdhrBJCwURgn92gl0pd48R171A8RKwkIw43nO0YlXBAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUx4hD+ZtiIAYfgDU7U2sxwWFPFJYwHwYDVR0j BBgwFoAUARCnwsXnt0yJsDb/94l0YZV30xwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NzBkZmI1YS04NDVlLTRkZGYtYWNhNy1hOWIzMWMzMWRmZjQvMC8wMTEwQTdDMkM1 RTdCNzRDODlCMDM2RkZGNzg5NzQ2MTk1NzdEMzFDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDExMEE3QzJDNUU3Qjc0Qzg5QjAzNkZGRjc4OTc0NjE5NTc3 RDMxQy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3MGRmYjVhLTg0NWUtNGRkZi1h Y2E3LWE5YjMxYzMxZGZmNC8wLzMyMzQzMDM3M2E2MjM0NjMzMDNhNjMzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzIzMzM2MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkB7TAAAww DQYJKoZIhvcNAQELBQADggEBACV5sbNCgbvjU/+3RNkbcRuTG+ks/OlCgR/g5cgG 9AU2CVIaiC9+29iHrjSYgL2Uph3+Liya7Nx4ic6kcOuHD84pkmfFbcCoLNg2pSrG Hf4gX3unVH0Zzrt57X95Td4WhdNeoQk1oTGI/K6UHyp4/iY+KJAtl+k/XS6NieMJ uVaoqUVRTELFxK8KBqYm2MCM4L5r5o4MUe1A0IxP6PImljZilUz1JNzrPSkRMCox rjh4LAvdeaGIC/X29MD1eCVoQ+cvAf2MF4x9ljv+KUTi6Ctf+SuZKAijrDl/LHmU cNmhsZpBL5v8eKhjOMzHRTEVYgrK4DAuX7/ZGAHbFm2T4V4= -----END CERTIFICATE-----Generated at Thu Jun 5 18:15:17 2025 by rpki-client