$ rpki-client -vvf repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a3a2f33352d3438203d3e20313430343233.roa File: 323430363a323063303a3a2f33352d3438203d3e20313430343233.roa (raw, json) Hash identifier: 4ENHlwTlF+1A/B5bj7Otex0+XhkMg4MDNFvK0FVMiQ4= Subject key identifier: 6E:4B:A8:57:B5:DE:FE:10:75:53:8D:AE:E2:ED:65:E8:65:4E:23:6F Certificate issuer: /CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Certificate serial: 752CAD48BB128D40F9E3081A4C50EA7B45E81738 Authority key identifier: 7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject info access: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a3a2f33352d3438203d3e20313430343233.roa Signing time: Sun 03 Aug 2025 08:00:00 +0000 ROA not before: Sun 03 Aug 2025 07:55:00 +0000 ROA not after: Sun 02 Aug 2026 08:00:00 +0000 asID: 140423 IP address blocks: 2406:20c0::/35 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 03:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:2c:ad:48:bb:12:8d:40:f9:e3:08:1a:4c:50:ea:7b:45:e8:17:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874 Validity Not Before: Aug 3 07:55:00 2025 GMT Not After : Aug 2 08:00:00 2026 GMT Subject: CN=6E4BA857B5DEFE1075538DAEE2ED65E8654E236F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ee:1d:81:a5:df:04:4e:85:b5:65:43:76:07: b4:c8:cc:ac:fd:b1:71:79:ef:f3:8c:7a:10:5b:32: 71:3f:0e:58:7b:9a:82:4d:4f:0e:d7:54:d7:9c:de: e8:35:ad:4c:da:83:ef:49:9f:30:c4:fb:01:56:18: be:40:69:95:13:16:3a:69:0b:77:57:d6:ac:fa:e8: 36:c7:43:8d:6c:bd:2e:fc:d1:6a:9d:5c:50:34:f2: 75:ea:d2:c5:7b:12:2c:b1:33:5d:89:7f:e9:49:c5: 02:30:1b:6a:29:88:77:23:be:e2:80:4d:24:8a:91: 66:be:ab:5b:89:2f:f9:77:68:01:f9:94:0c:16:5d: 72:16:31:d3:80:c6:b3:76:35:bd:e4:5a:6b:37:6e: cb:d6:1c:3e:15:51:15:55:65:1a:69:95:13:03:83: 6b:9f:aa:64:04:7d:53:e9:25:76:64:29:16:68:f7: 8d:6e:9b:16:00:46:c2:cd:e9:18:3d:e3:e4:bb:e8: 04:0a:48:58:60:9d:7b:71:20:bd:43:c6:12:cf:8a: ec:83:06:62:f5:6d:4f:a0:51:2f:67:7a:f2:e4:d7: 1f:ed:05:66:3d:9b:ad:9a:b9:ab:b3:aa:3f:cc:2a: c0:09:0c:f7:90:d0:61:a1:42:b8:ed:61:a5:c7:74: 09:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:4B:A8:57:B5:DE:FE:10:75:53:8D:AE:E2:ED:65:E8:65:4E:23:6F X509v3 Authority Key Identifier: keyid:7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a3a2f33352d3438203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:20c0::/35 Signature Algorithm: sha256WithRSAEncryption 4d:d1:dd:de:d7:30:f7:35:e3:5d:26:9d:fb:61:be:85:16:e8: 76:4a:a3:66:7b:c1:15:00:54:50:50:fc:b8:4a:a0:16:17:d5: f2:46:1a:6e:2f:20:ad:bd:46:fa:9a:d2:c4:b6:a9:2f:2c:5b: 59:8e:db:ed:67:95:62:67:fb:5e:cf:24:5f:4f:b1:08:c6:06: 47:a1:cb:5d:28:15:9c:31:35:65:1f:4e:bf:c1:bd:a9:6b:e5: d8:9b:a3:60:1f:52:1a:be:20:a1:bf:b0:2f:68:2c:e1:30:c7: bf:1a:9a:2e:20:b1:92:f4:df:7e:db:d0:d7:03:12:cf:15:93: 5f:ef:54:4a:67:da:6b:86:2f:34:bc:53:71:8e:1f:5a:22:79: d2:0a:3f:2a:a9:1a:81:f7:54:52:69:36:6b:da:0c:31:f7:55: a3:3f:b2:ae:75:9c:ea:ed:f9:93:3b:90:e5:54:64:18:56:3b: 66:11:c7:69:41:35:ae:79:a6:bb:92:a8:1a:47:e2:2d:96:ed: d3:4c:c0:c1:85:2a:e3:60:78:06:bc:57:ef:f9:7d:d1:5c:46: 8e:a5:72:20:c3:e3:0b:e9:05:74:7c:f9:5c:1e:30:74:50:fe: 59:8a:9d:13:dd:37:90:57:37:54:04:11:09:05:dc:06:3d:c4: 0c:71:22:98 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUdSytSLsSjUD54wgaTFDqe0XoFzgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODcz NTJDQjg3NDAeFw0yNTA4MDMwNzU1MDBaFw0yNjA4MDIwODAwMDBaMDMxMTAvBgNV BAMTKDZFNEJBODU3QjVERUZFMTA3NTUzOERBRUUyRUQ2NUU4NjU0RTIzNkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA7h2Bpd8EToW1ZUN2B7TIzKz9 sXF57/OMehBbMnE/Dlh7moJNTw7XVNec3ug1rUzag+9JnzDE+wFWGL5AaZUTFjpp C3dX1qz66DbHQ41svS780WqdXFA08nXq0sV7EiyxM12Jf+lJxQIwG2opiHcjvuKA TSSKkWa+q1uJL/l3aAH5lAwWXXIWMdOAxrN2Nb3kWms3bsvWHD4VURVVZRpplRMD g2ufqmQEfVPpJXZkKRZo941umxYARsLN6Rg94+S76AQKSFhgnXtxIL1DxhLPiuyD BmL1bU+gUS9nevLk1x/tBWY9m62auauzqj/MKsAJDPeQ0GGhQrjtYaXHdAmzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUbkuoV7Xe/hB1U42u4u1l6GVOI28wHwYDVR0j BBgwFoAUfP0POf4ukOqLH10y1HbjhzUsuHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x OWEwMDM2OS02ODQwLTRhOTUtODliMS1hNDg1MThmOThkYzcvMC83Q0ZEMEYzOUZF MkU5MEVBOEIxRjVEMzJENDc2RTM4NzM1MkNCODc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0NGRDBGMzlGRTJFOTBFQThCMUY1RDMyRDQ3NkUzODczNTJD Qjg3NC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE5YTAwMzY5LTY4NDAtNGE5NS04 OWIxLWE0ODUxOGY5OGRjNy8wLzMyMzQzMDM2M2EzMjMwNjMzMDNhM2EyZjMzMzUy ZDM0MzgyMDNkM2UyMDMxMzQzMDM0MzIzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBSQGIMAAMA0GCSqG SIb3DQEBCwUAA4IBAQBN0d3e1zD3NeNdJp37Yb6FFuh2SqNme8EVAFRQUPy4SqAW F9XyRhpuLyCtvUb6mtLEtqkvLFtZjtvtZ5ViZ/tezyRfT7EIxgZHoctdKBWcMTVl H06/wb2pa+XYm6NgH1IaviChv7AvaCzhMMe/GpouILGS9N9+29DXAxLPFZNf71RK Z9prhi80vFNxjh9aInnSCj8qqRqB91RSaTZr2gwx91WjP7KudZzq7fmTO5DlVGQY VjtmEcdpQTWueaa7kqgaR+Itlu3TTMDBhSrjYHgGvFfv+X3RXEaOpXIgw+ML6QV0 fPlcHjB0UP5Zip0T3TeQVzdUBBEJBdwGPcQMcSKY -----END CERTIFICATE-----Generated at Sat Aug 9 20:34:09 2025 by rpki-client