$ rpki-client -vvf repo-rpki.idnic.net/repo/949c8680-bd0f-4a4f-996d-2102a0535374/0/323430343a343234303a3a2f33322d3438203d3e20313338313239.roa File: 323430343a343234303a3a2f33322d3438203d3e20313338313239.roa (raw, json) Hash identifier: 9++yUwhwlSbkLR01RfXkFXxsjocjqNk14mv+oISczLY= Subject key identifier: 5F:F7:CD:8C:3B:9F:FC:4D:3F:9B:3D:98:51:42:D4:AC:99:F8:1F:F6 Certificate issuer: /CN=F558D9AA4E66D7B6E4CB29EC877953D3ED6CD766 Certificate serial: 0252C0073AAE76AD2989BB90BCAFF338E1ED0A6C Authority key identifier: F5:58:D9:AA:4E:66:D7:B6:E4:CB:29:EC:87:79:53:D3:ED:6C:D7:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F558D9AA4E66D7B6E4CB29EC877953D3ED6CD766.cer Subject info access: rsync://repo-rpki.idnic.net/repo/949c8680-bd0f-4a4f-996d-2102a0535374/0/323430343a343234303a3a2f33322d3438203d3e20313338313239.roa Signing time: Wed 30 Jul 2025 06:00:01 +0000 ROA not before: Wed 30 Jul 2025 05:55:01 +0000 ROA not after: Wed 29 Jul 2026 06:00:01 +0000 asID: 138129 IP address blocks: 2404:4240::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/949c8680-bd0f-4a4f-996d-2102a0535374/0/F558D9AA4E66D7B6E4CB29EC877953D3ED6CD766.crl rsync://repo-rpki.idnic.net/repo/949c8680-bd0f-4a4f-996d-2102a0535374/0/F558D9AA4E66D7B6E4CB29EC877953D3ED6CD766.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F558D9AA4E66D7B6E4CB29EC877953D3ED6CD766.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 11:57:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:52:c0:07:3a:ae:76:ad:29:89:bb:90:bc:af:f3:38:e1:ed:0a:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F558D9AA4E66D7B6E4CB29EC877953D3ED6CD766 Validity Not Before: Jul 30 05:55:01 2025 GMT Not After : Jul 29 06:00:01 2026 GMT Subject: CN=5FF7CD8C3B9FFC4D3F9B3D985142D4AC99F81FF6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:8a:74:cc:fe:1e:6d:18:75:6c:df:90:f0:63: 05:13:9c:ca:64:49:2d:66:c7:e7:95:df:6f:bb:f6: 65:e7:d7:a9:2d:d4:f1:bf:fe:54:03:bf:d2:c2:91: 2c:e3:1b:80:db:b5:6c:fc:3c:60:07:ee:d4:6d:17: 64:2c:dd:37:1e:2b:f8:d5:00:90:b8:33:2a:2c:e4: c9:9e:10:06:13:e8:3f:9a:92:eb:c4:7d:30:c5:db: 72:c4:8c:be:95:ed:df:3a:b8:7d:9e:84:53:c1:dc: 88:ed:be:a0:bf:6b:43:65:d5:b8:3b:05:a5:75:53: 23:7f:62:55:14:48:e2:51:8e:7d:38:b0:87:7d:80: 8b:07:f1:4b:b0:95:f6:0b:e6:1f:8c:ef:c5:46:71: 1a:dc:29:10:63:8b:6d:2b:44:e2:99:e3:8f:2c:0c: bc:b6:9e:f9:da:8f:27:6f:44:ce:33:de:6f:be:12: ef:71:c3:be:45:b8:ee:52:cb:5b:00:a5:96:5e:bb: b9:b0:5f:62:cf:81:ca:45:dc:cf:b9:51:6f:09:00: ca:9c:d9:9b:2a:41:56:c4:7e:ab:89:ae:22:9d:1a: 3f:03:20:fe:89:74:7b:1d:10:05:88:d9:b8:08:d0: 5c:3f:b0:21:52:93:63:60:04:e2:36:03:7a:9a:80: 3b:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:F7:CD:8C:3B:9F:FC:4D:3F:9B:3D:98:51:42:D4:AC:99:F8:1F:F6 X509v3 Authority Key Identifier: keyid:F5:58:D9:AA:4E:66:D7:B6:E4:CB:29:EC:87:79:53:D3:ED:6C:D7:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/949c8680-bd0f-4a4f-996d-2102a0535374/0/F558D9AA4E66D7B6E4CB29EC877953D3ED6CD766.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F558D9AA4E66D7B6E4CB29EC877953D3ED6CD766.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/949c8680-bd0f-4a4f-996d-2102a0535374/0/323430343a343234303a3a2f33322d3438203d3e20313338313239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:4240::/32 Signature Algorithm: sha256WithRSAEncryption 63:5b:11:2c:58:9e:15:b5:8c:7f:97:d0:b0:15:52:80:20:53: d9:e3:55:34:42:13:88:11:18:dd:4f:83:04:00:c8:70:3f:4e: 6a:fb:44:9f:09:e3:65:d7:df:7b:ed:32:7c:af:fe:64:45:fe: 40:68:6d:ec:ec:1a:d4:e7:3f:c9:2c:e0:03:c2:f1:8c:bd:6e: 46:eb:90:60:09:7b:87:f3:e3:e1:69:de:eb:08:da:bb:25:76: c9:bd:1f:4b:b4:44:72:ac:71:23:09:4e:61:b6:b4:c5:41:b0: 18:9b:fa:5c:56:e5:90:d6:2e:a2:cf:d8:62:5e:14:27:a0:74: 8a:65:04:41:eb:da:42:6d:e4:d3:30:69:d4:57:68:9a:2e:4f: 76:a1:0d:d1:44:2f:87:1d:43:2e:d2:05:7e:22:7c:12:55:d0: fb:e0:68:f0:e1:6c:2e:aa:ac:40:3d:98:1a:0c:7a:f1:62:43: f8:85:fd:05:8a:d2:0a:8a:ae:8f:5a:ad:36:b5:ed:05:fc:23: 05:c7:60:fb:bd:e1:5e:f1:95:26:57:36:a7:93:73:47:a2:d0: 4b:cd:fb:69:50:c8:5c:74:ae:18:47:31:cf:97:3e:08:46:3e: 02:d4:91:c8:53:9b:06:d9:0f:28:51:b3:f5:a8:f9:1d:bc:35: 95:f2:de:f9 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUAlLABzqudq0pibuQvK/zOOHtCmwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjU1OEQ5QUE0RTY2RDdCNkU0Q0IyOUVDODc3OTUzRDNF RDZDRDc2NjAeFw0yNTA3MzAwNTU1MDFaFw0yNjA3MjkwNjAwMDFaMDMxMTAvBgNV BAMTKDVGRjdDRDhDM0I5RkZDNEQzRjlCM0Q5ODUxNDJENEFDOTlGODFGRjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPinTM/h5tGHVs35DwYwUTnMpk SS1mx+eV32+79mXn16kt1PG//lQDv9LCkSzjG4DbtWz8PGAH7tRtF2Qs3TceK/jV AJC4Myos5MmeEAYT6D+akuvEfTDF23LEjL6V7d86uH2ehFPB3IjtvqC/a0Nl1bg7 BaV1UyN/YlUUSOJRjn04sId9gIsH8UuwlfYL5h+M78VGcRrcKRBji20rROKZ448s DLy2nvnajydvRM4z3m++Eu9xw75FuO5Sy1sApZZeu7mwX2LPgcpF3M+5UW8JAMqc 2ZsqQVbEfquJriKdGj8DIP6JdHsdEAWI2bgI0Fw/sCFSk2NgBOI2A3qagDvZAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUX/fNjDuf/E0/mz2YUULUrJn4H/YwHwYDVR0j BBgwFoAU9VjZqk5m17bkyynsh3lT0+1s12YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NDljODY4MC1iZDBmLTRhNGYtOTk2ZC0yMTAyYTA1MzUzNzQvMC9GNTU4RDlBQTRF NjZEN0I2RTRDQjI5RUM4Nzc5NTNEM0VENkNENzY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjU1OEQ5QUE0RTY2RDdCNkU0Q0IyOUVDODc3OTUzRDNFRDZD RDc2Ni5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk0OWM4NjgwLWJkMGYtNGE0Zi05 OTZkLTIxMDJhMDUzNTM3NC8wLzMyMzQzMDM0M2EzNDMyMzQzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzODMxMzIzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQEQkAwDQYJKoZI hvcNAQELBQADggEBAGNbESxYnhW1jH+X0LAVUoAgU9njVTRCE4gRGN1PgwQAyHA/ Tmr7RJ8J42XX33vtMnyv/mRF/kBobezsGtTnP8ks4APC8Yy9bkbrkGAJe4fz4+Fp 3usI2rsldsm9H0u0RHKscSMJTmG2tMVBsBib+lxW5ZDWLqLP2GJeFCegdIplBEHr 2kJt5NMwadRXaJouT3ahDdFEL4cdQy7SBX4ifBJV0PvgaPDhbC6qrEA9mBoMevFi Q/iF/QWK0gqKro9arTa17QX8IwXHYPu94V7xlSZXNqeTc0ei0EvN+2lQyFx0rhhH Mc+XPghGPgLUkchTmwbZDyhRs/Wo+R28NZXy3vk= -----END CERTIFICATE-----Generated at Sun Aug 10 05:34:32 2025 by rpki-client