$ rpki-client -vvf repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a3730303a3a2f34382d3438203d3e20313336303838.roa File: 323430303a643934303a3730303a3a2f34382d3438203d3e20313336303838.roa (raw, json) Hash identifier: jo1KBhyVAdW9OA6F09uw8oWD6mwExSlA3+C7KIHuN6Q= Subject key identifier: BD:F1:91:FD:4F:AF:49:26:BA:F4:8B:4A:9D:C2:6E:4C:2D:87:AF:E9 Certificate issuer: /CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Certificate serial: 0B0BF42D4B63A4B6ACD929DFE29DF11CB8646D8D Authority key identifier: D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a3730303a3a2f34382d3438203d3e20313336303838.roa Signing time: Mon 02 Jun 2025 02:03:22 +0000 ROA not before: Mon 02 Jun 2025 01:58:22 +0000 ROA not after: Mon 01 Jun 2026 02:03:22 +0000 asID: 136088 IP address blocks: 2400:d940:700::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 04:26:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:0b:f4:2d:4b:63:a4:b6:ac:d9:29:df:e2:9d:f1:1c:b8:64:6d:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Validity Not Before: Jun 2 01:58:22 2025 GMT Not After : Jun 1 02:03:22 2026 GMT Subject: CN=BDF191FD4FAF4926BAF48B4A9DC26E4C2D87AFE9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:06:d4:c6:9c:62:ae:a8:bb:7a:78:e6:d9:65: 5e:26:73:7a:2d:c5:d0:19:b1:5d:d9:c3:af:7e:ed: 63:b7:67:22:d5:b7:75:d8:a0:8b:f2:4b:44:0f:93: aa:9b:9a:19:2e:32:20:98:64:1e:af:a4:b1:86:c4: f7:1b:bc:73:7c:b4:85:ec:f5:51:c9:b3:61:2f:1a: f8:19:80:e3:a3:61:ef:39:c8:d0:c4:d7:4c:c6:13: 17:1e:30:0d:44:c1:34:1d:05:09:6f:c9:bc:66:f1: e2:be:2b:2f:f9:57:98:b0:c0:10:39:e4:77:37:ef: b9:19:07:e6:ba:04:a8:65:91:15:0d:5a:26:4c:7e: ee:9e:64:1f:65:d3:02:6b:2c:36:ed:e5:3f:e9:e1: a7:de:be:97:c0:f5:c6:34:d8:8f:9e:a3:76:45:98: 2c:07:98:90:e1:d6:35:d5:8e:c0:82:48:13:39:38: e7:13:fc:8f:d1:55:7d:53:b2:4a:4a:57:4d:f8:59: 94:ed:5e:78:79:b4:e5:9a:45:3b:32:8d:3a:32:17: c8:1d:9c:84:9b:5f:15:0a:d7:cb:4a:cd:6d:58:10: e9:c2:0c:19:51:fe:e0:01:e4:20:06:e7:e7:03:69: 9b:81:88:7e:be:49:e9:a8:ba:e4:93:62:bd:01:b3: bf:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:F1:91:FD:4F:AF:49:26:BA:F4:8B:4A:9D:C2:6E:4C:2D:87:AF:E9 X509v3 Authority Key Identifier: keyid:D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/323430303a643934303a3730303a3a2f34382d3438203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:d940:700::/48 Signature Algorithm: sha256WithRSAEncryption c2:2b:94:8e:2b:90:62:28:ea:a1:d7:57:0f:02:b1:7f:49:cd: da:a7:12:63:91:36:12:97:fe:8f:ed:a7:62:da:c4:9e:6c:ed: 89:84:d4:46:13:b4:84:3c:6d:b4:9b:ac:e5:16:72:4a:2e:cd: 98:7b:e4:44:f4:19:70:f8:5e:c4:30:a6:86:9e:93:31:df:61: 30:8e:28:c4:76:79:56:3b:b5:d4:fd:2d:0c:90:44:e6:e2:86: 34:92:8e:31:f8:a9:5d:58:9d:b7:5a:da:70:c8:70:13:44:ba: 58:90:74:e3:ef:1f:e7:0f:bb:ed:61:38:3e:e7:1d:4a:69:31: 94:bc:28:ae:58:c6:65:00:7f:81:62:ee:c1:f8:73:cc:fe:6c: ba:aa:e9:7e:cd:6d:68:1a:b6:ff:56:fd:7d:8d:d6:6e:75:1d: c0:55:3f:80:98:4c:09:27:f4:f6:55:fe:d1:05:2c:1c:ca:52: 4a:84:af:5e:fe:8b:0e:28:75:e3:df:72:93:aa:f3:28:5c:d2: 0b:92:20:96:e6:68:d5:a0:16:56:3e:ef:86:bf:97:52:ee:60: d7:8e:36:47:df:d7:a6:50:d3:51:6c:ca:dd:0b:a3:cb:5c:46: 2f:16:bc:c3:38:db:18:9f:ef:63:cd:90:40:8b:a6:b2:ab:9f: f8:f0:08:89 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUCwv0LUtjpLas2Snf4p3xHLhkbY0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhE MEJFOTIzRjAeFw0yNTA2MDIwMTU4MjJaFw0yNjA2MDEwMjAzMjJaMDMxMTAvBgNV BAMTKEJERjE5MUZENEZBRjQ5MjZCQUY0OEI0QTlEQzI2RTRDMkQ4N0FGRTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0BtTGnGKuqLt6eObZZV4mc3ot xdAZsV3Zw69+7WO3ZyLVt3XYoIvyS0QPk6qbmhkuMiCYZB6vpLGGxPcbvHN8tIXs 9VHJs2EvGvgZgOOjYe85yNDE10zGExceMA1EwTQdBQlvybxm8eK+Ky/5V5iwwBA5 5Hc377kZB+a6BKhlkRUNWiZMfu6eZB9l0wJrLDbt5T/p4afevpfA9cY02I+eo3ZF mCwHmJDh1jXVjsCCSBM5OOcT/I/RVX1TskpKV034WZTtXnh5tOWaRTsyjToyF8gd nISbXxUK18tKzW1YEOnCDBlR/uAB5CAG5+cDaZuBiH6+SemouuSTYr0Bs791AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUvfGR/U+vSSa69ItKncJuTC2Hr+kwHwYDVR0j BBgwFoAU0/th10akR2fUUY1un9H72NC+kj8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2Y0ZWMxYy05NTM1LTRjYmYtOWM3YS1mZDMyYzgzMGVkYmEvMC9EM0ZCNjFENzQ2 QTQ0NzY3RDQ1MThENkU5RkQxRkJEOEQwQkU5MjNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhEMEJF OTIzRi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczZjRlYzFjLTk1MzUtNGNiZi05 YzdhLWZkMzJjODMwZWRiYS8wLzMyMzQzMDMwM2E2NDM5MzQzMDNhMzczMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM2MzAzODM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJADZ QAcAMA0GCSqGSIb3DQEBCwUAA4IBAQDCK5SOK5BiKOqh11cPArF/Sc3apxJjkTYS l/6P7adi2sSebO2JhNRGE7SEPG20m6zlFnJKLs2Ye+RE9Blw+F7EMKaGnpMx32Ew jijEdnlWO7XU/S0MkETm4oY0ko4x+KldWJ23WtpwyHATRLpYkHTj7x/nD7vtYTg+ 5x1KaTGUvCiuWMZlAH+BYu7B+HPM/my6qul+zW1oGrb/Vv19jdZudR3AVT+AmEwJ J/T2Vf7RBSwcylJKhK9e/osOKHXj33KTqvMoXNILkiCW5mjVoBZWPu+Gv5dS7mDX jjZH39emUNNRbMrdC6PLXEYvFrzDONsYn+9jzZBAi6ayq5/48AiJ -----END CERTIFICATE-----Generated at Mon Jun 30 19:51:28 2025 by rpki-client