$ rpki-client -vvf repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/323430313a316430303a3a2f33322d3332203d3e203338353035.roa File: 323430313a316430303a3a2f33322d3332203d3e203338353035.roa (raw, json) Hash identifier: h7NsaP81E/4rqIyGV1dg1JRgScEeK/hJwwlj/aFKArk= Subject key identifier: E7:E6:72:90:80:39:4C:36:61:33:2C:67:48:6C:AA:7D:0E:1D:63:C8 Certificate issuer: /CN=83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6 Certificate serial: 7780498D0C7246BF458C0D04FE959CCD6DB5A573 Authority key identifier: 83:D3:98:6C:5C:BD:56:BD:0C:E9:03:D1:B5:1E:AD:65:D1:1D:33:A6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/323430313a316430303a3a2f33322d3332203d3e203338353035.roa Signing time: Mon 09 Jun 2025 17:00:00 +0000 ROA not before: Mon 09 Jun 2025 16:55:00 +0000 ROA not after: Mon 08 Jun 2026 17:00:00 +0000 asID: 38505 IP address blocks: 2401:1d00::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.crl rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 23:33:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:80:49:8d:0c:72:46:bf:45:8c:0d:04:fe:95:9c:cd:6d:b5:a5:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6 Validity Not Before: Jun 9 16:55:00 2025 GMT Not After : Jun 8 17:00:00 2026 GMT Subject: CN=E7E6729080394C3661332C67486CAA7D0E1D63C8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:e0:1f:ee:20:58:7b:df:4e:12:68:22:fb:75: 6c:d6:04:54:c1:24:68:25:72:39:1f:9a:11:0a:0f: a7:41:7b:1a:34:05:2b:77:64:7b:da:c3:f6:52:a3: 34:76:ac:7e:78:3b:73:67:62:ae:8f:ca:39:00:26: d3:1c:9f:66:de:14:e3:8c:53:82:ca:8f:6b:b9:be: f9:22:62:18:42:77:85:c5:75:f9:79:5a:82:1d:d4: 71:74:e1:d9:21:b4:ab:8f:02:70:a1:09:69:d7:85: 7d:e9:12:b5:cf:fe:2f:f6:83:40:da:81:39:bb:ed: 93:11:1b:cc:da:32:e2:90:19:45:25:e1:5d:c6:f1: 57:4a:41:7e:c8:06:e0:a1:c3:2d:e7:ec:5e:0e:a0: 74:92:07:85:89:55:ac:36:50:6b:2e:f1:ca:bd:ed: 57:23:d5:30:8f:0f:59:b1:48:52:f2:73:87:c7:6d: dc:95:59:88:0f:67:db:77:fa:d8:d5:b8:7c:3f:6a: 1a:88:2b:80:52:15:03:f6:63:7f:68:7b:9d:62:9f: 40:38:26:1e:8c:78:9c:80:7d:24:2a:41:09:02:ad: 63:9b:5c:d4:8d:1e:27:11:9f:e2:60:1d:16:ce:76: a0:9d:96:69:58:9b:a0:b3:cb:7a:b7:a5:1c:38:a6: 75:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:E6:72:90:80:39:4C:36:61:33:2C:67:48:6C:AA:7D:0E:1D:63:C8 X509v3 Authority Key Identifier: keyid:83:D3:98:6C:5C:BD:56:BD:0C:E9:03:D1:B5:1E:AD:65:D1:1D:33:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/323430313a316430303a3a2f33322d3332203d3e203338353035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:1d00::/32 Signature Algorithm: sha256WithRSAEncryption 2f:2d:f2:a6:d9:52:0b:61:2a:5b:d0:5d:bd:4c:0e:1a:66:26: b5:5a:0a:62:d8:db:92:a7:fd:98:63:c6:31:19:85:8e:da:2e: ae:9d:c3:cc:8b:c9:37:cf:7b:13:c5:24:82:51:9b:78:f2:35: fd:d1:0f:f8:38:5f:80:bb:6b:a2:64:0e:39:eb:9d:cb:f6:30: 11:a3:4b:aa:24:9c:90:3d:ec:4b:df:79:62:b6:bc:d8:15:5f: 69:c4:f3:df:ca:02:b3:72:03:49:2a:00:71:9b:2e:9d:1c:46: 7e:8d:46:82:23:a5:45:12:d1:8d:4a:32:35:ee:e3:a3:af:77: e9:b0:56:9e:79:b6:c8:67:6c:07:5d:fb:43:d2:c7:bc:97:20: ab:5a:86:8e:1a:d0:c1:cc:71:13:2d:42:20:08:ed:fa:20:32: 5d:41:be:fd:55:fc:a7:91:f1:69:27:62:5d:7a:cb:25:ef:51: 80:5b:0b:c8:54:18:15:b6:4f:87:e0:88:1f:f6:66:e1:10:8b: 27:ef:35:fd:97:87:2f:10:ce:a2:aa:f7:94:ec:dc:c6:c8:86: c0:5e:d1:06:aa:13:32:a7:62:c1:0c:fe:af:1b:d6:43:77:1c: 58:f7:c7:e2:77:21:63:f7:4a:28:fa:cd:90:7a:10:5b:ce:1d: 8c:8e:59:e5 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUd4BJjQxyRr9FjA0E/pWczW21pXMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODNEMzk4NkM1Q0JENTZCRDBDRTkwM0QxQjUxRUFENjVE MTFEMzNBNjAeFw0yNTA2MDkxNjU1MDBaFw0yNjA2MDgxNzAwMDBaMDMxMTAvBgNV BAMTKEU3RTY3MjkwODAzOTRDMzY2MTMzMkM2NzQ4NkNBQTdEMEUxRDYzQzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZ4B/uIFh7304SaCL7dWzWBFTB JGglcjkfmhEKD6dBexo0BSt3ZHvaw/ZSozR2rH54O3NnYq6PyjkAJtMcn2beFOOM U4LKj2u5vvkiYhhCd4XFdfl5WoId1HF04dkhtKuPAnChCWnXhX3pErXP/i/2g0Da gTm77ZMRG8zaMuKQGUUl4V3G8VdKQX7IBuChwy3n7F4OoHSSB4WJVaw2UGsu8cq9 7Vcj1TCPD1mxSFLyc4fHbdyVWYgPZ9t3+tjVuHw/ahqIK4BSFQP2Y39oe51in0A4 Jh6MeJyAfSQqQQkCrWObXNSNHicRn+JgHRbOdqCdlmlYm6Czy3q3pRw4pnWDAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQU5+ZykIA5TDZhMyxnSGyqfQ4dY8gwHwYDVR0j BBgwFoAUg9OYbFy9Vr0M6QPRtR6tZdEdM6YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 M2QwNzg2ZC0zZDNlLTQ1YjctOTY2NS04ZDQ3NGZkMTRhZWEvMC84M0QzOTg2QzVD QkQ1NkJEMENFOTAzRDFCNTFFQUQ2NUQxMUQzM0E2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODNEMzk4NkM1Q0JENTZCRDBDRTkwM0QxQjUxRUFENjVEMTFE MzNBNi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgzZDA3ODZkLTNkM2UtNDViNy05 NjY1LThkNDc0ZmQxNGFlYS8wLzMyMzQzMDMxM2EzMTY0MzAzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMzMzgzNTMwMzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAR0AMA0GCSqGSIb3 DQEBCwUAA4IBAQAvLfKm2VILYSpb0F29TA4aZia1Wgpi2NuSp/2YY8YxGYWO2i6u ncPMi8k3z3sTxSSCUZt48jX90Q/4OF+Au2uiZA45653L9jARo0uqJJyQPexL33li trzYFV9pxPPfygKzcgNJKgBxmy6dHEZ+jUaCI6VFEtGNSjI17uOjr3fpsFaeebbI Z2wHXftD0se8lyCrWoaOGtDBzHETLUIgCO36IDJdQb79VfynkfFpJ2Jdessl71GA WwvIVBgVtk+H4Igf9mbhEIsn7zX9l4cvEM6iqveU7NzGyIbAXtEGqhMyp2LBDP6v G9ZDdxxY98fidyFj90oo+s2QehBbzh2Mjlnl -----END CERTIFICATE-----Generated at Mon Jun 16 21:31:26 2025 by rpki-client