$ rpki-client -vvf repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/323430323a663038303a633a3a2f34382d3438203d3e203338313530.roa File: 323430323a663038303a633a3a2f34382d3438203d3e203338313530.roa (raw, json) Hash identifier: 2I4LUvDndEY+56Z45Zke7IZg+TWoP7vGoCnv2WeX4qA= Subject key identifier: 14:3B:85:98:FD:0C:9F:39:3A:6D:05:32:9F:78:5E:A7:04:68:42:62 Certificate issuer: /CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Certificate serial: 5091EE62EDEC2769D5F4DC34221C7748122EBD33 Authority key identifier: 2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/323430323a663038303a633a3a2f34382d3438203d3e203338313530.roa Signing time: Mon 02 Jun 2025 02:02:31 +0000 ROA not before: Mon 02 Jun 2025 01:57:31 +0000 ROA not after: Mon 01 Jun 2026 02:02:31 +0000 asID: 38150 IP address blocks: 2402:f080:c::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 15:15:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:91:ee:62:ed:ec:27:69:d5:f4:dc:34:22:1c:77:48:12:2e:bd:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Validity Not Before: Jun 2 01:57:31 2025 GMT Not After : Jun 1 02:02:31 2026 GMT Subject: CN=143B8598FD0C9F393A6D05329F785EA704684262 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:fa:00:04:ad:91:e0:cf:30:b4:93:30:1b:48: a7:75:27:54:d5:d7:97:80:51:e5:4b:8f:00:41:64: d8:be:2a:a7:89:25:e9:cd:10:fe:58:c6:67:22:f8: 1d:31:b5:ca:d0:70:a8:cb:15:69:2e:e4:a2:23:33: 4f:30:c7:a8:c8:4b:f3:a1:29:09:8f:46:23:c6:4b: 10:90:91:98:96:31:8a:ff:16:26:78:09:ca:99:31: 63:47:a6:7b:3e:1e:85:20:1f:b8:11:c5:56:e2:3a: 5c:b0:e8:8a:b2:bd:94:d6:56:3a:9b:49:1e:a8:0a: b1:89:a3:bb:0d:ce:fe:73:5e:18:06:c3:8a:c1:ad: b4:93:5d:3b:53:ad:45:f7:62:83:7d:4b:66:51:37: 70:67:5c:f3:ee:20:92:be:a9:b6:36:ff:41:4a:12: dc:93:fb:f4:a5:4b:53:2e:5c:82:e6:5f:c4:ae:31: ec:25:c1:c2:b2:49:c7:d7:54:af:48:af:37:20:63: 2c:5b:b1:39:4b:cb:0a:b9:ac:4c:db:1f:0f:a0:9e: 74:c5:15:cb:ca:8e:68:48:cf:d5:2f:a3:21:74:09: 9e:c5:d0:0f:0a:79:92:03:4a:02:b5:c6:b5:33:f6: 0f:4a:56:6f:cf:e2:42:6b:de:5d:d8:49:6b:7c:a1: 24:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:3B:85:98:FD:0C:9F:39:3A:6D:05:32:9F:78:5E:A7:04:68:42:62 X509v3 Authority Key Identifier: keyid:2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/323430323a663038303a633a3a2f34382d3438203d3e203338313530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:f080:c::/48 Signature Algorithm: sha256WithRSAEncryption 5a:bd:fc:31:2d:f9:6c:7e:50:85:58:43:97:f1:15:11:9f:63: 82:3d:9b:ec:63:ff:57:51:31:93:13:4b:26:a7:1c:07:12:b4: 4c:9c:03:bb:dd:62:4e:3b:1f:1a:6d:1e:0e:26:b0:78:cc:6f: 23:0f:0d:e7:db:ae:e0:28:f3:d9:c7:10:1d:cd:49:90:5b:ba: 07:e3:33:3a:63:51:70:f3:a3:9e:3a:d6:ea:52:6f:ce:15:32: f2:6e:5b:98:d6:5f:33:32:b1:c5:b3:49:f5:66:c8:ab:94:a5: 62:fd:6c:26:50:58:a5:a0:8a:3a:f3:31:7c:b2:d9:bb:bd:91: 26:10:77:34:25:ef:4f:fa:30:f2:7f:9e:26:42:3c:43:0c:21: f8:02:fb:c8:81:c0:83:b2:e6:e7:d5:ed:74:1c:a4:f4:f3:b1: 42:39:69:59:44:e3:6d:ec:5c:a8:b6:69:45:e7:d4:65:18:32: 32:4a:51:b6:da:65:de:47:c5:6c:c8:ef:0b:c9:e9:09:3a:ad: 89:ab:cc:f8:bd:d6:11:6a:57:49:00:66:97:ae:b3:68:c5:ab: 26:0b:3c:0e:cf:f0:f9:24:eb:7f:b9:e0:10:e1:7c:37:35:19: ca:b5:24:db:77:1d:f0:e6:1d:9f:16:99:2d:20:8b:1b:12:18: 82:a1:5a:f1 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUUJHuYu3sJ2nV9Nw0Ihx3SBIuvTMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURG NjhDREJCOTAeFw0yNTA2MDIwMTU3MzFaFw0yNjA2MDEwMjAyMzFaMDMxMTAvBgNV BAMTKDE0M0I4NTk4RkQwQzlGMzkzQTZEMDUzMjlGNzg1RUE3MDQ2ODQyNjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCn+gAErZHgzzC0kzAbSKd1J1TV 15eAUeVLjwBBZNi+KqeJJenNEP5Yxmci+B0xtcrQcKjLFWku5KIjM08wx6jIS/Oh KQmPRiPGSxCQkZiWMYr/FiZ4CcqZMWNHpns+HoUgH7gRxVbiOlyw6IqyvZTWVjqb SR6oCrGJo7sNzv5zXhgGw4rBrbSTXTtTrUX3YoN9S2ZRN3BnXPPuIJK+qbY2/0FK EtyT+/SlS1MuXILmX8SuMewlwcKyScfXVK9IrzcgYyxbsTlLywq5rEzbHw+gnnTF FcvKjmhIz9UvoyF0CZ7F0A8KeZIDSgK1xrUz9g9KVm/P4kJr3l3YSWt8oSRRAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUFDuFmP0Mnzk6bQUyn3hepwRoQmIwHwYDVR0j BBgwFoAULKR0h/cngXMzMKOMlf+KXfaM27kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x N2U2NWI2Ny05MDVjLTQwM2MtOGM3OS0yMzE1NjU5NjY4YWEvMC8yQ0E0NzQ4N0Y3 Mjc4MTczMzMzMEEzOEM5NUZGOEE1REY2OENEQkI5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURGNjhD REJCOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE3ZTY1YjY3LTkwNWMtNDAzYy04 Yzc5LTIzMTU2NTk2NjhhYS8wLzMyMzQzMDMyM2E2NjMwMzgzMDNhNjMzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzEzNTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJALwgAAMMA0G CSqGSIb3DQEBCwUAA4IBAQBavfwxLflsflCFWEOX8RURn2OCPZvsY/9XUTGTE0sm pxwHErRMnAO73WJOOx8abR4OJrB4zG8jDw3n267gKPPZxxAdzUmQW7oH4zM6Y1Fw 86OeOtbqUm/OFTLybluY1l8zMrHFs0n1ZsirlKVi/WwmUFiloIo68zF8stm7vZEm EHc0Je9P+jDyf54mQjxDDCH4AvvIgcCDsubn1e10HKT087FCOWlZRONt7FyotmlF 59RlGDIySlG22mXeR8VsyO8LyekJOq2Jq8z4vdYRaldJAGaXrrNoxasmCzwOz/D5 JOt/ueAQ4Xw3NRnKtSTbdx3w5h2fFpktIIsbEhiCoVrx -----END CERTIFICATE-----Generated at Thu Jun 5 18:19:20 2025 by rpki-client