$ rpki-client -vvf repo-rpki.idnic.net/repo/7d68500c-49f8-4f01-8774-f7c3164a0a58/0/323430363a623734303a3a2f33322d3332203d3e203338373736.roa File: 323430363a623734303a3a2f33322d3332203d3e203338373736.roa (raw, json) Hash identifier: l1d86+GollU+X7/7+S+akSvN9Ic4ZxndXEoSt1R4EA0= Subject key identifier: 75:9D:88:BC:F0:88:38:32:46:0E:3D:5B:1A:D5:24:05:A0:98:DD:9C Certificate issuer: /CN=FD0F38979237143A0D44165912E79E2FACD5A3BA Certificate serial: 3F611C06A51C67FF3B783C0AEE02AB71E8ECF964 Authority key identifier: FD:0F:38:97:92:37:14:3A:0D:44:16:59:12:E7:9E:2F:AC:D5:A3:BA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FD0F38979237143A0D44165912E79E2FACD5A3BA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7d68500c-49f8-4f01-8774-f7c3164a0a58/0/323430363a623734303a3a2f33322d3332203d3e203338373736.roa Signing time: Sun 15 Jun 2025 10:20:39 +0000 ROA not before: Sun 15 Jun 2025 10:15:39 +0000 ROA not after: Sun 14 Jun 2026 10:20:39 +0000 asID: 38776 IP address blocks: 2406:b740::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7d68500c-49f8-4f01-8774-f7c3164a0a58/0/FD0F38979237143A0D44165912E79E2FACD5A3BA.crl rsync://repo-rpki.idnic.net/repo/7d68500c-49f8-4f01-8774-f7c3164a0a58/0/FD0F38979237143A0D44165912E79E2FACD5A3BA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FD0F38979237143A0D44165912E79E2FACD5A3BA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 20:32:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:61:1c:06:a5:1c:67:ff:3b:78:3c:0a:ee:02:ab:71:e8:ec:f9:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FD0F38979237143A0D44165912E79E2FACD5A3BA Validity Not Before: Jun 15 10:15:39 2025 GMT Not After : Jun 14 10:20:39 2026 GMT Subject: CN=759D88BCF0883832460E3D5B1AD52405A098DD9C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:d0:19:6f:f4:7e:d9:18:c9:ac:ac:8e:ca:ce: f7:96:2a:81:20:51:a7:fe:8b:71:d3:3e:40:95:7b: 5a:36:aa:59:27:6d:c4:00:f9:d6:63:4b:e4:7b:38: 8a:30:97:8f:70:3b:97:bf:52:84:7e:de:62:c6:46: 77:ba:78:d6:47:e3:fd:a4:4a:54:22:4d:4a:cd:5f: 2a:dc:e9:5d:d7:4b:41:74:53:68:d1:da:8a:56:cc: 35:c8:1c:89:5f:98:43:a1:e9:a8:e4:3c:d9:54:fd: 79:e5:11:46:67:e7:9e:bf:fa:90:ee:a2:5b:34:ce: f5:b0:6c:c6:17:c5:5f:7c:24:6e:f7:47:5d:87:2f: 43:9c:69:9a:c6:c5:32:3a:6b:4f:75:a5:eb:e4:ff: ea:31:1b:db:84:1c:1c:12:60:1e:38:0d:a1:e1:61: d4:7f:90:a2:5b:2c:bd:b5:66:3d:c6:e4:43:ff:7e: b6:34:79:69:e2:1e:78:2d:9b:cd:fa:26:ba:1a:af: d4:84:9e:08:01:a7:b7:c3:9b:17:84:1b:3d:08:18: 26:db:8b:38:9f:36:c6:8e:1a:79:08:4b:6c:c7:de: ee:c8:77:d4:96:e0:41:65:32:fb:3e:42:08:9c:d9: 43:0b:4b:d3:92:77:57:08:91:c0:80:ea:e8:03:0a: b1:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:9D:88:BC:F0:88:38:32:46:0E:3D:5B:1A:D5:24:05:A0:98:DD:9C X509v3 Authority Key Identifier: keyid:FD:0F:38:97:92:37:14:3A:0D:44:16:59:12:E7:9E:2F:AC:D5:A3:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7d68500c-49f8-4f01-8774-f7c3164a0a58/0/FD0F38979237143A0D44165912E79E2FACD5A3BA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FD0F38979237143A0D44165912E79E2FACD5A3BA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7d68500c-49f8-4f01-8774-f7c3164a0a58/0/323430363a623734303a3a2f33322d3332203d3e203338373736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:b740::/32 Signature Algorithm: sha256WithRSAEncryption 75:e3:51:9e:35:70:bb:e4:92:4e:8d:2d:0a:e1:32:d3:51:e4: 9c:d6:36:d4:c7:93:4e:11:42:5f:8e:d3:0f:b3:d2:a9:4c:8a: 1b:3a:90:fe:c7:d3:4c:20:3f:e8:cb:7a:33:88:ad:00:c5:bf: 1b:5e:24:92:bd:e9:f7:72:4c:c3:2f:61:0d:3e:fb:d6:f8:91: 60:ec:01:70:d4:f7:99:7a:c0:f6:78:45:2c:7a:3f:2a:60:60: a2:04:33:d8:5a:3d:33:ec:88:2d:73:8e:2c:79:bd:54:34:70: 05:42:fe:19:fa:bb:b5:fa:91:62:02:ba:9b:3a:ca:c2:a4:57: 19:1e:3f:26:9c:a1:c5:1f:7d:30:df:58:bc:cb:6b:fc:49:df: 3b:68:e4:54:07:bc:b7:80:25:d2:1b:7d:0b:f0:7f:b0:c0:f7: 07:f4:d8:6c:66:2b:a4:5e:56:59:67:b8:5e:b8:29:80:77:8f: ed:aa:45:ec:f1:69:27:e8:d0:99:73:6b:f9:a2:11:a0:65:c5: 97:32:19:64:89:9a:7b:3a:66:1b:9f:0f:bf:25:af:47:cc:6c: dd:43:ea:c6:ab:4b:9d:11:ab:fc:f9:fb:46:5e:34:ef:09:e4: 9e:17:93:f4:53:a6:89:52:1c:e8:ff:70:6c:47:44:64:48:74: c7:37:1e:21 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUP2EcBqUcZ/87eDwK7gKrcejs+WQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkQwRjM4OTc5MjM3MTQzQTBENDQxNjU5MTJFNzlFMkZB Q0Q1QTNCQTAeFw0yNTA2MTUxMDE1MzlaFw0yNjA2MTQxMDIwMzlaMDMxMTAvBgNV BAMTKDc1OUQ4OEJDRjA4ODM4MzI0NjBFM0Q1QjFBRDUyNDA1QTA5OEREOUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDS0Blv9H7ZGMmsrI7KzveWKoEg Uaf+i3HTPkCVe1o2qlknbcQA+dZjS+R7OIowl49wO5e/UoR+3mLGRne6eNZH4/2k SlQiTUrNXyrc6V3XS0F0U2jR2opWzDXIHIlfmEOh6ajkPNlU/XnlEUZn556/+pDu ols0zvWwbMYXxV98JG73R12HL0OcaZrGxTI6a091pevk/+oxG9uEHBwSYB44DaHh YdR/kKJbLL21Zj3G5EP/frY0eWniHngtm836Jroar9SEnggBp7fDmxeEGz0IGCbb izifNsaOGnkIS2zH3u7Id9SW4EFlMvs+Qgic2UMLS9OSd1cIkcCA6ugDCrFpAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUdZ2IvPCIODJGDj1bGtUkBaCY3ZwwHwYDVR0j BBgwFoAU/Q84l5I3FDoNRBZZEueeL6zVo7owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZDY4NTAwYy00OWY4LTRmMDEtODc3NC1mN2MzMTY0YTBhNTgvMC9GRDBGMzg5Nzky MzcxNDNBMEQ0NDE2NTkxMkU3OUUyRkFDRDVBM0JBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkQwRjM4OTc5MjM3MTQzQTBENDQxNjU5MTJFNzlFMkZBQ0Q1 QTNCQS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdkNjg1MDBjLTQ5ZjgtNGYwMS04 Nzc0LWY3YzMxNjRhMGE1OC8wLzMyMzQzMDM2M2E2MjM3MzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMzMzgzNzM3MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBrdAMA0GCSqGSIb3 DQEBCwUAA4IBAQB141GeNXC75JJOjS0K4TLTUeSc1jbUx5NOEUJfjtMPs9KpTIob OpD+x9NMID/oy3oziK0Axb8bXiSSven3ckzDL2ENPvvW+JFg7AFw1PeZesD2eEUs ej8qYGCiBDPYWj0z7Igtc44seb1UNHAFQv4Z+ru1+pFiArqbOsrCpFcZHj8mnKHF H30w31i8y2v8Sd87aORUB7y3gCXSG30L8H+wwPcH9NhsZiukXlZZZ7heuCmAd4/t qkXs8Wkn6NCZc2v5ohGgZcWXMhlkiZp7OmYbnw+/Ja9HzGzdQ+rGq0udEav8+ftG XjTvCeSeF5P0U6aJUhzo/3BsR0RkSHTHNx4h -----END CERTIFICATE-----Generated at Tue Jun 17 06:51:25 2025 by rpki-client