$ rpki-client -vvf repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/323430323a616230303a636166653a3a2f34382d3438203d3e203234323036.roa File: 323430323a616230303a636166653a3a2f34382d3438203d3e203234323036.roa (raw, json) Hash identifier: yk2Beo121KKGPqhGrImYDU3EMLdITUqRzn7ocJjo60c= Subject key identifier: 30:F2:05:6E:2C:74:C3:50:5B:8D:1C:CA:61:1F:80:25:92:26:9E:36 Certificate issuer: /CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Certificate serial: 5A29F06B634C9477027969B4FE3EE4513F1E6765 Authority key identifier: 98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/323430323a616230303a636166653a3a2f34382d3438203d3e203234323036.roa Signing time: Fri 20 Jun 2025 16:00:00 +0000 ROA not before: Fri 20 Jun 2025 15:55:00 +0000 ROA not after: Fri 19 Jun 2026 16:00:00 +0000 asID: 24206 IP address blocks: 2402:ab00:cafe::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Jul 2025 23:45:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:29:f0:6b:63:4c:94:77:02:79:69:b4:fe:3e:e4:51:3f:1e:67:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Validity Not Before: Jun 20 15:55:00 2025 GMT Not After : Jun 19 16:00:00 2026 GMT Subject: CN=30F2056E2C74C3505B8D1CCA611F802592269E36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:3f:07:30:dd:5e:a5:84:c9:58:63:83:75:95: ef:6a:b8:a8:08:48:55:a4:e8:9b:88:ac:34:ed:17: 20:16:92:33:f6:33:04:20:b5:47:aa:23:9c:84:56: 43:e5:27:c0:92:34:19:ad:dd:d2:1e:a6:1a:c2:b0: db:8c:e0:95:1c:7d:11:fa:08:ed:85:1b:bf:bb:71: 87:06:99:fe:37:5a:37:b6:fe:bb:c0:34:90:9b:2e: 3b:f7:c0:44:74:0d:ac:d0:62:3e:c4:85:3c:b7:0d: be:e3:c4:aa:3e:d7:1e:b0:9e:50:3b:0f:ae:8c:33: 57:09:f8:03:0b:2a:0c:80:00:63:4f:fd:7e:ad:1c: b1:a2:98:93:a8:3a:4f:ce:60:7f:1b:22:e4:32:0f: 63:43:dc:90:54:0d:4a:41:42:3e:a6:59:0e:dc:2e: 70:19:b8:3b:4b:2d:d4:77:6a:27:ff:8e:99:c5:83: 7d:8f:b6:2e:1b:bc:88:ef:85:57:98:e9:a5:65:33: e0:71:a5:4a:02:e7:8d:ad:99:4e:1a:d9:24:c4:f5: 42:8a:5d:d0:c2:1d:7e:87:c6:80:41:d4:12:81:6d: 5d:54:5c:e0:48:55:fa:53:31:98:78:b0:23:80:91: 4b:10:ab:21:d4:da:c0:f7:da:ef:f2:40:e3:bb:cf: 81:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:F2:05:6E:2C:74:C3:50:5B:8D:1C:CA:61:1F:80:25:92:26:9E:36 X509v3 Authority Key Identifier: keyid:98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/323430323a616230303a636166653a3a2f34382d3438203d3e203234323036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:ab00:cafe::/48 Signature Algorithm: sha256WithRSAEncryption b6:48:1c:3e:42:28:47:d2:ff:cf:04:b7:24:af:dd:8f:47:a7: d5:25:e6:6e:02:ef:6e:56:87:9c:ec:b9:62:6d:3b:6b:d7:b6: 1f:f3:14:01:74:19:1f:07:49:57:6d:97:8c:c8:65:45:76:17: 86:4e:e8:df:2f:e7:b8:86:0a:5b:05:c9:28:1d:c4:59:41:31: 4f:3d:3b:51:4b:a3:69:b2:d8:5c:34:a4:0e:53:0d:33:60:7b: 58:66:72:ef:21:5e:0d:b1:0e:db:bc:4e:1b:70:b1:5e:a2:96: 81:a0:7d:59:78:02:10:d0:c0:26:fb:da:0e:e1:12:81:74:59: 46:cd:d3:fe:b8:be:0a:48:ce:ea:2d:16:29:10:ce:c4:12:24: eb:18:eb:a0:8a:d9:ef:55:50:45:60:01:3b:8e:be:1d:e1:12: c3:ab:7b:67:45:13:c4:b2:ba:93:97:46:49:a9:c6:11:05:5f: e7:0e:f1:b3:9f:ef:16:7a:18:19:9c:46:6b:73:2c:39:55:d3: f5:24:b1:af:a7:b0:72:cc:21:25:b1:f6:d2:eb:6d:c8:1d:eb: 44:07:f4:0e:21:71:3b:f2:95:78:76:8c:97:a4:a8:35:77:23: eb:05:0b:88:be:9b:a6:f0:3b:94:6f:35:57:4c:8a:fd:89:45: d8:0f:40:8e -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUWinwa2NMlHcCeWm0/j7kUT8eZ2UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NC MEMxMDhBOTAeFw0yNTA2MjAxNTU1MDBaFw0yNjA2MTkxNjAwMDBaMDMxMTAvBgNV BAMTKDMwRjIwNTZFMkM3NEMzNTA1QjhEMUNDQTYxMUY4MDI1OTIyNjlFMzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0Pwcw3V6lhMlYY4N1le9quKgI SFWk6JuIrDTtFyAWkjP2MwQgtUeqI5yEVkPlJ8CSNBmt3dIephrCsNuM4JUcfRH6 CO2FG7+7cYcGmf43Wje2/rvANJCbLjv3wER0DazQYj7EhTy3Db7jxKo+1x6wnlA7 D66MM1cJ+AMLKgyAAGNP/X6tHLGimJOoOk/OYH8bIuQyD2ND3JBUDUpBQj6mWQ7c LnAZuDtLLdR3aif/jpnFg32Pti4bvIjvhVeY6aVlM+BxpUoC542tmU4a2STE9UKK XdDCHX6HxoBB1BKBbV1UXOBIVfpTMZh4sCOAkUsQqyHU2sD32u/yQOO7z4GhAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUMPIFbix0w1BbjRzKYR+AJZImnjYwHwYDVR0j BBgwFoAUmB5Wd6xgKVCr4aRCwneefLDBCKkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NzkyMmY4OS0zZTliLTRiMjEtOTE4Ni1hNjQ4YzJkYTNmN2IvMC85ODFFNTY3N0FD NjAyOTUwQUJFMUE0NDJDMjc3OUU3Q0IwQzEwOEE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NCMEMx MDhBOS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3OTIyZjg5LTNlOWItNGIyMS05 MTg2LWE2NDhjMmRhM2Y3Yi8wLzMyMzQzMDMyM2E2MTYyMzAzMDNhNjM2MTY2NjUz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjM0MzIzMDM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAKr AMr+MA0GCSqGSIb3DQEBCwUAA4IBAQC2SBw+QihH0v/PBLckr92PR6fVJeZuAu9u Voec7LlibTtr17Yf8xQBdBkfB0lXbZeMyGVFdheGTujfL+e4hgpbBckoHcRZQTFP PTtRS6NpsthcNKQOUw0zYHtYZnLvIV4NsQ7bvE4bcLFeopaBoH1ZeAIQ0MAm+9oO 4RKBdFlGzdP+uL4KSM7qLRYpEM7EEiTrGOugitnvVVBFYAE7jr4d4RLDq3tnRRPE srqTl0ZJqcYRBV/nDvGzn+8WehgZnEZrcyw5VdP1JLGvp7ByzCElsfbS623IHetE B/QOIXE78pV4doyXpKg1dyPrBQuIvpum8DuUbzVXTIr9iUXYD0CO -----END CERTIFICATE-----Generated at Wed Jul 2 04:17:31 2025 by rpki-client