$ rpki-client -vvf repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/323430333a353763303a3a2f33322d3438203d3e20313333383135.roa File: 323430333a353763303a3a2f33322d3438203d3e20313333383135.roa (raw, json) Hash identifier: qJMxf0aJqdHPfbLPNvUiMxKhq3U6DmyX3ZCQXdLa44w= Subject key identifier: B7:A7:63:2F:67:FA:9F:4A:31:3B:FE:26:2F:F1:39:2C:D8:B3:FF:06 Certificate issuer: /CN=CEA03A07989107F547A2B2ABAA6AD4E70312AD5C Certificate serial: 21C209CC31682A7482571390C1DBF8E9232A2BB4 Authority key identifier: CE:A0:3A:07:98:91:07:F5:47:A2:B2:AB:AA:6A:D4:E7:03:12:AD:5C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/323430333a353763303a3a2f33322d3438203d3e20313333383135.roa Signing time: Mon 02 Jun 2025 01:02:53 +0000 ROA not before: Mon 02 Jun 2025 00:57:53 +0000 ROA not after: Mon 01 Jun 2026 01:02:53 +0000 asID: 133815 IP address blocks: 2403:57c0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.crl rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 14:20:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:c2:09:cc:31:68:2a:74:82:57:13:90:c1:db:f8:e9:23:2a:2b:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CEA03A07989107F547A2B2ABAA6AD4E70312AD5C Validity Not Before: Jun 2 00:57:53 2025 GMT Not After : Jun 1 01:02:53 2026 GMT Subject: CN=B7A7632F67FA9F4A313BFE262FF1392CD8B3FF06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:13:ea:d3:09:53:a5:e1:45:7f:b7:55:4c:90: c2:99:36:62:77:b5:0f:00:43:94:89:bd:43:ab:bf: 87:11:28:26:5c:8f:d2:db:e5:c2:38:0f:1a:92:56: 78:4b:ac:08:c1:e9:8f:c6:c0:91:e5:ed:8c:3a:5f: 37:43:d2:cb:9e:9f:2a:ac:78:13:14:c6:df:70:63: 59:99:10:c1:5f:1e:ff:f5:e5:fd:db:e9:f5:b9:22: cb:92:44:81:00:c1:9e:a2:c7:88:e3:0b:9c:76:a1: e0:38:1a:f4:0a:7b:74:fe:5b:2b:cb:f6:a4:41:30: b9:71:89:f2:f6:4b:23:99:b0:91:33:c1:de:c9:81: 48:bc:a4:ee:7e:df:61:9e:c1:28:ff:cd:86:60:c5: 64:68:7a:50:36:d2:a6:05:eb:cf:b7:af:ed:96:28: 8d:4d:1f:92:50:69:e6:04:fa:9d:e1:c3:08:1a:25: 4f:2d:c9:d7:c1:bc:fd:ae:c8:2a:fb:e1:0b:65:a1: 45:e2:82:7d:ef:73:f3:58:36:5e:64:87:0e:4b:2e: a0:18:3f:8b:54:92:d5:d2:6d:88:0b:70:48:f3:54: aa:e9:a1:ca:47:c7:ff:60:4b:fd:13:d9:c7:ef:06: 3c:bd:26:73:eb:57:69:08:cf:dd:0e:cc:dc:0a:5b: 9b:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:A7:63:2F:67:FA:9F:4A:31:3B:FE:26:2F:F1:39:2C:D8:B3:FF:06 X509v3 Authority Key Identifier: keyid:CE:A0:3A:07:98:91:07:F5:47:A2:B2:AB:AA:6A:D4:E7:03:12:AD:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/323430333a353763303a3a2f33322d3438203d3e20313333383135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:57c0::/32 Signature Algorithm: sha256WithRSAEncryption 5e:00:f2:de:b4:65:2d:a6:b7:1e:b5:50:80:0f:4d:ab:3f:7d: 4d:39:fa:11:2b:a0:5e:c2:20:91:37:2e:ed:be:d0:d0:41:b3: 66:d6:c8:d4:df:ee:3e:b3:08:36:49:51:9a:6e:de:00:c8:87: ca:04:27:87:7a:cd:9d:fa:b8:81:8c:50:f2:41:7b:aa:b5:10: cf:cc:13:86:c9:6a:88:49:20:29:53:db:d3:f4:0c:ac:0f:49: c5:a8:ba:03:9a:a9:d5:b6:14:6c:47:3f:95:23:ac:11:1a:1c: f5:b8:5a:d0:27:58:27:cb:7c:85:39:82:b7:74:f8:ae:20:1a: 0d:92:8f:dd:18:65:25:94:fc:35:68:f5:7a:ea:66:ac:4c:9b: 92:60:6c:7b:43:16:30:15:8b:4a:e5:03:8e:18:f3:fa:60:a4: b3:3d:55:ae:bc:26:47:4a:1a:af:81:5e:46:56:ab:a2:89:4c: 30:6a:05:b8:ac:44:70:fc:7f:e6:59:56:b3:bf:b6:59:bd:0f: a4:83:bc:19:51:d9:f1:fd:26:66:23:8f:3a:5f:21:ce:cd:a1: 14:c1:fd:d3:2e:78:6d:30:e2:ec:1d:45:b9:af:ca:06:2f:37: 70:5a:81:9c:4e:cb:83:e4:8b:e3:93:92:e6:b0:fc:1b:61:f8: 85:63:df:a6 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUIcIJzDFoKnSCVxOQwdv46SMqK7QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0VBMDNBMDc5ODkxMDdGNTQ3QTJCMkFCQUE2QUQ0RTcw MzEyQUQ1QzAeFw0yNTA2MDIwMDU3NTNaFw0yNjA2MDEwMTAyNTNaMDMxMTAvBgNV BAMTKEI3QTc2MzJGNjdGQTlGNEEzMTNCRkUyNjJGRjEzOTJDRDhCM0ZGMDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5E+rTCVOl4UV/t1VMkMKZNmJ3 tQ8AQ5SJvUOrv4cRKCZcj9Lb5cI4DxqSVnhLrAjB6Y/GwJHl7Yw6XzdD0suenyqs eBMUxt9wY1mZEMFfHv/15f3b6fW5IsuSRIEAwZ6ix4jjC5x2oeA4GvQKe3T+WyvL 9qRBMLlxifL2SyOZsJEzwd7JgUi8pO5+32GewSj/zYZgxWRoelA20qYF68+3r+2W KI1NH5JQaeYE+p3hwwgaJU8tydfBvP2uyCr74QtloUXign3vc/NYNl5khw5LLqAY P4tUktXSbYgLcEjzVKrpocpHx/9gS/0T2cfvBjy9JnPrV2kIz90OzNwKW5upAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUt6djL2f6n0oxO/4mL/E5LNiz/wYwHwYDVR0j BBgwFoAUzqA6B5iRB/VHorKrqmrU5wMSrVwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YTNhZTQ4NS1hNjU4LTRjNWMtYWJlMi0xZTdmZDhiMDM4YTAvMC9DRUEwM0EwNzk4 OTEwN0Y1NDdBMkIyQUJBQTZBRDRFNzAzMTJBRDVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0VBMDNBMDc5ODkxMDdGNTQ3QTJCMkFCQUE2QUQ0RTcwMzEy QUQ1Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJhM2FlNDg1LWE2NTgtNGM1Yy1h YmUyLTFlN2ZkOGIwMzhhMC8wLzMyMzQzMDMzM2EzNTM3NjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzMzM4MzEzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQDV8AwDQYJKoZI hvcNAQELBQADggEBAF4A8t60ZS2mtx61UIAPTas/fU05+hEroF7CIJE3Lu2+0NBB s2bWyNTf7j6zCDZJUZpu3gDIh8oEJ4d6zZ36uIGMUPJBe6q1EM/ME4bJaohJIClT 29P0DKwPScWougOaqdW2FGxHP5UjrBEaHPW4WtAnWCfLfIU5grd0+K4gGg2Sj90Y ZSWU/DVo9XrqZqxMm5JgbHtDFjAVi0rlA44Y8/pgpLM9Va68JkdKGq+BXkZWq6KJ TDBqBbisRHD8f+ZZVrO/tlm9D6SDvBlR2fH9JmYjjzpfIc7NoRTB/dMueG0w4uwd RbmvygYvN3BagZxOy4Pki+OTkuaw/Bth+IVj36Y= -----END CERTIFICATE-----Generated at Thu Jun 5 18:11:45 2025 by rpki-client