$ rpki-client -vvf repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/323430363a373734303a3a2f33322d3332203d3e20313431303733.roa File: 323430363a373734303a3a2f33322d3332203d3e20313431303733.roa (raw, json) Hash identifier: BilMX6PAfP77Q5Ze/r2bseAvAFYgHI4D9c4hoNAPY/0= Subject key identifier: F3:14:7B:C1:9B:88:EF:0B:13:2D:51:49:32:C9:1A:43:A6:14:85:D3 Certificate issuer: /CN=2D18956397FA6055A44153CABF07303FD6E55E44 Certificate serial: 75E40FF421BFF45C1D4B5D18C26986CAC3B81457 Authority key identifier: 2D:18:95:63:97:FA:60:55:A4:41:53:CA:BF:07:30:3F:D6:E5:5E:44 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D18956397FA6055A44153CABF07303FD6E55E44.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/323430363a373734303a3a2f33322d3332203d3e20313431303733.roa Signing time: Tue 01 Jul 2025 04:02:21 +0000 ROA not before: Tue 01 Jul 2025 03:57:21 +0000 ROA not after: Tue 30 Jun 2026 04:02:21 +0000 asID: 141073 IP address blocks: 2406:7740::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.crl rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D18956397FA6055A44153CABF07303FD6E55E44.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 04:32:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:e4:0f:f4:21:bf:f4:5c:1d:4b:5d:18:c2:69:86:ca:c3:b8:14:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D18956397FA6055A44153CABF07303FD6E55E44 Validity Not Before: Jul 1 03:57:21 2025 GMT Not After : Jun 30 04:02:21 2026 GMT Subject: CN=F3147BC19B88EF0B132D514932C91A43A61485D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:01:92:59:cf:2e:b6:e2:b8:18:2f:28:f4:16: 02:78:07:77:bc:a4:69:6a:27:fa:a9:f0:66:b4:cd: 9d:a9:13:3f:3e:d4:0a:21:0d:64:38:74:c0:b1:02: 85:4d:00:e7:05:c5:98:d1:ca:37:9e:08:56:9d:75: 0b:fc:df:39:3e:75:a2:3e:87:32:50:c4:1b:3b:6b: 94:ac:22:68:2e:f9:8c:07:02:ce:3d:65:9e:fd:55: d1:04:8f:82:57:e0:0d:2b:0c:a9:13:ce:f9:49:a3: a9:46:fb:a9:68:d5:df:08:a1:af:8b:44:fa:8c:7d: 21:c2:a2:c2:74:a3:df:57:62:ca:f4:00:87:22:d8: ad:65:f0:9d:3e:66:69:47:47:9f:ec:8c:d2:6f:1a: 1e:83:ca:1c:ca:c2:1d:8e:b0:79:3a:a3:ee:fe:1b: f5:d4:e4:ce:4c:dd:32:95:1b:21:49:a1:34:1b:27: 2e:39:0c:4d:02:4e:35:08:2b:c8:46:4f:5a:09:ce: 4a:34:fa:80:3a:ca:be:90:91:0a:8c:54:e5:f6:10: 36:51:f3:40:a3:d5:0b:69:3a:b3:ee:3a:dc:a0:88: 96:65:e2:4d:55:80:ee:fa:99:1d:fe:71:1e:89:6f: 69:ee:99:78:cb:c6:c0:4d:5d:ef:07:9d:00:a7:15: f5:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:14:7B:C1:9B:88:EF:0B:13:2D:51:49:32:C9:1A:43:A6:14:85:D3 X509v3 Authority Key Identifier: keyid:2D:18:95:63:97:FA:60:55:A4:41:53:CA:BF:07:30:3F:D6:E5:5E:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D18956397FA6055A44153CABF07303FD6E55E44.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/323430363a373734303a3a2f33322d3332203d3e20313431303733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:7740::/32 Signature Algorithm: sha256WithRSAEncryption 47:b2:46:13:ba:38:9a:4c:ba:d3:58:b5:e9:0e:c4:6e:26:ff: b5:75:1e:10:c6:df:e2:25:94:c9:96:71:f7:de:94:24:2f:ad: 72:4d:a4:6e:3e:80:d8:68:ca:ee:61:b5:60:ed:e5:c7:47:80: 2d:a8:0c:fc:b0:3e:b1:58:a0:88:9e:aa:53:35:4e:40:87:58: 7d:ef:c5:e6:ca:40:7e:c0:e5:d9:47:45:04:02:64:d3:8b:05: c6:2d:b3:ca:d7:17:e9:f2:a8:85:10:8e:6c:0b:de:97:e3:6d: ea:12:3a:58:72:74:48:69:02:d3:4e:37:56:9a:7a:52:73:18: 24:97:37:32:bc:08:5d:af:89:df:88:66:ed:e1:1d:26:63:31: 73:44:27:b8:a8:fe:28:52:38:4a:dc:78:5e:5a:ed:26:05:ad: 73:f4:38:37:ca:d6:80:04:f7:df:b9:5f:0c:1d:80:b9:30:f6: 02:5e:52:26:cc:16:e4:58:a6:e6:d5:3b:ba:06:af:71:13:99: 81:75:ee:57:85:98:72:6f:d8:a4:d7:ba:e9:78:dd:56:e1:a8: 8f:14:04:d8:65:10:a2:8b:fd:fa:fa:df:02:42:8b:63:f1:75: a3:db:44:3a:56:df:f0:33:d8:71:31:dd:e9:e3:9c:1e:c7:a2: d6:7f:b3:41 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUdeQP9CG/9FwdS10YwmmGysO4FFcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQxODk1NjM5N0ZBNjA1NUE0NDE1M0NBQkYwNzMwM0ZE NkU1NUU0NDAeFw0yNTA3MDEwMzU3MjFaFw0yNjA2MzAwNDAyMjFaMDMxMTAvBgNV BAMTKEYzMTQ3QkMxOUI4OEVGMEIxMzJENTE0OTMyQzkxQTQzQTYxNDg1RDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDAZJZzy624rgYLyj0FgJ4B3e8 pGlqJ/qp8Ga0zZ2pEz8+1AohDWQ4dMCxAoVNAOcFxZjRyjeeCFaddQv83zk+daI+ hzJQxBs7a5SsImgu+YwHAs49ZZ79VdEEj4JX4A0rDKkTzvlJo6lG+6lo1d8Ioa+L RPqMfSHCosJ0o99XYsr0AIci2K1l8J0+ZmlHR5/sjNJvGh6DyhzKwh2OsHk6o+7+ G/XU5M5M3TKVGyFJoTQbJy45DE0CTjUIK8hGT1oJzko0+oA6yr6QkQqMVOX2EDZR 80Cj1QtpOrPuOtygiJZl4k1VgO76mR3+cR6Jb2numXjLxsBNXe8HnQCnFfUHAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQU8xR7wZuI7wsTLVFJMskaQ6YUhdMwHwYDVR0j BBgwFoAULRiVY5f6YFWkQVPKvwcwP9blXkQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ODU4Zjg1Yy1hNDU4LTRhNTgtYmJkZS00YmZiMzQzZGM0YjAvMC8yRDE4OTU2Mzk3 RkE2MDU1QTQ0MTUzQ0FCRjA3MzAzRkQ2RTU1RTQ0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQxODk1NjM5N0ZBNjA1NUE0NDE1M0NBQkYwNzMwM0ZENkU1 NUU0NC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ4NThmODVjLWE0NTgtNGE1OC1i YmRlLTRiZmIzNDNkYzRiMC8wLzMyMzQzMDM2M2EzNzM3MzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzQzMTMwMzczMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQGd0AwDQYJKoZI hvcNAQELBQADggEBAEeyRhO6OJpMutNYtekOxG4m/7V1HhDG3+IllMmWcffelCQv rXJNpG4+gNhoyu5htWDt5cdHgC2oDPywPrFYoIieqlM1TkCHWH3vxebKQH7A5dlH RQQCZNOLBcYts8rXF+nyqIUQjmwL3pfjbeoSOlhydEhpAtNON1aaelJzGCSXNzK8 CF2vid+IZu3hHSZjMXNEJ7io/ihSOErceF5a7SYFrXP0ODfK1oAE99+5XwwdgLkw 9gJeUibMFuRYpubVO7oGr3ETmYF17leFmHJv2KTXuul43VbhqI8UBNhlEKKL/fr6 3wJCi2PxdaPbRDpW3/Az2HEx3enjnB7HotZ/s0E= -----END CERTIFICATE-----Generated at Sat Aug 9 22:34:59 2025 by rpki-client