$ rpki-client -vvf repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/323430313a313063303a633030303a3a2f33342d3334203d3e20313331373137.roa File: 323430313a313063303a633030303a3a2f33342d3334203d3e20313331373137.roa (raw, json) Hash identifier: upfq/Ll023pCAPQGTeGs2hbSXasfCV07dRWvMTFoCJY= Subject key identifier: 7A:14:B0:C0:B8:FE:67:4F:E7:85:66:46:8D:BB:B2:C8:4C:16:FB:78 Certificate issuer: /CN=882209E37356E0512FBE4E81B00E4F2481865087 Certificate serial: 2CF341DE4DF6193C1B90BF5CE50CC5FAAAAAB780 Authority key identifier: 88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/323430313a313063303a633030303a3a2f33342d3334203d3e20313331373137.roa Signing time: Mon 02 Jun 2025 01:02:50 +0000 ROA not before: Mon 02 Jun 2025 00:57:50 +0000 ROA not after: Mon 01 Jun 2026 01:02:50 +0000 asID: 131717 IP address blocks: 2401:10c0:c000::/34 maxlen: 34 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.crl rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 18:29:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:f3:41:de:4d:f6:19:3c:1b:90:bf:5c:e5:0c:c5:fa:aa:aa:b7:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=882209E37356E0512FBE4E81B00E4F2481865087 Validity Not Before: Jun 2 00:57:50 2025 GMT Not After : Jun 1 01:02:50 2026 GMT Subject: CN=7A14B0C0B8FE674FE78566468DBBB2C84C16FB78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:ab:8c:7c:68:76:f9:59:14:7b:c6:9c:d0:fd: 2d:3d:99:27:b4:3d:c0:43:0d:ed:ce:9c:bd:08:d3: df:5b:64:4d:72:cb:33:aa:03:20:ee:48:11:e7:d2: b1:f8:ad:73:b4:41:5a:7b:a2:8c:db:3e:53:26:d0: 3a:3d:cf:73:31:ff:11:1a:37:95:72:74:a1:0c:a5: f2:0b:af:13:c4:d4:c1:68:cf:a2:be:67:8e:9f:9a: b1:00:ae:76:23:9e:11:ee:6c:8a:db:31:6a:00:d9: ad:e7:ad:a8:31:8c:3e:b1:38:2e:44:bb:ef:45:05: 28:34:1a:18:7a:20:43:a9:e7:48:93:e1:95:10:f3: bc:61:29:71:62:67:83:68:c4:05:51:4d:15:ba:4d: 5a:64:14:c9:de:83:4c:44:79:1a:0b:6f:b4:ed:18: ff:7b:73:1a:a0:db:2a:18:9e:22:61:e3:3f:2e:3a: 24:2b:39:40:d5:e1:a5:6f:c4:87:41:77:6a:54:15: aa:bc:f2:25:a8:55:b6:1c:38:32:3e:1f:ae:66:31: 94:1a:f0:04:b9:b7:be:61:ce:c6:3b:b1:0c:da:53: 20:4e:e9:f0:d1:63:c1:ee:ec:e4:d8:44:05:6c:70: 9a:a4:bf:16:6e:df:87:3b:5e:dc:c4:8c:ec:ef:76: ee:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:14:B0:C0:B8:FE:67:4F:E7:85:66:46:8D:BB:B2:C8:4C:16:FB:78 X509v3 Authority Key Identifier: keyid:88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/323430313a313063303a633030303a3a2f33342d3334203d3e20313331373137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:10c0:c000::/34 Signature Algorithm: sha256WithRSAEncryption 0a:1f:ca:07:c6:a0:2a:51:9e:f2:b7:f1:25:5f:48:14:06:3f: 4d:23:e8:71:32:3b:4a:6d:cb:3c:1f:ed:4c:16:f9:66:57:49: a0:e3:5b:e0:71:21:b5:65:65:ff:29:b0:56:4c:7f:ea:d4:46: 65:78:47:c8:07:9c:66:b3:1d:0c:62:6f:90:d4:a9:54:52:56: f9:6a:d0:c3:bb:d6:4a:46:73:93:ca:2b:ae:49:ec:c7:e6:a3: 9b:5f:98:cb:84:8f:25:dc:75:19:43:fe:cf:49:b7:cd:e1:b7: 07:54:45:b1:e6:98:80:0b:92:b1:a4:b8:c7:57:b3:d0:2e:1f: 3c:80:07:85:d5:93:cf:77:f3:86:6e:0c:95:87:88:75:c7:51: 7b:bf:38:96:b2:a0:62:3e:ae:26:63:94:8a:c3:fa:52:f5:52: 11:13:e8:9d:24:99:ff:a8:b5:fa:6f:0a:ee:ee:32:29:09:f7: 6e:89:fd:25:a6:c0:3f:f3:be:28:b3:ae:47:3f:e4:62:63:fa: d1:6a:bb:51:3c:c3:f0:26:ff:7b:08:c2:99:b7:b9:75:01:dc: 06:f0:67:59:53:38:44:32:32:9e:d9:de:35:b0:8c:81:9f:d8: df:49:f3:99:64:34:86:3a:8d:24:92:e6:2a:a4:5d:71:9f:f7: 31:de:ef:19 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIULPNB3k32GTwbkL9c5QzF+qqqt4AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODgyMjA5RTM3MzU2RTA1MTJGQkU0RTgxQjAwRTRGMjQ4 MTg2NTA4NzAeFw0yNTA2MDIwMDU3NTBaFw0yNjA2MDEwMTAyNTBaMDMxMTAvBgNV BAMTKDdBMTRCMEMwQjhGRTY3NEZFNzg1NjY0NjhEQkJCMkM4NEMxNkZCNzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3q4x8aHb5WRR7xpzQ/S09mSe0 PcBDDe3OnL0I099bZE1yyzOqAyDuSBHn0rH4rXO0QVp7oozbPlMm0Do9z3Mx/xEa N5VydKEMpfILrxPE1MFoz6K+Z46fmrEArnYjnhHubIrbMWoA2a3nragxjD6xOC5E u+9FBSg0Ghh6IEOp50iT4ZUQ87xhKXFiZ4NoxAVRTRW6TVpkFMneg0xEeRoLb7Tt GP97cxqg2yoYniJh4z8uOiQrOUDV4aVvxIdBd2pUFaq88iWoVbYcODI+H65mMZQa 8AS5t75hzsY7sQzaUyBO6fDRY8Hu7OTYRAVscJqkvxZu34c7XtzEjOzvdu6nAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUehSwwLj+Z0/nhWZGjbuyyEwW+3gwHwYDVR0j BBgwFoAUiCIJ43NW4FEvvk6BsA5PJIGGUIcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MDc0NzFhMy1lZTUzLTQ5OWMtOWYyZC1jZjE2YjFlNGEzNTMvMC84ODIyMDlFMzcz NTZFMDUxMkZCRTRFODFCMDBFNEYyNDgxODY1MDg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODgyMjA5RTM3MzU2RTA1MTJGQkU0RTgxQjAwRTRGMjQ4MTg2 NTA4Ny5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QwNzQ3MWEzLWVlNTMtNDk5Yy05 ZjJkLWNmMTZiMWU0YTM1My8wLzMyMzQzMDMxM2EzMTMwNjMzMDNhNjMzMDMwMzAz YTNhMmYzMzM0MmQzMzM0MjAzZDNlMjAzMTMzMzEzNzMxMzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgYk ARDAwDANBgkqhkiG9w0BAQsFAAOCAQEACh/KB8agKlGe8rfxJV9IFAY/TSPocTI7 Sm3LPB/tTBb5ZldJoONb4HEhtWVl/ymwVkx/6tRGZXhHyAecZrMdDGJvkNSpVFJW +WrQw7vWSkZzk8orrknsx+ajm1+Yy4SPJdx1GUP+z0m3zeG3B1RFseaYgAuSsaS4 x1ez0C4fPIAHhdWTz3fzhm4MlYeIdcdRe784lrKgYj6uJmOUisP6UvVSERPonSSZ /6i1+m8K7u4yKQn3bon9JabAP/O+KLOuRz/kYmP60Wq7UTzD8Cb/ewjCmbe5dQHc BvBnWVM4RDIyntneNbCMgZ/Y30nzmWQ0hjqNJJLmKqRdcZ/3Md7vGQ== -----END CERTIFICATE-----Generated at Sat Jun 7 13:44:33 2025 by rpki-client