$ rpki-client -vvf repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/323430333a626130303a3a2f33322d3438203d3e203234353231.roa File: 323430333a626130303a3a2f33322d3438203d3e203234353231.roa (raw, json) Hash identifier: B9qLkdqrOWwVF5tA2jsrqX21V3LrtEAcPvXr3jC/ETM= Subject key identifier: E5:04:D7:5F:D2:91:3F:5A:A2:29:0A:F8:B5:BD:6E:70:3D:60:11:75 Certificate issuer: /CN=C3F745EDE7F4C0D8E5674965B52080083B271E3E Certificate serial: 61B8BA683EE7A3950DEEB8951B139F00A509C4D2 Authority key identifier: C3:F7:45:ED:E7:F4:C0:D8:E5:67:49:65:B5:20:80:08:3B:27:1E:3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/323430333a626130303a3a2f33322d3438203d3e203234353231.roa Signing time: Mon 02 Jun 2025 02:02:53 +0000 ROA not before: Mon 02 Jun 2025 01:57:53 +0000 ROA not after: Mon 01 Jun 2026 02:02:53 +0000 asID: 24521 IP address blocks: 2403:ba00::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/C3F745EDE7F4C0D8E5674965B52080083B271E3E.crl rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/C3F745EDE7F4C0D8E5674965B52080083B271E3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 21:55:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:b8:ba:68:3e:e7:a3:95:0d:ee:b8:95:1b:13:9f:00:a5:09:c4:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3F745EDE7F4C0D8E5674965B52080083B271E3E Validity Not Before: Jun 2 01:57:53 2025 GMT Not After : Jun 1 02:02:53 2026 GMT Subject: CN=E504D75FD2913F5AA2290AF8B5BD6E703D601175 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:58:19:05:71:f9:9a:db:e9:5e:a8:ca:fd:5d: b8:f7:27:31:64:26:19:12:54:cb:ee:db:eb:fe:eb: ba:2d:da:5c:1a:30:88:ba:e9:cf:82:bf:dd:75:77: c0:65:18:aa:be:44:d0:36:28:90:82:77:36:63:64: 15:63:94:96:11:25:cb:39:7f:1e:08:5b:41:43:ac: ef:f6:06:a0:2b:ed:fb:70:8c:8e:a9:d1:ef:76:bc: f6:06:ac:49:51:bd:9c:63:86:77:b8:1a:aa:7b:0b: 85:dd:4c:37:2e:4e:08:1b:5e:fb:ec:43:fc:67:b3: 8f:88:00:80:9b:31:b4:f5:ae:bc:d4:91:07:25:d4: 5c:c0:b3:31:bd:f3:ca:66:f4:4c:c6:52:83:de:13: 61:fd:1e:6d:ca:e0:5d:dc:07:79:97:cb:b1:6c:23: 36:22:7b:6a:d1:a8:92:a8:e0:cd:2c:7c:20:af:d9: 14:14:60:c5:e1:00:54:9f:54:e3:9c:4e:4f:72:27: 75:a3:4b:87:22:9a:6b:f3:0f:3e:e7:c9:1c:b4:47: e0:e9:75:5c:5c:38:97:46:b1:9a:54:39:13:8b:53: b5:12:d6:f7:c0:bf:e9:94:5c:3d:da:09:56:a0:ae: c3:7d:65:b9:99:ad:c2:2f:96:a0:03:45:92:7c:57: 3d:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:04:D7:5F:D2:91:3F:5A:A2:29:0A:F8:B5:BD:6E:70:3D:60:11:75 X509v3 Authority Key Identifier: keyid:C3:F7:45:ED:E7:F4:C0:D8:E5:67:49:65:B5:20:80:08:3B:27:1E:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/C3F745EDE7F4C0D8E5674965B52080083B271E3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/323430333a626130303a3a2f33322d3438203d3e203234353231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:ba00::/32 Signature Algorithm: sha256WithRSAEncryption bb:58:94:f9:bf:a3:43:f4:ed:2f:9a:94:6e:cc:3b:09:0a:91: 55:26:06:bf:2b:fa:2d:e9:24:38:85:76:ad:e4:74:5c:a5:06: b5:1e:f9:45:8f:c3:5c:2f:4a:ac:80:f2:a0:41:25:d9:4a:7b: e2:2b:29:dc:f1:6d:b2:4a:a5:9b:bd:46:75:44:b5:2d:5f:3f: 6f:2d:3c:ba:ce:a2:f2:a0:45:49:1d:e8:fa:1b:0c:f7:b3:67: 31:7e:6c:15:4a:e5:d7:44:f4:4a:9b:c1:1f:5a:c2:18:a7:d1: 71:0d:7d:08:b8:e2:f2:d1:95:a4:46:fe:c7:b4:66:ea:b2:19: bc:70:1e:9e:73:98:a6:38:19:94:a3:04:87:6a:aa:60:98:65: f0:c7:9b:9f:26:fd:a0:85:36:b1:7d:f7:45:c6:c6:3d:97:90: af:99:d7:8a:af:c7:a3:55:93:73:e4:74:a8:2b:45:92:0e:08: bf:c0:9c:05:10:61:6c:b6:20:ba:e5:e4:13:a0:c5:d1:af:21: 96:4e:51:81:c6:5d:4f:c5:c1:05:51:d6:53:16:3f:b0:de:39: 4f:fe:38:66:33:5c:fd:29:54:9b:5f:27:d8:dd:dc:28:57:4c: 57:03:14:43:73:b6:59:7a:95:a7:05:5e:4b:26:23:b9:92:70: fa:72:eb:3f -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUYbi6aD7no5UN7riVGxOfAKUJxNIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNGNzQ1RURFN0Y0QzBEOEU1Njc0OTY1QjUyMDgwMDgz QjI3MUUzRTAeFw0yNTA2MDIwMTU3NTNaFw0yNjA2MDEwMjAyNTNaMDMxMTAvBgNV BAMTKEU1MDRENzVGRDI5MTNGNUFBMjI5MEFGOEI1QkQ2RTcwM0Q2MDExNzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIWBkFcfma2+leqMr9Xbj3JzFk JhkSVMvu2+v+67ot2lwaMIi66c+Cv911d8BlGKq+RNA2KJCCdzZjZBVjlJYRJcs5 fx4IW0FDrO/2BqAr7ftwjI6p0e92vPYGrElRvZxjhne4Gqp7C4XdTDcuTggbXvvs Q/xns4+IAICbMbT1rrzUkQcl1FzAszG988pm9EzGUoPeE2H9Hm3K4F3cB3mXy7Fs IzYie2rRqJKo4M0sfCCv2RQUYMXhAFSfVOOcTk9yJ3WjS4cimmvzDz7nyRy0R+Dp dVxcOJdGsZpUOROLU7US1vfAv+mUXD3aCVagrsN9ZbmZrcIvlqADRZJ8Vz09AgMB AAGjggIxMIICLTAdBgNVHQ4EFgQU5QTXX9KRP1qiKQr4tb1ucD1gEXUwHwYDVR0j BBgwFoAUw/dF7ef0wNjlZ0lltSCACDsnHj4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MDljMjJiMS0xYjdiLTQ2NzEtYWI5NC01YzVlNzQ4ODI1NDcvMC9DM0Y3NDVFREU3 RjRDMEQ4RTU2NzQ5NjVCNTIwODAwODNCMjcxRTNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzNGNzQ1RURFN0Y0QzBEOEU1Njc0OTY1QjUyMDgwMDgzQjI3 MUUzRS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAwOWMyMmIxLTFiN2ItNDY3MS1h Yjk0LTVjNWU3NDg4MjU0Ny8wLzMyMzQzMDMzM2E2MjYxMzAzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMyMzQzNTMyMzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkA7oAMA0GCSqGSIb3 DQEBCwUAA4IBAQC7WJT5v6ND9O0vmpRuzDsJCpFVJga/K/ot6SQ4hXat5HRcpQa1 HvlFj8NcL0qsgPKgQSXZSnviKync8W2ySqWbvUZ1RLUtXz9vLTy6zqLyoEVJHej6 Gwz3s2cxfmwVSuXXRPRKm8EfWsIYp9FxDX0IuOLy0ZWkRv7HtGbqshm8cB6ec5im OBmUowSHaqpgmGXwx5ufJv2ghTaxffdFxsY9l5CvmdeKr8ejVZNz5HSoK0WSDgi/ wJwFEGFstiC65eQToMXRryGWTlGBxl1PxcEFUdZTFj+w3jlP/jhmM1z9KVSbXyfY 3dwoV0xXAxRDc7ZZepWnBV5LJiO5knD6cus/ -----END CERTIFICATE-----Generated at Sun Jun 8 16:02:46 2025 by rpki-client