$ rpki-client -vvf repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/323430323a616230303a64663a3a2f34382d3438203d3e203234323036.roa File: 323430323a616230303a64663a3a2f34382d3438203d3e203234323036.roa (raw, json) Hash identifier: 9MSiXUftqD7YwgoDDhRkUOlJfbnaxlrR0kRkqPsHDsM= Subject key identifier: BB:C8:09:4B:67:58:9D:1E:59:41:44:39:AA:B6:00:0E:0D:EC:3C:6E Certificate issuer: /CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Certificate serial: 777915C537628D5563CC331534C43FA9B46F2AF8 Authority key identifier: 98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/323430323a616230303a64663a3a2f34382d3438203d3e203234323036.roa Signing time: Thu 12 Jun 2025 10:00:00 +0000 ROA not before: Thu 12 Jun 2025 09:55:00 +0000 ROA not after: Thu 11 Jun 2026 10:00:00 +0000 asID: 24206 IP address blocks: 2402:ab00:df::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Jul 2025 15:45:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:79:15:c5:37:62:8d:55:63:cc:33:15:34:c4:3f:a9:b4:6f:2a:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Validity Not Before: Jun 12 09:55:00 2025 GMT Not After : Jun 11 10:00:00 2026 GMT Subject: CN=BBC8094B67589D1E59414439AAB6000E0DEC3C6E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:e8:a0:ac:b2:d1:bd:88:5b:ac:6c:38:7f:b2: 2b:a7:53:e3:3b:ad:bd:f8:28:d5:68:06:d3:cb:18: cd:e8:b8:30:ac:18:2e:0e:3d:ca:40:d8:8a:c0:75: ea:9b:a7:e2:d7:24:4a:46:64:25:41:dc:3b:f1:a1: cb:df:87:18:46:05:cc:be:91:74:93:05:1a:ec:97: 44:1c:65:e7:06:5f:4f:65:a5:e6:c2:37:71:36:7c: b3:13:49:ca:13:48:a6:a6:70:07:de:e5:73:c8:7e: 1a:94:cd:6d:74:ea:06:ce:4b:72:c8:85:d7:0c:88: 4f:1d:f3:ab:ab:22:4f:53:0e:fb:7d:6a:95:64:75: f1:3e:92:99:8d:b8:ee:77:4b:da:37:27:d5:df:7d: 5c:e3:16:5c:41:ef:c9:ee:e6:b2:da:89:53:0a:d2: 01:20:b9:c7:98:8a:45:5d:e6:a0:91:ee:8e:7f:10: 99:92:cb:8d:7a:a6:a2:77:dc:e4:21:13:dd:a2:f3: fd:1a:61:2c:a8:ba:53:c0:fa:f6:e5:25:29:9a:23: 3a:7a:33:85:a3:e9:56:57:90:b4:f6:72:0c:98:23: 7a:06:3c:ca:1f:86:59:56:6a:99:09:de:05:0b:06: 73:b8:0b:31:a6:79:47:45:a3:f2:90:5f:fe:82:15: 9d:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:C8:09:4B:67:58:9D:1E:59:41:44:39:AA:B6:00:0E:0D:EC:3C:6E X509v3 Authority Key Identifier: keyid:98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/323430323a616230303a64663a3a2f34382d3438203d3e203234323036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:ab00:df::/48 Signature Algorithm: sha256WithRSAEncryption 7d:bf:4a:71:32:eb:77:30:21:ef:99:64:ef:e8:4a:4b:c6:0f: d2:86:2e:b1:18:a6:c9:4b:32:3c:c3:88:53:60:42:94:4c:be: db:d6:02:c0:a7:ac:43:89:a6:c3:c9:18:c6:94:2c:ca:b1:b8: bd:d6:06:8c:35:a6:a9:95:10:1f:ad:45:c3:87:22:a1:a1:e6: d9:51:98:dd:dd:b6:5d:c0:23:93:a1:16:59:03:d6:58:64:50: 26:11:5e:9b:07:86:5b:9e:41:76:82:9b:24:18:9a:6b:73:d7: a3:63:4f:28:37:91:08:6c:fc:98:08:f3:59:bf:a8:95:5f:b2: 74:d0:fc:0c:15:80:dd:ea:5a:06:cf:65:86:e5:8c:54:79:96: 55:70:02:d5:1b:df:1c:04:ae:cf:af:41:1c:2b:8e:9d:b4:c3: d2:2e:39:10:34:86:90:24:5b:0d:b2:be:c1:25:66:6e:61:27: 76:66:70:a5:d8:d6:75:4f:f6:30:61:aa:61:9e:5e:b8:05:da: bc:18:89:b2:63:01:87:c9:1d:be:d6:0d:8a:1e:76:82:1d:9e: 7c:84:df:37:c8:ac:cf:8d:47:a1:21:39:e0:fe:58:75:3e:9e: 31:c9:6f:56:cf:57:75:0a:c3:3d:3c:53:9e:86:6e:41:c3:c2: b5:b5:e8:da -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUd3kVxTdijVVjzDMVNMQ/qbRvKvgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NC MEMxMDhBOTAeFw0yNTA2MTIwOTU1MDBaFw0yNjA2MTExMDAwMDBaMDMxMTAvBgNV BAMTKEJCQzgwOTRCNjc1ODlEMUU1OTQxNDQzOUFBQjYwMDBFMERFQzNDNkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDF6KCsstG9iFusbDh/siunU+M7 rb34KNVoBtPLGM3ouDCsGC4OPcpA2IrAdeqbp+LXJEpGZCVB3DvxocvfhxhGBcy+ kXSTBRrsl0QcZecGX09lpebCN3E2fLMTScoTSKamcAfe5XPIfhqUzW106gbOS3LI hdcMiE8d86urIk9TDvt9apVkdfE+kpmNuO53S9o3J9XffVzjFlxB78nu5rLaiVMK 0gEguceYikVd5qCR7o5/EJmSy416pqJ33OQhE92i8/0aYSyoulPA+vblJSmaIzp6 M4Wj6VZXkLT2cgyYI3oGPMofhllWapkJ3gULBnO4CzGmeUdFo/KQX/6CFZ3TAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUu8gJS2dYnR5ZQUQ5qrYADg3sPG4wHwYDVR0j BBgwFoAUmB5Wd6xgKVCr4aRCwneefLDBCKkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NzkyMmY4OS0zZTliLTRiMjEtOTE4Ni1hNjQ4YzJkYTNmN2IvMC85ODFFNTY3N0FD NjAyOTUwQUJFMUE0NDJDMjc3OUU3Q0IwQzEwOEE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NCMEMx MDhBOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3OTIyZjg5LTNlOWItNGIyMS05 MTg2LWE2NDhjMmRhM2Y3Yi8wLzMyMzQzMDMyM2E2MTYyMzAzMDNhNjQ2NjNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzQzMjMwMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAqsAAN8w DQYJKoZIhvcNAQELBQADggEBAH2/SnEy63cwIe+ZZO/oSkvGD9KGLrEYpslLMjzD iFNgQpRMvtvWAsCnrEOJpsPJGMaULMqxuL3WBow1pqmVEB+tRcOHIqGh5tlRmN3d tl3AI5OhFlkD1lhkUCYRXpsHhlueQXaCmyQYmmtz16NjTyg3kQhs/JgI81m/qJVf snTQ/AwVgN3qWgbPZYbljFR5llVwAtUb3xwErs+vQRwrjp20w9IuORA0hpAkWw2y vsElZm5hJ3ZmcKXY1nVP9jBhqmGeXrgF2rwYibJjAYfJHb7WDYoedoIdnnyE3zfI rM+NR6EhOeD+WHU+njHJb1bPV3UKwz08U56GbkHDwrW16No= -----END CERTIFICATE-----Generated at Tue Jul 1 23:27:53 2025 by rpki-client