$ rpki-client -vvf repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/323430333a396634303a3a2f33322d3438203d3e20313338303734.roa File: 323430333a396634303a3a2f33322d3438203d3e20313338303734.roa (raw, json) Hash identifier: N1MXVORdbt5FpdZaRMnKXk8HUDVu1M5FZBwZhaokx8M= Subject key identifier: 97:A4:76:03:CF:11:9B:DE:63:51:99:71:C9:78:E8:37:38:2F:8D:82 Certificate issuer: /CN=C8EC18E027639B05BC58A2228D126486BEFB3ABB Certificate serial: 56D83DD4080BB67986F6A8D1D8A352454723BFD8 Authority key identifier: C8:EC:18:E0:27:63:9B:05:BC:58:A2:22:8D:12:64:86:BE:FB:3A:BB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8EC18E027639B05BC58A2228D126486BEFB3ABB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/323430333a396634303a3a2f33322d3438203d3e20313338303734.roa Signing time: Mon 02 Jun 2025 02:04:36 +0000 ROA not before: Mon 02 Jun 2025 01:59:36 +0000 ROA not after: Mon 01 Jun 2026 02:04:36 +0000 asID: 138074 IP address blocks: 2403:9f40::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/C8EC18E027639B05BC58A2228D126486BEFB3ABB.crl rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/C8EC18E027639B05BC58A2228D126486BEFB3ABB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8EC18E027639B05BC58A2228D126486BEFB3ABB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 10:32:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:d8:3d:d4:08:0b:b6:79:86:f6:a8:d1:d8:a3:52:45:47:23:bf:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C8EC18E027639B05BC58A2228D126486BEFB3ABB Validity Not Before: Jun 2 01:59:36 2025 GMT Not After : Jun 1 02:04:36 2026 GMT Subject: CN=97A47603CF119BDE63519971C978E837382F8D82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:91:eb:c8:ee:e0:4e:79:30:ff:f2:24:cc:1c: f2:9a:de:bc:4d:ce:19:4d:a9:cd:56:d8:12:8d:19: 6c:87:1c:c7:05:d3:d0:df:51:7b:97:26:9a:68:ee: ba:f1:8b:0e:8b:46:9a:f0:ba:47:1f:ab:f3:7b:9c: 41:4f:5c:81:df:c6:ac:ef:c0:ec:24:d4:ab:fd:f1: b6:c2:ad:43:7e:55:e1:f0:56:2d:61:85:ea:7b:88: cd:b0:93:26:ca:b8:fe:48:a7:bb:5a:c0:83:67:c0: 14:06:ea:f8:fa:a3:64:34:54:16:b7:00:df:41:0f: 1e:a1:be:2c:30:de:1e:76:78:da:ad:3f:89:95:98: a5:22:65:2b:2b:77:9f:9f:89:26:04:03:9b:50:87: 99:b3:86:a9:16:02:de:d9:57:ed:50:3a:27:81:0a: a2:a6:c8:56:24:70:b8:f5:dc:6d:7e:7f:fe:f3:92: f9:76:6b:9c:61:01:7d:f8:e1:69:29:62:2d:f9:34: c2:d0:a1:1d:58:57:51:1c:d7:b8:df:ff:af:87:b3: 7d:fc:3b:89:05:31:56:4b:02:bb:3a:3d:98:6c:6f: f9:c8:ac:78:10:27:45:6e:4d:85:9d:6e:46:b0:b9: 09:28:b8:e0:1e:a5:00:cd:3a:e0:fb:2d:c7:6b:3d: 37:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:A4:76:03:CF:11:9B:DE:63:51:99:71:C9:78:E8:37:38:2F:8D:82 X509v3 Authority Key Identifier: keyid:C8:EC:18:E0:27:63:9B:05:BC:58:A2:22:8D:12:64:86:BE:FB:3A:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/C8EC18E027639B05BC58A2228D126486BEFB3ABB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8EC18E027639B05BC58A2228D126486BEFB3ABB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/323430333a396634303a3a2f33322d3438203d3e20313338303734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:9f40::/32 Signature Algorithm: sha256WithRSAEncryption 05:be:2f:97:51:ab:b5:40:0e:a6:c5:b0:0e:fb:4c:9b:ef:4b: 11:07:1b:15:28:3f:c4:13:5d:34:00:5b:8c:69:22:36:b1:9d: 88:28:48:33:0c:bf:af:38:6a:ce:22:99:2c:2c:94:95:ff:bf: a2:d8:a5:75:a5:d9:f2:53:91:88:f9:2a:2b:86:f2:3a:a8:1c: 90:11:9e:95:65:f8:89:b5:2b:c2:bc:00:c5:5b:86:23:2f:a7: cc:ba:dd:18:30:c3:32:d9:48:b1:e2:41:f9:a8:18:48:0e:35: f5:31:1d:dd:07:e8:17:86:3e:09:05:ab:63:fc:e9:f6:8a:9a: d2:0a:93:68:77:3f:b4:85:43:94:32:47:89:db:47:df:d7:84: 04:9c:84:f0:ef:0d:18:99:00:07:e0:e0:d5:94:f6:d9:af:01: 89:d0:f0:b3:1b:de:8b:72:9a:2e:a8:c1:96:48:21:03:e7:36: a6:cf:eb:9f:11:ab:9a:fa:8e:2b:76:ae:51:69:e0:f4:cb:1a: d6:dd:ad:21:3d:cc:0c:f6:81:39:85:0b:7b:fc:da:c4:c3:d0: b1:9b:ea:05:ac:59:3f:3a:c3:70:d4:89:4b:c8:4a:a5:e5:72: b7:ec:95:26:eb:f2:18:97:1d:cb:25:5b:e8:a3:c1:90:57:81: 27:8f:df:a6 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUVtg91AgLtnmG9qjR2KNSRUcjv9gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzhFQzE4RTAyNzYzOUIwNUJDNThBMjIyOEQxMjY0ODZC RUZCM0FCQjAeFw0yNTA2MDIwMTU5MzZaFw0yNjA2MDEwMjA0MzZaMDMxMTAvBgNV BAMTKDk3QTQ3NjAzQ0YxMTlCREU2MzUxOTk3MUM5NzhFODM3MzgyRjhEODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6kevI7uBOeTD/8iTMHPKa3rxN zhlNqc1W2BKNGWyHHMcF09DfUXuXJppo7rrxiw6LRprwukcfq/N7nEFPXIHfxqzv wOwk1Kv98bbCrUN+VeHwVi1hhep7iM2wkybKuP5Ip7tawINnwBQG6vj6o2Q0VBa3 AN9BDx6hviww3h52eNqtP4mVmKUiZSsrd5+fiSYEA5tQh5mzhqkWAt7ZV+1QOieB CqKmyFYkcLj13G1+f/7zkvl2a5xhAX344WkpYi35NMLQoR1YV1Ec17jf/6+Hs338 O4kFMVZLArs6PZhsb/nIrHgQJ0VuTYWdbkawuQkouOAepQDNOuD7LcdrPTcjAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUl6R2A88Rm95jUZlxyXjoNzgvjYIwHwYDVR0j BBgwFoAUyOwY4CdjmwW8WKIijRJkhr77OrswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YzI4OTcwNi1hNGY0LTRlMWYtOWE2ZS0wMWM5YzUzY2Q4ZjkvMC9DOEVDMThFMDI3 NjM5QjA1QkM1OEEyMjI4RDEyNjQ4NkJFRkIzQUJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzhFQzE4RTAyNzYzOUIwNUJDNThBMjIyOEQxMjY0ODZCRUZC M0FCQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFjMjg5NzA2LWE0ZjQtNGUxZi05 YTZlLTAxYzljNTNjZDhmOS8wLzMyMzQzMDMzM2EzOTY2MzQzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzODMwMzczNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQDn0AwDQYJKoZI hvcNAQELBQADggEBAAW+L5dRq7VADqbFsA77TJvvSxEHGxUoP8QTXTQAW4xpIjax nYgoSDMMv684as4imSwslJX/v6LYpXWl2fJTkYj5KiuG8jqoHJARnpVl+Im1K8K8 AMVbhiMvp8y63RgwwzLZSLHiQfmoGEgONfUxHd0H6BeGPgkFq2P86faKmtIKk2h3 P7SFQ5QyR4nbR9/XhASchPDvDRiZAAfg4NWU9tmvAYnQ8LMb3otymi6owZZIIQPn NqbP658Rq5r6jit2rlFp4PTLGtbdrSE9zAz2gTmFC3v82sTD0LGb6gWsWT86w3DU iUvISqXlcrfslSbr8hiXHcslW+ijwZBXgSeP36Y= -----END CERTIFICATE-----Generated at Thu Jun 5 18:28:33 2025 by rpki-client