$ rpki-client -vvf repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a3130303a3a2f34382d3438203d3e20313336303838.roa File: 323430303a643934303a3130303a3a2f34382d3438203d3e20313336303838.roa (raw, json) Hash identifier: buNXmMusUG2kwKSmAQu3isavGdpbNW0SL5z8JYEY7qc= Subject key identifier: 67:79:CA:FF:0F:3F:D1:19:25:BA:6C:7B:0D:2D:4E:81:2E:D2:F9:C0 Certificate issuer: /CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Certificate serial: 3D7ACC5282C4963F24A9EAC4F9798A298984F3A7 Authority key identifier: D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a3130303a3a2f34382d3438203d3e20313336303838.roa Signing time: Mon 02 Jun 2025 02:03:21 +0000 ROA not before: Mon 02 Jun 2025 01:58:21 +0000 ROA not after: Mon 01 Jun 2026 02:03:21 +0000 asID: 136088 IP address blocks: 2400:d940:100::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 04:26:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:7a:cc:52:82:c4:96:3f:24:a9:ea:c4:f9:79:8a:29:89:84:f3:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Validity Not Before: Jun 2 01:58:21 2025 GMT Not After : Jun 1 02:03:21 2026 GMT Subject: CN=6779CAFF0F3FD11925BA6C7B0D2D4E812ED2F9C0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:98:f6:61:49:b5:3a:42:33:4b:b0:a6:9e:7c: 92:b1:0a:b2:45:d3:60:db:e9:13:a7:77:b2:b2:24: cd:a5:b3:e2:0c:28:ae:d9:79:52:99:9a:63:51:56: 7f:0a:aa:6a:1e:f9:99:e2:f1:47:69:8a:b3:c1:b9: 09:9e:ab:ff:c4:11:2d:79:d4:dd:e6:0b:bb:8c:e3: d8:3b:28:53:28:38:ea:f7:7d:cb:ae:d2:ce:97:00: 5c:ce:c3:41:0f:3c:79:e8:29:74:2d:c0:12:c4:db: 2e:b5:d2:06:35:2c:dc:cf:9c:eb:56:fb:79:ac:e8: fe:a0:a5:a2:2f:32:bf:6a:ec:ff:7f:59:93:a4:15: c9:c2:23:da:9b:77:8e:a7:69:24:05:52:fa:0e:11: 33:eb:bf:27:e7:3e:83:7b:71:07:46:b4:1f:e4:8c: 0d:83:a6:c6:af:0c:eb:3a:e3:bd:63:14:65:fc:d3: 43:21:21:8a:56:4f:bc:d8:b7:fd:63:a6:e9:7d:e9: 36:fe:77:f0:94:3e:cd:00:da:1e:b8:ac:ee:8c:f1: c2:0d:a6:44:a8:54:61:e7:64:5a:57:83:05:98:6a: 43:62:6d:4a:a1:1a:fc:91:02:fd:53:b4:f5:58:30: 77:87:27:13:5f:f6:74:72:5b:b3:57:60:c5:ae:16: 1b:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:79:CA:FF:0F:3F:D1:19:25:BA:6C:7B:0D:2D:4E:81:2E:D2:F9:C0 X509v3 Authority Key Identifier: keyid:D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a3130303a3a2f34382d3438203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d940:100::/48 Signature Algorithm: sha256WithRSAEncryption 12:ad:44:c3:81:1a:d7:f0:ee:be:32:15:2c:80:47:e7:4f:95: f8:d2:74:15:ba:a1:92:65:d9:66:96:e2:b6:08:0d:b4:da:fb: e3:f3:df:db:8d:95:60:4f:ba:0c:f6:82:9e:ef:71:4f:59:d8: 3d:30:86:cf:04:55:e0:c8:80:d6:84:be:5a:e7:8d:80:2d:45: ee:a3:67:af:ae:36:7f:c7:30:5f:c0:ba:50:55:0a:19:8b:ff: 53:66:f8:f8:48:d5:65:82:1d:60:a5:9a:37:37:81:da:8a:ef: 55:64:a9:19:00:f8:77:55:99:dd:b4:88:2b:72:41:55:c2:e9: 5b:66:f2:c1:ea:1e:53:56:dc:f8:10:19:9c:6c:1d:42:81:5e: 96:d6:7d:5b:be:fc:a7:5c:96:83:13:9f:31:90:91:d0:4e:44: a7:f9:31:76:72:2b:e3:36:6d:73:ac:25:3f:f8:d3:f2:3c:96: 48:1e:9d:b1:58:62:39:fc:a9:46:97:e5:3e:90:fd:21:ac:22: 71:b9:88:c7:7d:df:89:56:21:47:55:b4:96:b1:bb:dc:a8:07: c8:24:d1:42:27:38:a3:2d:72:36:52:42:02:7a:2f:77:ed:9b: 1c:44:74:65:a7:e9:9f:d7:f4:70:c5:59:9d:9b:a5:d6:dc:ee: a7:59:60:f6 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUPXrMUoLElj8kqerE+XmKKYmE86cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhE MEJFOTIzRjAeFw0yNTA2MDIwMTU4MjFaFw0yNjA2MDEwMjAzMjFaMDMxMTAvBgNV BAMTKDY3NzlDQUZGMEYzRkQxMTkyNUJBNkM3QjBEMkQ0RTgxMkVEMkY5QzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBmPZhSbU6QjNLsKaefJKxCrJF 02Db6ROnd7KyJM2ls+IMKK7ZeVKZmmNRVn8Kqmoe+Zni8UdpirPBuQmeq//EES15 1N3mC7uM49g7KFMoOOr3fcuu0s6XAFzOw0EPPHnoKXQtwBLE2y610gY1LNzPnOtW +3ms6P6gpaIvMr9q7P9/WZOkFcnCI9qbd46naSQFUvoOETPrvyfnPoN7cQdGtB/k jA2DpsavDOs6471jFGX800MhIYpWT7zYt/1jpul96Tb+d/CUPs0A2h64rO6M8cIN pkSoVGHnZFpXgwWYakNibUqhGvyRAv1TtPVYMHeHJxNf9nRyW7NXYMWuFhvlAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUZ3nK/w8/0Rklumx7DS1OgS7S+cAwHwYDVR0j BBgwFoAU0/th10akR2fUUY1un9H72NC+kj8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2Y0ZWMxYy05NTM1LTRjYmYtOWM3YS1mZDMyYzgzMGVkYmEvMC9EM0ZCNjFENzQ2 QTQ0NzY3RDQ1MThENkU5RkQxRkJEOEQwQkU5MjNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhEMEJF OTIzRi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczZjRlYzFjLTk1MzUtNGNiZi05 YzdhLWZkMzJjODMwZWRiYS8wLzMyMzQzMDMwM2E2NDM5MzQzMDNhMzEzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM2MzAzODM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJADZ QAEAMA0GCSqGSIb3DQEBCwUAA4IBAQASrUTDgRrX8O6+MhUsgEfnT5X40nQVuqGS ZdlmluK2CA202vvj89/bjZVgT7oM9oKe73FPWdg9MIbPBFXgyIDWhL5a542ALUXu o2evrjZ/xzBfwLpQVQoZi/9TZvj4SNVlgh1gpZo3N4Haiu9VZKkZAPh3VZndtIgr ckFVwulbZvLB6h5TVtz4EBmcbB1CgV6W1n1bvvynXJaDE58xkJHQTkSn+TF2civj Nm1zrCU/+NPyPJZIHp2xWGI5/KlGl+U+kP0hrCJxuYjHfd+JViFHVbSWsbvcqAfI JNFCJzijLXI2UkICei937ZscRHRlp+mf1/RwxVmdm6XW3O6nWWD2 -----END CERTIFICATE-----Generated at Mon Jun 30 18:33:48 2025 by rpki-client