$ rpki-client -vvf repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/323430343a346563303a313a3a2f34382d3438203d3e20313338313339.roa File: 323430343a346563303a313a3a2f34382d3438203d3e20313338313339.roa (raw, json) Hash identifier: X/C9vXKY/TY9dLHbewA4tddP0TItlp1o/B62rHS1ZLs= Subject key identifier: C3:89:F0:9A:5C:FD:53:9B:56:E4:16:1B:AD:CD:80:DE:3A:AD:90:09 Certificate issuer: /CN=8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF Certificate serial: 1A05A5ED6332FBD48E4648B3BAD484C74CB1D485 Authority key identifier: 8B:A2:B5:E0:7F:AD:57:28:C7:DE:FB:F4:FC:10:BD:04:43:53:F6:FF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/323430343a346563303a313a3a2f34382d3438203d3e20313338313339.roa Signing time: Thu 26 Jun 2025 03:00:00 +0000 ROA not before: Thu 26 Jun 2025 02:55:00 +0000 ROA not after: Thu 25 Jun 2026 03:00:00 +0000 asID: 138139 IP address blocks: 2404:4ec0:1::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.crl rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 15:25:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:05:a5:ed:63:32:fb:d4:8e:46:48:b3:ba:d4:84:c7:4c:b1:d4:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF Validity Not Before: Jun 26 02:55:00 2025 GMT Not After : Jun 25 03:00:00 2026 GMT Subject: CN=C389F09A5CFD539B56E4161BADCD80DE3AAD9009 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:de:bc:b1:8d:75:30:05:5e:e5:78:e4:5b:55: c4:42:36:ac:49:e0:b4:e2:a6:8c:d6:a2:5c:b6:7b: 6a:ac:e2:29:01:fb:a0:6a:2a:c3:7a:64:e4:65:7e: 91:18:be:05:9e:fb:1f:6a:34:57:2f:86:1b:e1:29: 90:08:f4:f6:1c:73:aa:a8:25:da:c4:2f:6d:2a:a2: 04:24:53:0c:8c:af:66:f1:b7:f7:68:f4:f9:a8:65: 8b:8f:29:09:ce:5f:b1:14:72:10:fd:f4:b4:8b:12: 0a:c5:30:43:9c:e8:6d:57:79:35:ad:a4:f3:00:17: a3:aa:5b:8b:66:91:be:91:f2:5c:e3:b2:81:53:44: 20:6d:fd:4b:f4:ec:e8:06:13:07:76:a4:17:46:02: 14:2f:c5:98:55:86:67:cd:cb:cf:6f:39:bc:ae:41: f6:ea:86:f5:1f:4a:f5:61:9d:c3:22:35:2b:54:78: 01:fa:18:3b:c3:fa:2f:a9:af:4e:55:7a:06:e1:5f: f3:70:0a:f3:48:c9:1f:60:49:6e:dd:b8:c4:be:2d: c6:7b:16:61:f5:9f:c5:c5:c9:a7:99:19:4b:a3:13: 11:72:32:6c:3c:b7:95:f9:e7:2c:e8:c6:99:19:f1: 7f:f0:a3:6f:b9:4b:c4:00:70:b8:d1:a7:3e:59:71: 92:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:89:F0:9A:5C:FD:53:9B:56:E4:16:1B:AD:CD:80:DE:3A:AD:90:09 X509v3 Authority Key Identifier: keyid:8B:A2:B5:E0:7F:AD:57:28:C7:DE:FB:F4:FC:10:BD:04:43:53:F6:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/323430343a346563303a313a3a2f34382d3438203d3e20313338313339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:4ec0:1::/48 Signature Algorithm: sha256WithRSAEncryption b0:b0:d6:9c:9c:e9:32:e4:62:e8:c6:52:85:d3:fa:6d:b8:1e: a1:30:f8:f7:a0:58:bd:f4:a4:3f:fe:4b:ca:fb:c9:54:0c:6e: db:c8:e1:29:a9:3f:c3:66:81:e9:97:76:b4:fe:da:30:31:0c: 11:5c:28:a2:ac:28:34:8f:6f:96:7b:dc:f4:a2:ea:db:95:ce: 24:89:be:5e:eb:b3:99:95:d5:a7:aa:1e:b3:c0:b1:a7:3b:2f: 84:80:b7:cd:b3:b4:4f:3a:2b:58:42:54:a1:13:ba:2f:f1:33: f3:16:37:4e:45:a2:aa:81:b9:a4:fa:aa:a1:44:18:a2:69:d8: cc:39:5d:fb:83:86:e7:68:ff:63:1a:8b:22:f1:3b:4e:4f:33: 88:89:55:46:09:01:71:f1:4f:b1:10:e4:70:32:5e:90:ed:e4: 16:e2:21:2d:e8:1e:42:6e:0d:c3:b1:19:3d:6d:ec:88:94:bf: 39:f6:6e:ea:34:3c:63:3e:21:9f:66:81:cf:12:2c:56:3c:78: 0e:cc:d1:15:5f:6b:15:2f:52:64:65:2c:23:fe:f8:ad:6b:52: 49:50:d4:e0:71:d6:f1:d1:8c:b6:a0:2b:53:62:92:4a:9c:aa: 54:74:0b:ef:c6:ce:16:2a:c2:bd:0e:ae:d0:a3:a6:9c:37:15: ce:55:aa:39 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUGgWl7WMy+9SORkizutSEx0yx1IUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEJBMkI1RTA3RkFENTcyOEM3REVGQkY0RkMxMEJEMDQ0 MzUzRjZGRjAeFw0yNTA2MjYwMjU1MDBaFw0yNjA2MjUwMzAwMDBaMDMxMTAvBgNV BAMTKEMzODlGMDlBNUNGRDUzOUI1NkU0MTYxQkFEQ0Q4MERFM0FBRDkwMDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDO3ryxjXUwBV7leORbVcRCNqxJ 4LTipozWoly2e2qs4ikB+6BqKsN6ZORlfpEYvgWe+x9qNFcvhhvhKZAI9PYcc6qo JdrEL20qogQkUwyMr2bxt/do9PmoZYuPKQnOX7EUchD99LSLEgrFMEOc6G1XeTWt pPMAF6OqW4tmkb6R8lzjsoFTRCBt/Uv07OgGEwd2pBdGAhQvxZhVhmfNy89vObyu QfbqhvUfSvVhncMiNStUeAH6GDvD+i+pr05VegbhX/NwCvNIyR9gSW7duMS+LcZ7 FmH1n8XFyaeZGUujExFyMmw8t5X55yzoxpkZ8X/wo2+5S8QAcLjRpz5ZcZL3AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUw4nwmlz9U5tW5BYbrc2A3jqtkAkwHwYDVR0j BBgwFoAUi6K14H+tVyjH3vv0/BC9BENT9v8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Yzc2Yzg1Zi05YTRmLTRhZmMtOTY5Yi04ZGEyNTM2YzVjMjQvMC84QkEyQjVFMDdG QUQ1NzI4QzdERUZCRjRGQzEwQkQwNDQzNTNGNkZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEJBMkI1RTA3RkFENTcyOEM3REVGQkY0RkMxMEJEMDQ0MzUz RjZGRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjNzZjODVmLTlhNGYtNGFmYy05 NjliLThkYTI1MzZjNWMyNC8wLzMyMzQzMDM0M2EzNDY1NjMzMDNhMzEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgzMTMzMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkBE7AAAEw DQYJKoZIhvcNAQELBQADggEBALCw1pyc6TLkYujGUoXT+m24HqEw+PegWL30pD/+ S8r7yVQMbtvI4SmpP8NmgemXdrT+2jAxDBFcKKKsKDSPb5Z73PSi6tuVziSJvl7r s5mV1aeqHrPAsac7L4SAt82ztE86K1hCVKETui/xM/MWN05FoqqBuaT6qqFEGKJp 2Mw5XfuDhudo/2MaiyLxO05PM4iJVUYJAXHxT7EQ5HAyXpDt5BbiIS3oHkJuDcOx GT1t7IiUvzn2buo0PGM+IZ9mgc8SLFY8eA7M0RVfaxUvUmRlLCP++K1rUklQ1OBx 1vHRjLagK1NikkqcqlR0C+/GzhYqwr0OrtCjppw3Fc5Vqjk= -----END CERTIFICATE-----Generated at Mon Jun 30 07:14:23 2025 by rpki-client