$ rpki-client -vvf repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/323430373a613630303a3a2f33322d3338203d3e203138303034.roa File: 323430373a613630303a3a2f33322d3338203d3e203138303034.roa (raw, json) Hash identifier: SoFui+6+9U4okutKDEEDEO8cNoDM72pJozwIgVHrak0= Subject key identifier: 0C:4C:0C:9D:63:74:F4:96:AD:D1:43:2E:F9:40:F5:77:62:1D:3C:A7 Certificate issuer: /CN=735D87BA86773AC70137CF53116358A1F3B19766 Certificate serial: 01B47EA781CCFBDC155C47B5123C5554D27F6D4D Authority key identifier: 73:5D:87:BA:86:77:3A:C7:01:37:CF:53:11:63:58:A1:F3:B1:97:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/735D87BA86773AC70137CF53116358A1F3B19766.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/323430373a613630303a3a2f33322d3338203d3e203138303034.roa Signing time: Sun 04 May 2025 04:00:01 +0000 ROA not before: Sun 04 May 2025 03:55:01 +0000 ROA not after: Sun 03 May 2026 04:00:01 +0000 asID: 18004 IP address blocks: 2407:a600::/32 maxlen: 38 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/735D87BA86773AC70137CF53116358A1F3B19766.crl rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/735D87BA86773AC70137CF53116358A1F3B19766.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/735D87BA86773AC70137CF53116358A1F3B19766.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 04:35:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:b4:7e:a7:81:cc:fb:dc:15:5c:47:b5:12:3c:55:54:d2:7f:6d:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=735D87BA86773AC70137CF53116358A1F3B19766 Validity Not Before: May 4 03:55:01 2025 GMT Not After : May 3 04:00:01 2026 GMT Subject: CN=0C4C0C9D6374F496ADD1432EF940F577621D3CA7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:82:4a:5b:a1:76:e6:ae:b5:25:82:83:09:57: bb:88:b9:16:5c:d3:23:f2:05:b5:a8:42:84:e8:a9: f8:10:23:bd:78:42:1b:b7:de:6f:61:81:27:de:7d: 06:57:4d:aa:15:27:63:55:ad:72:a1:27:97:0a:f2: aa:33:35:34:0e:9a:6c:d5:9e:1c:29:17:2c:b4:11: 61:3b:f4:aa:1c:62:b1:99:e3:19:e1:73:8e:a3:4f: 06:86:68:21:06:43:e6:27:9a:c6:b9:10:1c:ac:f4: 18:67:10:b5:f4:cc:64:02:d3:93:cf:d5:0d:ef:c7: 2c:88:21:0f:3f:1d:0b:89:67:4f:84:d2:0d:6b:92: 66:9d:70:07:13:81:f8:c0:68:1a:03:4c:89:0f:72: fb:f4:cf:48:5a:11:c8:f5:0e:62:70:e8:76:31:25: 0a:00:51:8e:fe:d5:8c:57:f0:a9:4c:ea:46:4c:5e: e1:0e:e7:6a:c2:04:21:e8:1d:33:5d:24:e9:0a:1a: f3:91:c7:63:5a:90:fc:67:64:75:c5:d6:bb:d6:76: fd:53:a4:f8:f9:ce:2c:87:2a:1d:da:30:52:bb:4a: d2:a2:b0:95:f7:c3:93:52:52:c7:9c:b9:e7:4f:4c: 05:21:19:b5:b3:0a:07:b3:58:df:90:a9:d7:e2:6b: 37:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:4C:0C:9D:63:74:F4:96:AD:D1:43:2E:F9:40:F5:77:62:1D:3C:A7 X509v3 Authority Key Identifier: keyid:73:5D:87:BA:86:77:3A:C7:01:37:CF:53:11:63:58:A1:F3:B1:97:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/735D87BA86773AC70137CF53116358A1F3B19766.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/735D87BA86773AC70137CF53116358A1F3B19766.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4f5d364a-da0b-4540-9349-5930bd725ce3/0/323430373a613630303a3a2f33322d3338203d3e203138303034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:a600::/32 Signature Algorithm: sha256WithRSAEncryption ae:f3:cc:67:98:1c:c2:57:7b:17:28:27:d7:b0:e3:4e:03:32: 64:15:92:f0:a5:97:98:f1:0f:c6:d6:07:95:87:15:1a:6e:a6: 64:c9:50:4f:2e:67:97:c3:dd:d7:80:c6:2a:73:31:a5:11:24: 52:d4:46:d9:e9:a9:c4:4f:33:4b:fe:e5:0f:e9:0e:a0:fc:f5: a0:70:e1:8a:ce:78:da:b9:69:0c:87:06:a6:b0:3b:f4:50:35: 28:69:08:a7:b6:1d:43:ce:41:3f:0f:bd:d2:c1:39:86:ed:3d: 3a:52:dd:86:e9:16:c4:67:5c:42:f7:d1:37:0f:46:24:80:c9: 20:83:82:d5:7d:dc:9e:ef:f3:75:76:7e:f9:56:5d:f5:c5:78: 40:04:38:da:c0:7f:5b:db:3b:83:7b:cf:0c:82:33:52:b9:3c: f0:f0:e0:b4:ad:4c:36:e6:65:6c:5e:07:0c:52:c6:e3:82:25: 39:a0:49:76:9f:f7:bd:3b:14:22:b2:17:9b:28:f5:81:05:7a: fd:3e:46:c1:c8:28:97:ca:5b:e0:00:54:b9:b0:dc:bd:78:aa: 62:79:05:2e:11:3d:b3:ec:9a:78:3f:e6:3f:ab:97:2a:be:6b: 85:1e:52:39:5b:ec:0c:6a:ca:f6:30:7e:60:c9:bb:60:24:1d: 79:e1:86:73 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUAbR+p4HM+9wVXEe1EjxVVNJ/bU0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzM1RDg3QkE4Njc3M0FDNzAxMzdDRjUzMTE2MzU4QTFG M0IxOTc2NjAeFw0yNTA1MDQwMzU1MDFaFw0yNjA1MDMwNDAwMDFaMDMxMTAvBgNV BAMTKDBDNEMwQzlENjM3NEY0OTZBREQxNDMyRUY5NDBGNTc3NjIxRDNDQTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFgkpboXbmrrUlgoMJV7uIuRZc 0yPyBbWoQoToqfgQI714Qhu33m9hgSfefQZXTaoVJ2NVrXKhJ5cK8qozNTQOmmzV nhwpFyy0EWE79KocYrGZ4xnhc46jTwaGaCEGQ+Ynmsa5EBys9BhnELX0zGQC05PP 1Q3vxyyIIQ8/HQuJZ0+E0g1rkmadcAcTgfjAaBoDTIkPcvv0z0haEcj1DmJw6HYx JQoAUY7+1YxX8KlM6kZMXuEO52rCBCHoHTNdJOkKGvORx2NakPxnZHXF1rvWdv1T pPj5ziyHKh3aMFK7StKisJX3w5NSUsecuedPTAUhGbWzCgezWN+QqdfiazczAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUDEwMnWN09Jat0UMu+UD1d2IdPKcwHwYDVR0j BBgwFoAUc12HuoZ3OscBN89TEWNYofOxl2YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZjVkMzY0YS1kYTBiLTQ1NDAtOTM0OS01OTMwYmQ3MjVjZTMvMC83MzVEODdCQTg2 NzczQUM3MDEzN0NGNTMxMTYzNThBMUYzQjE5NzY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzM1RDg3QkE4Njc3M0FDNzAxMzdDRjUzMTE2MzU4QTFGM0Ix OTc2Ni5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRmNWQzNjRhLWRhMGItNDU0MC05 MzQ5LTU5MzBiZDcyNWNlMy8wLzMyMzQzMDM3M2E2MTM2MzAzMDNhM2EyZjMzMzIy ZDMzMzgyMDNkM2UyMDMxMzgzMDMwMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkB6YAMA0GCSqGSIb3 DQEBCwUAA4IBAQCu88xnmBzCV3sXKCfXsONOAzJkFZLwpZeY8Q/G1geVhxUabqZk yVBPLmeXw93XgMYqczGlESRS1EbZ6anETzNL/uUP6Q6g/PWgcOGKznjauWkMhwam sDv0UDUoaQinth1DzkE/D73SwTmG7T06Ut2G6RbEZ1xC99E3D0YkgMkgg4LVfdye 7/N1dn75Vl31xXhABDjawH9b2zuDe88MgjNSuTzw8OC0rUw25mVsXgcMUsbjgiU5 oEl2n/e9OxQishebKPWBBXr9PkbByCiXylvgAFS5sNy9eKpieQUuET2z7Jp4P+Y/ q5cqvmuFHlI5W+wMasr2MH5gybtgJB154YZz -----END CERTIFICATE-----Generated at Tue Nov 4 16:59:59 2025 by rpki-client