$ rpki-client -vvf repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a343030303a3a2f33342d3334203d3e20313331373439.roa File: 323430323a626538303a343030303a3a2f33342d3334203d3e20313331373439.roa (raw, json) Hash identifier: 8yEyL4RD7Qa35m9yx8L60c6viJWD8aIwuREP+x+PT4o= Subject key identifier: B2:DF:8B:95:C4:F4:E6:4E:EB:02:AA:CB:F9:CE:36:4F:65:27:51:93 Certificate issuer: /CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Certificate serial: 1BE057396BE81F4FF824AB834A979DDAD3513567 Authority key identifier: 10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a343030303a3a2f33342d3334203d3e20313331373439.roa Signing time: Wed 23 Jul 2025 02:00:00 +0000 ROA not before: Wed 23 Jul 2025 01:55:00 +0000 ROA not after: Wed 22 Jul 2026 02:00:00 +0000 asID: 131749 IP address blocks: 2402:be80:4000::/34 maxlen: 34 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 19:44:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:e0:57:39:6b:e8:1f:4f:f8:24:ab:83:4a:97:9d:da:d3:51:35:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Validity Not Before: Jul 23 01:55:00 2025 GMT Not After : Jul 22 02:00:00 2026 GMT Subject: CN=B2DF8B95C4F4E64EEB02AACBF9CE364F65275193 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:60:03:e4:0d:b3:49:3d:92:68:62:65:d9:79: d0:76:da:3b:32:5e:cf:31:cd:bf:55:a9:76:9d:e9: e1:cb:84:2d:51:c8:c5:31:24:89:c7:02:cc:9d:d5: 84:ce:d2:48:b5:ce:35:49:76:9d:22:a3:e1:8f:c9: 9a:98:82:9b:80:07:88:7f:ac:85:3b:9d:6f:cc:bb: 54:78:ed:1d:b2:79:c1:90:05:99:57:28:cc:cb:ac: 6b:b0:39:49:aa:a6:56:e6:4a:cb:6a:d3:66:dd:ca: 0b:7e:c3:fc:bf:64:12:9f:d0:88:18:fa:e5:a7:cc: fd:f2:2c:6d:ea:00:ba:5a:5b:36:ae:b2:c2:6f:70: 97:8b:ed:a1:13:1e:71:8d:84:e4:41:b5:cb:42:6e: 95:e8:d3:27:b6:c4:a2:91:e7:68:0a:3b:1c:39:09: 71:80:38:eb:fe:7f:8c:6d:ea:11:88:ba:4e:07:dd: f8:51:62:d8:01:6d:cd:37:85:01:e3:32:a2:f8:f3: 22:45:8c:9c:db:9e:e4:a8:8b:90:74:30:39:71:3f: 0f:e7:2e:95:78:4a:aa:e8:2c:ff:ea:14:bf:73:2f: fc:66:92:85:67:bb:26:12:a8:d9:81:9e:24:ba:c3: a6:f9:02:63:2e:84:76:8c:db:43:e1:26:15:99:a2: b4:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:DF:8B:95:C4:F4:E6:4E:EB:02:AA:CB:F9:CE:36:4F:65:27:51:93 X509v3 Authority Key Identifier: keyid:10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a343030303a3a2f33342d3334203d3e20313331373439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:be80:4000::/34 Signature Algorithm: sha256WithRSAEncryption 18:2f:f7:42:da:0c:a5:14:b3:3b:99:1a:d9:b2:99:1d:bf:88: 01:1c:5d:45:68:40:ae:ea:30:8e:6b:bd:76:ec:50:3a:da:65: a4:d6:d6:8a:f3:22:21:38:e8:c1:4b:33:7b:05:18:76:32:fd: 24:a3:5d:d0:62:f6:59:e3:9b:fb:e1:a0:8b:8a:94:ad:ee:b3: e5:9d:5b:83:f6:33:e6:8a:23:65:ac:4f:cf:8a:0a:d4:0b:b2: 6f:fa:c3:68:8c:0a:24:fd:e5:81:7f:ac:6f:87:e0:30:b3:33: 2e:10:dd:9f:46:52:89:63:36:4a:6a:15:8c:12:56:8c:19:4e: be:0f:f4:f8:41:ea:8a:f6:68:31:ef:22:1f:cd:09:e9:da:3e: 3f:8b:eb:15:c4:c1:39:e6:74:bf:4a:44:e1:37:68:8a:81:af: 4d:88:0a:af:7c:c4:11:1a:4b:e4:4a:dd:bf:86:e4:a8:8f:2c: f5:47:9e:5f:09:e7:c3:74:6a:04:ff:e6:eb:28:32:bb:d6:90: f9:7e:02:07:31:0b:96:10:1c:21:d6:53:e0:29:9a:46:80:dc: ff:ef:fe:22:ae:70:84:bd:54:ff:3a:db:18:c5:89:ab:82:4c: aa:6e:90:be:0c:64:a0:91:e3:37:da:f7:91:cc:70:00:7e:b0: 89:ea:b5:be -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUG+BXOWvoH0/4JKuDSped2tNRNWcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5 NTIyNDZGRjAeFw0yNTA3MjMwMTU1MDBaFw0yNjA3MjIwMjAwMDBaMDMxMTAvBgNV BAMTKEIyREY4Qjk1QzRGNEU2NEVFQjAyQUFDQkY5Q0UzNjRGNjUyNzUxOTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIYAPkDbNJPZJoYmXZedB22jsy Xs8xzb9VqXad6eHLhC1RyMUxJInHAsyd1YTO0ki1zjVJdp0io+GPyZqYgpuAB4h/ rIU7nW/Mu1R47R2yecGQBZlXKMzLrGuwOUmqplbmSstq02bdygt+w/y/ZBKf0IgY +uWnzP3yLG3qALpaWzaussJvcJeL7aETHnGNhORBtctCbpXo0ye2xKKR52gKOxw5 CXGAOOv+f4xt6hGIuk4H3fhRYtgBbc03hQHjMqL48yJFjJzbnuSoi5B0MDlxPw/n LpV4SqroLP/qFL9zL/xmkoVnuyYSqNmBniS6w6b5AmMuhHaM20PhJhWZorQbAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUst+LlcT05k7rAqrL+c42T2UnUZMwHwYDVR0j BBgwFoAUEP41sEDoo9BeW+m+5PCmNpUiRv8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MDBmNGYzNy1jN2ZiLTQ3ZDAtOGE4NS1lY2ZkMTJiOTE1ZjUvMC8xMEZFMzVCMDQw RThBM0QwNUU1QkU5QkVFNEYwQTYzNjk1MjI0NkZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5NTIy NDZGRi5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMwMGY0ZjM3LWM3ZmItNDdkMC04 YTg1LWVjZmQxMmI5MTVmNS8wLzMyMzQzMDMyM2E2MjY1MzgzMDNhMzQzMDMwMzAz YTNhMmYzMzM0MmQzMzM0MjAzZDNlMjAzMTMzMzEzNzM0Mzkucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgYk Ar6AQDANBgkqhkiG9w0BAQsFAAOCAQEAGC/3QtoMpRSzO5ka2bKZHb+IARxdRWhA ruowjmu9duxQOtplpNbWivMiITjowUszewUYdjL9JKNd0GL2WeOb++Ggi4qUre6z 5Z1bg/Yz5oojZaxPz4oK1Auyb/rDaIwKJP3lgX+sb4fgMLMzLhDdn0ZSiWM2SmoV jBJWjBlOvg/0+EHqivZoMe8iH80J6do+P4vrFcTBOeZ0v0pE4TdoioGvTYgKr3zE ERpL5Erdv4bkqI8s9UeeXwnnw3RqBP/m6ygyu9aQ+X4CBzELlhAcIdZT4CmaRoDc /+/+Iq5whL1U/zrbGMWJq4JMqm6QvgxkoJHjN9r3kcxwAH6wieq1vg== -----END CERTIFICATE-----Generated at Sat Aug 9 22:36:18 2025 by rpki-client