$ rpki-client -vvf repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/323430313a316430303a313a3a2f34382d3438203d3e203338353035.roa File: 323430313a316430303a313a3a2f34382d3438203d3e203338353035.roa (raw, json) Hash identifier: uPV0voLTxjHrIsHmaExj5+EGVw7Nm+iGd6nJEj83KUE= Subject key identifier: 8F:95:DC:44:B5:A8:E2:1D:F6:68:3B:EE:B8:93:FA:74:AA:99:9C:E0 Certificate issuer: /CN=83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6 Certificate serial: 775B0CC12B5CC1C341FC3EA3AFD5FE331B8527B7 Authority key identifier: 83:D3:98:6C:5C:BD:56:BD:0C:E9:03:D1:B5:1E:AD:65:D1:1D:33:A6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/323430313a316430303a313a3a2f34382d3438203d3e203338353035.roa Signing time: Mon 09 Jun 2025 17:00:00 +0000 ROA not before: Mon 09 Jun 2025 16:55:00 +0000 ROA not after: Mon 08 Jun 2026 17:00:00 +0000 asID: 38505 IP address blocks: 2401:1d00:1::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.crl rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 23:33:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:5b:0c:c1:2b:5c:c1:c3:41:fc:3e:a3:af:d5:fe:33:1b:85:27:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6 Validity Not Before: Jun 9 16:55:00 2025 GMT Not After : Jun 8 17:00:00 2026 GMT Subject: CN=8F95DC44B5A8E21DF6683BEEB893FA74AA999CE0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:fd:32:54:2b:ec:cb:60:d0:96:e1:b5:95:0e: 61:3b:63:ff:c9:52:76:4b:23:97:b4:43:20:b8:83: e1:5f:3d:41:25:e7:c3:31:8d:ee:09:6e:d2:b2:9c: ce:09:1e:5d:ec:f2:fa:00:82:2d:85:73:01:32:65: 72:93:bd:95:6e:be:b1:18:93:c9:53:ff:7b:76:e5: 8c:5c:2a:38:58:be:fe:4f:2c:7a:97:91:32:fd:36: 36:6a:4b:e8:99:65:34:e7:f0:35:95:ed:83:de:3f: a1:84:3b:5a:28:7c:1d:96:a4:9d:fd:bd:9f:e1:9c: 8c:84:42:f1:71:7c:38:2f:16:92:af:b2:eb:66:5b: 00:6a:d7:47:d1:df:43:b5:18:28:41:8c:03:ba:2f: 54:59:9c:f7:8f:47:d7:09:f6:e6:02:da:d6:6c:3b: 0a:89:30:f8:6a:37:9a:63:75:25:7b:ea:bf:73:5f: f4:de:7c:66:6c:df:e2:ea:13:be:4c:ed:44:45:87: ff:79:86:e7:9b:41:5d:55:05:e8:5c:bd:23:47:41: ff:96:d0:ef:93:e0:54:db:e7:44:23:6e:b2:6f:8b: d0:1c:1a:f8:71:c3:4e:02:4f:26:8f:cf:cb:bd:ee: a2:8c:00:2d:90:d2:72:58:89:cc:79:95:b8:fb:2e: d4:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:95:DC:44:B5:A8:E2:1D:F6:68:3B:EE:B8:93:FA:74:AA:99:9C:E0 X509v3 Authority Key Identifier: keyid:83:D3:98:6C:5C:BD:56:BD:0C:E9:03:D1:B5:1E:AD:65:D1:1D:33:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/323430313a316430303a313a3a2f34382d3438203d3e203338353035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:1d00:1::/48 Signature Algorithm: sha256WithRSAEncryption cf:0f:7d:c7:cd:a7:c0:91:3d:d2:9b:df:8d:43:a5:31:d9:bc: b6:b8:8b:20:c0:b2:42:63:05:30:2b:0b:68:75:1a:cf:3d:69: 78:d3:d3:f0:f3:c4:62:52:59:a7:8d:b8:3c:5c:6c:cc:c1:2e: e9:f9:1f:50:0e:90:27:98:b1:2e:8f:cb:9a:4b:14:d6:3e:34: 29:fe:0d:75:38:d8:be:d6:bc:bd:ca:da:18:89:0d:fa:6d:76: 6a:14:37:af:ef:65:cb:4a:f2:91:f3:5c:6d:db:33:63:29:dc: 73:d2:6b:09:7c:99:86:10:b3:42:b3:ef:48:b4:ae:37:0c:17: d3:fd:60:8b:6c:61:14:37:06:1d:c1:06:56:24:22:96:9a:04: 79:56:26:e4:52:dc:51:86:09:88:1b:0c:3d:b4:2e:1e:89:c5: d6:a6:c8:08:b9:40:60:04:39:9c:70:7b:9e:04:40:24:cb:fe: 74:bf:27:9c:63:95:e9:b5:51:0d:b6:1a:ed:6f:64:82:89:df: d3:62:63:d9:16:21:a5:39:31:23:8f:8c:4a:8a:a0:cc:bf:b8: c1:0c:80:e6:45:54:98:c9:cd:34:9e:88:39:15:7f:ad:df:dc: f1:d6:12:a3:7c:ed:15:f2:91:18:40:eb:45:83:96:ec:d9:76: 08:a8:03:ca -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUd1sMwStcwcNB/D6jr9X+MxuFJ7cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODNEMzk4NkM1Q0JENTZCRDBDRTkwM0QxQjUxRUFENjVE MTFEMzNBNjAeFw0yNTA2MDkxNjU1MDBaFw0yNjA2MDgxNzAwMDBaMDMxMTAvBgNV BAMTKDhGOTVEQzQ0QjVBOEUyMURGNjY4M0JFRUI4OTNGQTc0QUE5OTlDRTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDE/TJUK+zLYNCW4bWVDmE7Y//J UnZLI5e0QyC4g+FfPUEl58Mxje4JbtKynM4JHl3s8voAgi2FcwEyZXKTvZVuvrEY k8lT/3t25YxcKjhYvv5PLHqXkTL9NjZqS+iZZTTn8DWV7YPeP6GEO1oofB2WpJ39 vZ/hnIyEQvFxfDgvFpKvsutmWwBq10fR30O1GChBjAO6L1RZnPePR9cJ9uYC2tZs OwqJMPhqN5pjdSV76r9zX/TefGZs3+LqE75M7URFh/95huebQV1VBehcvSNHQf+W 0O+T4FTb50QjbrJvi9AcGvhxw04CTyaPz8u97qKMAC2Q0nJYicx5lbj7LtRJAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUj5XcRLWo4h32aDvuuJP6dKqZnOAwHwYDVR0j BBgwFoAUg9OYbFy9Vr0M6QPRtR6tZdEdM6YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 M2QwNzg2ZC0zZDNlLTQ1YjctOTY2NS04ZDQ3NGZkMTRhZWEvMC84M0QzOTg2QzVD QkQ1NkJEMENFOTAzRDFCNTFFQUQ2NUQxMUQzM0E2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODNEMzk4NkM1Q0JENTZCRDBDRTkwM0QxQjUxRUFENjVEMTFE MzNBNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgzZDA3ODZkLTNkM2UtNDViNy05 NjY1LThkNDc0ZmQxNGFlYS8wLzMyMzQzMDMxM2EzMTY0MzAzMDNhMzEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMDM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAEdAAABMA0G CSqGSIb3DQEBCwUAA4IBAQDPD33HzafAkT3Sm9+NQ6Ux2by2uIsgwLJCYwUwKwto dRrPPWl409Pw88RiUlmnjbg8XGzMwS7p+R9QDpAnmLEuj8uaSxTWPjQp/g11ONi+ 1ry9ytoYiQ36bXZqFDev72XLSvKR81xt2zNjKdxz0msJfJmGELNCs+9ItK43DBfT /WCLbGEUNwYdwQZWJCKWmgR5VibkUtxRhgmIGww9tC4eicXWpsgIuUBgBDmccHue BEAky/50vyecY5XptVENthrtb2SCid/TYmPZFiGlOTEjj4xKiqDMv7jBDIDmRVSY yc00nog5FX+t39zx1hKjfO0V8pEYQOtFg5bs2XYIqAPK -----END CERTIFICATE-----Generated at Mon Jun 16 21:06:44 2025 by rpki-client