$ rpki-client -vvf repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/323430373a623463303a64643a3a2f34382d3438203d3e20313432333636.roa File: 323430373a623463303a64643a3a2f34382d3438203d3e20313432333636.roa (raw, json) Hash identifier: fYJfmsjf+SULVX6dy88bE8cQRoUB/HUNHP8Mc9BU5Es= Subject key identifier: 02:22:99:13:07:AD:C3:09:F5:BD:6C:CD:86:8E:37:70:6E:CB:DD:83 Certificate issuer: /CN=0110A7C2C5E7B74C89B036FFF78974619577D31C Certificate serial: 4FF56B77455F918F51B66734041BAB09DC44F208 Authority key identifier: 01:10:A7:C2:C5:E7:B7:4C:89:B0:36:FF:F7:89:74:61:95:77:D3:1C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0110A7C2C5E7B74C89B036FFF78974619577D31C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/323430373a623463303a64643a3a2f34382d3438203d3e20313432333636.roa Signing time: Wed 28 May 2025 12:00:01 +0000 ROA not before: Wed 28 May 2025 11:55:01 +0000 ROA not after: Wed 27 May 2026 12:00:01 +0000 asID: 142366 IP address blocks: 2407:b4c0:dd::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/0110A7C2C5E7B74C89B036FFF78974619577D31C.crl rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/0110A7C2C5E7B74C89B036FFF78974619577D31C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0110A7C2C5E7B74C89B036FFF78974619577D31C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 13:14:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:f5:6b:77:45:5f:91:8f:51:b6:67:34:04:1b:ab:09:dc:44:f2:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0110A7C2C5E7B74C89B036FFF78974619577D31C Validity Not Before: May 28 11:55:01 2025 GMT Not After : May 27 12:00:01 2026 GMT Subject: CN=0222991307ADC309F5BD6CCD868E37706ECBDD83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:5e:0e:8a:d7:f2:59:ac:fc:07:75:b0:18:fa: 70:fd:2d:ef:3c:59:fb:49:da:ab:6f:ae:ad:05:f4: a8:fb:a5:be:98:7a:80:2b:23:10:10:1d:cd:01:ca: af:39:12:b2:5a:1f:f0:32:af:f6:6f:f9:50:78:cf: 99:72:64:7f:b3:cc:97:b8:5b:7d:aa:7e:aa:cb:21: b9:9f:a7:a0:cb:45:c5:96:86:60:85:69:a7:ae:d2: 74:f9:3e:66:bb:0d:cb:a0:83:b1:fc:ac:35:78:3e: fe:6a:f2:0a:07:fe:1a:2c:9e:d6:2c:7f:91:d2:51: b0:cf:2c:9b:1f:18:65:1b:97:ed:28:d7:e7:4b:59: 5a:69:a4:e0:ca:d8:04:28:f3:4d:80:d8:f2:b5:bc: 8c:e6:b9:a3:89:f5:62:15:88:e8:be:4f:27:ff:46: 77:74:a8:a3:cc:a5:42:b5:16:17:9b:b0:b5:ed:7a: 3a:12:f7:9c:44:90:2d:1c:70:0e:7d:8f:52:7b:89: 7c:ac:d0:26:53:34:57:8f:68:96:40:f1:86:33:b1: 4c:03:9c:b6:09:55:78:8e:0b:9e:47:88:44:f6:00: 19:9a:cb:f8:13:7b:5b:84:5b:af:ba:f1:93:0b:ef: 38:55:6e:c3:75:91:76:a0:4d:74:a2:3c:c9:10:5a: e5:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:22:99:13:07:AD:C3:09:F5:BD:6C:CD:86:8E:37:70:6E:CB:DD:83 X509v3 Authority Key Identifier: keyid:01:10:A7:C2:C5:E7:B7:4C:89:B0:36:FF:F7:89:74:61:95:77:D3:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/0110A7C2C5E7B74C89B036FFF78974619577D31C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0110A7C2C5E7B74C89B036FFF78974619577D31C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a70dfb5a-845e-4ddf-aca7-a9b31c31dff4/0/323430373a623463303a64643a3a2f34382d3438203d3e20313432333636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:b4c0:dd::/48 Signature Algorithm: sha256WithRSAEncryption 92:c8:ce:cf:83:00:93:82:13:a4:25:95:37:cc:c6:03:5d:8e: a8:98:88:e0:c4:c6:55:96:92:c6:91:d0:1c:6e:af:f0:d9:77: ef:2b:a0:c6:ae:db:c6:b8:6f:60:c1:d9:0f:13:e1:49:71:cc: a2:c2:4b:7a:a4:39:fc:88:53:8e:45:e9:61:43:08:76:99:b4: 49:39:e9:52:1b:2b:04:7b:bb:a9:c1:1e:3f:db:8c:de:91:b3: 3f:c7:8e:20:63:f9:4a:3c:45:70:52:6c:87:7b:a4:fa:24:63: 91:9e:be:1e:f1:0a:a1:48:cb:6d:d4:e8:34:46:f6:7f:b3:1f: 05:14:40:89:b0:00:01:50:f9:b2:78:05:f3:8a:54:33:65:80: 37:ae:ab:34:ed:4a:e2:b9:0d:75:12:4c:76:b7:17:4b:d8:37: 03:60:38:dd:6f:be:35:98:c7:0e:21:b3:c7:43:89:13:cd:ef: 2f:c2:4b:ad:da:59:fe:a8:bd:04:5c:31:73:7a:d0:43:0c:0b: e1:72:ce:7b:e5:78:93:52:6c:61:d8:20:3d:fa:e0:72:b8:af: 1a:21:fc:cb:ff:b6:1a:b2:73:51:6f:1a:ed:f2:40:e7:68:fe: 61:a6:2f:29:0d:25:cf:65:84:bd:cd:55:c9:2a:a9:e3:ba:2d: 6f:13:20:f0 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUT/Vrd0VfkY9Rtmc0BBurCdxE8ggwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDExMEE3QzJDNUU3Qjc0Qzg5QjAzNkZGRjc4OTc0NjE5 NTc3RDMxQzAeFw0yNTA1MjgxMTU1MDFaFw0yNjA1MjcxMjAwMDFaMDMxMTAvBgNV BAMTKDAyMjI5OTEzMDdBREMzMDlGNUJENkNDRDg2OEUzNzcwNkVDQkREODMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9Xg6K1/JZrPwHdbAY+nD9Le88 WftJ2qtvrq0F9Kj7pb6YeoArIxAQHc0Byq85ErJaH/Ayr/Zv+VB4z5lyZH+zzJe4 W32qfqrLIbmfp6DLRcWWhmCFaaeu0nT5Pma7Dcugg7H8rDV4Pv5q8goH/hosntYs f5HSUbDPLJsfGGUbl+0o1+dLWVpppODK2AQo802A2PK1vIzmuaOJ9WIViOi+Tyf/ Rnd0qKPMpUK1FhebsLXtejoS95xEkC0ccA59j1J7iXys0CZTNFePaJZA8YYzsUwD nLYJVXiOC55HiET2ABmay/gTe1uEW6+68ZML7zhVbsN1kXagTXSiPMkQWuXxAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUAiKZEwetwwn1vWzNho43cG7L3YMwHwYDVR0j BBgwFoAUARCnwsXnt0yJsDb/94l0YZV30xwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NzBkZmI1YS04NDVlLTRkZGYtYWNhNy1hOWIzMWMzMWRmZjQvMC8wMTEwQTdDMkM1 RTdCNzRDODlCMDM2RkZGNzg5NzQ2MTk1NzdEMzFDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDExMEE3QzJDNUU3Qjc0Qzg5QjAzNkZGRjc4OTc0NjE5NTc3 RDMxQy5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3MGRmYjVhLTg0NWUtNGRkZi1h Y2E3LWE5YjMxYzMxZGZmNC8wLzMyMzQzMDM3M2E2MjM0NjMzMDNhNjQ2NDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzQzMjMzMzYzNi5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQHtMAA 3TANBgkqhkiG9w0BAQsFAAOCAQEAksjOz4MAk4ITpCWVN8zGA12OqJiI4MTGVZaS xpHQHG6v8Nl37yugxq7bxrhvYMHZDxPhSXHMosJLeqQ5/IhTjkXpYUMIdpm0STnp UhsrBHu7qcEeP9uM3pGzP8eOIGP5SjxFcFJsh3uk+iRjkZ6+HvEKoUjLbdToNEb2 f7MfBRRAibAAAVD5sngF84pUM2WAN66rNO1K4rkNdRJMdrcXS9g3A2A43W++NZjH DiGzx0OJE83vL8JLrdpZ/qi9BFwxc3rQQwwL4XLOe+V4k1JsYdggPfrgcrivGiH8 y/+2GrJzUW8a7fJA52j+YaYvKQ0lz2WEvc1VySqp47otbxMg8A== -----END CERTIFICATE-----Generated at Thu Jun 5 18:15:11 2025 by rpki-client