$ rpki-client -vvf repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a633030303a3a2f33342d3334203d3e20313331373439.roa File: 323430323a626538303a633030303a3a2f33342d3334203d3e20313331373439.roa (raw, json) Hash identifier: nIo8hwuirVHnHkmWMKJHXedLZK1IsiVp+gI1eB5wIWM= Subject key identifier: AF:B0:A7:77:C5:9A:8E:C5:87:2D:62:5C:73:9E:BB:B1:99:EB:6E:01 Certificate issuer: /CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Certificate serial: 0BFE5B68DE117176BDB50057A4CD66352A9682E7 Authority key identifier: 10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a633030303a3a2f33342d3334203d3e20313331373439.roa Signing time: Wed 23 Jul 2025 02:00:00 +0000 ROA not before: Wed 23 Jul 2025 01:55:00 +0000 ROA not after: Wed 22 Jul 2026 02:00:00 +0000 asID: 131749 IP address blocks: 2402:be80:c000::/34 maxlen: 34 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 19:44:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:fe:5b:68:de:11:71:76:bd:b5:00:57:a4:cd:66:35:2a:96:82:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Validity Not Before: Jul 23 01:55:00 2025 GMT Not After : Jul 22 02:00:00 2026 GMT Subject: CN=AFB0A777C59A8EC5872D625C739EBBB199EB6E01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:4d:cd:c0:24:63:28:4b:76:ab:34:16:d9:b3: 91:31:ba:f5:60:b6:42:bf:0a:bb:f2:15:46:33:db: 53:b7:38:7a:db:81:51:49:17:9f:20:99:bd:72:77: 7d:a2:f6:0c:f8:12:48:44:5b:86:6a:ae:4f:5c:31: ff:91:e3:c8:4c:97:87:eb:b4:9e:7b:3a:f9:d6:13: d3:1e:a8:01:ec:7d:b2:e6:f2:1b:6b:7e:a3:49:86: 11:74:63:25:f5:47:c4:d0:71:4e:74:dd:ca:bd:21: cd:39:a9:8b:97:9d:54:84:9e:db:0c:92:ef:cd:d1: 31:c8:2a:63:d5:e5:18:b8:80:0e:ee:fb:48:33:10: ee:58:83:b3:12:2c:34:b6:e4:61:81:58:c2:08:60: ad:be:ac:0b:f3:a8:02:34:30:07:cd:ce:24:8a:c3: 07:17:2b:61:70:bd:03:70:0b:99:54:89:bd:37:25: dc:be:be:e0:2f:e5:ed:47:07:1b:28:3d:d8:c0:ae: 6f:43:47:b3:2b:20:51:69:2d:1c:d5:64:a6:3f:bf: 48:f2:b1:fc:68:fc:0b:3c:a3:bc:e9:34:52:02:57: c9:72:60:5a:39:41:be:b3:a0:eb:ff:28:b4:52:85: cf:1f:06:43:58:af:61:4f:4b:6a:93:ab:b8:59:76: 14:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:B0:A7:77:C5:9A:8E:C5:87:2D:62:5C:73:9E:BB:B1:99:EB:6E:01 X509v3 Authority Key Identifier: keyid:10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a633030303a3a2f33342d3334203d3e20313331373439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:be80:c000::/34 Signature Algorithm: sha256WithRSAEncryption 58:a5:a3:c3:18:4a:68:89:6b:e6:41:80:1d:2d:81:df:29:03: 20:5f:23:a0:ca:43:74:52:ad:10:87:a0:82:11:55:86:64:57: b0:56:76:84:97:fa:b7:b0:6e:c5:46:65:c5:aa:30:78:37:d2: c3:d7:20:01:2c:a6:68:3c:8e:eb:d9:49:80:a9:96:68:58:e8: 48:fc:6f:49:a2:12:b6:71:d3:4a:5f:cd:31:27:8e:6c:50:ab: 1d:46:c7:f5:eb:c1:ca:18:48:b7:83:10:e2:e2:72:65:eb:67: 07:d8:f1:66:ef:9a:ff:5e:52:f9:1b:6c:7c:bf:4b:c6:9b:0f: de:55:62:35:47:9b:e1:bc:95:ae:03:59:da:2d:db:4f:46:48: 42:d3:7a:9d:cf:94:c9:48:f6:ed:a7:24:9a:29:61:b1:c6:44: 74:e2:77:6d:35:be:81:10:8f:f6:ec:32:f8:5f:5c:f9:b3:dc: 2a:93:31:0e:2c:bc:a1:37:f4:e7:75:51:d9:e2:a8:80:02:e6: cf:22:50:ce:c9:4a:31:a8:6e:87:ac:b2:d4:82:fd:ac:ba:dd: 3f:5e:e8:cb:c8:8b:ad:df:57:37:75:05:29:78:ff:f4:2b:70: b1:a5:d1:9b:2d:ab:d3:15:2f:84:58:d2:1c:69:47:e7:24:05: e0:a0:19:98 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUC/5baN4RcXa9tQBXpM1mNSqWgucwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5 NTIyNDZGRjAeFw0yNTA3MjMwMTU1MDBaFw0yNjA3MjIwMjAwMDBaMDMxMTAvBgNV BAMTKEFGQjBBNzc3QzU5QThFQzU4NzJENjI1QzczOUVCQkIxOTlFQjZFMDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDETc3AJGMoS3arNBbZs5ExuvVg tkK/CrvyFUYz21O3OHrbgVFJF58gmb1yd32i9gz4EkhEW4Zqrk9cMf+R48hMl4fr tJ57OvnWE9MeqAHsfbLm8htrfqNJhhF0YyX1R8TQcU503cq9Ic05qYuXnVSEntsM ku/N0THIKmPV5Ri4gA7u+0gzEO5Yg7MSLDS25GGBWMIIYK2+rAvzqAI0MAfNziSK wwcXK2FwvQNwC5lUib03Jdy+vuAv5e1HBxsoPdjArm9DR7MrIFFpLRzVZKY/v0jy sfxo/As8o7zpNFICV8lyYFo5Qb6zoOv/KLRShc8fBkNYr2FPS2qTq7hZdhQpAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUr7Cnd8WajsWHLWJcc567sZnrbgEwHwYDVR0j BBgwFoAUEP41sEDoo9BeW+m+5PCmNpUiRv8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MDBmNGYzNy1jN2ZiLTQ3ZDAtOGE4NS1lY2ZkMTJiOTE1ZjUvMC8xMEZFMzVCMDQw RThBM0QwNUU1QkU5QkVFNEYwQTYzNjk1MjI0NkZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5NTIy NDZGRi5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMwMGY0ZjM3LWM3ZmItNDdkMC04 YTg1LWVjZmQxMmI5MTVmNS8wLzMyMzQzMDMyM2E2MjY1MzgzMDNhNjMzMDMwMzAz YTNhMmYzMzM0MmQzMzM0MjAzZDNlMjAzMTMzMzEzNzM0Mzkucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgYk Ar6AwDANBgkqhkiG9w0BAQsFAAOCAQEAWKWjwxhKaIlr5kGAHS2B3ykDIF8joMpD dFKtEIegghFVhmRXsFZ2hJf6t7BuxUZlxaoweDfSw9cgASymaDyO69lJgKmWaFjo SPxvSaIStnHTSl/NMSeObFCrHUbH9evByhhIt4MQ4uJyZetnB9jxZu+a/15S+Rts fL9LxpsP3lViNUeb4byVrgNZ2i3bT0ZIQtN6nc+UyUj27ackmilhscZEdOJ3bTW+ gRCP9uwy+F9c+bPcKpMxDiy8oTf053VR2eKogALmzyJQzslKMahuh6yy1IL9rLrd P17oy8iLrd9XN3UFKXj/9CtwsaXRmy2r0xUvhFjSHGlH5yQF4KAZmA== -----END CERTIFICATE-----Generated at Sat Aug 9 22:36:20 2025 by rpki-client