$ rpki-client -vvf repo-rpki.idnic.net/repo/58b58aee-e8ee-4287-a2b8-616155c3eec2/0/323430373a363338303a3a2f33322d3430203d3e20313331373133.roa File: 323430373a363338303a3a2f33322d3430203d3e20313331373133.roa (raw, json) Hash identifier: d3EczDOEKFnJZSi/mXbv6kWPY6oK1SqyadhZuQpb4/8= Subject key identifier: 68:33:28:9E:53:A6:1B:70:47:62:27:28:BA:00:77:ED:62:B1:3F:C0 Certificate issuer: /CN=8BE1F50A90938AE6D4E6D7A6A2A22F003B072ED8 Certificate serial: 6AFDA6AC1B4BD5D48C34E4728D257FCE386635DC Authority key identifier: 8B:E1:F5:0A:90:93:8A:E6:D4:E6:D7:A6:A2:A2:2F:00:3B:07:2E:D8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BE1F50A90938AE6D4E6D7A6A2A22F003B072ED8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/58b58aee-e8ee-4287-a2b8-616155c3eec2/0/323430373a363338303a3a2f33322d3430203d3e20313331373133.roa Signing time: Tue 29 Jul 2025 05:02:24 +0000 ROA not before: Tue 29 Jul 2025 04:57:24 +0000 ROA not after: Tue 28 Jul 2026 05:02:24 +0000 asID: 131713 IP address blocks: 2407:6380::/32 maxlen: 40 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/58b58aee-e8ee-4287-a2b8-616155c3eec2/0/8BE1F50A90938AE6D4E6D7A6A2A22F003B072ED8.crl rsync://repo-rpki.idnic.net/repo/58b58aee-e8ee-4287-a2b8-616155c3eec2/0/8BE1F50A90938AE6D4E6D7A6A2A22F003B072ED8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BE1F50A90938AE6D4E6D7A6A2A22F003B072ED8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 09:15:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:fd:a6:ac:1b:4b:d5:d4:8c:34:e4:72:8d:25:7f:ce:38:66:35:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8BE1F50A90938AE6D4E6D7A6A2A22F003B072ED8 Validity Not Before: Jul 29 04:57:24 2025 GMT Not After : Jul 28 05:02:24 2026 GMT Subject: CN=6833289E53A61B7047622728BA0077ED62B13FC0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:59:45:a6:7a:d7:ac:a2:9f:80:f0:4f:07:a8: 42:93:a6:ae:62:26:c9:90:79:29:3a:9d:e3:90:6a: 2a:8a:d5:e7:ed:f9:7d:da:01:4a:ef:dd:e0:7c:1f: 17:3c:16:fe:a0:c4:d6:6f:72:4b:df:99:5f:31:1d: fe:a3:1a:3a:06:7e:8c:fa:26:92:de:45:36:26:01: a2:d7:4a:d3:40:56:b0:75:60:03:b4:06:b6:05:cb: f4:de:1a:d2:cf:03:28:83:a2:23:56:8c:91:c0:af: ec:32:66:f0:ab:50:46:7a:b0:e8:7e:ce:c9:2e:3c: 73:95:78:c6:f3:8f:83:ae:65:13:01:07:c7:02:9f: de:55:51:6a:bd:bd:e1:9a:1e:7c:6d:ad:e9:66:7e: f5:33:88:19:87:e9:36:8c:9f:2a:46:02:d7:a0:99: f6:41:aa:17:47:84:6c:51:ca:51:e3:88:29:1c:ca: a8:7a:9f:54:05:e4:5e:7c:2d:b8:d5:fa:f4:08:c0: c9:73:ef:cc:32:7f:23:b1:dd:b8:97:f5:10:64:ef: 5d:3e:47:2e:59:d3:12:a7:eb:63:12:44:13:f1:a6: bd:b5:80:b4:9f:aa:d6:05:9d:1f:53:12:0e:6c:01: d6:50:97:51:13:7a:17:95:1f:11:a8:a9:a0:73:a9: 51:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:33:28:9E:53:A6:1B:70:47:62:27:28:BA:00:77:ED:62:B1:3F:C0 X509v3 Authority Key Identifier: keyid:8B:E1:F5:0A:90:93:8A:E6:D4:E6:D7:A6:A2:A2:2F:00:3B:07:2E:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/58b58aee-e8ee-4287-a2b8-616155c3eec2/0/8BE1F50A90938AE6D4E6D7A6A2A22F003B072ED8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BE1F50A90938AE6D4E6D7A6A2A22F003B072ED8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/58b58aee-e8ee-4287-a2b8-616155c3eec2/0/323430373a363338303a3a2f33322d3430203d3e20313331373133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:6380::/32 Signature Algorithm: sha256WithRSAEncryption 10:bb:61:4f:13:6f:23:2e:36:ac:43:6c:39:c7:4e:c6:15:94: 5d:47:c1:db:92:c4:53:5f:86:36:f9:27:55:f2:46:b7:61:10: 41:1b:53:4a:7a:f7:30:7b:90:df:8e:30:ae:90:7b:d2:ca:32: 34:ac:42:f0:47:ae:3e:55:e1:f9:f5:e6:ba:23:42:28:4c:76: 20:f3:77:e5:04:5b:81:73:0c:b5:42:68:48:91:aa:ce:aa:9b: 48:50:69:ec:3c:1f:85:43:d9:ee:fa:ad:27:cd:20:f9:c5:af: c8:71:8c:b8:65:58:c4:b2:ef:bf:29:16:11:1f:a1:18:f9:12: f7:fe:ef:fc:5c:70:15:e0:63:cd:43:00:a4:58:de:f6:95:28: 6d:24:11:1f:eb:3b:03:34:7d:21:8c:e6:a0:55:58:96:c7:3a: 4a:d1:6a:06:c6:ec:60:2b:4a:4f:6d:53:ba:67:9c:45:74:5b: 8d:0c:d1:28:a8:55:cc:1e:5d:9a:fb:ec:a5:37:e4:54:dd:02: b4:d4:6e:86:ca:ac:7c:25:a5:0d:0d:f0:dc:a1:1f:75:0a:46: a8:b9:1b:53:9a:0a:98:9b:12:52:c2:41:76:3a:89:f2:07:d7: 6a:30:48:f5:b7:20:7b:39:99:41:56:75:94:f9:3b:4b:a6:c0: 5e:78:59:b3 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUav2mrBtL1dSMNORyjSV/zjhmNdwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEJFMUY1MEE5MDkzOEFFNkQ0RTZEN0E2QTJBMjJGMDAz QjA3MkVEODAeFw0yNTA3MjkwNDU3MjRaFw0yNjA3MjgwNTAyMjRaMDMxMTAvBgNV BAMTKDY4MzMyODlFNTNBNjFCNzA0NzYyMjcyOEJBMDA3N0VENjJCMTNGQzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWWUWmetesop+A8E8HqEKTpq5i JsmQeSk6neOQaiqK1eft+X3aAUrv3eB8Hxc8Fv6gxNZvckvfmV8xHf6jGjoGfoz6 JpLeRTYmAaLXStNAVrB1YAO0BrYFy/TeGtLPAyiDoiNWjJHAr+wyZvCrUEZ6sOh+ zskuPHOVeMbzj4OuZRMBB8cCn95VUWq9veGaHnxtrelmfvUziBmH6TaMnypGAteg mfZBqhdHhGxRylHjiCkcyqh6n1QF5F58LbjV+vQIwMlz78wyfyOx3biX9RBk710+ Ry5Z0xKn62MSRBPxpr21gLSfqtYFnR9TEg5sAdZQl1ETeheVHxGoqaBzqVFHAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUaDMonlOmG3BHYicougB37WKxP8AwHwYDVR0j BBgwFoAUi+H1CpCTiubU5temoqIvADsHLtgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OGI1OGFlZS1lOGVlLTQyODctYTJiOC02MTYxNTVjM2VlYzIvMC84QkUxRjUwQTkw OTM4QUU2RDRFNkQ3QTZBMkEyMkYwMDNCMDcyRUQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEJFMUY1MEE5MDkzOEFFNkQ0RTZEN0E2QTJBMjJGMDAzQjA3 MkVEOC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU4YjU4YWVlLWU4ZWUtNDI4Ny1h MmI4LTYxNjE1NWMzZWVjMi8wLzMyMzQzMDM3M2EzNjMzMzgzMDNhM2EyZjMzMzIy ZDM0MzAyMDNkM2UyMDMxMzMzMTM3MzEzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQHY4AwDQYJKoZI hvcNAQELBQADggEBABC7YU8TbyMuNqxDbDnHTsYVlF1HwduSxFNfhjb5J1XyRrdh EEEbU0p69zB7kN+OMK6Qe9LKMjSsQvBHrj5V4fn15rojQihMdiDzd+UEW4FzDLVC aEiRqs6qm0hQaew8H4VD2e76rSfNIPnFr8hxjLhlWMSy778pFhEfoRj5Evf+7/xc cBXgY81DAKRY3vaVKG0kER/rOwM0fSGM5qBVWJbHOkrRagbG7GArSk9tU7pnnEV0 W40M0SioVcweXZr77KU35FTdArTUbobKrHwlpQ0N8NyhH3UKRqi5G1OaCpibElLC QXY6ifIH12owSPW3IHs5mUFWdZT5O0umwF54WbM= -----END CERTIFICATE-----Generated at Fri Aug 8 12:48:53 2025 by rpki-client