$ rpki-client -vvf repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a613030303a3a2f33352d3438203d3e20313430343233.roa File: 323430363a323063303a613030303a3a2f33352d3438203d3e20313430343233.roa (raw, json) Hash identifier: 8VcmE61BkL8v7Co6gS6UpOWFAKU6mznnUK/+e3v6JTg= Subject key identifier: 5E:34:3E:2F:67:16:96:5A:78:FC:42:12:DA:2A:CB:12:8E:3F:BD:11 Certificate issuer: /CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Certificate serial: 71816922EC72F5BF9BBF48B6C7A136F58CADB017 Authority key identifier: 7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a613030303a3a2f33352d3438203d3e20313430343233.roa Signing time: Sun 03 Aug 2025 08:00:00 +0000 ROA not before: Sun 03 Aug 2025 07:55:00 +0000 ROA not after: Sun 02 Aug 2026 08:00:00 +0000 asID: 140423 IP address blocks: 2406:20c0:a000::/35 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 10:26:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:81:69:22:ec:72:f5:bf:9b:bf:48:b6:c7:a1:36:f5:8c:ad:b0:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Validity Not Before: Aug 3 07:55:00 2025 GMT Not After : Aug 2 08:00:00 2026 GMT Subject: CN=5E343E2F6716965A78FC4212DA2ACB128E3FBD11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:4e:c0:39:2d:32:5c:ff:62:2d:14:fc:2a:9c: 0e:64:ff:01:ab:1a:d9:11:fe:b7:61:6b:0a:ae:a0: d2:5c:33:3a:d4:92:9b:c9:94:9f:72:97:69:59:64: 9f:17:72:a6:5d:d8:77:d0:8a:8b:ff:74:33:f8:18: e2:48:17:40:d2:09:bc:bd:0a:2b:33:8c:62:5e:af: f8:74:fb:58:b3:b0:58:22:1f:5e:3a:04:d5:97:3a: 68:3d:7e:d9:e4:cb:fc:bf:50:81:16:d2:08:45:a0: 0b:f1:51:ec:33:04:4f:a7:14:64:c3:bb:c4:fd:07: 42:0a:00:06:29:fe:01:dc:d6:af:65:e8:63:2d:95: 4c:f7:9c:9c:fd:99:e6:0b:94:b1:cf:b0:fe:22:34: b5:01:cf:ff:8f:87:d8:8d:27:12:d9:de:f6:e5:96: 74:92:25:a3:b1:f8:3c:51:bd:07:9c:e2:73:98:1b: d4:4f:a2:d3:7a:2e:2b:8e:dc:d3:5d:1c:04:f1:ec: 9a:d5:0a:70:fa:82:cd:04:35:36:b4:a4:de:f7:87: e9:40:3f:22:4e:54:37:27:10:01:e7:b5:8a:11:3c: 76:ac:41:a7:06:70:de:f0:5f:d6:77:5b:b6:a7:f9: 60:06:9f:e1:3b:92:1f:af:84:1e:8d:08:e5:07:d0: 0b:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:34:3E:2F:67:16:96:5A:78:FC:42:12:DA:2A:CB:12:8E:3F:BD:11 X509v3 Authority Key Identifier: keyid:7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a613030303a3a2f33352d3438203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:20c0:a000::/35 Signature Algorithm: sha256WithRSAEncryption 34:15:d0:c5:a4:3f:72:32:77:07:11:77:59:95:84:e7:59:70: b4:a3:2a:ea:21:f1:54:7f:94:06:58:b7:50:38:be:32:68:83: 30:4d:0e:ff:d4:9f:fb:51:d4:a5:f9:95:59:56:fa:59:99:61: 49:15:70:25:10:f9:f9:cf:e2:0f:4e:da:19:e6:e2:3c:88:de: 19:6d:52:33:82:24:2f:c8:76:c4:ba:c4:0a:5d:33:d3:f9:9e: 91:ef:ff:03:74:85:42:16:75:71:d3:ef:92:54:f4:cd:65:bd: 50:f6:90:ca:e3:e1:34:ac:99:4e:c1:b7:18:86:11:e6:47:08: d3:95:a9:06:92:33:81:cf:b3:a1:ec:b3:bb:de:35:17:92:2f: db:50:70:12:ab:80:97:dd:09:fa:40:76:a8:e6:c0:18:80:18: d0:37:79:51:d9:90:e9:f3:7c:32:c7:06:55:09:c2:1d:f9:bd: 6e:38:9b:c4:89:cf:7b:42:b8:d3:47:c4:b3:d8:fb:03:ab:f3: 8a:92:95:c9:6e:db:6e:e9:d0:d2:58:62:f4:5d:44:52:92:17: d2:55:c8:02:65:4b:b3:03:f8:5a:44:21:02:68:3d:03:3c:76: 97:f2:d9:dd:48:30:1c:c2:da:72:b3:1d:0c:36:8c:12:87:d8: a2:77:68:d4 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUcYFpIuxy9b+bv0i2x6E29YytsBcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODcz NTJDQjg3NDAeFw0yNTA4MDMwNzU1MDBaFw0yNjA4MDIwODAwMDBaMDMxMTAvBgNV BAMTKDVFMzQzRTJGNjcxNjk2NUE3OEZDNDIxMkRBMkFDQjEyOEUzRkJEMTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTTsA5LTJc/2ItFPwqnA5k/wGr GtkR/rdhawquoNJcMzrUkpvJlJ9yl2lZZJ8XcqZd2HfQiov/dDP4GOJIF0DSCby9 CiszjGJer/h0+1izsFgiH146BNWXOmg9ftnky/y/UIEW0ghFoAvxUewzBE+nFGTD u8T9B0IKAAYp/gHc1q9l6GMtlUz3nJz9meYLlLHPsP4iNLUBz/+Ph9iNJxLZ3vbl lnSSJaOx+DxRvQec4nOYG9RPotN6LiuO3NNdHATx7JrVCnD6gs0ENTa0pN73h+lA PyJOVDcnEAHntYoRPHasQacGcN7wX9Z3W7an+WAGn+E7kh+vhB6NCOUH0AvlAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUXjQ+L2cWllp4/EIS2irLEo4/vREwHwYDVR0j BBgwFoAUfP0POf4ukOqLH10y1HbjhzUsuHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OWEwMDM2OS02ODQwLTRhOTUtODliMS1hNDg1MThmOThkYzcvMC83Q0ZEMEYzOUZF MkU5MEVBOEIxRjVEMzJENDc2RTM4NzM1MkNCODc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODczNTJD Qjg3NC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04 OWIxLWE0ODUxOGY5OGRjNy8wLzMyMzQzMDM2M2EzMjMwNjMzMDNhNjEzMDMwMzAz YTNhMmYzMzM1MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMyMzMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgUk BiDAoDANBgkqhkiG9w0BAQsFAAOCAQEANBXQxaQ/cjJ3BxF3WZWE51lwtKMq6iHx VH+UBli3UDi+MmiDME0O/9Sf+1HUpfmVWVb6WZlhSRVwJRD5+c/iD07aGebiPIje GW1SM4IkL8h2xLrECl0z0/meke//A3SFQhZ1cdPvklT0zWW9UPaQyuPhNKyZTsG3 GIYR5kcI05WpBpIzgc+zoeyzu941F5Iv21BwEquAl90J+kB2qObAGIAY0Dd5UdmQ 6fN8MscGVQnCHfm9bjibxInPe0K400fEs9j7A6vzipKVyW7bbunQ0lhi9F1EUpIX 0lXIAmVLswP4WkQhAmg9Azx2l/LZ3UgwHMLacrMdDDaMEofYondo1A== -----END CERTIFICATE-----Generated at Sat Aug 23 15:53:00 2025 by rpki-client