$ rpki-client -vvf repo-rpki.idnic.net/repo/3fe35faa-ed2b-4271-b48c-4ea21c309352/0/323430323a636438303a3a2f33322d3438203d3e203633383835.roa File: 323430323a636438303a3a2f33322d3438203d3e203633383835.roa (raw, json) Hash identifier: MDl2DN2os7/fU39oaMG8yA+MKomCGHMu/9vzlZ9xU2U= Subject key identifier: AA:AA:E2:C2:7E:C1:31:C1:BA:78:B7:1D:95:22:45:20:A0:E5:AC:C9 Certificate issuer: /CN=E420F134FA1A6BA70588424BD4E862EE6C50C188 Certificate serial: 0350A0C05C6A515B948086328BEA72AE876C12DF Authority key identifier: E4:20:F1:34:FA:1A:6B:A7:05:88:42:4B:D4:E8:62:EE:6C:50:C1:88 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E420F134FA1A6BA70588424BD4E862EE6C50C188.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3fe35faa-ed2b-4271-b48c-4ea21c309352/0/323430323a636438303a3a2f33322d3438203d3e203633383835.roa Signing time: Thu 26 Jun 2025 07:51:55 +0000 ROA not before: Thu 26 Jun 2025 07:46:55 +0000 ROA not after: Thu 25 Jun 2026 07:51:55 +0000 asID: 63885 IP address blocks: 2402:cd80::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3fe35faa-ed2b-4271-b48c-4ea21c309352/0/E420F134FA1A6BA70588424BD4E862EE6C50C188.crl rsync://repo-rpki.idnic.net/repo/3fe35faa-ed2b-4271-b48c-4ea21c309352/0/E420F134FA1A6BA70588424BD4E862EE6C50C188.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E420F134FA1A6BA70588424BD4E862EE6C50C188.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 23:23:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:50:a0:c0:5c:6a:51:5b:94:80:86:32:8b:ea:72:ae:87:6c:12:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E420F134FA1A6BA70588424BD4E862EE6C50C188 Validity Not Before: Jun 26 07:46:55 2025 GMT Not After : Jun 25 07:51:55 2026 GMT Subject: CN=AAAAE2C27EC131C1BA78B71D95224520A0E5ACC9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:23:fd:7c:df:06:de:f4:1a:09:08:c1:47:e2: 57:d3:52:88:a5:8b:23:05:b4:ba:e8:5a:db:a2:f9: 55:c7:c7:4b:7a:6c:60:10:13:ea:ec:78:61:26:80: 9b:99:ba:a8:5f:43:02:ba:17:2e:18:76:d0:21:15: 90:d0:a9:1b:9c:27:ea:7b:e5:6c:d7:d0:76:52:47: 5a:fb:65:2b:a8:94:3e:ec:21:e4:bb:93:6c:75:5d: 69:cc:d2:12:ea:af:0b:2e:f0:89:db:6c:10:36:3b: 22:6e:97:ef:5f:5f:47:03:f6:69:cb:00:ee:88:83: b9:4e:2f:bc:9b:be:88:59:00:53:1c:c9:90:95:c8: b7:45:ba:23:e7:89:aa:74:e5:e3:84:fc:cf:3c:27: 79:95:45:67:e3:4f:3c:4c:8a:2c:a2:ef:e8:d0:51: 08:c4:bf:d4:89:f4:a7:bb:c9:39:98:fc:40:ec:e1: fa:58:6d:a2:be:df:c5:45:b7:33:b5:88:8a:99:dc: ef:bf:6b:74:24:89:de:e1:ee:92:6d:ff:bb:44:92: fd:05:63:3e:ae:4f:e3:07:48:5d:5f:4e:0b:86:59: 90:39:6b:5f:f6:1f:f5:9f:a5:43:b7:2d:c3:4f:e1: 5a:1e:7f:66:06:d2:47:8a:10:b1:bb:fc:e8:71:79: 24:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:AA:E2:C2:7E:C1:31:C1:BA:78:B7:1D:95:22:45:20:A0:E5:AC:C9 X509v3 Authority Key Identifier: keyid:E4:20:F1:34:FA:1A:6B:A7:05:88:42:4B:D4:E8:62:EE:6C:50:C1:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3fe35faa-ed2b-4271-b48c-4ea21c309352/0/E420F134FA1A6BA70588424BD4E862EE6C50C188.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E420F134FA1A6BA70588424BD4E862EE6C50C188.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3fe35faa-ed2b-4271-b48c-4ea21c309352/0/323430323a636438303a3a2f33322d3438203d3e203633383835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:cd80::/32 Signature Algorithm: sha256WithRSAEncryption 6d:9d:cc:72:5f:65:80:93:5a:c4:ba:b0:5c:41:d5:4a:93:32: 3a:00:4f:f2:77:77:15:1b:ca:ab:8b:e6:7d:31:df:d9:b1:b9: 92:f7:a8:ac:3f:eb:33:3f:48:77:58:42:f5:21:35:4e:86:e9: 55:5a:9d:1b:e4:6c:e6:a5:ea:d5:21:22:07:81:7b:ea:3f:30: e0:88:74:0f:db:11:f8:fa:91:54:17:17:e9:c0:13:65:03:e7: 36:18:f0:18:76:fd:4a:36:e1:cf:e9:be:b3:37:d7:5e:64:82: c6:b3:14:f4:54:fb:1c:f7:9d:a3:43:fe:25:3f:e7:24:19:5e: 37:15:92:f4:7a:c2:ff:f1:87:b9:ce:2a:55:65:8a:72:d9:dd: fa:95:50:fa:4b:c0:b9:d0:89:2d:1c:20:f8:bb:ca:de:54:61: e4:22:d6:72:c2:c7:44:cc:1e:85:22:be:4a:47:65:77:80:ad: 94:01:cd:62:5f:68:f1:50:7e:e5:1b:e4:72:23:5e:bd:ac:21: 5f:25:22:3d:65:ab:11:f4:a0:06:77:24:8c:de:bb:64:69:15: 79:6c:da:55:40:1f:96:3a:13:ab:bf:26:5d:4c:37:01:15:2d: 55:f7:f1:fb:3d:78:6a:9b:94:7b:b7:d4:1a:9d:4e:31:f2:92: bc:df:5b:65 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUA1CgwFxqUVuUgIYyi+pyrodsEt8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTQyMEYxMzRGQTFBNkJBNzA1ODg0MjRCRDRFODYyRUU2 QzUwQzE4ODAeFw0yNTA2MjYwNzQ2NTVaFw0yNjA2MjUwNzUxNTVaMDMxMTAvBgNV BAMTKEFBQUFFMkMyN0VDMTMxQzFCQTc4QjcxRDk1MjI0NTIwQTBFNUFDQzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnI/183wbe9BoJCMFH4lfTUoil iyMFtLroWtui+VXHx0t6bGAQE+rseGEmgJuZuqhfQwK6Fy4YdtAhFZDQqRucJ+p7 5WzX0HZSR1r7ZSuolD7sIeS7k2x1XWnM0hLqrwsu8InbbBA2OyJul+9fX0cD9mnL AO6Ig7lOL7ybvohZAFMcyZCVyLdFuiPniap05eOE/M88J3mVRWfjTzxMiiyi7+jQ UQjEv9SJ9Ke7yTmY/EDs4fpYbaK+38VFtzO1iIqZ3O+/a3Qkid7h7pJt/7tEkv0F Yz6uT+MHSF1fTguGWZA5a1/2H/WfpUO3LcNP4Voef2YG0keKELG7/OhxeSTNAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUqqriwn7BMcG6eLcdlSJFIKDlrMkwHwYDVR0j BBgwFoAU5CDxNPoaa6cFiEJL1Ohi7mxQwYgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZmUzNWZhYS1lZDJiLTQyNzEtYjQ4Yy00ZWEyMWMzMDkzNTIvMC9FNDIwRjEzNEZB MUE2QkE3MDU4ODQyNEJENEU4NjJFRTZDNTBDMTg4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTQyMEYxMzRGQTFBNkJBNzA1ODg0MjRCRDRFODYyRUU2QzUw QzE4OC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNmZTM1ZmFhLWVkMmItNDI3MS1i NDhjLTRlYTIxYzMwOTM1Mi8wLzMyMzQzMDMyM2E2MzY0MzgzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDM2MzMzODM4MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAs2AMA0GCSqGSIb3 DQEBCwUAA4IBAQBtncxyX2WAk1rEurBcQdVKkzI6AE/yd3cVG8qri+Z9Md/ZsbmS 96isP+szP0h3WEL1ITVOhulVWp0b5GzmperVISIHgXvqPzDgiHQP2xH4+pFUFxfp wBNlA+c2GPAYdv1KNuHP6b6zN9deZILGsxT0VPsc952jQ/4lP+ckGV43FZL0esL/ 8Ye5zipVZYpy2d36lVD6S8C50IktHCD4u8reVGHkItZywsdEzB6FIr5KR2V3gK2U Ac1iX2jxUH7lG+RyI169rCFfJSI9ZasR9KAGdySM3rtkaRV5bNpVQB+WOhOrvyZd TDcBFS1V9/H7PXhqm5R7t9QanU4x8pK831tl -----END CERTIFICATE-----Generated at Tue Jul 1 01:52:24 2025 by rpki-client