$ rpki-client -vvf repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/323430373a366638303a3a2f33322d3438203d3e20313335343737.roa File: 323430373a366638303a3a2f33322d3438203d3e20313335343737.roa (raw, json) Hash identifier: MnxsLBxnCm6F40OhhKQb/lu+z75TMPF3C+fnrBq75B0= Subject key identifier: 4D:A3:E2:A4:A6:D7:AF:FB:A4:3C:AF:94:0B:02:34:F5:6D:C4:02:F2 Certificate issuer: /CN=80A57D92B8D4C3FF17E71C0305D9AD829B9410E9 Certificate serial: 5299EE63C1AE0EF7C653E73DE102DD34C5DBCDB2 Authority key identifier: 80:A5:7D:92:B8:D4:C3:FF:17:E7:1C:03:05:D9:AD:82:9B:94:10:E9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/323430373a366638303a3a2f33322d3438203d3e20313335343737.roa Signing time: Thu 31 Jul 2025 06:00:01 +0000 ROA not before: Thu 31 Jul 2025 05:55:01 +0000 ROA not after: Thu 30 Jul 2026 06:00:01 +0000 asID: 135477 IP address blocks: 2407:6f80::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.crl rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 23:41:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:99:ee:63:c1:ae:0e:f7:c6:53:e7:3d:e1:02:dd:34:c5:db:cd:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=80A57D92B8D4C3FF17E71C0305D9AD829B9410E9 Validity Not Before: Jul 31 05:55:01 2025 GMT Not After : Jul 30 06:00:01 2026 GMT Subject: CN=4DA3E2A4A6D7AFFBA43CAF940B0234F56DC402F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:1d:6e:4a:1f:c1:29:76:1d:ad:3d:f6:99:ea: d7:51:83:f6:29:16:7a:05:b1:8d:1f:07:fa:0b:fc: bb:c3:66:ed:53:26:11:5a:e9:cc:96:8b:81:d4:cd: 61:71:6d:33:39:a4:c1:60:23:f1:35:64:69:9f:65: aa:86:4c:8b:54:2b:ee:ac:66:20:68:0c:5d:26:1e: df:c3:c2:81:1d:2b:75:ac:fe:46:56:a6:90:fb:6a: 26:5f:a8:58:b2:02:fe:d8:24:34:2a:51:1f:d9:f2: 9f:d9:93:66:7f:b8:2e:e0:e1:2f:64:9b:7f:94:a3: 71:1a:62:45:9e:66:0e:8b:61:47:f2:ad:76:64:d3: 32:f3:9f:2a:ef:93:fd:41:b0:7f:71:f0:92:bd:a3: 19:27:24:59:62:4f:4c:c4:5a:85:ff:de:bc:2d:57: e9:2c:6b:87:10:ad:dc:f8:0e:a4:be:96:89:3a:5b: db:6e:95:0c:e4:15:33:79:db:3c:f6:ff:10:2f:fc: 5f:ea:78:f7:e7:c6:67:b9:6d:c7:84:f0:71:94:b1: 09:db:05:5a:e5:b9:16:dc:1f:48:fa:44:f1:d8:c5: ec:a1:73:04:54:f7:5c:58:7f:a5:2f:0d:35:d5:06: 20:ef:af:3b:11:e0:17:47:6a:3d:b0:f4:55:5b:f4: 13:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:A3:E2:A4:A6:D7:AF:FB:A4:3C:AF:94:0B:02:34:F5:6D:C4:02:F2 X509v3 Authority Key Identifier: keyid:80:A5:7D:92:B8:D4:C3:FF:17:E7:1C:03:05:D9:AD:82:9B:94:10:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80A57D92B8D4C3FF17E71C0305D9AD829B9410E9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7fdf43e-4a4c-4dbc-b785-dd7cbf1a67b7/0/323430373a366638303a3a2f33322d3438203d3e20313335343737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:6f80::/32 Signature Algorithm: sha256WithRSAEncryption 50:c3:4f:cb:67:91:f1:de:31:a1:83:e9:ac:0f:d9:dd:74:fa: 35:6e:63:a5:b6:cf:ce:e2:9c:ca:01:34:f6:54:58:d8:57:57: 24:2e:e9:c5:cd:ed:a2:93:01:37:23:5d:59:a0:68:5e:60:43: ef:27:55:b0:02:59:f8:ed:e1:9c:d4:26:25:a4:6f:cc:80:56: 1f:6b:1e:50:6d:92:87:cb:87:a4:e3:d3:36:6d:7f:bd:38:33: d3:5a:b5:ca:41:4a:fd:4d:9a:a9:2d:93:6e:3d:8a:b5:ce:fb: 03:10:ed:9c:65:d8:0e:d9:d9:1e:c7:2a:65:c5:1c:06:6b:10: 34:7a:f7:cc:34:e9:66:52:4f:ed:c1:0b:5b:e2:e8:12:dd:9e: 2e:06:89:48:d4:28:e4:a1:f1:ed:dc:cf:65:e9:36:58:de:26: 6f:79:55:f9:01:15:72:de:53:98:e1:52:ae:25:5f:0f:b2:bd: f7:01:5f:05:f0:b7:2d:cb:58:85:2a:f6:a7:b7:a5:fc:58:cf: af:53:5c:f1:a4:77:17:19:34:58:9a:3e:78:9e:29:95:07:0b: ce:93:66:bd:2d:90:32:a1:69:1f:39:84:7a:e1:9f:4f:70:d6: 34:15:7c:97:32:a5:bc:c7:f8:77:4f:6e:87:05:69:5b:c8:6d: 69:0a:3b:10 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUUpnuY8GuDvfGU+c94QLdNMXbzbIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODBBNTdEOTJCOEQ0QzNGRjE3RTcxQzAzMDVEOUFEODI5 Qjk0MTBFOTAeFw0yNTA3MzEwNTU1MDFaFw0yNjA3MzAwNjAwMDFaMDMxMTAvBgNV BAMTKDREQTNFMkE0QTZEN0FGRkJBNDNDQUY5NDBCMDIzNEY1NkRDNDAyRjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLHW5KH8Epdh2tPfaZ6tdRg/Yp FnoFsY0fB/oL/LvDZu1TJhFa6cyWi4HUzWFxbTM5pMFgI/E1ZGmfZaqGTItUK+6s ZiBoDF0mHt/DwoEdK3Ws/kZWppD7aiZfqFiyAv7YJDQqUR/Z8p/Zk2Z/uC7g4S9k m3+Uo3EaYkWeZg6LYUfyrXZk0zLznyrvk/1BsH9x8JK9oxknJFliT0zEWoX/3rwt V+ksa4cQrdz4DqS+lok6W9tulQzkFTN52zz2/xAv/F/qePfnxme5bceE8HGUsQnb BVrluRbcH0j6RPHYxeyhcwRU91xYf6UvDTXVBiDvrzsR4BdHaj2w9FVb9BOPAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUTaPipKbXr/ukPK+UCwI09W3EAvIwHwYDVR0j BBgwFoAUgKV9krjUw/8X5xwDBdmtgpuUEOkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h N2ZkZjQzZS00YTRjLTRkYmMtYjc4NS1kZDdjYmYxYTY3YjcvMC84MEE1N0Q5MkI4 RDRDM0ZGMTdFNzFDMDMwNUQ5QUQ4MjlCOTQxMEU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODBBNTdEOTJCOEQ0QzNGRjE3RTcxQzAzMDVEOUFEODI5Qjk0 MTBFOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3ZmRmNDNlLTRhNGMtNGRiYy1i Nzg1LWRkN2NiZjFhNjdiNy8wLzMyMzQzMDM3M2EzNjY2MzgzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzNTM0MzczNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQHb4AwDQYJKoZI hvcNAQELBQADggEBAFDDT8tnkfHeMaGD6awP2d10+jVuY6W2z87inMoBNPZUWNhX VyQu6cXN7aKTATcjXVmgaF5gQ+8nVbACWfjt4ZzUJiWkb8yAVh9rHlBtkofLh6Tj 0zZtf704M9NatcpBSv1Nmqktk249irXO+wMQ7Zxl2A7Z2R7HKmXFHAZrEDR698w0 6WZST+3BC1vi6BLdni4GiUjUKOSh8e3cz2XpNljeJm95VfkBFXLeU5jhUq4lXw+y vfcBXwXwty3LWIUq9qe3pfxYz69TXPGkdxcZNFiaPnieKZUHC86TZr0tkDKhaR85 hHrhn09w1jQVfJcypbzH+HdPbocFaVvIbWkKOxA= -----END CERTIFICATE-----Generated at Thu Aug 7 20:24:27 2025 by rpki-client