$ rpki-client -vvf repo-rpki.idnic.net/repo/bf542bc4-74dc-45dd-b659-745ca2aca333/0/323430303a623138303a3a2f33322d3438203d3e203539323736.roa File: 323430303a623138303a3a2f33322d3438203d3e203539323736.roa (raw, json) Hash identifier: o6odkvAl/hKTp4KI63oh9m6EF8ypSkoU3xcKf1Jgr6o= Subject key identifier: A2:67:ED:AF:78:46:2E:C5:5E:E8:B2:1B:8D:81:3A:C8:01:1D:81:9D Certificate issuer: /CN=6319B77FD8EB7EC968DD59FE94AE146A879A74E5 Certificate serial: 642F700771E6D3A9DFB62D2DC4A5655D0DD246FA Authority key identifier: 63:19:B7:7F:D8:EB:7E:C9:68:DD:59:FE:94:AE:14:6A:87:9A:74:E5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6319B77FD8EB7EC968DD59FE94AE146A879A74E5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bf542bc4-74dc-45dd-b659-745ca2aca333/0/323430303a623138303a3a2f33322d3438203d3e203539323736.roa Signing time: Thu 21 Aug 2025 22:00:00 +0000 ROA not before: Thu 21 Aug 2025 21:55:00 +0000 ROA not after: Thu 20 Aug 2026 22:00:00 +0000 asID: 59276 IP address blocks: 2400:b180::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bf542bc4-74dc-45dd-b659-745ca2aca333/0/6319B77FD8EB7EC968DD59FE94AE146A879A74E5.crl rsync://repo-rpki.idnic.net/repo/bf542bc4-74dc-45dd-b659-745ca2aca333/0/6319B77FD8EB7EC968DD59FE94AE146A879A74E5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6319B77FD8EB7EC968DD59FE94AE146A879A74E5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 22:08:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:2f:70:07:71:e6:d3:a9:df:b6:2d:2d:c4:a5:65:5d:0d:d2:46:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6319B77FD8EB7EC968DD59FE94AE146A879A74E5 Validity Not Before: Aug 21 21:55:00 2025 GMT Not After : Aug 20 22:00:00 2026 GMT Subject: CN=A267EDAF78462EC55EE8B21B8D813AC8011D819D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:86:cf:53:03:79:93:a6:46:09:5a:6e:6e:82: 28:9c:a5:b6:2c:7f:b7:f8:86:37:70:39:74:91:81: be:04:3f:09:3b:ab:c0:b8:ce:2d:f4:7a:28:e8:51: a3:af:00:6a:c0:5f:da:c9:bd:63:b4:82:9e:78:0b: 1f:8a:0e:08:99:23:66:89:cc:87:ed:f7:b3:bf:13: c8:ac:24:b5:27:a9:74:9c:75:42:66:8a:43:98:35: f2:cd:96:f9:34:82:69:fb:48:a3:a4:62:86:aa:d3: f1:e1:70:3f:2e:ee:6d:12:45:e7:f6:89:22:dd:3a: ff:b9:c9:9a:21:5b:c9:c2:bc:4e:ed:70:b3:bd:b4: bb:0e:88:6b:19:c7:d8:c7:82:81:93:9b:0a:07:f7: 9b:c6:2a:d9:51:d1:37:ca:a8:c8:6d:21:30:de:7d: 3e:5a:c1:2e:f3:47:85:f3:98:16:03:48:00:bd:10: 90:81:dd:40:ae:b2:41:3e:61:a3:d2:cd:58:32:b9: ad:80:f8:8c:10:ee:82:cf:1d:30:45:b0:2c:7e:cb: df:bc:b5:1b:a1:90:3c:61:2e:16:9d:9e:c2:ee:0b: ea:65:ae:ce:86:01:ef:84:a4:3b:92:19:51:12:74: 17:99:07:a2:11:b7:ba:24:c3:ea:17:13:5e:31:b6: 4a:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:67:ED:AF:78:46:2E:C5:5E:E8:B2:1B:8D:81:3A:C8:01:1D:81:9D X509v3 Authority Key Identifier: keyid:63:19:B7:7F:D8:EB:7E:C9:68:DD:59:FE:94:AE:14:6A:87:9A:74:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bf542bc4-74dc-45dd-b659-745ca2aca333/0/6319B77FD8EB7EC968DD59FE94AE146A879A74E5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6319B77FD8EB7EC968DD59FE94AE146A879A74E5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bf542bc4-74dc-45dd-b659-745ca2aca333/0/323430303a623138303a3a2f33322d3438203d3e203539323736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:b180::/32 Signature Algorithm: sha256WithRSAEncryption 6e:18:a6:4f:35:c5:5d:a4:82:fd:bb:bb:20:2d:2d:5a:70:1c: e1:53:e5:73:4e:e7:d2:d9:b2:a9:21:a7:4b:86:bd:78:f3:5f: 0a:ca:d5:04:41:47:ee:9e:0e:1b:51:c6:e1:07:82:17:cb:0e: 77:03:7d:74:8f:9a:88:cd:dc:e3:21:0c:1a:6f:e1:33:05:08: d3:9a:1a:e0:a6:bb:6f:f3:6e:de:54:eb:14:ee:93:21:f6:fe: 1e:0a:cf:43:d2:45:41:6f:22:71:63:40:fa:e0:43:75:52:0c: 92:9a:d5:c1:ad:29:46:dc:b2:87:e6:6a:3a:fe:8a:7b:56:13: ae:ca:82:16:21:3e:a4:d5:d3:2b:ce:10:81:ba:85:1e:97:21: d2:fa:2f:13:8b:14:ee:25:36:0c:ba:e0:1b:51:e8:d6:6f:50: 4d:e7:55:e0:bf:23:c3:da:1b:be:30:d2:f3:4b:91:ed:4a:0e: bd:85:a3:4d:e3:bb:f0:29:2a:1d:54:70:d7:e0:1a:78:06:68: 84:98:94:99:68:81:74:31:2a:2c:2d:61:b1:24:c3:57:ed:da: b2:14:be:ea:15:6f:48:3a:8a:24:35:53:9c:b1:35:9c:50:a1: 9e:fa:2e:d0:d9:79:98:12:f9:82:45:bb:bd:83:64:4b:fb:e4: fe:c4:e4:36 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUZC9wB3Hm06nfti0txKVlXQ3SRvowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjMxOUI3N0ZEOEVCN0VDOTY4REQ1OUZFOTRBRTE0NkE4 NzlBNzRFNTAeFw0yNTA4MjEyMTU1MDBaFw0yNjA4MjAyMjAwMDBaMDMxMTAvBgNV BAMTKEEyNjdFREFGNzg0NjJFQzU1RUU4QjIxQjhEODEzQUM4MDExRDgxOUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCohs9TA3mTpkYJWm5ugiicpbYs f7f4hjdwOXSRgb4EPwk7q8C4zi30eijoUaOvAGrAX9rJvWO0gp54Cx+KDgiZI2aJ zIft97O/E8isJLUnqXScdUJmikOYNfLNlvk0gmn7SKOkYoaq0/HhcD8u7m0SRef2 iSLdOv+5yZohW8nCvE7tcLO9tLsOiGsZx9jHgoGTmwoH95vGKtlR0TfKqMhtITDe fT5awS7zR4XzmBYDSAC9EJCB3UCuskE+YaPSzVgyua2A+IwQ7oLPHTBFsCx+y9+8 tRuhkDxhLhadnsLuC+plrs6GAe+EpDuSGVESdBeZB6IRt7okw+oXE14xtkoFAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUomftr3hGLsVe6LIbjYE6yAEdgZ0wHwYDVR0j BBgwFoAUYxm3f9jrfslo3Vn+lK4UaoeadOUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZjU0MmJjNC03NGRjLTQ1ZGQtYjY1OS03NDVjYTJhY2EzMzMvMC82MzE5Qjc3RkQ4 RUI3RUM5NjhERDU5RkU5NEFFMTQ2QTg3OUE3NEU1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjMxOUI3N0ZEOEVCN0VDOTY4REQ1OUZFOTRBRTE0NkE4NzlB NzRFNS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JmNTQyYmM0LTc0ZGMtNDVkZC1i NjU5LTc0NWNhMmFjYTMzMy8wLzMyMzQzMDMwM2E2MjMxMzgzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDM1MzkzMjM3MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkALGAMA0GCSqGSIb3 DQEBCwUAA4IBAQBuGKZPNcVdpIL9u7sgLS1acBzhU+VzTufS2bKpIadLhr14818K ytUEQUfung4bUcbhB4IXyw53A310j5qIzdzjIQwab+EzBQjTmhrgprtv827eVOsU 7pMh9v4eCs9D0kVBbyJxY0D64EN1UgySmtXBrSlG3LKH5mo6/op7VhOuyoIWIT6k 1dMrzhCBuoUelyHS+i8TixTuJTYMuuAbUejWb1BN51XgvyPD2hu+MNLzS5HtSg69 haNN47vwKSodVHDX4Bp4BmiEmJSZaIF0MSosLWGxJMNX7dqyFL7qFW9IOookNVOc sTWcUKGe+i7Q2XmYEvmCRbu9g2RL++T+xOQ2 -----END CERTIFICATE-----Generated at Sat Aug 23 13:25:39 2025 by rpki-client