$ rpki-client -vvf repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/323430323a616230303a65663a3a2f34382d3438203d3e203234323036.roa File: 323430323a616230303a65663a3a2f34382d3438203d3e203234323036.roa (raw, json) Hash identifier: tmM3oKcQYom0eZ0XNJS+YU7h43ssUwLiYaqon6dfaUY= Subject key identifier: 76:20:BA:97:31:68:D7:8C:20:9A:9A:B4:B5:9D:EA:AF:76:22:15:CB Certificate issuer: /CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Certificate serial: 2C2B36C8F347ECBCE10CC10FD8E828B0F61C9081 Authority key identifier: 98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/323430323a616230303a65663a3a2f34382d3438203d3e203234323036.roa Signing time: Thu 12 Jun 2025 17:00:00 +0000 ROA not before: Thu 12 Jun 2025 16:55:00 +0000 ROA not after: Thu 11 Jun 2026 17:00:00 +0000 asID: 24206 IP address blocks: 2402:ab00:ef::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Jul 2025 15:45:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:2b:36:c8:f3:47:ec:bc:e1:0c:c1:0f:d8:e8:28:b0:f6:1c:90:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=981E5677AC602950ABE1A442C2779E7CB0C108A9 Validity Not Before: Jun 12 16:55:00 2025 GMT Not After : Jun 11 17:00:00 2026 GMT Subject: CN=7620BA973168D78C209A9AB4B59DEAAF762215CB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:61:18:c4:da:51:03:ec:5f:83:20:14:26:80: 90:88:83:2c:9e:c2:ad:fb:ee:ef:a2:35:5a:52:a6: b1:07:c8:89:b0:28:7b:e9:c5:bd:50:e3:66:77:98: 5c:de:0d:cb:7d:0a:93:38:65:e2:1e:b8:01:12:a0: 91:6f:c4:04:a7:7b:95:51:34:4a:a4:fb:c1:ba:d4: ef:2d:5d:01:a8:69:8d:6f:f3:53:8e:3b:bf:91:7f: a3:c5:a7:0f:e2:b8:63:8d:7b:3f:2a:83:0e:25:d5: ba:d0:73:e5:6e:3c:fa:95:1f:13:18:c4:4a:05:9b: 21:a7:d6:39:09:23:38:9d:90:fc:e9:8a:59:22:c3: fc:ef:c8:ab:6c:c2:0d:d4:af:17:c1:66:31:a0:b7: 8d:54:2a:09:52:a0:fc:3d:2b:a5:97:1a:7c:2d:94: 19:4f:80:11:50:8b:f4:e6:57:97:ab:61:54:d5:0b: 5c:14:0b:ad:a5:c5:58:f6:2d:ca:a6:1b:36:d8:9a: cb:71:16:f4:32:25:18:ac:01:d5:ec:f2:9b:eb:b3: cf:50:f5:ec:8b:67:78:1f:d8:99:4d:70:e8:2a:09: b9:94:b3:14:00:20:0f:12:3e:10:43:ef:32:8d:52: 8d:2f:85:d6:3b:5b:07:25:55:63:a1:bf:aa:1b:57: 90:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:20:BA:97:31:68:D7:8C:20:9A:9A:B4:B5:9D:EA:AF:76:22:15:CB X509v3 Authority Key Identifier: keyid:98:1E:56:77:AC:60:29:50:AB:E1:A4:42:C2:77:9E:7C:B0:C1:08:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/981E5677AC602950ABE1A442C2779E7CB0C108A9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/981E5677AC602950ABE1A442C2779E7CB0C108A9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7922f89-3e9b-4b21-9186-a648c2da3f7b/0/323430323a616230303a65663a3a2f34382d3438203d3e203234323036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:ab00:ef::/48 Signature Algorithm: sha256WithRSAEncryption 8f:dd:92:89:8c:30:8b:31:9a:c7:97:e4:6d:f7:fe:8f:08:b9: 6c:b6:f6:e0:78:a7:42:e7:3e:8b:fa:a0:d6:98:3a:d8:ef:c0: 53:82:17:93:47:98:de:93:a5:fb:67:30:25:ce:93:74:03:55: 86:dc:0e:61:b3:43:26:3a:6d:6a:cf:fd:e1:34:a9:87:53:d1: 00:bf:71:32:2c:f8:71:24:0e:14:f8:50:52:5b:1f:ec:2c:47: db:1b:09:77:ac:28:f0:60:e7:3f:4a:a3:8a:bf:96:94:50:42: 46:c6:55:f6:7b:bc:e4:78:53:97:39:68:22:3d:71:9f:37:2c: 1b:37:89:12:58:90:44:da:7a:1c:2a:89:28:0f:1e:53:f6:41: 6f:72:3e:f0:c0:0c:66:95:d0:b4:3e:50:9f:09:e7:8b:f9:59: ae:cc:9b:90:2e:f7:46:10:ee:b1:6e:dc:d9:47:b0:57:1d:e1: 6c:7b:10:af:97:6c:a0:24:f0:52:fd:81:35:ab:1f:ac:37:60: 90:52:22:3c:05:53:fd:e5:8b:af:a2:9b:0d:3b:c4:a4:f0:bf: c5:7d:90:28:32:a0:f4:d3:d1:2a:b4:0a:c4:b6:98:a5:a9:52: 80:31:be:7e:e6:ac:44:46:dd:39:06:76:fe:37:85:94:15:14: c6:33:f5:e8 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIULCs2yPNH7LzhDMEP2OgosPYckIEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NC MEMxMDhBOTAeFw0yNTA2MTIxNjU1MDBaFw0yNjA2MTExNzAwMDBaMDMxMTAvBgNV BAMTKDc2MjBCQTk3MzE2OEQ3OEMyMDlBOUFCNEI1OURFQUFGNzYyMjE1Q0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVYRjE2lED7F+DIBQmgJCIgyye wq377u+iNVpSprEHyImwKHvpxb1Q42Z3mFzeDct9CpM4ZeIeuAESoJFvxASne5VR NEqk+8G61O8tXQGoaY1v81OOO7+Rf6PFpw/iuGONez8qgw4l1brQc+VuPPqVHxMY xEoFmyGn1jkJIzidkPzpilkiw/zvyKtswg3UrxfBZjGgt41UKglSoPw9K6WXGnwt lBlPgBFQi/TmV5erYVTVC1wUC62lxVj2LcqmGzbYmstxFvQyJRisAdXs8pvrs89Q 9eyLZ3gf2JlNcOgqCbmUsxQAIA8SPhBD7zKNUo0vhdY7WwclVWOhv6obV5CtAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUdiC6lzFo14wgmpq0tZ3qr3YiFcswHwYDVR0j BBgwFoAUmB5Wd6xgKVCr4aRCwneefLDBCKkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NzkyMmY4OS0zZTliLTRiMjEtOTE4Ni1hNjQ4YzJkYTNmN2IvMC85ODFFNTY3N0FD NjAyOTUwQUJFMUE0NDJDMjc3OUU3Q0IwQzEwOEE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTgxRTU2NzdBQzYwMjk1MEFCRTFBNDQyQzI3NzlFN0NCMEMx MDhBOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3OTIyZjg5LTNlOWItNGIyMS05 MTg2LWE2NDhjMmRhM2Y3Yi8wLzMyMzQzMDMyM2E2MTYyMzAzMDNhNjU2NjNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzQzMjMwMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAqsAAO8w DQYJKoZIhvcNAQELBQADggEBAI/dkomMMIsxmseX5G33/o8IuWy29uB4p0LnPov6 oNaYOtjvwFOCF5NHmN6TpftnMCXOk3QDVYbcDmGzQyY6bWrP/eE0qYdT0QC/cTIs +HEkDhT4UFJbH+wsR9sbCXesKPBg5z9Ko4q/lpRQQkbGVfZ7vOR4U5c5aCI9cZ83 LBs3iRJYkETaehwqiSgPHlP2QW9yPvDADGaV0LQ+UJ8J54v5Wa7Mm5Au90YQ7rFu 3NlHsFcd4Wx7EK+XbKAk8FL9gTWrH6w3YJBSIjwFU/3li6+imw07xKTwv8V9kCgy oPTT0Sq0CsS2mKWpUoAxvn7mrERG3TkGdv43hZQVFMYz9eg= -----END CERTIFICATE-----Generated at Tue Jul 1 23:29:11 2025 by rpki-client