$ rpki-client -vvf repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a383030303a3a2f33332d3438203d3e20313430343233.roa File: 323430363a323063303a383030303a3a2f33332d3438203d3e20313430343233.roa (raw, json) Hash identifier: nc3F3910+MhR+R2C2cG5slQzSrCjkkgP0aqO39Vsoos= Subject key identifier: AE:21:B5:1F:DC:1B:60:5D:09:1B:59:75:B3:62:30:E9:ED:01:FF:61 Certificate issuer: /CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Certificate serial: 5F1B2BA403E4081ACE89AD781D00358A3B7CA031 Authority key identifier: 7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a383030303a3a2f33332d3438203d3e20313430343233.roa Signing time: Sun 03 Aug 2025 08:00:00 +0000 ROA not before: Sun 03 Aug 2025 07:55:00 +0000 ROA not after: Sun 02 Aug 2026 08:00:00 +0000 asID: 140423 IP address blocks: 2406:20c0:8000::/33 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 03:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:1b:2b:a4:03:e4:08:1a:ce:89:ad:78:1d:00:35:8a:3b:7c:a0:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Validity Not Before: Aug 3 07:55:00 2025 GMT Not After : Aug 2 08:00:00 2026 GMT Subject: CN=AE21B51FDC1B605D091B5975B36230E9ED01FF61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:2f:c7:2a:7b:30:04:c7:c9:e2:47:4a:ac:1a: 78:2e:6d:13:b1:12:2d:04:b3:3d:32:1b:97:0c:7c: 0a:45:52:9c:b7:3f:2c:30:5d:07:df:73:ed:70:a4: 0d:f2:0c:51:78:20:5e:50:c5:25:5b:4b:17:d8:b3: c9:90:af:26:3f:7f:b2:42:5d:74:08:76:61:45:30: 36:90:d1:94:8e:e3:51:7a:67:2b:2d:d1:b6:f1:e5: 04:36:6d:d4:c8:ea:bd:8c:22:03:0f:08:76:93:dd: f2:e5:e7:0a:d3:a6:28:f0:29:bc:e0:9a:7d:3d:ee: dc:71:a5:7d:be:ca:4a:5d:ae:01:8c:b0:96:63:d0: 8a:92:73:e4:a2:9d:56:6a:87:8c:cb:64:f5:f7:34: fc:db:81:05:ed:97:45:32:14:74:93:eb:53:30:77: c7:b3:ae:3d:20:f6:62:30:da:c9:3d:39:b3:1c:1a: 82:91:d2:c1:9e:bb:42:d3:ff:69:a7:9e:26:5c:74: de:a1:ed:be:ee:df:90:46:f7:7d:b5:70:fe:3a:0f: 8f:9f:9c:62:07:e7:66:79:06:74:0f:d3:fa:53:f6: 16:37:0b:a0:a1:7f:e4:56:be:b7:23:92:f2:f9:be: c9:57:5d:e2:f6:68:6a:f7:6b:5d:62:36:40:5f:1e: a9:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:21:B5:1F:DC:1B:60:5D:09:1B:59:75:B3:62:30:E9:ED:01:FF:61 X509v3 Authority Key Identifier: keyid:7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a383030303a3a2f33332d3438203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:20c0:8000::/33 Signature Algorithm: sha256WithRSAEncryption aa:d8:54:2a:5b:1f:05:e7:97:55:48:49:fc:63:88:00:f8:5b: 40:a2:0c:b6:a8:ed:f2:8b:fa:3c:b1:d3:67:38:3a:2a:13:9f: 4b:36:aa:cc:f3:1e:c6:c7:76:74:cb:7b:de:2f:15:2b:76:15: bc:4d:2c:8b:08:6a:94:33:cd:a8:0c:02:94:7c:83:4e:60:42: b9:ce:4a:21:e6:ab:26:87:07:0b:9f:57:82:eb:df:b5:58:be: 27:e6:d2:06:33:7d:54:2b:22:a3:b0:d4:9a:ad:39:69:6f:95: e5:49:ee:fc:25:a8:c0:79:50:ce:04:1f:9c:c4:74:e3:dc:e5: 9b:ef:59:2f:c8:8d:ae:f5:c0:06:89:6b:c8:36:5c:e0:97:0e: 51:0f:31:d9:d2:41:2c:b6:bb:21:e5:80:8c:c7:c7:28:38:9a: f7:ac:2e:42:76:f7:30:e5:cf:06:f4:c3:9b:52:b2:00:e0:48: b7:c4:ad:53:c9:38:23:b1:de:80:6d:06:c1:67:85:bf:e5:34: af:4a:2e:92:b9:ca:38:71:c8:30:b0:a7:03:b6:8e:c1:7c:d9: 1c:92:a5:b8:39:c4:91:19:ea:06:bd:8d:80:21:40:5c:90:ff: e1:d6:f5:12:44:38:f8:9a:b1:06:88:4a:b6:08:cf:33:a7:a4: 32:fe:db:83 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUXxsrpAPkCBrOia14HQA1ijt8oDEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODcz NTJDQjg3NDAeFw0yNTA4MDMwNzU1MDBaFw0yNjA4MDIwODAwMDBaMDMxMTAvBgNV BAMTKEFFMjFCNTFGREMxQjYwNUQwOTFCNTk3NUIzNjIzMEU5RUQwMUZGNjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvL8cqezAEx8niR0qsGngubROx Ei0Esz0yG5cMfApFUpy3PywwXQffc+1wpA3yDFF4IF5QxSVbSxfYs8mQryY/f7JC XXQIdmFFMDaQ0ZSO41F6Zyst0bbx5QQ2bdTI6r2MIgMPCHaT3fLl5wrTpijwKbzg mn097txxpX2+ykpdrgGMsJZj0IqSc+SinVZqh4zLZPX3NPzbgQXtl0UyFHST61Mw d8ezrj0g9mIw2sk9ObMcGoKR0sGeu0LT/2mnniZcdN6h7b7u35BG9321cP46D4+f nGIH52Z5BnQP0/pT9hY3C6Chf+RWvrcjkvL5vslXXeL2aGr3a11iNkBfHqkvAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUriG1H9wbYF0JG1l1s2Iw6e0B/2EwHwYDVR0j BBgwFoAUfP0POf4ukOqLH10y1HbjhzUsuHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OWEwMDM2OS02ODQwLTRhOTUtODliMS1hNDg1MThmOThkYzcvMC83Q0ZEMEYzOUZF MkU5MEVBOEIxRjVEMzJENDc2RTM4NzM1MkNCODc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODczNTJD Qjg3NC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04 OWIxLWE0ODUxOGY5OGRjNy8wLzMyMzQzMDM2M2EzMjMwNjMzMDNhMzgzMDMwMzAz YTNhMmYzMzMzMmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMyMzMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgck BiDAgDANBgkqhkiG9w0BAQsFAAOCAQEAqthUKlsfBeeXVUhJ/GOIAPhbQKIMtqjt 8ov6PLHTZzg6KhOfSzaqzPMexsd2dMt73i8VK3YVvE0siwhqlDPNqAwClHyDTmBC uc5KIearJocHC59XguvftVi+J+bSBjN9VCsio7DUmq05aW+V5Unu/CWowHlQzgQf nMR049zlm+9ZL8iNrvXABolryDZc4JcOUQ8x2dJBLLa7IeWAjMfHKDia96wuQnb3 MOXPBvTDm1KyAOBIt8StU8k4I7HegG0GwWeFv+U0r0oukrnKOHHIMLCnA7aOwXzZ HJKluDnEkRnqBr2NgCFAXJD/4db1EkQ4+JqxBohKtgjPM6ekMv7bgw== -----END CERTIFICATE-----Generated at Sun Aug 10 03:45:10 2025 by rpki-client