$ rpki-client -vvf repo-rpki.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/323430373a613563303a313a3a2f34382d3438203d3e20313432333339.roa File: 323430373a613563303a313a3a2f34382d3438203d3e20313432333339.roa (raw, json) Hash identifier: uev3miSgW3ZPH8225ZsPIsE3cXJFEhdn0RKfMczyL+Q= Subject key identifier: 32:A4:80:E2:96:9B:CE:78:4A:48:1E:0C:29:19:81:33:F9:14:A5:2F Certificate issuer: /CN=C24FD85D1F493383773D253EBB38BED908305E45 Certificate serial: 2E20B90D4530A0D56EBC33CB360FD65C395120BB Authority key identifier: C2:4F:D8:5D:1F:49:33:83:77:3D:25:3E:BB:38:BE:D9:08:30:5E:45 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C24FD85D1F493383773D253EBB38BED908305E45.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/323430373a613563303a313a3a2f34382d3438203d3e20313432333339.roa Signing time: Thu 03 Jul 2025 03:00:00 +0000 ROA not before: Thu 03 Jul 2025 02:55:00 +0000 ROA not after: Thu 02 Jul 2026 03:00:00 +0000 asID: 142339 IP address blocks: 2407:a5c0:1::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/C24FD85D1F493383773D253EBB38BED908305E45.crl rsync://repo-rpki.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/C24FD85D1F493383773D253EBB38BED908305E45.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C24FD85D1F493383773D253EBB38BED908305E45.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 19:52:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:20:b9:0d:45:30:a0:d5:6e:bc:33:cb:36:0f:d6:5c:39:51:20:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C24FD85D1F493383773D253EBB38BED908305E45 Validity Not Before: Jul 3 02:55:00 2025 GMT Not After : Jul 2 03:00:00 2026 GMT Subject: CN=32A480E2969BCE784A481E0C29198133F914A52F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:18:b7:55:49:df:12:01:36:ae:6c:f1:05:1b: ab:2c:d9:b4:ca:9a:c8:f1:93:4a:48:32:1c:3a:c2: cf:fe:9c:d6:f5:f7:74:df:2f:d8:72:8e:c6:42:83: 6c:ff:af:4c:08:c8:7e:12:76:80:7f:3c:5e:9b:42: c4:1b:4a:30:af:a3:67:7d:12:30:84:3e:48:74:b0: 29:d0:f8:9b:9a:be:b8:38:81:31:d8:2b:a6:85:5b: 4e:72:01:86:63:bd:c4:d2:36:f1:2c:cd:da:9e:d5: 31:5a:90:74:f2:55:93:d4:b5:62:8b:11:fb:80:83: 07:4c:53:52:8c:6d:09:6f:6d:af:bd:ce:0c:ec:97: 55:b1:a0:2c:f8:1f:a9:2f:93:b9:1f:7a:b9:82:93: 17:9e:db:27:80:98:a4:2f:e8:81:cc:bb:28:78:1c: 7e:2e:53:3a:4e:70:7b:40:3e:ec:c6:71:c1:2f:5d: 9e:2b:b7:30:39:ed:be:e9:23:a7:db:90:91:a5:10: 97:80:3e:0b:f9:2d:64:f3:7c:28:dd:79:f1:1a:54: d9:3b:ec:79:26:87:b7:19:68:01:ec:63:b5:ca:fc: 73:fc:75:fa:89:43:aa:a2:3d:91:bd:f3:18:f2:f6: c6:35:93:f1:47:ea:ac:cd:9f:b8:24:3b:84:bc:9d: 7b:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:A4:80:E2:96:9B:CE:78:4A:48:1E:0C:29:19:81:33:F9:14:A5:2F X509v3 Authority Key Identifier: keyid:C2:4F:D8:5D:1F:49:33:83:77:3D:25:3E:BB:38:BE:D9:08:30:5E:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/C24FD85D1F493383773D253EBB38BED908305E45.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C24FD85D1F493383773D253EBB38BED908305E45.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/323430373a613563303a313a3a2f34382d3438203d3e20313432333339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:a5c0:1::/48 Signature Algorithm: sha256WithRSAEncryption 8d:c4:95:19:ec:4a:a7:f6:80:3a:04:94:e2:78:d3:de:c9:81: ce:fa:40:90:4a:ab:d7:4a:5f:07:b6:c5:71:12:b0:67:7e:5a: b5:6e:68:17:fe:58:28:93:85:ec:44:92:59:a2:6a:3e:27:06: b7:3b:c1:76:d9:5e:25:31:00:53:33:d9:27:80:0f:9f:d8:b4: ae:83:7a:c3:e3:76:76:9d:d5:88:d4:c2:01:7a:94:5d:3f:91: 44:3e:09:3b:5e:db:d5:0a:c9:1f:f2:86:a1:31:a9:89:8c:13: b8:ad:4d:dd:96:61:6e:40:5d:c6:34:47:12:c6:cd:54:3d:78: 05:5c:eb:3f:30:98:69:f7:9f:6d:7d:f7:4f:a9:cc:d0:12:3d: d8:ab:17:2c:9a:cc:a1:97:c1:88:7e:31:3f:9f:9d:e2:41:d7: 4c:84:77:c4:bf:56:d6:e4:2e:22:ad:95:80:45:9c:bd:39:a9: 83:f7:1d:5d:b0:f8:53:c7:9c:03:36:f8:8b:aa:06:0b:4d:2a: e0:c8:fb:0d:b6:84:b9:34:ee:85:cd:d8:63:38:cc:58:4a:65: a6:84:91:e5:fc:3c:bd:d2:45:7f:aa:47:2d:c1:38:94:d4:57: 17:ba:39:f2:23:ca:ae:1f:95:6a:13:f7:00:26:e8:a8:55:c0: 2d:6d:c6:94 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIULiC5DUUwoNVuvDPLNg/WXDlRILswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzI0RkQ4NUQxRjQ5MzM4Mzc3M0QyNTNFQkIzOEJFRDkw ODMwNUU0NTAeFw0yNTA3MDMwMjU1MDBaFw0yNjA3MDIwMzAwMDBaMDMxMTAvBgNV BAMTKDMyQTQ4MEUyOTY5QkNFNzg0QTQ4MUUwQzI5MTk4MTMzRjkxNEE1MkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhGLdVSd8SATaubPEFG6ss2bTK msjxk0pIMhw6ws/+nNb193TfL9hyjsZCg2z/r0wIyH4SdoB/PF6bQsQbSjCvo2d9 EjCEPkh0sCnQ+Juavrg4gTHYK6aFW05yAYZjvcTSNvEszdqe1TFakHTyVZPUtWKL EfuAgwdMU1KMbQlvba+9zgzsl1WxoCz4H6kvk7kfermCkxee2yeAmKQv6IHMuyh4 HH4uUzpOcHtAPuzGccEvXZ4rtzA57b7pI6fbkJGlEJeAPgv5LWTzfCjdefEaVNk7 7Hkmh7cZaAHsY7XK/HP8dfqJQ6qiPZG98xjy9sY1k/FH6qzNn7gkO4S8nXuVAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUMqSA4pabznhKSB4MKRmBM/kUpS8wHwYDVR0j BBgwFoAUwk/YXR9JM4N3PSU+uzi+2QgwXkUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MTkyMDIxZS0zOTA0LTQxMTUtYWY1ZS0zZWRiNzEzYmFhMTQvMC9DMjRGRDg1RDFG NDkzMzgzNzczRDI1M0VCQjM4QkVEOTA4MzA1RTQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzI0RkQ4NUQxRjQ5MzM4Mzc3M0QyNTNFQkIzOEJFRDkwODMw NUU0NS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzExOTIwMjFlLTM5MDQtNDExNS1h ZjVlLTNlZGI3MTNiYWExNC8wLzMyMzQzMDM3M2E2MTM1NjMzMDNhMzEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzIzMzMzMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkB6XAAAEw DQYJKoZIhvcNAQELBQADggEBAI3ElRnsSqf2gDoElOJ4097Jgc76QJBKq9dKXwe2 xXESsGd+WrVuaBf+WCiThexEklmiaj4nBrc7wXbZXiUxAFMz2SeAD5/YtK6DesPj dnad1YjUwgF6lF0/kUQ+CTte29UKyR/yhqExqYmME7itTd2WYW5AXcY0RxLGzVQ9 eAVc6z8wmGn3n21990+pzNASPdirFyyazKGXwYh+MT+fneJB10yEd8S/VtbkLiKt lYBFnL05qYP3HV2w+FPHnAM2+IuqBgtNKuDI+w22hLk07oXN2GM4zFhKZaaEkeX8 PL3SRX+qRy3BOJTUVxe6OfIjyq4flWoT9wAm6KhVwC1txpQ= -----END CERTIFICATE-----Generated at Sat Aug 23 21:17:50 2025 by rpki-client