$ rpki-client -vvf repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a383030303a3a2f33352d3438203d3e20313430343233.roa File: 323430363a323063303a383030303a3a2f33352d3438203d3e20313430343233.roa (raw, json) Hash identifier: sCyqi6yrEDGDnuGOtNb1GJfPU2ui3XCN9TQf3rVuTZc= Subject key identifier: E6:4B:1E:6E:C2:A2:E0:65:A8:10:8E:00:E9:A9:D3:84:ED:B3:84:DE Certificate issuer: /CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Certificate serial: 2CD29DEF1334084D195E1A6E0FDF07246CD6F0A5 Authority key identifier: 7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a383030303a3a2f33352d3438203d3e20313430343233.roa Signing time: Sun 03 Aug 2025 07:00:00 +0000 ROA not before: Sun 03 Aug 2025 06:55:00 +0000 ROA not after: Sun 02 Aug 2026 07:00:00 +0000 asID: 140423 IP address blocks: 2406:20c0:8000::/35 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 03:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:d2:9d:ef:13:34:08:4d:19:5e:1a:6e:0f:df:07:24:6c:d6:f0:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Validity Not Before: Aug 3 06:55:00 2025 GMT Not After : Aug 2 07:00:00 2026 GMT Subject: CN=E64B1E6EC2A2E065A8108E00E9A9D384EDB384DE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:00:db:0f:e4:b8:1b:a0:69:48:2e:70:20:71: 87:d0:ae:38:23:7f:b5:8d:c0:79:00:c7:f2:c1:04: f3:c8:d5:57:d0:c1:bb:62:16:2e:53:22:3a:78:d3: 34:bf:a3:d2:9d:00:1b:a1:99:14:a5:0a:76:8a:54: e5:4f:f6:f7:85:9c:bc:5e:49:a1:93:13:41:63:25: 0e:e5:29:9f:0d:6d:cc:7a:92:1a:f9:4f:2b:e1:7c: 1c:f4:92:7d:13:20:5d:61:e5:d4:09:cf:88:02:68: 92:ad:58:a5:3a:e5:78:af:93:9d:f8:74:22:5e:68: 33:eb:aa:c9:91:56:a8:bf:48:09:00:e1:f6:5f:ea: 1f:99:13:59:21:0c:43:24:5a:c6:ee:46:52:32:67: fe:3f:cc:27:01:ae:b4:0b:7e:ea:59:ef:b2:d8:c9: d8:54:ce:1b:15:5f:31:83:8c:9e:3f:e4:63:1d:7a: a8:0e:49:0d:82:d0:f6:1e:cf:b2:8c:86:21:dd:17: 7d:a3:48:b0:f9:70:93:e5:39:b0:6e:84:bc:b0:8a: 51:a3:c7:bf:4e:7c:91:47:b8:50:d9:ed:f2:11:b5: 17:17:48:c8:31:20:7a:17:5d:44:a0:bc:8b:86:75: d7:6b:39:65:81:67:3a:ae:ec:43:e2:b6:ef:99:54: 50:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:4B:1E:6E:C2:A2:E0:65:A8:10:8E:00:E9:A9:D3:84:ED:B3:84:DE X509v3 Authority Key Identifier: keyid:7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a383030303a3a2f33352d3438203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:20c0:8000::/35 Signature Algorithm: sha256WithRSAEncryption 21:fd:8e:86:4c:f8:53:22:90:a5:c4:60:7d:1a:5c:0c:4b:32: 94:41:c2:b3:f0:80:1a:9b:b0:ff:09:94:cc:9e:2e:c6:6b:5c: 58:0d:96:6e:fe:f1:b4:b2:b8:0f:a1:6d:6b:fb:c9:c5:d8:20: 48:0e:5d:04:66:f2:24:45:61:0b:02:31:8a:78:82:b6:aa:4e: 1b:80:0a:6c:c4:9e:d2:e0:63:97:aa:9d:b6:ea:c0:6b:18:96: 97:42:66:29:86:fa:62:9f:2b:1c:eb:3f:cb:7f:c9:42:80:21: 63:7a:05:77:95:bf:ad:1a:49:de:27:0c:67:11:aa:b1:f1:b5: 0c:18:c8:68:48:29:86:ad:56:74:ef:e6:84:6c:54:3e:62:ec: 9b:66:66:9a:a0:ca:54:6d:d2:00:2c:14:f9:e0:91:bd:bd:71: 04:c9:06:70:12:bf:cb:cb:be:63:d2:0d:c8:1b:7e:a2:29:8d: 25:11:d9:49:0d:b6:3d:b2:1a:15:e1:c0:f5:5a:7f:f3:29:ce: 1c:3c:57:20:ce:52:aa:43:93:ee:58:ec:7b:cb:f2:d9:02:10: f8:2e:77:de:ba:31:6d:cb:8e:34:8a:d7:eb:2e:8b:05:7e:55: a3:4f:a5:f4:6b:76:f6:6d:75:3a:1d:27:ed:8d:cd:9a:3e:01: e6:b8:01:46 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIULNKd7xM0CE0ZXhpuD98HJGzW8KUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODcz NTJDQjg3NDAeFw0yNTA4MDMwNjU1MDBaFw0yNjA4MDIwNzAwMDBaMDMxMTAvBgNV BAMTKEU2NEIxRTZFQzJBMkUwNjVBODEwOEUwMEU5QTlEMzg0RURCMzg0REUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzANsP5LgboGlILnAgcYfQrjgj f7WNwHkAx/LBBPPI1VfQwbtiFi5TIjp40zS/o9KdABuhmRSlCnaKVOVP9veFnLxe SaGTE0FjJQ7lKZ8Nbcx6khr5TyvhfBz0kn0TIF1h5dQJz4gCaJKtWKU65Xivk534 dCJeaDPrqsmRVqi/SAkA4fZf6h+ZE1khDEMkWsbuRlIyZ/4/zCcBrrQLfupZ77LY ydhUzhsVXzGDjJ4/5GMdeqgOSQ2C0PYez7KMhiHdF32jSLD5cJPlObBuhLywilGj x79OfJFHuFDZ7fIRtRcXSMgxIHoXXUSgvIuGdddrOWWBZzqu7EPitu+ZVFA1AgMB AAGjggI+MIICOjAdBgNVHQ4EFgQU5ksebsKi4GWoEI4A6anThO2zhN4wHwYDVR0j BBgwFoAUfP0POf4ukOqLH10y1HbjhzUsuHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OWEwMDM2OS02ODQwLTRhOTUtODliMS1hNDg1MThmOThkYzcvMC83Q0ZEMEYzOUZF MkU5MEVBOEIxRjVEMzJENDc2RTM4NzM1MkNCODc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODczNTJD Qjg3NC5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04 OWIxLWE0ODUxOGY5OGRjNy8wLzMyMzQzMDM2M2EzMjMwNjMzMDNhMzgzMDMwMzAz YTNhMmYzMzM1MmQzNDM4MjAzZDNlMjAzMTM0MzAzNDMyMzMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgUk BiDAgDANBgkqhkiG9w0BAQsFAAOCAQEAIf2Ohkz4UyKQpcRgfRpcDEsylEHCs/CA Gpuw/wmUzJ4uxmtcWA2Wbv7xtLK4D6Fta/vJxdggSA5dBGbyJEVhCwIxiniCtqpO G4AKbMSe0uBjl6qdturAaxiWl0JmKYb6Yp8rHOs/y3/JQoAhY3oFd5W/rRpJ3icM ZxGqsfG1DBjIaEgphq1WdO/mhGxUPmLsm2ZmmqDKVG3SACwU+eCRvb1xBMkGcBK/ y8u+Y9INyBt+oimNJRHZSQ22PbIaFeHA9Vp/8ynOHDxXIM5SqkOT7ljse8vy2QIQ +C533roxbcuONIrX6y6LBX5Vo0+l9Gt29m11Oh0n7Y3Nmj4B5rgBRg== -----END CERTIFICATE-----Generated at Sat Aug 9 22:41:52 2025 by rpki-client