$ rpki-client -vvf repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/323430373a623463303a643a3a2f34382d3438203d3e20313432333636.roa File: 323430373a623463303a643a3a2f34382d3438203d3e20313432333636.roa (raw, json) Hash identifier: neHLBe/fEcPkBE3oSjIGkPPuzPFnKvLrnK1gADqMmBU= Subject key identifier: 7A:F6:2F:94:BF:28:37:30:EA:E3:35:F5:08:E4:1C:69:88:65:BC:F0 Certificate issuer: /CN=0110A7C2C5E7B74C89B036FFF78974619577D31C Certificate serial: 3C676914A6F59C8217F29CF7AE971C79CF7BD001 Authority key identifier: 01:10:A7:C2:C5:E7:B7:4C:89:B0:36:FF:F7:89:74:61:95:77:D3:1C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0110A7C2C5E7B74C89B036FFF78974619577D31C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/323430373a623463303a643a3a2f34382d3438203d3e20313432333636.roa Signing time: Sat 17 May 2025 11:00:02 +0000 ROA not before: Sat 17 May 2025 10:55:02 +0000 ROA not after: Sat 16 May 2026 11:00:02 +0000 asID: 142366 IP address blocks: 2407:b4c0:d::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/0110A7C2C5E7B74C89B036FFF78974619577D31C.crl rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/0110A7C2C5E7B74C89B036FFF78974619577D31C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0110A7C2C5E7B74C89B036FFF78974619577D31C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 13:14:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:67:69:14:a6:f5:9c:82:17:f2:9c:f7:ae:97:1c:79:cf:7b:d0:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0110A7C2C5E7B74C89B036FFF78974619577D31C Validity Not Before: May 17 10:55:02 2025 GMT Not After : May 16 11:00:02 2026 GMT Subject: CN=7AF62F94BF283730EAE335F508E41C698865BCF0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:e9:84:b8:93:fd:19:4e:bc:82:e3:61:1a:45: af:d9:bd:61:9f:ce:df:67:7c:c0:dd:5a:99:d3:56: ee:9a:bf:30:1c:d4:20:39:56:c5:0f:2b:70:75:b7: b9:82:61:6f:25:3e:d1:b5:9a:34:9d:ee:9c:05:cd: 67:5d:4e:e1:02:4b:d3:0f:b3:91:37:83:5e:b4:e3: 78:ad:bf:eb:47:0f:6c:71:f0:04:09:85:67:e4:ee: 17:93:ba:bf:15:0b:c3:ac:92:2f:a7:80:31:0f:12: 78:04:52:64:f3:82:75:c9:4c:c2:e6:e7:1a:0c:eb: 29:4b:64:e0:eb:75:5c:0e:ac:fc:30:46:a7:d3:0f: c6:c1:99:c5:02:33:f1:3a:aa:d4:16:65:c4:ff:2c: b2:39:83:4c:12:90:84:2e:1d:6a:46:6b:59:93:df: 13:d4:aa:61:ae:59:e6:8f:a8:7f:43:e7:56:d6:34: a8:6b:8a:a6:df:af:09:30:f1:a4:2d:ac:90:28:20: 4e:dd:12:c7:39:89:0e:97:7d:6c:ed:43:71:e8:1e: 8c:83:9c:36:4f:ba:55:d6:c5:a0:05:19:01:7d:fc: cf:e8:63:33:30:9a:9c:24:bd:be:2b:0b:17:f8:c9: c5:55:36:76:f0:3f:21:dc:72:ed:11:a2:1d:ae:6a: 4a:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:F6:2F:94:BF:28:37:30:EA:E3:35:F5:08:E4:1C:69:88:65:BC:F0 X509v3 Authority Key Identifier: keyid:01:10:A7:C2:C5:E7:B7:4C:89:B0:36:FF:F7:89:74:61:95:77:D3:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/0110A7C2C5E7B74C89B036FFF78974619577D31C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0110A7C2C5E7B74C89B036FFF78974619577D31C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/323430373a623463303a643a3a2f34382d3438203d3e20313432333636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:b4c0:d::/48 Signature Algorithm: sha256WithRSAEncryption 04:ab:87:48:30:20:55:6a:5c:98:e5:93:36:92:9d:b1:e1:07: 44:bd:56:66:b4:9d:97:a7:ef:5b:ee:24:ea:46:43:de:18:c4: 8a:b1:63:f7:9c:62:01:22:27:8b:56:b5:e6:89:6b:b5:e1:bd: fd:ce:4f:b1:87:f7:05:11:38:41:6e:33:ba:30:64:1e:66:8a: 16:4b:3e:1a:76:04:a4:1a:45:e7:2e:bf:1a:2e:87:07:73:eb: 96:50:63:b7:61:7a:5c:6a:c3:84:49:47:43:70:99:b1:b9:11: 88:af:45:f8:1b:ac:4b:0e:f2:16:4f:0b:76:82:3a:77:5f:ae: 09:3c:8a:33:20:21:ca:aa:51:b6:37:fe:87:e2:43:13:57:5f: bf:11:c6:cd:46:6c:87:c3:fe:e8:a0:8a:b0:3e:9d:2d:3f:8a: 9e:6c:4d:d6:a5:b7:57:f1:e4:88:e8:ac:2a:03:fc:b3:03:01: 0c:51:bd:75:75:5c:ef:4a:2f:2c:02:08:6d:e9:c0:3f:02:37: ce:d2:b0:83:9c:f4:6e:07:56:b7:cf:aa:47:7f:df:1f:b2:83: 05:76:f1:f4:06:a4:37:e2:ee:d5:08:67:6a:08:5f:1f:98:e6: 63:b5:eb:8d:f3:6e:5c:d9:b9:80:8b:a0:db:4e:07:4f:66:34: 6c:ca:7a:c9 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUPGdpFKb1nIIX8pz3rpccec970AEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDExMEE3QzJDNUU3Qjc0Qzg5QjAzNkZGRjc4OTc0NjE5 NTc3RDMxQzAeFw0yNTA1MTcxMDU1MDJaFw0yNjA1MTYxMTAwMDJaMDMxMTAvBgNV BAMTKDdBRjYyRjk0QkYyODM3MzBFQUUzMzVGNTA4RTQxQzY5ODg2NUJDRjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA6YS4k/0ZTryC42EaRa/ZvWGf zt9nfMDdWpnTVu6avzAc1CA5VsUPK3B1t7mCYW8lPtG1mjSd7pwFzWddTuECS9MP s5E3g16043itv+tHD2xx8AQJhWfk7heTur8VC8Oski+ngDEPEngEUmTzgnXJTMLm 5xoM6ylLZODrdVwOrPwwRqfTD8bBmcUCM/E6qtQWZcT/LLI5g0wSkIQuHWpGa1mT 3xPUqmGuWeaPqH9D51bWNKhriqbfrwkw8aQtrJAoIE7dEsc5iQ6XfWztQ3HoHoyD nDZPulXWxaAFGQF9/M/oYzMwmpwkvb4rCxf4ycVVNnbwPyHccu0Roh2uakoBAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUevYvlL8oNzDq4zX1COQcaYhlvPAwHwYDVR0j BBgwFoAUARCnwsXnt0yJsDb/94l0YZV30xwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NzBkZmI1YS04NDVlLTRkZGYtYWNhNy1hOWIzMWMzMWRmZjQvMC8wMTEwQTdDMkM1 RTdCNzRDODlCMDM2RkZGNzg5NzQ2MTk1NzdEMzFDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDExMEE3QzJDNUU3Qjc0Qzg5QjAzNkZGRjc4OTc0NjE5NTc3 RDMxQy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3MGRmYjVhLTg0NWUtNGRkZi1h Y2E3LWE5YjMxYzMxZGZmNC8wLzMyMzQzMDM3M2E2MjM0NjMzMDNhNjQzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzIzMzM2MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkB7TAAA0w DQYJKoZIhvcNAQELBQADggEBAASrh0gwIFVqXJjlkzaSnbHhB0S9Vma0nZen71vu JOpGQ94YxIqxY/ecYgEiJ4tWteaJa7Xhvf3OT7GH9wUROEFuM7owZB5mihZLPhp2 BKQaRecuvxouhwdz65ZQY7dhelxqw4RJR0NwmbG5EYivRfgbrEsO8hZPC3aCOndf rgk8ijMgIcqqUbY3/ofiQxNXX78Rxs1GbIfD/uigirA+nS0/ip5sTdalt1fx5Ijo rCoD/LMDAQxRvXV1XO9KLywCCG3pwD8CN87SsIOc9G4HVrfPqkd/3x+ygwV28fQG pDfi7tUIZ2oIXx+Y5mO1643zblzZuYCLoNtOB09mNGzKesk= -----END CERTIFICATE-----Generated at Thu Jun 5 18:14:32 2025 by rpki-client