$ rpki-client -vvf repo-rpki.idnic.net/repo/59cef8b0-ba64-4c0c-8de8-1f50a85d5fde/0/323430303a366632303a3a2f33322d3438203d3e20313333383039.roa File: 323430303a366632303a3a2f33322d3438203d3e20313333383039.roa (raw, json) Hash identifier: 8MTe8KcDcB0X2kj+3dmF5RSp4lHPV4hialaox1IdvHk= Subject key identifier: F6:B4:EC:01:23:42:E0:0C:3C:01:BA:5C:D8:E4:0E:11:1D:F1:4C:CF Certificate issuer: /CN=2858C74CC23A557C73F59051B7FE8638AA491C94 Certificate serial: 2875CA37C23313FE7AE65BC26354CBB73849D730 Authority key identifier: 28:58:C7:4C:C2:3A:55:7C:73:F5:90:51:B7:FE:86:38:AA:49:1C:94 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2858C74CC23A557C73F59051B7FE8638AA491C94.cer Subject info access: rsync://repo-rpki.idnic.net/repo/59cef8b0-ba64-4c0c-8de8-1f50a85d5fde/0/323430303a366632303a3a2f33322d3438203d3e20313333383039.roa Signing time: Mon 28 Jul 2025 01:46:03 +0000 ROA not before: Mon 28 Jul 2025 01:41:03 +0000 ROA not after: Mon 27 Jul 2026 01:46:03 +0000 asID: 133809 IP address blocks: 2400:6f20::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/59cef8b0-ba64-4c0c-8de8-1f50a85d5fde/0/2858C74CC23A557C73F59051B7FE8638AA491C94.crl rsync://repo-rpki.idnic.net/repo/59cef8b0-ba64-4c0c-8de8-1f50a85d5fde/0/2858C74CC23A557C73F59051B7FE8638AA491C94.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2858C74CC23A557C73F59051B7FE8638AA491C94.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 12:06:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:75:ca:37:c2:33:13:fe:7a:e6:5b:c2:63:54:cb:b7:38:49:d7:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2858C74CC23A557C73F59051B7FE8638AA491C94 Validity Not Before: Jul 28 01:41:03 2025 GMT Not After : Jul 27 01:46:03 2026 GMT Subject: CN=F6B4EC012342E00C3C01BA5CD8E40E111DF14CCF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:e1:2e:94:ce:18:b2:41:2f:9f:4c:c8:e0:af: 96:a6:23:ad:05:95:bd:47:5a:07:30:27:c3:fb:6b: 94:c2:03:58:14:5c:22:f6:8f:fe:0d:d5:98:cc:ba: c8:25:3b:42:6e:0f:4d:6c:01:e4:0e:56:c4:c3:74: 1e:40:8b:e6:0b:b1:97:bd:46:4e:59:2e:96:67:2e: de:72:69:df:67:74:4f:db:d2:49:34:4f:41:e9:68: 4e:19:b3:85:50:57:8e:83:ab:20:08:69:30:5c:ad: dc:9d:06:41:17:e3:f7:97:d8:e8:15:00:00:30:c1: 6d:35:15:d2:81:77:6b:8b:db:a0:9a:95:68:c1:55: b1:29:4c:bb:e1:59:15:d7:c5:db:da:37:75:45:8e: e7:63:b7:3f:87:50:c6:75:a9:3f:87:06:27:d9:12: 70:44:6f:ca:c0:67:3f:59:ac:62:ee:32:4b:37:7e: 32:6f:c2:71:14:30:80:98:31:2a:de:09:2f:35:ef: c3:12:dd:1d:46:31:a5:ea:66:42:43:49:ea:62:79: 8c:a1:d1:1f:2e:61:ee:3e:41:d5:e8:19:b5:08:fd: 95:81:f7:bc:1e:eb:80:f8:fd:18:1e:72:26:0c:a6: cf:9a:f4:46:81:bf:32:1b:b2:ea:07:72:01:ad:f5: 05:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:B4:EC:01:23:42:E0:0C:3C:01:BA:5C:D8:E4:0E:11:1D:F1:4C:CF X509v3 Authority Key Identifier: keyid:28:58:C7:4C:C2:3A:55:7C:73:F5:90:51:B7:FE:86:38:AA:49:1C:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/59cef8b0-ba64-4c0c-8de8-1f50a85d5fde/0/2858C74CC23A557C73F59051B7FE8638AA491C94.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2858C74CC23A557C73F59051B7FE8638AA491C94.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/59cef8b0-ba64-4c0c-8de8-1f50a85d5fde/0/323430303a366632303a3a2f33322d3438203d3e20313333383039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2400:6f20::/32 Signature Algorithm: sha256WithRSAEncryption 4c:4a:42:28:ac:58:d5:00:8a:8c:f9:a2:29:91:a9:aa:f8:6d: fe:48:4a:98:06:13:f5:cc:2e:08:07:8b:14:5a:b1:a0:9d:75: e7:01:3a:d9:d0:67:20:1d:a6:bd:f2:e1:ab:01:d5:b9:d6:74: 6f:0f:f2:5f:e4:1d:12:6e:75:87:d4:9b:35:a0:ab:43:95:b2: 4f:4a:a1:cb:a9:9b:56:ce:81:e3:68:e8:63:a2:04:63:5b:53: d0:39:65:52:7c:19:a8:af:3e:c3:e6:a9:ef:a1:9c:9b:a4:e1: b7:4e:b3:02:ac:c2:f4:a3:dc:53:ff:5f:30:15:33:79:1e:21: fa:02:4b:a7:a9:8c:0c:fc:1b:c3:80:fe:6a:41:91:1d:ab:d9: a0:84:b9:c7:20:78:a4:34:b7:c4:c2:dc:42:b1:6f:79:6d:ad: 82:ff:6b:52:6d:d2:6e:fc:dc:7c:ef:51:87:db:c9:15:3d:f7: 9f:96:aa:6f:89:fb:64:a4:6c:a4:dd:d3:03:ae:32:f2:8e:98: 5e:7d:6a:90:20:f7:fe:dc:3a:94:59:e6:69:07:e1:e4:1d:f6: de:d7:9b:c4:5c:47:03:e0:4a:69:20:62:be:3d:29:5d:53:8d: 32:03:a6:a5:8e:77:e6:80:98:2c:d6:69:ab:0c:7d:f3:e7:be: a5:a3:60:bc -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUKHXKN8IzE/565lvCY1TLtzhJ1zAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg1OEM3NENDMjNBNTU3QzczRjU5MDUxQjdGRTg2MzhB QTQ5MUM5NDAeFw0yNTA3MjgwMTQxMDNaFw0yNjA3MjcwMTQ2MDNaMDMxMTAvBgNV BAMTKEY2QjRFQzAxMjM0MkUwMEMzQzAxQkE1Q0Q4RTQwRTExMURGMTRDQ0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC54S6UzhiyQS+fTMjgr5amI60F lb1HWgcwJ8P7a5TCA1gUXCL2j/4N1ZjMusglO0JuD01sAeQOVsTDdB5Ai+YLsZe9 Rk5ZLpZnLt5yad9ndE/b0kk0T0HpaE4Zs4VQV46DqyAIaTBcrdydBkEX4/eX2OgV AAAwwW01FdKBd2uL26CalWjBVbEpTLvhWRXXxdvaN3VFjudjtz+HUMZ1qT+HBifZ EnBEb8rAZz9ZrGLuMks3fjJvwnEUMICYMSreCS8178MS3R1GMaXqZkJDSepieYyh 0R8uYe4+QdXoGbUI/ZWB97we64D4/RgeciYMps+a9EaBvzIbsuoHcgGt9QXbAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQU9rTsASNC4Aw8Abpc2OQOER3xTM8wHwYDVR0j BBgwFoAUKFjHTMI6VXxz9ZBRt/6GOKpJHJQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OWNlZjhiMC1iYTY0LTRjMGMtOGRlOC0xZjUwYTg1ZDVmZGUvMC8yODU4Qzc0Q0My M0E1NTdDNzNGNTkwNTFCN0ZFODYzOEFBNDkxQzk0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjg1OEM3NENDMjNBNTU3QzczRjU5MDUxQjdGRTg2MzhBQTQ5 MUM5NC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU5Y2VmOGIwLWJhNjQtNGMwYy04 ZGU4LTFmNTBhODVkNWZkZS8wLzMyMzQzMDMwM2EzNjY2MzIzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzMzM4MzAzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQAbyAwDQYJKoZI hvcNAQELBQADggEBAExKQiisWNUAioz5oimRqar4bf5ISpgGE/XMLggHixRasaCd decBOtnQZyAdpr3y4asB1bnWdG8P8l/kHRJudYfUmzWgq0OVsk9Kocupm1bOgeNo 6GOiBGNbU9A5ZVJ8GaivPsPmqe+hnJuk4bdOswKswvSj3FP/XzAVM3keIfoCS6ep jAz8G8OA/mpBkR2r2aCEuccgeKQ0t8TC3EKxb3ltrYL/a1Jt0m783HzvUYfbyRU9 95+Wqm+J+2SkbKTd0wOuMvKOmF59apAg9/7cOpRZ5mkH4eQd9t7Xm8RcRwPgSmkg Yr49KV1TjTIDpqWOd+aAmCzWaasMffPnvqWjYLw= -----END CERTIFICATE-----Generated at Tue Aug 12 22:42:26 2025 by rpki-client