$ rpki-client -vvf repo-rpki.idnic.net/repo/f0a929c6-1e25-494a-b0f9-55fc4fc94fbc/0/323430343a3530303a3a2f33322d3438203d3e203234323031.roa File: 323430343a3530303a3a2f33322d3438203d3e203234323031.roa (raw, json) Hash identifier: ZncYvkH3fAKDn8QBBs6vlpl5n6FCs5nY6O2LpIihUog= Subject key identifier: CF:E7:CB:96:66:00:79:AA:82:4E:2A:6D:8E:C7:A2:AA:A1:4B:78:49 Certificate issuer: /CN=8A0F7659BE6C916702994F1B653CA6335CF48F9F Certificate serial: 79DE95C26D600AE6BF0B22F5F6681A99D10AD1B8 Authority key identifier: 8A:0F:76:59:BE:6C:91:67:02:99:4F:1B:65:3C:A6:33:5C:F4:8F:9F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8A0F7659BE6C916702994F1B653CA6335CF48F9F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f0a929c6-1e25-494a-b0f9-55fc4fc94fbc/0/323430343a3530303a3a2f33322d3438203d3e203234323031.roa Signing time: Tue 24 Jun 2025 06:00:01 +0000 ROA not before: Tue 24 Jun 2025 05:55:01 +0000 ROA not after: Tue 23 Jun 2026 06:00:01 +0000 asID: 24201 IP address blocks: 2404:500::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f0a929c6-1e25-494a-b0f9-55fc4fc94fbc/0/8A0F7659BE6C916702994F1B653CA6335CF48F9F.crl rsync://repo-rpki.idnic.net/repo/f0a929c6-1e25-494a-b0f9-55fc4fc94fbc/0/8A0F7659BE6C916702994F1B653CA6335CF48F9F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8A0F7659BE6C916702994F1B653CA6335CF48F9F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Jul 2025 09:38:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:de:95:c2:6d:60:0a:e6:bf:0b:22:f5:f6:68:1a:99:d1:0a:d1:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8A0F7659BE6C916702994F1B653CA6335CF48F9F Validity Not Before: Jun 24 05:55:01 2025 GMT Not After : Jun 23 06:00:01 2026 GMT Subject: CN=CFE7CB96660079AA824E2A6D8EC7A2AAA14B7849 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:bf:cb:f7:36:8e:c8:4d:aa:e9:2c:af:a5:19: f6:cb:df:7d:ce:00:5e:d2:15:ec:b9:ab:93:cb:c0: e2:90:63:84:5c:e8:6c:86:28:76:e7:13:fc:2b:2a: 74:a4:3e:23:b2:23:e6:e1:c6:7d:f8:4a:62:f3:94: b1:a2:d0:bb:a8:1b:27:92:6a:6e:e4:d6:e0:56:c7: 85:60:27:5f:aa:be:2f:5d:93:af:66:39:91:dc:2d: f7:6f:3d:53:2a:05:58:40:45:f4:d4:0c:0d:a3:1b: 9c:54:13:82:4e:ac:0c:b8:b5:79:74:e5:ac:06:9d: 3b:32:46:04:59:00:ed:54:e2:8a:38:fd:20:38:50: 50:27:38:52:53:dc:2f:a6:41:08:54:ef:e6:ed:d5: c2:e4:65:dc:01:57:1b:60:04:cc:04:0c:10:fe:bb: 10:08:9a:aa:07:7f:30:b3:1a:77:86:1f:3a:db:37: 5a:f5:57:d0:6c:c3:fd:07:f1:8a:75:f7:c7:f3:72: e7:4d:02:5f:99:ad:07:74:71:58:d2:f3:05:24:85: c5:5a:f1:0f:df:0a:39:ce:81:b5:d8:57:82:aa:c1: c4:e4:7f:68:ba:0e:8a:db:24:7f:74:17:af:af:c2: f9:78:2c:21:b6:0d:e8:c1:20:af:ad:9e:d4:d7:aa: 15:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:E7:CB:96:66:00:79:AA:82:4E:2A:6D:8E:C7:A2:AA:A1:4B:78:49 X509v3 Authority Key Identifier: keyid:8A:0F:76:59:BE:6C:91:67:02:99:4F:1B:65:3C:A6:33:5C:F4:8F:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f0a929c6-1e25-494a-b0f9-55fc4fc94fbc/0/8A0F7659BE6C916702994F1B653CA6335CF48F9F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8A0F7659BE6C916702994F1B653CA6335CF48F9F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f0a929c6-1e25-494a-b0f9-55fc4fc94fbc/0/323430343a3530303a3a2f33322d3438203d3e203234323031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:500::/32 Signature Algorithm: sha256WithRSAEncryption 9f:9b:3c:ab:f8:7d:df:a4:46:2f:72:37:dd:4f:cf:89:74:95: de:c7:f9:dc:08:11:57:b4:12:79:66:d8:64:ff:0d:10:9f:d4: 3a:0c:bd:de:f9:dc:08:27:cb:f5:c0:a0:8f:eb:ca:8c:63:c0: b5:8d:a2:04:b1:48:f9:14:04:50:76:f1:dd:57:b8:da:27:3e: 83:e7:35:8f:87:f4:80:90:bc:41:50:9f:96:08:f7:5a:61:9f: c7:b9:3b:fd:6d:7c:c2:1b:d3:f3:a1:13:86:a8:fc:f5:d2:c9: 54:8e:54:85:d3:af:19:ab:8e:2e:fe:ed:2b:68:9b:8d:17:d9: 34:da:ab:a0:e7:c8:39:41:e2:10:55:8e:63:56:db:dd:38:8d: 97:20:55:38:af:d8:c1:01:bb:88:b6:dd:75:58:a7:c8:a8:15: ef:59:d2:a1:cb:85:95:ea:0d:26:f3:23:2f:aa:87:14:6c:f3: 13:23:40:39:e7:66:d3:24:9a:0e:55:5e:af:ce:c1:8f:24:96: 21:30:19:06:d4:55:c3:7e:ba:b2:6f:4d:93:b1:2b:66:bc:59: df:93:0a:0e:5f:61:f0:bb:ee:76:d0:e4:24:f4:49:c8:1d:ec: de:c8:81:7a:df:a4:e6:16:38:26:b6:f0:68:27:fa:4b:51:3e: 45:2b:b1:e3 -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUed6Vwm1gCua/CyL19mgamdEK0bgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEEwRjc2NTlCRTZDOTE2NzAyOTk0RjFCNjUzQ0E2MzM1 Q0Y0OEY5RjAeFw0yNTA2MjQwNTU1MDFaFw0yNjA2MjMwNjAwMDFaMDMxMTAvBgNV BAMTKENGRTdDQjk2NjYwMDc5QUE4MjRFMkE2RDhFQzdBMkFBQTE0Qjc4NDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIv8v3No7ITarpLK+lGfbL333O AF7SFey5q5PLwOKQY4Rc6GyGKHbnE/wrKnSkPiOyI+bhxn34SmLzlLGi0LuoGyeS am7k1uBWx4VgJ1+qvi9dk69mOZHcLfdvPVMqBVhARfTUDA2jG5xUE4JOrAy4tXl0 5awGnTsyRgRZAO1U4oo4/SA4UFAnOFJT3C+mQQhU7+bt1cLkZdwBVxtgBMwEDBD+ uxAImqoHfzCzGneGHzrbN1r1V9Bsw/0H8Yp198fzcudNAl+ZrQd0cVjS8wUkhcVa 8Q/fCjnOgbXYV4KqwcTkf2i6DorbJH90F6+vwvl4LCG2DejBIK+tntTXqhURAgMB AAGjggIuMIICKjAdBgNVHQ4EFgQUz+fLlmYAeaqCTiptjseiqqFLeEkwHwYDVR0j BBgwFoAUig92Wb5skWcCmU8bZTymM1z0j58wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MGE5MjljNi0xZTI1LTQ5NGEtYjBmOS01NWZjNGZjOTRmYmMvMC84QTBGNzY1OUJF NkM5MTY3MDI5OTRGMUI2NTNDQTYzMzVDRjQ4RjlGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEEwRjc2NTlCRTZDOTE2NzAyOTk0RjFCNjUzQ0E2MzM1Q0Y0 OEY5Ri5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZjBhOTI5YzYtMWUyNS00OTRhLWIw ZjktNTVmYzRmYzk0ZmJjLzAvMzIzNDMwMzQzYTM1MzAzMDNhM2EyZjMzMzIyZDM0 MzgyMDNkM2UyMDMyMzQzMjMwMzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBAUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfmzyr+H3fpEYvcjfdT8+JdJXex/ncCBFXtBJ5Zthk/w0Qn9Q6DL3e +dwIJ8v1wKCP68qMY8C1jaIEsUj5FARQdvHdV7jaJz6D5zWPh/SAkLxBUJ+WCPda YZ/HuTv9bXzCG9PzoROGqPz10slUjlSF068Zq44u/u0raJuNF9k02qug58g5QeIQ VY5jVtvdOI2XIFU4r9jBAbuItt11WKfIqBXvWdKhy4WV6g0m8yMvqocUbPMTI0A5 52bTJJoOVV6vzsGPJJYhMBkG1FXDfrqyb02TsStmvFnfkwoOX2Hwu+520OQk9EnI HezeyIF636TmFjgmtvBoJ/pLUT5FK7Hj -----END CERTIFICATE-----Generated at Tue Jul 1 17:55:34 2025 by rpki-client