$ rpki-client -vvf repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a3630303a3a2f34382d3438203d3e20313336303838.roa File: 323430303a643934303a3630303a3a2f34382d3438203d3e20313336303838.roa (raw, json) Hash identifier: oPagBimqhudPYpPJNbFjZ2B6yoqYzPSrxyN2XBm/wsE= Subject key identifier: 84:9A:DC:4B:28:39:FC:4B:C6:02:36:5E:F4:68:A2:9D:77:6F:46:11 Certificate issuer: /CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Certificate serial: 14C0F6619AEA66C458A58961C5CE59DC2E28E9BE Authority key identifier: D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a3630303a3a2f34382d3438203d3e20313336303838.roa Signing time: Mon 02 Jun 2025 02:03:23 +0000 ROA not before: Mon 02 Jun 2025 01:58:23 +0000 ROA not after: Mon 01 Jun 2026 02:03:23 +0000 asID: 136088 IP address blocks: 2400:d940:600::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 04:26:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:c0:f6:61:9a:ea:66:c4:58:a5:89:61:c5:ce:59:dc:2e:28:e9:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Validity Not Before: Jun 2 01:58:23 2025 GMT Not After : Jun 1 02:03:23 2026 GMT Subject: CN=849ADC4B2839FC4BC602365EF468A29D776F4611 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:7e:00:12:f4:99:4a:43:b7:ec:94:96:91:5a: 6d:98:e0:e7:28:ef:ee:96:32:f6:f8:5a:8c:ad:c6: 63:63:de:22:f7:df:bb:04:3d:e0:0a:3e:3a:58:1b: aa:78:d0:b3:88:45:ce:f2:06:84:d2:6e:f0:96:05: 14:7d:09:5b:64:01:61:4f:b9:3a:c5:1b:61:bc:b6: 88:61:05:e8:8c:f4:73:ab:f2:ff:3c:a9:71:57:d7: c4:f4:8c:2e:1e:2b:0e:8a:84:71:87:90:3a:3c:eb: f9:6d:e3:36:4b:cb:e6:ac:26:78:39:e2:0c:f4:85: d8:d0:ec:35:a4:03:1e:63:88:4e:1e:10:61:2e:f7: a0:6f:ba:47:f3:36:1d:af:de:2a:3f:7a:8d:3b:d4: 90:f7:ce:8e:20:c0:c5:2d:f5:4a:6e:04:4b:e9:ad: 8f:2d:82:8a:57:30:e3:c1:87:86:6c:0d:07:ca:b5: 16:73:01:5c:ed:a9:39:18:58:44:b5:70:53:25:6c: 27:25:9d:eb:6d:d0:57:3b:d5:4b:77:e1:e8:c4:e6: ee:9a:2f:8d:87:33:da:80:c0:7f:cd:cb:c6:d5:b4: 6c:f7:b8:45:80:b1:84:d2:c9:fd:58:b8:26:05:5d: 96:4a:da:aa:aa:83:92:06:1a:e6:db:12:3a:b9:eb: 90:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:9A:DC:4B:28:39:FC:4B:C6:02:36:5E:F4:68:A2:9D:77:6F:46:11 X509v3 Authority Key Identifier: keyid:D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a3630303a3a2f34382d3438203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d940:600::/48 Signature Algorithm: sha256WithRSAEncryption c0:ea:e2:b0:7e:5e:d9:f8:58:9e:f4:80:da:fd:62:c8:5a:3e: 77:1b:4f:23:e3:4d:bf:53:d6:6b:65:b0:a7:b3:a3:78:63:0e: 3a:11:6e:ca:fb:f9:61:a5:ad:de:5b:ef:05:1e:a2:03:8e:84: fb:2e:97:44:40:ff:f2:25:d1:c0:39:b7:52:03:f8:58:15:ac: 2d:ad:4a:27:3c:97:de:64:23:ec:3b:7f:84:cf:9a:f9:3f:db: 6e:8d:a7:2d:cd:19:ed:76:8b:7a:a2:e9:be:f7:1e:50:53:a0: 88:ff:63:9e:39:2a:19:73:ff:33:c1:70:17:fd:c7:80:58:59: 2d:52:12:aa:73:71:55:0f:52:84:36:a5:35:20:52:5f:9f:20: 58:45:6e:de:16:d2:2e:30:47:14:44:49:f0:23:1b:47:f4:c3: f8:c8:12:21:cb:54:db:3a:2b:0e:f9:71:b6:38:8f:d2:b1:a1: 19:ef:3a:34:b6:9d:27:1c:cf:6b:9b:68:f7:8c:aa:c8:11:98: 44:24:90:4d:09:b2:f6:3f:58:57:5f:ea:cd:ab:d8:7c:c2:d9: 6f:15:d3:bd:ae:f8:fd:20:ce:07:1c:30:cf:af:c6:08:94:34: 83:08:ba:dc:14:80:b7:bf:7e:6c:d6:63:8d:f4:f9:42:8c:b6: 42:6e:3d:a6 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUFMD2YZrqZsRYpYlhxc5Z3C4o6b4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhE MEJFOTIzRjAeFw0yNTA2MDIwMTU4MjNaFw0yNjA2MDEwMjAzMjNaMDMxMTAvBgNV BAMTKDg0OUFEQzRCMjgzOUZDNEJDNjAyMzY1RUY0NjhBMjlENzc2RjQ2MTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0fgAS9JlKQ7fslJaRWm2Y4Oco 7+6WMvb4WoytxmNj3iL337sEPeAKPjpYG6p40LOIRc7yBoTSbvCWBRR9CVtkAWFP uTrFG2G8tohhBeiM9HOr8v88qXFX18T0jC4eKw6KhHGHkDo86/lt4zZLy+asJng5 4gz0hdjQ7DWkAx5jiE4eEGEu96BvukfzNh2v3io/eo071JD3zo4gwMUt9UpuBEvp rY8tgopXMOPBh4ZsDQfKtRZzAVztqTkYWES1cFMlbCclnett0Fc71Ut34ejE5u6a L42HM9qAwH/Ny8bVtGz3uEWAsYTSyf1YuCYFXZZK2qqqg5IGGubbEjq565CjAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUhJrcSyg5/EvGAjZe9GiinXdvRhEwHwYDVR0j BBgwFoAU0/th10akR2fUUY1un9H72NC+kj8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2Y0ZWMxYy05NTM1LTRjYmYtOWM3YS1mZDMyYzgzMGVkYmEvMC9EM0ZCNjFENzQ2 QTQ0NzY3RDQ1MThENkU5RkQxRkJEOEQwQkU5MjNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhEMEJF OTIzRi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczZjRlYzFjLTk1MzUtNGNiZi05 YzdhLWZkMzJjODMwZWRiYS8wLzMyMzQzMDMwM2E2NDM5MzQzMDNhMzYzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM2MzAzODM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJADZ QAYAMA0GCSqGSIb3DQEBCwUAA4IBAQDA6uKwfl7Z+Fie9IDa/WLIWj53G08j402/ U9ZrZbCns6N4Yw46EW7K+/lhpa3eW+8FHqIDjoT7LpdEQP/yJdHAObdSA/hYFawt rUonPJfeZCPsO3+Ez5r5P9tujactzRntdot6oum+9x5QU6CI/2OeOSoZc/8zwXAX /ceAWFktUhKqc3FVD1KENqU1IFJfnyBYRW7eFtIuMEcUREnwIxtH9MP4yBIhy1Tb OisO+XG2OI/SsaEZ7zo0tp0nHM9rm2j3jKrIEZhEJJBNCbL2P1hXX+rNq9h8wtlv FdO9rvj9IM4HHDDPr8YIlDSDCLrcFIC3v35s1mON9PlCjLZCbj2m -----END CERTIFICATE-----Generated at Mon Jun 30 18:12:09 2025 by rpki-client