$ rpki-client -vvf repo-rpki.idnic.net/repo/59cef8b0-ba64-4c0c-8de8-1f50a85d5fde/0/323430303a366632303a353a3a2f34382d3438203d3e20313333383039.roa File: 323430303a366632303a353a3a2f34382d3438203d3e20313333383039.roa (raw, json) Hash identifier: KGGUUPJetYRovMai9BvuYsEqHu8TgW6bYg4Sm8JWJcg= Subject key identifier: FC:7A:F5:2A:78:17:7C:47:1D:B8:00:98:5F:A8:9E:DF:C6:52:3A:53 Certificate issuer: /CN=2858C74CC23A557C73F59051B7FE8638AA491C94 Certificate serial: 4C7183C2203AF3CADE8CF08215CB383D5C6C179B Authority key identifier: 28:58:C7:4C:C2:3A:55:7C:73:F5:90:51:B7:FE:86:38:AA:49:1C:94 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2858C74CC23A557C73F59051B7FE8638AA491C94.cer Subject info access: rsync://repo-rpki.idnic.net/repo/59cef8b0-ba64-4c0c-8de8-1f50a85d5fde/0/323430303a366632303a353a3a2f34382d3438203d3e20313333383039.roa Signing time: Mon 28 Jul 2025 03:09:48 +0000 ROA not before: Mon 28 Jul 2025 03:04:48 +0000 ROA not after: Mon 27 Jul 2026 03:09:48 +0000 asID: 133809 IP address blocks: 2400:6f20:5::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/59cef8b0-ba64-4c0c-8de8-1f50a85d5fde/0/2858C74CC23A557C73F59051B7FE8638AA491C94.crl rsync://repo-rpki.idnic.net/repo/59cef8b0-ba64-4c0c-8de8-1f50a85d5fde/0/2858C74CC23A557C73F59051B7FE8638AA491C94.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2858C74CC23A557C73F59051B7FE8638AA491C94.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 12:06:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:71:83:c2:20:3a:f3:ca:de:8c:f0:82:15:cb:38:3d:5c:6c:17:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2858C74CC23A557C73F59051B7FE8638AA491C94 Validity Not Before: Jul 28 03:04:48 2025 GMT Not After : Jul 27 03:09:48 2026 GMT Subject: CN=FC7AF52A78177C471DB800985FA89EDFC6523A53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:e8:d3:0a:7b:b7:b0:50:c1:7f:23:62:f1:db: 0d:52:ca:00:8e:5b:9f:96:d7:6d:63:c6:e0:00:66: 33:71:32:70:a9:01:e0:01:f1:42:28:26:d2:1a:44: ae:b2:76:7f:e8:73:87:42:33:e4:ae:7f:d5:b4:89: c1:77:f7:c3:2e:64:af:11:b0:8e:51:f9:af:2e:4a: 1b:65:a3:03:32:a9:03:02:01:c8:3e:7b:44:76:33: 56:65:ed:70:a9:b5:59:1b:8d:0c:da:b8:69:e5:71: b8:65:27:5a:d6:bd:db:04:65:fa:17:ce:0c:92:25: c9:1a:7e:dc:fc:e2:69:c0:f1:e4:85:e9:3d:61:14: 17:da:27:e2:37:c0:07:9b:7b:fa:5b:2b:2d:80:f9: 4f:00:3a:de:db:9e:14:a3:12:12:40:ae:47:cb:b5: f3:bd:04:c3:70:06:b7:94:4d:e0:b2:f3:b3:6c:f6: 34:ad:35:63:64:03:ee:34:91:01:97:ac:e0:c9:ce: 17:06:f1:02:20:79:2b:7a:c1:4d:47:fb:e7:66:e2: 3e:59:18:73:ce:a8:83:b6:11:2c:52:d1:ee:4e:02: 07:86:25:52:eb:11:9b:69:c7:3b:1a:c5:49:cd:e2: 27:33:28:ca:fb:be:00:d8:b6:32:50:eb:d8:e4:c1: b4:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:7A:F5:2A:78:17:7C:47:1D:B8:00:98:5F:A8:9E:DF:C6:52:3A:53 X509v3 Authority Key Identifier: keyid:28:58:C7:4C:C2:3A:55:7C:73:F5:90:51:B7:FE:86:38:AA:49:1C:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/59cef8b0-ba64-4c0c-8de8-1f50a85d5fde/0/2858C74CC23A557C73F59051B7FE8638AA491C94.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2858C74CC23A557C73F59051B7FE8638AA491C94.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/59cef8b0-ba64-4c0c-8de8-1f50a85d5fde/0/323430303a366632303a353a3a2f34382d3438203d3e20313333383039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:6f20:5::/48 Signature Algorithm: sha256WithRSAEncryption 51:9d:4a:f5:f4:df:90:b1:20:5e:bc:61:f9:86:d8:4a:49:16: f5:17:40:df:e8:6a:d6:f2:9a:60:bf:05:eb:de:a2:91:61:7e: 78:52:3f:41:2c:19:b4:a3:63:8b:8c:4c:7c:4b:d4:1f:f6:15: 4b:47:4b:1e:73:dd:25:61:35:99:64:15:26:37:21:37:bf:3a: 30:58:5f:3f:f0:8d:b9:0c:c9:c6:1b:4f:01:06:65:5d:6d:d2: 01:c8:4c:91:b1:25:6b:1f:61:8a:d8:9a:9f:4c:50:f2:af:15: d0:d8:2d:0e:82:1c:87:d5:ae:5b:b0:a5:1c:91:03:41:1d:8b: 31:82:b9:0b:f6:c9:f7:c0:4d:0a:ae:32:db:9a:95:0c:7d:4d: 72:c7:7e:b3:3b:80:e3:b1:01:fc:58:41:e4:1b:73:32:44:07: 98:5d:2b:4d:d3:20:f7:a4:79:4c:4b:26:18:34:75:ad:41:5a: ab:fa:89:e1:65:fc:87:60:ab:5f:f0:3c:7d:be:9b:f4:d3:c4: 74:a1:10:97:b6:55:b6:14:40:a5:fb:eb:eb:8d:b0:e8:4a:06: 60:32:17:d5:11:e0:e0:06:60:72:6b:8e:f3:9d:a3:d3:96:3f: 44:5f:7f:8e:65:f4:e2:08:55:28:25:c1:1c:cb:1b:6e:72:98: 7e:0d:32:07 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUTHGDwiA688rejPCCFcs4PVxsF5swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg1OEM3NENDMjNBNTU3QzczRjU5MDUxQjdGRTg2MzhB QTQ5MUM5NDAeFw0yNTA3MjgwMzA0NDhaFw0yNjA3MjcwMzA5NDhaMDMxMTAvBgNV BAMTKEZDN0FGNTJBNzgxNzdDNDcxREI4MDA5ODVGQTg5RURGQzY1MjNBNTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDi6NMKe7ewUMF/I2Lx2w1SygCO W5+W121jxuAAZjNxMnCpAeAB8UIoJtIaRK6ydn/oc4dCM+Suf9W0icF398MuZK8R sI5R+a8uShtlowMyqQMCAcg+e0R2M1Zl7XCptVkbjQzauGnlcbhlJ1rWvdsEZfoX zgySJckaftz84mnA8eSF6T1hFBfaJ+I3wAebe/pbKy2A+U8AOt7bnhSjEhJArkfL tfO9BMNwBreUTeCy87Ns9jStNWNkA+40kQGXrODJzhcG8QIgeSt6wU1H++dm4j5Z GHPOqIO2ESxS0e5OAgeGJVLrEZtpxzsaxUnN4iczKMr7vgDYtjJQ69jkwbTjAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQU/Hr1KngXfEcduACYX6ie38ZSOlMwHwYDVR0j BBgwFoAUKFjHTMI6VXxz9ZBRt/6GOKpJHJQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OWNlZjhiMC1iYTY0LTRjMGMtOGRlOC0xZjUwYTg1ZDVmZGUvMC8yODU4Qzc0Q0My M0E1NTdDNzNGNTkwNTFCN0ZFODYzOEFBNDkxQzk0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjg1OEM3NENDMjNBNTU3QzczRjU5MDUxQjdGRTg2MzhBQTQ5 MUM5NC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU5Y2VmOGIwLWJhNjQtNGMwYy04 ZGU4LTFmNTBhODVkNWZkZS8wLzMyMzQzMDMwM2EzNjY2MzIzMDNhMzUzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMTMzMzMzODMwMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAG8gAAUw DQYJKoZIhvcNAQELBQADggEBAFGdSvX035CxIF68YfmG2EpJFvUXQN/oatbymmC/ BeveopFhfnhSP0EsGbSjY4uMTHxL1B/2FUtHSx5z3SVhNZlkFSY3ITe/OjBYXz/w jbkMycYbTwEGZV1t0gHITJGxJWsfYYrYmp9MUPKvFdDYLQ6CHIfVrluwpRyRA0Ed izGCuQv2yffATQquMtualQx9TXLHfrM7gOOxAfxYQeQbczJEB5hdK03TIPekeUxL Jhg0da1BWqv6ieFl/Idgq1/wPH2+m/TTxHShEJe2VbYUQKX76+uNsOhKBmAyF9UR 4OAGYHJrjvOdo9OWP0Rff45l9OIIVSglwRzLG25ymH4NMgc= -----END CERTIFICATE-----Generated at Tue Aug 12 22:40:33 2025 by rpki-client