$ rpki-client -vvf repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/323430323a616230303a63663a3a2f34382d3438203d3e203234323036.roa File: 323430323a616230303a63663a3a2f34382d3438203d3e203234323036.roa (raw, json) Hash identifier: 1MMaA/JALdwU46Gmn5cadR8bFFMn6pjjD2wa0Pe9Aag= Subject key identifier: B0:CF:BD:F2:92:08:C0:DC:20:5A:51:BD:12:72:FA:B6:6E:D2:CC:90 Certificate issuer: /CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Certificate serial: 5D67D0FA339CB22EC12B143AD707579BAB4A430D Authority key identifier: 98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/323430323a616230303a63663a3a2f34382d3438203d3e203234323036.roa Signing time: Thu 12 Jun 2025 16:00:00 +0000 ROA not before: Thu 12 Jun 2025 15:55:00 +0000 ROA not after: Thu 11 Jun 2026 16:00:00 +0000 asID: 24206 IP address blocks: 2402:ab00:cf::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Jul 2025 15:45:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:67:d0:fa:33:9c:b2:2e:c1:2b:14:3a:d7:07:57:9b:ab:4a:43:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Validity Not Before: Jun 12 15:55:00 2025 GMT Not After : Jun 11 16:00:00 2026 GMT Subject: CN=B0CFBDF29208C0DC205A51BD1272FAB66ED2CC90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:8d:a5:bd:97:01:57:41:13:14:e0:1f:6e:6d: 1b:4e:d5:c0:e9:04:44:83:64:1a:4a:11:f8:41:eb: b8:23:02:be:05:96:54:ca:0b:e8:14:3c:98:91:d8: 9c:45:bd:a0:12:22:a8:ce:1e:d4:61:c3:72:ea:78: cc:f4:28:51:a7:bf:a1:d1:7c:8e:35:4f:7c:fa:5c: 2d:89:37:73:f4:62:34:15:46:5e:3c:f0:ea:32:62: 53:ec:20:76:6b:5d:fe:b3:70:d8:f7:eb:0c:d3:f9: f8:49:5a:81:09:2d:e5:1b:bf:7e:17:97:f4:4a:ca: 7b:6b:ae:78:c8:83:a5:15:af:24:24:93:bf:be:11: 82:e7:7a:a5:91:fe:68:be:78:24:92:01:32:d1:53: e8:cc:6b:ae:00:57:79:76:86:73:c8:44:02:37:cb: 6d:b4:b5:19:e5:b7:29:31:53:4d:31:34:ed:57:6c: 52:7b:f6:b6:18:f8:8e:97:73:08:37:35:2f:ce:ac: f8:27:14:f1:61:0b:a7:64:4c:0f:15:7d:54:3d:8d: da:55:7f:9b:88:ea:2e:1d:63:b1:14:f1:5c:9e:8e: db:04:02:32:7e:43:f5:3e:f1:ab:62:70:3a:e0:4a: 2f:7a:de:86:10:52:c0:e3:d6:f3:4d:67:f4:0b:55: ce:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:CF:BD:F2:92:08:C0:DC:20:5A:51:BD:12:72:FA:B6:6E:D2:CC:90 X509v3 Authority Key Identifier: keyid:98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/323430323a616230303a63663a3a2f34382d3438203d3e203234323036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:ab00:cf::/48 Signature Algorithm: sha256WithRSAEncryption 2a:9b:64:ec:94:77:ac:2e:6b:65:69:10:21:3b:1c:b1:73:8d: 0a:99:e5:bc:12:b2:74:71:7c:e3:8a:bc:9b:84:fc:de:f0:be: 91:fa:1b:a2:b2:44:d0:3b:23:0b:46:1a:4c:98:b4:9a:1e:39: 11:33:af:cd:b9:7e:85:3c:b1:9d:b8:9b:15:b6:99:cf:18:e0: 8c:16:28:da:db:db:fe:28:f3:41:3d:eb:4a:6b:73:e5:81:5a: d2:6e:1e:95:37:3d:18:e2:3f:c3:62:12:c1:d4:f8:36:fd:45: 55:1b:c3:db:b3:18:ca:56:fe:3a:65:da:94:83:a3:4e:99:46: 58:b5:d7:b0:bc:61:ac:c8:4f:92:f2:12:7e:74:22:36:2c:25: 5a:be:a2:a8:62:dc:b4:b9:a4:31:11:b8:0f:ad:df:5c:6f:e9: 2b:f6:39:90:03:e7:8e:2d:7e:eb:8a:6b:33:e1:ab:39:e2:e6: 1b:3e:fb:32:61:0a:c4:26:44:9c:4e:b4:59:48:3e:96:74:7b: b5:7a:af:7a:9e:12:21:6d:9d:da:41:a9:19:95:5a:bd:53:e3: b9:c3:d2:0e:7d:04:90:c5:82:f4:d3:a7:8f:73:18:b3:70:2f: 13:e5:ad:bb:4d:d3:be:f3:03:ec:f3:21:ef:68:44:58:6f:39: 04:75:94:ff -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUXWfQ+jOcsi7BKxQ61wdXm6tKQw0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NC MEMxMDhBOTAeFw0yNTA2MTIxNTU1MDBaFw0yNjA2MTExNjAwMDBaMDMxMTAvBgNV BAMTKEIwQ0ZCREYyOTIwOEMwREMyMDVBNTFCRDEyNzJGQUI2NkVEMkNDOTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCujaW9lwFXQRMU4B9ubRtO1cDp BESDZBpKEfhB67gjAr4FllTKC+gUPJiR2JxFvaASIqjOHtRhw3LqeMz0KFGnv6HR fI41T3z6XC2JN3P0YjQVRl488OoyYlPsIHZrXf6zcNj36wzT+fhJWoEJLeUbv34X l/RKyntrrnjIg6UVryQkk7++EYLneqWR/mi+eCSSATLRU+jMa64AV3l2hnPIRAI3 y220tRnltykxU00xNO1XbFJ79rYY+I6Xcwg3NS/OrPgnFPFhC6dkTA8VfVQ9jdpV f5uI6i4dY7EU8VyejtsEAjJ+Q/U+8aticDrgSi963oYQUsDj1vNNZ/QLVc47AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUsM+98pIIwNwgWlG9EnL6tm7SzJAwHwYDVR0j BBgwFoAUmB5Wd6xgKVCr4aRCwneefLDBCKkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NzkyMmY4OS0zZTliLTRiMjEtOTE4Ni1hNjQ4YzJkYTNmN2IvMC85ODFFNTY3N0FD NjAyOTUwQUJFMUE0NDJDMjc3OUU3Q0IwQzEwOEE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NCMEMx MDhBOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3OTIyZjg5LTNlOWItNGIyMS05 MTg2LWE2NDhjMmRhM2Y3Yi8wLzMyMzQzMDMyM2E2MTYyMzAzMDNhNjM2NjNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzQzMjMwMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAqsAAM8w DQYJKoZIhvcNAQELBQADggEBACqbZOyUd6wua2VpECE7HLFzjQqZ5bwSsnRxfOOK vJuE/N7wvpH6G6KyRNA7IwtGGkyYtJoeOREzr825foU8sZ24mxW2mc8Y4IwWKNrb 2/4o80E960prc+WBWtJuHpU3PRjiP8NiEsHU+Db9RVUbw9uzGMpW/jpl2pSDo06Z Rli117C8YazIT5LyEn50IjYsJVq+oqhi3LS5pDERuA+t31xv6Sv2OZAD544tfuuK azPhqzni5hs++zJhCsQmRJxOtFlIPpZ0e7V6r3qeEiFtndpBqRmVWr1T47nD0g59 BJDFgvTTp49zGLNwLxPlrbtN077zA+zzIe9oRFhvOQR1lP8= -----END CERTIFICATE-----Generated at Tue Jul 1 23:26:41 2025 by rpki-client