$ rpki-client -vvf repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/323430323a663038303a313a3a2f34382d3438203d3e203338313530.roa File: 323430323a663038303a313a3a2f34382d3438203d3e203338313530.roa (raw, json) Hash identifier: l7IvhWfbT+lx2dajFWFQHmgoo+JryhgkVz+DjITDf5w= Subject key identifier: 48:57:47:80:38:77:D2:4A:A0:CE:15:9F:FA:F5:81:60:DA:67:FF:E0 Certificate issuer: /CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Certificate serial: 2F33268278A022AA10E1A11D9D9BB0215A7CB24B Authority key identifier: 2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/323430323a663038303a313a3a2f34382d3438203d3e203338313530.roa Signing time: Mon 02 Jun 2025 02:02:33 +0000 ROA not before: Mon 02 Jun 2025 01:57:33 +0000 ROA not after: Mon 01 Jun 2026 02:02:33 +0000 asID: 38150 IP address blocks: 2402:f080:1::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 15:15:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:33:26:82:78:a0:22:aa:10:e1:a1:1d:9d:9b:b0:21:5a:7c:b2:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Validity Not Before: Jun 2 01:57:33 2025 GMT Not After : Jun 1 02:02:33 2026 GMT Subject: CN=485747803877D24AA0CE159FFAF58160DA67FFE0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:f4:83:01:c6:fc:fc:de:bc:69:fc:83:e7:f5: 79:34:0c:6d:7a:fd:f0:7b:8c:8b:66:96:96:cd:78: 47:d7:d6:9a:69:18:ec:78:3f:cb:5f:f1:cc:a3:e5: 06:c9:bd:c3:2b:76:c3:5e:cc:87:62:50:90:93:62: a0:df:86:28:c1:0f:c2:e0:71:44:bd:6f:18:65:d2: 31:83:f3:b0:56:8c:1e:92:54:5f:79:7e:10:6c:04: 11:66:2e:a2:59:8b:f3:2d:3b:78:be:ba:86:64:93: 72:97:f1:3f:fd:64:df:80:8c:3d:57:ba:41:15:71: d6:04:69:24:c4:b7:65:41:09:a2:67:e5:42:71:a3: 9c:be:66:ba:ee:80:4b:40:14:bb:c3:0b:80:8c:f7: 23:c0:48:30:1f:4f:56:48:7c:ec:49:a4:86:d6:25: e9:7c:a1:8c:0d:70:e4:55:26:78:59:e7:19:85:e2: ad:d4:a0:0e:77:29:4d:b8:f6:9b:67:8c:a0:95:5a: a7:04:56:5e:33:88:04:37:0e:0b:3b:80:c7:b5:56: 72:17:ae:e9:95:4c:27:78:81:be:c4:30:03:2d:7d: b5:db:49:91:16:d7:fd:e5:07:41:7f:70:8c:16:65: d1:13:d0:59:ef:61:40:35:71:d2:4c:69:9a:14:be: ef:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:57:47:80:38:77:D2:4A:A0:CE:15:9F:FA:F5:81:60:DA:67:FF:E0 X509v3 Authority Key Identifier: keyid:2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/323430323a663038303a313a3a2f34382d3438203d3e203338313530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:f080:1::/48 Signature Algorithm: sha256WithRSAEncryption 17:30:b2:02:07:85:32:e4:a9:46:bd:48:59:99:54:2c:62:4f: 14:da:ca:27:cb:50:17:66:04:e5:0f:b0:d3:d8:2d:43:6d:c8: c4:0b:75:ce:32:f7:c0:07:46:a3:48:41:c0:25:e6:7e:6c:e6: 8b:f1:69:d0:3e:a0:05:d6:be:ba:21:ae:92:f4:c0:fc:89:9b: 7b:52:41:e7:e9:35:b2:5f:c0:bc:9f:65:a1:79:2e:ef:b5:9b: 8c:9f:17:1a:b6:1a:23:0c:95:62:96:87:3b:d0:33:4a:e1:30: 0f:98:56:2b:db:51:a8:a2:3b:dd:9f:80:cd:51:e1:27:ec:83: 2d:9d:19:7b:57:17:79:59:6c:22:9b:79:bc:12:41:b7:24:cf: 96:5a:5b:b7:1c:6e:eb:ed:12:23:1d:e6:c5:d1:58:a4:6b:41: 59:41:c0:25:da:0d:9e:b5:78:cb:9b:71:79:20:3a:e7:dc:5d: 2c:a8:a7:35:26:3c:ab:ab:6c:1b:39:5d:c8:25:f3:e0:9b:09: 8e:e2:57:19:85:fa:b6:db:9a:a2:95:13:1c:13:a7:e5:8d:c6: a7:69:3d:f8:8f:7e:c5:39:b2:05:eb:5f:06:ec:c6:7b:e6:ec: 63:2b:d2:c2:dc:9f:41:96:b1:5c:25:b3:c2:e4:8a:0e:dc:36: 1e:d7:da:08 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIULzMmgnigIqoQ4aEdnZuwIVp8skswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURG NjhDREJCOTAeFw0yNTA2MDIwMTU3MzNaFw0yNjA2MDEwMjAyMzNaMDMxMTAvBgNV BAMTKDQ4NTc0NzgwMzg3N0QyNEFBMENFMTU5RkZBRjU4MTYwREE2N0ZGRTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDC9IMBxvz83rxp/IPn9Xk0DG16 /fB7jItmlpbNeEfX1pppGOx4P8tf8cyj5QbJvcMrdsNezIdiUJCTYqDfhijBD8Lg cUS9bxhl0jGD87BWjB6SVF95fhBsBBFmLqJZi/MtO3i+uoZkk3KX8T/9ZN+AjD1X ukEVcdYEaSTEt2VBCaJn5UJxo5y+ZrrugEtAFLvDC4CM9yPASDAfT1ZIfOxJpIbW Jel8oYwNcORVJnhZ5xmF4q3UoA53KU249ptnjKCVWqcEVl4ziAQ3Dgs7gMe1VnIX rumVTCd4gb7EMAMtfbXbSZEW1/3lB0F/cIwWZdET0FnvYUA1cdJMaZoUvu99AgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUSFdHgDh30kqgzhWf+vWBYNpn/+AwHwYDVR0j BBgwFoAULKR0h/cngXMzMKOMlf+KXfaM27kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x N2U2NWI2Ny05MDVjLTQwM2MtOGM3OS0yMzE1NjU5NjY4YWEvMC8yQ0E0NzQ4N0Y3 Mjc4MTczMzMzMEEzOEM5NUZGOEE1REY2OENEQkI5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURGNjhD REJCOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE3ZTY1YjY3LTkwNWMtNDAzYy04 Yzc5LTIzMTU2NTk2NjhhYS8wLzMyMzQzMDMyM2E2NjMwMzgzMDNhMzEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzEzNTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJALwgAABMA0G CSqGSIb3DQEBCwUAA4IBAQAXMLICB4Uy5KlGvUhZmVQsYk8U2sony1AXZgTlD7DT 2C1DbcjEC3XOMvfAB0ajSEHAJeZ+bOaL8WnQPqAF1r66Ia6S9MD8iZt7UkHn6TWy X8C8n2WheS7vtZuMnxcathojDJViloc70DNK4TAPmFYr21Goojvdn4DNUeEn7IMt nRl7Vxd5WWwim3m8EkG3JM+WWlu3HG7r7RIjHebF0Vika0FZQcAl2g2etXjLm3F5 IDrn3F0sqKc1Jjyrq2wbOV3IJfPgmwmO4lcZhfq225qilRMcE6fljcanaT34j37F ObIF618G7MZ75uxjK9LC3J9BlrFcJbPC5IoO3DYe19oI -----END CERTIFICATE-----Generated at Thu Jun 5 18:19:52 2025 by rpki-client