$ rpki-client -vvf repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/323430323a663038303a623a3a2f34382d3438203d3e203338313530.roa File: 323430323a663038303a623a3a2f34382d3438203d3e203338313530.roa (raw, json) Hash identifier: Rjbhv9edaboHxu8zehTXAVaGiJWP5SEtMWZfSRiWBmE= Subject key identifier: 6D:32:21:CF:4B:C4:BA:DC:21:84:C9:51:8A:4F:4A:89:A7:40:3B:A7 Certificate issuer: /CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Certificate serial: 756B99189472D710CBEDBF8E95B1DE7FA065E08C Authority key identifier: 2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/323430323a663038303a623a3a2f34382d3438203d3e203338313530.roa Signing time: Mon 02 Jun 2025 02:02:31 +0000 ROA not before: Mon 02 Jun 2025 01:57:31 +0000 ROA not after: Mon 01 Jun 2026 02:02:31 +0000 asID: 38150 IP address blocks: 2402:f080:b::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 15:15:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:6b:99:18:94:72:d7:10:cb:ed:bf:8e:95:b1:de:7f:a0:65:e0:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Validity Not Before: Jun 2 01:57:31 2025 GMT Not After : Jun 1 02:02:31 2026 GMT Subject: CN=6D3221CF4BC4BADC2184C9518A4F4A89A7403BA7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:50:84:31:3c:f7:4a:7d:df:29:d5:ef:78:eb: da:ad:1b:8f:11:e9:58:ac:79:8f:f2:d1:0b:78:3c: 9c:0c:81:bb:95:e9:df:b7:b0:36:09:b6:b8:eb:a3: a5:6f:e8:d2:d5:b7:5d:9a:ae:64:fb:5d:a0:a4:63: fe:cc:2b:96:5e:7b:41:f9:d7:5c:12:53:bf:27:63: f9:ac:74:3f:a6:dc:f7:88:ac:c4:ca:7e:60:fa:9e: 01:e0:fd:d9:e7:d7:76:2c:b0:a9:95:d2:7b:16:c6: b5:fa:ca:29:95:47:3b:b7:1f:31:c5:6a:25:20:33: 85:a3:d1:5f:72:cf:d3:06:53:99:e7:73:64:f8:f2: 80:7c:43:b9:c8:f1:d8:71:71:64:57:19:d2:3d:88: ee:7b:dc:0c:1e:f2:31:19:4d:8d:99:f4:ca:5e:13: 71:40:d8:b2:bb:e8:48:16:a2:8d:63:10:b4:aa:26: 76:c4:c6:85:aa:49:86:f1:48:b6:de:14:8a:70:e8: f0:1d:9e:04:f1:fa:6c:1a:f0:7b:6d:99:68:d7:c4: 61:49:66:87:69:9f:39:74:bd:69:48:c4:ca:60:13: ec:b4:2f:3e:2d:0a:ca:6d:9d:39:b6:ca:b8:2f:16: 39:f6:cc:19:ea:c6:40:66:43:1d:63:3f:c0:a8:31: 22:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:32:21:CF:4B:C4:BA:DC:21:84:C9:51:8A:4F:4A:89:A7:40:3B:A7 X509v3 Authority Key Identifier: keyid:2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/323430323a663038303a623a3a2f34382d3438203d3e203338313530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:f080:b::/48 Signature Algorithm: sha256WithRSAEncryption 65:c5:eb:63:7a:02:fe:7e:57:c0:f0:45:b7:c7:74:a3:3f:91: 8f:2d:76:a1:8e:b2:a4:2c:6d:e8:80:5e:73:ae:bb:9a:de:2a: de:2b:98:bd:f9:13:6f:40:9b:a7:85:36:c0:c8:e9:17:97:84: 6b:e7:c6:8c:04:01:eb:b8:5f:d5:8b:08:c0:6d:70:4a:63:2b: f4:3d:98:80:18:fb:99:5e:c5:d5:d2:f5:89:25:49:a2:6e:05: c3:1c:d4:3c:0a:17:d2:5a:95:47:6b:ac:27:54:52:6a:94:c2: 44:2d:03:8a:c0:81:d0:c2:9f:62:8f:de:f8:ca:db:b2:9c:54: 39:5e:4d:42:88:8a:16:68:a4:8a:f2:1b:4c:ce:29:15:9e:b1: 3c:6b:1a:ff:24:c0:5c:88:07:db:84:44:a2:42:8c:0e:eb:ac: af:64:63:dc:1a:62:6e:9e:29:2f:b0:d6:96:12:b1:11:f5:ef: d5:63:d0:91:90:41:b4:1d:42:ba:de:81:7f:e8:49:7d:67:5f: 81:c5:d7:5f:fe:90:17:9e:3c:c5:3c:cf:77:97:e6:e1:d0:cd: d4:69:c4:f6:4f:15:69:2f:6d:81:85:da:f3:72:b7:4f:a5:fe: d8:c1:48:ae:f1:9b:9a:5b:20:37:b3:78:57:fc:d1:44:62:40: 7e:10:d2:c0 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUdWuZGJRy1xDL7b+OlbHef6Bl4IwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURG NjhDREJCOTAeFw0yNTA2MDIwMTU3MzFaFw0yNjA2MDEwMjAyMzFaMDMxMTAvBgNV BAMTKDZEMzIyMUNGNEJDNEJBREMyMTg0Qzk1MThBNEY0QTg5QTc0MDNCQTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnUIQxPPdKfd8p1e9469qtG48R 6ViseY/y0Qt4PJwMgbuV6d+3sDYJtrjro6Vv6NLVt12armT7XaCkY/7MK5Zee0H5 11wSU78nY/msdD+m3PeIrMTKfmD6ngHg/dnn13YssKmV0nsWxrX6yimVRzu3HzHF aiUgM4Wj0V9yz9MGU5nnc2T48oB8Q7nI8dhxcWRXGdI9iO573Awe8jEZTY2Z9Mpe E3FA2LK76EgWoo1jELSqJnbExoWqSYbxSLbeFIpw6PAdngTx+mwa8HttmWjXxGFJ Zodpnzl0vWlIxMpgE+y0Lz4tCsptnTm2yrgvFjn2zBnqxkBmQx1jP8CoMSKvAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUbTIhz0vEutwhhMlRik9KiadAO6cwHwYDVR0j BBgwFoAULKR0h/cngXMzMKOMlf+KXfaM27kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x N2U2NWI2Ny05MDVjLTQwM2MtOGM3OS0yMzE1NjU5NjY4YWEvMC8yQ0E0NzQ4N0Y3 Mjc4MTczMzMzMEEzOEM5NUZGOEE1REY2OENEQkI5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURGNjhD REJCOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE3ZTY1YjY3LTkwNWMtNDAzYy04 Yzc5LTIzMTU2NTk2NjhhYS8wLzMyMzQzMDMyM2E2NjMwMzgzMDNhNjIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzEzNTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJALwgAALMA0G CSqGSIb3DQEBCwUAA4IBAQBlxetjegL+flfA8EW3x3SjP5GPLXahjrKkLG3ogF5z rrua3ireK5i9+RNvQJunhTbAyOkXl4Rr58aMBAHruF/ViwjAbXBKYyv0PZiAGPuZ XsXV0vWJJUmibgXDHNQ8ChfSWpVHa6wnVFJqlMJELQOKwIHQwp9ij974ytuynFQ5 Xk1CiIoWaKSK8htMzikVnrE8axr/JMBciAfbhESiQowO66yvZGPcGmJunikvsNaW ErER9e/VY9CRkEG0HUK63oF/6El9Z1+Bxddf/pAXnjzFPM93l+bh0M3UacT2TxVp L22BhdrzcrdPpf7YwUiu8ZuaWyA3s3hX/NFEYkB+ENLA -----END CERTIFICATE-----Generated at Thu Jun 5 18:19:24 2025 by rpki-client