$ rpki-client -vvf repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/323430343a346563303a3a2f33322d3438203d3e20313338313339.roa File: 323430343a346563303a3a2f33322d3438203d3e20313338313339.roa (raw, json) Hash identifier: A2G6b+fxTo20QvHK7lUw9boisWwmFFcOlzGIN95UCMI= Subject key identifier: 99:6F:20:8B:C5:10:76:01:73:BD:23:A5:71:06:74:C5:6F:1F:BC:35 Certificate issuer: /CN=8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF Certificate serial: 281402A9BD8F984BA77771251AADB7048D437844 Authority key identifier: 8B:A2:B5:E0:7F:AD:57:28:C7:DE:FB:F4:FC:10:BD:04:43:53:F6:FF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/323430343a346563303a3a2f33322d3438203d3e20313338313339.roa Signing time: Thu 26 Jun 2025 03:00:00 +0000 ROA not before: Thu 26 Jun 2025 02:55:00 +0000 ROA not after: Thu 25 Jun 2026 03:00:00 +0000 asID: 138139 IP address blocks: 2404:4ec0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.crl rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 15:25:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:14:02:a9:bd:8f:98:4b:a7:77:71:25:1a:ad:b7:04:8d:43:78:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF Validity Not Before: Jun 26 02:55:00 2025 GMT Not After : Jun 25 03:00:00 2026 GMT Subject: CN=996F208BC510760173BD23A5710674C56F1FBC35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:39:18:b6:a8:87:95:62:a8:b7:ea:65:f8:0a: 77:ef:c3:62:6d:f4:79:0c:75:9b:fe:07:e9:21:1b: 06:85:f2:00:7b:0a:86:61:5d:d3:af:f8:90:15:a2: e0:ff:a3:db:d6:66:a2:e3:8f:32:b4:6a:0d:d9:fc: e2:d4:76:0c:d3:00:8b:e6:34:9e:33:90:ad:b1:9b: 4d:48:e6:d2:4a:e3:6a:ba:98:bf:dd:e0:9b:07:09: 07:a1:eb:54:4c:be:29:52:20:8a:59:88:60:d2:a8: 50:e5:7f:2c:95:43:47:a4:92:2b:77:b9:55:5a:3e: dd:ac:74:1f:f9:af:fb:39:fb:ef:e8:6b:cb:51:d6: ac:b0:42:a7:84:bd:e3:25:db:05:db:11:36:98:a8: 30:4e:30:f4:61:8b:6e:b8:52:7e:14:be:2d:9f:d9: d9:47:40:30:b7:61:98:38:36:80:b9:a3:c2:24:5e: 0c:0f:f0:24:a4:5c:50:07:83:f4:c2:74:5e:72:83: cd:77:34:89:b5:08:53:c7:85:47:8d:e4:71:26:11: 3f:cc:bf:3e:90:89:ba:4f:d6:0e:4a:41:b1:90:c0: 49:05:fd:4e:7d:60:da:09:95:95:bc:a7:03:08:9c: d4:71:ee:f0:a6:0f:e3:2d:d2:50:83:ee:af:cd:d5: e0:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:6F:20:8B:C5:10:76:01:73:BD:23:A5:71:06:74:C5:6F:1F:BC:35 X509v3 Authority Key Identifier: keyid:8B:A2:B5:E0:7F:AD:57:28:C7:DE:FB:F4:FC:10:BD:04:43:53:F6:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/323430343a346563303a3a2f33322d3438203d3e20313338313339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:4ec0::/32 Signature Algorithm: sha256WithRSAEncryption 8e:4d:0c:b8:4b:5e:58:19:f8:37:7b:0e:dd:bc:97:13:ac:e7: c1:fe:21:ba:be:25:f4:74:e3:c1:60:19:a2:46:f9:00:5c:c6: 8d:ea:af:15:29:09:78:33:38:16:65:95:3b:7a:a1:e4:da:bf: ba:1a:c4:2a:30:5b:2b:49:07:0c:0e:9d:e9:da:3c:bf:b4:e2: 75:3f:ec:2a:fa:8c:ca:17:f7:6f:d3:53:66:c5:59:4c:b6:b9: 88:8a:44:b8:ae:86:2e:3a:4e:a1:76:5f:a4:8a:80:56:8d:22: 90:46:f7:c6:34:88:40:b3:2d:99:d2:4c:6b:d4:ed:ed:50:e5: 85:ec:38:e6:05:57:85:1e:64:fd:e1:47:21:be:49:b8:ad:2d: 9f:33:29:a8:a1:27:43:02:12:9b:fe:24:25:69:68:9d:bb:55: 53:bb:b4:19:7b:bc:f4:2e:b2:82:00:98:7b:80:92:67:d3:7c: ab:02:6f:42:66:65:ec:e8:00:a6:3c:68:22:d1:f2:62:4c:bd: 0c:07:bb:ad:d0:63:14:ff:92:4d:55:7c:a9:81:9b:46:34:2f: 5d:0f:bf:6f:21:89:12:4e:2a:66:d2:8f:c2:12:15:a6:e9:52: 85:fb:54:7b:e9:c8:b0:e6:00:63:b9:08:9a:c8:f9:5d:a8:ab: 7f:af:0b:cb -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUKBQCqb2PmEund3ElGq23BI1DeEQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEJBMkI1RTA3RkFENTcyOEM3REVGQkY0RkMxMEJEMDQ0 MzUzRjZGRjAeFw0yNTA2MjYwMjU1MDBaFw0yNjA2MjUwMzAwMDBaMDMxMTAvBgNV BAMTKDk5NkYyMDhCQzUxMDc2MDE3M0JEMjNBNTcxMDY3NEM1NkYxRkJDMzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsORi2qIeVYqi36mX4Cnfvw2Jt 9HkMdZv+B+khGwaF8gB7CoZhXdOv+JAVouD/o9vWZqLjjzK0ag3Z/OLUdgzTAIvm NJ4zkK2xm01I5tJK42q6mL/d4JsHCQeh61RMvilSIIpZiGDSqFDlfyyVQ0ekkit3 uVVaPt2sdB/5r/s5++/oa8tR1qywQqeEveMl2wXbETaYqDBOMPRhi264Un4Uvi2f 2dlHQDC3YZg4NoC5o8IkXgwP8CSkXFAHg/TCdF5yg813NIm1CFPHhUeN5HEmET/M vz6QibpP1g5KQbGQwEkF/U59YNoJlZW8pwMInNRx7vCmD+Mt0lCD7q/N1eDLAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUmW8gi8UQdgFzvSOlcQZ0xW8fvDUwHwYDVR0j BBgwFoAUi6K14H+tVyjH3vv0/BC9BENT9v8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Yzc2Yzg1Zi05YTRmLTRhZmMtOTY5Yi04ZGEyNTM2YzVjMjQvMC84QkEyQjVFMDdG QUQ1NzI4QzdERUZCRjRGQzEwQkQwNDQzNTNGNkZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEJBMkI1RTA3RkFENTcyOEM3REVGQkY0RkMxMEJEMDQ0MzUz RjZGRi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjNzZjODVmLTlhNGYtNGFmYy05 NjliLThkYTI1MzZjNWMyNC8wLzMyMzQzMDM0M2EzNDY1NjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzODMxMzMzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQETsAwDQYJKoZI hvcNAQELBQADggEBAI5NDLhLXlgZ+Dd7Dt28lxOs58H+Ibq+JfR048FgGaJG+QBc xo3qrxUpCXgzOBZllTt6oeTav7oaxCowWytJBwwOnenaPL+04nU/7Cr6jMoX92/T U2bFWUy2uYiKRLiuhi46TqF2X6SKgFaNIpBG98Y0iECzLZnSTGvU7e1Q5YXsOOYF V4UeZP3hRyG+SbitLZ8zKaihJ0MCEpv+JCVpaJ27VVO7tBl7vPQusoIAmHuAkmfT fKsCb0JmZezoAKY8aCLR8mJMvQwHu63QYxT/kk1VfKmBm0Y0L10Pv28hiRJOKmbS j8ISFabpUoX7VHvpyLDmAGO5CJrI+V2oq3+vC8s= -----END CERTIFICATE-----Generated at Mon Jun 30 07:21:08 2025 by rpki-client