$ rpki-client -vvf repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/323430313a316430303a3a2f34382d3438203d3e203338353035.roa File: 323430313a316430303a3a2f34382d3438203d3e203338353035.roa (raw, json) Hash identifier: 4nd2DLm/J+RolIn9aIGsW+HXsvu2ybFSiuHkPOngkOI= Subject key identifier: 9B:0A:9C:B4:D6:7D:46:B6:0B:6C:C5:4D:03:ED:46:91:B4:E3:DB:C2 Certificate issuer: /CN=83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6 Certificate serial: 54700483FBBCB2A8489856DEA2CE6D72F6E4CD85 Authority key identifier: 83:D3:98:6C:5C:BD:56:BD:0C:E9:03:D1:B5:1E:AD:65:D1:1D:33:A6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/323430313a316430303a3a2f34382d3438203d3e203338353035.roa Signing time: Mon 09 Jun 2025 17:00:01 +0000 ROA not before: Mon 09 Jun 2025 16:55:01 +0000 ROA not after: Mon 08 Jun 2026 17:00:01 +0000 asID: 38505 IP address blocks: 2401:1d00::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.crl rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 23:33:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:70:04:83:fb:bc:b2:a8:48:98:56:de:a2:ce:6d:72:f6:e4:cd:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6 Validity Not Before: Jun 9 16:55:01 2025 GMT Not After : Jun 8 17:00:01 2026 GMT Subject: CN=9B0A9CB4D67D46B60B6CC54D03ED4691B4E3DBC2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:ec:ba:fa:df:7f:f1:2f:7b:5f:61:94:73:46: 43:a6:18:91:3b:3a:09:8a:99:46:4a:b3:31:36:74: 5c:91:0e:81:d1:4e:e1:03:cb:a4:37:1a:78:07:d8: b8:55:3e:c5:49:15:2c:a3:da:cb:51:4b:86:51:5c: 23:82:b6:c7:b3:d5:45:d1:9c:67:8b:5d:73:1c:3b: 92:51:7b:e6:d7:34:a0:79:b5:a3:15:20:bb:3f:eb: fe:a7:be:ec:a4:3c:a6:40:ba:2c:9a:79:c2:f7:8d: 3c:7e:01:72:43:20:fe:86:7a:10:15:0b:e3:2f:65: b0:2a:88:af:10:a4:c8:ed:d1:0e:49:e9:59:a5:33: 4f:fc:b3:de:1f:63:45:6b:ba:9e:44:4b:39:a5:be: 49:2a:48:9e:d4:20:18:8d:68:bf:6e:9c:14:81:4a: 2a:92:c3:42:0a:b2:30:83:84:bb:2e:63:29:67:ce: b3:7f:4f:fa:81:c2:bf:b5:ca:2c:1e:8d:32:c4:07: ab:77:19:e4:ad:52:b1:41:75:da:ee:be:4b:03:34: 68:7b:25:9e:30:ff:da:16:88:7a:26:24:7b:45:a1: 5c:64:7a:c8:8d:30:1e:69:18:da:b4:b3:f7:72:33: 06:56:e8:e0:d1:18:4f:ac:78:e3:08:0e:2f:68:ce: 04:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:0A:9C:B4:D6:7D:46:B6:0B:6C:C5:4D:03:ED:46:91:B4:E3:DB:C2 X509v3 Authority Key Identifier: keyid:83:D3:98:6C:5C:BD:56:BD:0C:E9:03:D1:B5:1E:AD:65:D1:1D:33:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/83D3986C5CBD56BD0CE903D1B51EAD65D11D33A6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/83d0786d-3d3e-45b7-9665-8d474fd14aea/0/323430313a316430303a3a2f34382d3438203d3e203338353035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:1d00::/48 Signature Algorithm: sha256WithRSAEncryption ab:fa:c6:72:c6:13:36:fc:57:e8:f1:e4:52:b5:3e:08:a5:f9: 12:96:f1:95:14:42:20:1a:8b:21:0a:04:d1:59:bf:5b:0c:89: 0f:09:7d:5a:62:50:3a:2d:82:03:9b:b0:9d:e4:e2:3e:54:e8: ba:25:52:15:db:08:e9:9e:b2:29:5d:b8:a2:33:90:8f:4a:f7: d5:7c:97:5a:dd:03:c8:2d:4e:41:2c:91:4c:a8:fb:7f:7a:08: 88:90:4a:56:67:7c:1c:e7:7c:56:ad:cd:e8:d2:3c:e0:ae:5a: 2c:8f:db:b2:37:5e:17:96:21:13:aa:6c:42:50:09:74:e6:12: 6f:f3:3a:18:64:9c:c7:a6:e8:7c:84:56:63:28:6d:b0:52:62: b2:9e:c1:f9:2c:c3:34:0b:cf:01:b8:46:e6:6d:c0:01:57:57: 1f:4a:68:f2:01:ec:15:f3:4a:40:98:05:c5:a0:8f:99:41:88: c7:3d:64:df:dd:70:72:31:c1:7c:6d:c6:b3:79:06:a3:c8:f1: 35:40:fc:1c:ba:07:68:cc:3a:c4:d7:ee:62:f8:8c:3b:5d:00: 96:55:96:1c:51:21:35:34:35:75:84:be:26:c4:a6:b7:00:61: bf:39:32:05:0a:92:02:d1:d1:55:5e:2a:ef:15:fd:30:40:ac: 1a:c4:2a:fe -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUVHAEg/u8sqhImFbeos5tcvbkzYUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODNEMzk4NkM1Q0JENTZCRDBDRTkwM0QxQjUxRUFENjVE MTFEMzNBNjAeFw0yNTA2MDkxNjU1MDFaFw0yNjA2MDgxNzAwMDFaMDMxMTAvBgNV BAMTKDlCMEE5Q0I0RDY3RDQ2QjYwQjZDQzU0RDAzRUQ0NjkxQjRFM0RCQzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDz7Lr633/xL3tfYZRzRkOmGJE7 OgmKmUZKszE2dFyRDoHRTuEDy6Q3GngH2LhVPsVJFSyj2stRS4ZRXCOCtsez1UXR nGeLXXMcO5JRe+bXNKB5taMVILs/6/6nvuykPKZAuiyaecL3jTx+AXJDIP6GehAV C+MvZbAqiK8QpMjt0Q5J6VmlM0/8s94fY0Vrup5ESzmlvkkqSJ7UIBiNaL9unBSB SiqSw0IKsjCDhLsuYylnzrN/T/qBwr+1yiwejTLEB6t3GeStUrFBddruvksDNGh7 JZ4w/9oWiHomJHtFoVxkesiNMB5pGNq0s/dyMwZW6ODRGE+seOMIDi9ozgSdAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUmwqctNZ9RrYLbMVNA+1GkbTj28IwHwYDVR0j BBgwFoAUg9OYbFy9Vr0M6QPRtR6tZdEdM6YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 M2QwNzg2ZC0zZDNlLTQ1YjctOTY2NS04ZDQ3NGZkMTRhZWEvMC84M0QzOTg2QzVD QkQ1NkJEMENFOTAzRDFCNTFFQUQ2NUQxMUQzM0E2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODNEMzk4NkM1Q0JENTZCRDBDRTkwM0QxQjUxRUFENjVEMTFE MzNBNi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgzZDA3ODZkLTNkM2UtNDViNy05 NjY1LThkNDc0ZmQxNGFlYS8wLzMyMzQzMDMxM2EzMTY0MzAzMDNhM2EyZjM0Mzgy ZDM0MzgyMDNkM2UyMDMzMzgzNTMwMzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAR0AAAAwDQYJKoZI hvcNAQELBQADggEBAKv6xnLGEzb8V+jx5FK1Pgil+RKW8ZUUQiAaiyEKBNFZv1sM iQ8JfVpiUDotggObsJ3k4j5U6LolUhXbCOmesilduKIzkI9K99V8l1rdA8gtTkEs kUyo+396CIiQSlZnfBznfFatzejSPOCuWiyP27I3XheWIROqbEJQCXTmEm/zOhhk nMem6HyEVmMobbBSYrKewfkswzQLzwG4RuZtwAFXVx9KaPIB7BXzSkCYBcWgj5lB iMc9ZN/dcHIxwXxtxrN5BqPI8TVA/By6B2jMOsTX7mL4jDtdAJZVlhxRITU0NXWE vibEprcAYb85MgUKkgLR0VVeKu8V/TBArBrEKv4= -----END CERTIFICATE-----Generated at Mon Jun 16 21:22:21 2025 by rpki-client