$ rpki-client -vvf repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/323430333a626163303a3a2f33322d3438203d3e20313333383135.roa File: 323430333a626163303a3a2f33322d3438203d3e20313333383135.roa (raw, json) Hash identifier: bj03wSoaB1PZHhqBBV4Wr4Sjs0onXCgWYauPl2mcWtw= Subject key identifier: 93:65:A6:8C:CE:35:CA:58:DC:FE:5C:8D:06:5E:59:57:A5:E7:F1:D1 Certificate issuer: /CN=CEA03A07989107F547A2B2ABAA6AD4E70312AD5C Certificate serial: 78C6AEE935619578CC32CA629D81A89D3D026457 Authority key identifier: CE:A0:3A:07:98:91:07:F5:47:A2:B2:AB:AA:6A:D4:E7:03:12:AD:5C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/323430333a626163303a3a2f33322d3438203d3e20313333383135.roa Signing time: Mon 02 Jun 2025 01:02:53 +0000 ROA not before: Mon 02 Jun 2025 00:57:53 +0000 ROA not after: Mon 01 Jun 2026 01:02:53 +0000 asID: 133815 IP address blocks: 2403:bac0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.crl rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 14:20:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:c6:ae:e9:35:61:95:78:cc:32:ca:62:9d:81:a8:9d:3d:02:64:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CEA03A07989107F547A2B2ABAA6AD4E70312AD5C Validity Not Before: Jun 2 00:57:53 2025 GMT Not After : Jun 1 01:02:53 2026 GMT Subject: CN=9365A68CCE35CA58DCFE5C8D065E5957A5E7F1D1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:65:eb:91:2e:5c:74:bb:5d:05:0c:14:d9:f8: 75:d7:4b:0d:bb:92:a3:ad:c2:a3:e4:f5:46:54:4b: 3e:49:0c:f7:bb:11:89:d1:48:3c:df:92:17:44:bc: dc:09:8c:f5:83:45:cf:95:63:ae:0e:1a:b0:8b:e0: c8:d9:c8:48:31:26:ab:87:44:15:c7:76:dd:9c:e7: e8:98:47:cc:a0:5b:7d:fa:73:46:51:9f:01:a3:54: 64:67:e5:af:ff:1c:1f:a1:95:ad:6f:c6:9c:d3:c2: 19:2a:e5:03:87:9e:47:7a:29:86:26:78:ba:b1:47: 7f:e5:8a:d1:ee:05:fd:49:ad:11:64:a9:b4:00:8f: d7:30:b3:73:d8:97:00:11:b9:4a:02:b3:73:c3:0a: 1e:9a:c7:a1:8c:46:d9:47:c2:68:8c:90:c1:ad:c4: f2:4c:db:f3:c1:9d:3f:e9:16:f0:b9:a8:aa:e5:ac: 0b:7a:f0:a4:3b:1f:39:ff:cc:dc:ed:01:41:5c:99: ae:01:6b:6b:25:fe:b6:e3:75:0b:b8:00:1f:05:51: 55:18:81:a4:6f:2d:b7:b5:79:7e:4c:02:69:b6:03: 29:1e:7c:e9:5e:3a:67:e6:83:8a:ee:59:6d:2a:2a: ee:4a:65:06:1e:22:cb:5f:7b:e4:f7:ef:c2:01:b4: c0:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:65:A6:8C:CE:35:CA:58:DC:FE:5C:8D:06:5E:59:57:A5:E7:F1:D1 X509v3 Authority Key Identifier: keyid:CE:A0:3A:07:98:91:07:F5:47:A2:B2:AB:AA:6A:D4:E7:03:12:AD:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/323430333a626163303a3a2f33322d3438203d3e20313333383135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:bac0::/32 Signature Algorithm: sha256WithRSAEncryption b7:e5:49:f0:ad:91:63:31:85:5e:45:e6:85:a2:99:15:cb:fd: 8d:1a:2f:5a:84:c7:b3:b6:6d:41:94:98:c1:6c:0b:ec:c6:ff: 9a:f6:1f:72:bc:d7:9d:96:92:cd:e0:7f:eb:6c:47:5b:a2:cd: 32:00:46:a6:74:45:43:45:64:07:db:a1:1d:2f:38:74:18:97: d8:bb:73:1b:55:45:9d:69:79:38:14:47:43:89:df:0f:a6:0e: 2f:74:46:46:63:d2:d1:2c:27:9d:84:46:98:2a:ee:63:07:45: 69:c2:e9:b2:7c:60:27:63:52:10:82:8b:e0:bd:b6:e7:a9:00: d7:49:4a:4a:f6:d1:56:19:59:0e:a6:2b:80:4b:21:92:e0:7c: 2c:42:45:42:14:a8:4c:d1:9a:0d:ee:29:af:7b:dd:33:31:4a: 44:8a:98:65:9a:aa:43:2c:cb:16:3e:ec:bf:c9:67:a5:ef:86: 7b:ed:b3:5d:8d:1d:e6:44:b0:00:65:71:04:50:0c:54:af:85: 34:e1:27:71:e0:50:24:53:28:c0:cc:96:1d:c6:fc:b7:b9:d7: 45:10:da:16:4d:cb:37:b0:f2:a5:86:3a:a5:ad:04:53:91:68: ca:76:6f:02:13:bf:61:cf:78:c7:16:42:fc:90:74:58:1c:7b: b0:fc:34:72 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUeMau6TVhlXjMMspinYGonT0CZFcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0VBMDNBMDc5ODkxMDdGNTQ3QTJCMkFCQUE2QUQ0RTcw MzEyQUQ1QzAeFw0yNTA2MDIwMDU3NTNaFw0yNjA2MDEwMTAyNTNaMDMxMTAvBgNV BAMTKDkzNjVBNjhDQ0UzNUNBNThEQ0ZFNUM4RDA2NUU1OTU3QTVFN0YxRDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7ZeuRLlx0u10FDBTZ+HXXSw27 kqOtwqPk9UZUSz5JDPe7EYnRSDzfkhdEvNwJjPWDRc+VY64OGrCL4MjZyEgxJquH RBXHdt2c5+iYR8ygW336c0ZRnwGjVGRn5a//HB+hla1vxpzTwhkq5QOHnkd6KYYm eLqxR3/litHuBf1JrRFkqbQAj9cws3PYlwARuUoCs3PDCh6ax6GMRtlHwmiMkMGt xPJM2/PBnT/pFvC5qKrlrAt68KQ7Hzn/zNztAUFcma4Ba2sl/rbjdQu4AB8FUVUY gaRvLbe1eX5MAmm2AykefOleOmfmg4ruWW0qKu5KZQYeIstfe+T378IBtMCfAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUk2WmjM41yljc/lyNBl5ZV6Xn8dEwHwYDVR0j BBgwFoAUzqA6B5iRB/VHorKrqmrU5wMSrVwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YTNhZTQ4NS1hNjU4LTRjNWMtYWJlMi0xZTdmZDhiMDM4YTAvMC9DRUEwM0EwNzk4 OTEwN0Y1NDdBMkIyQUJBQTZBRDRFNzAzMTJBRDVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0VBMDNBMDc5ODkxMDdGNTQ3QTJCMkFCQUE2QUQ0RTcwMzEy QUQ1Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJhM2FlNDg1LWE2NTgtNGM1Yy1h YmUyLTFlN2ZkOGIwMzhhMC8wLzMyMzQzMDMzM2E2MjYxNjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzMzM4MzEzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQDusAwDQYJKoZI hvcNAQELBQADggEBALflSfCtkWMxhV5F5oWimRXL/Y0aL1qEx7O2bUGUmMFsC+zG /5r2H3K8152Wks3gf+tsR1uizTIARqZ0RUNFZAfboR0vOHQYl9i7cxtVRZ1peTgU R0OJ3w+mDi90RkZj0tEsJ52ERpgq7mMHRWnC6bJ8YCdjUhCCi+C9tuepANdJSkr2 0VYZWQ6mK4BLIZLgfCxCRUIUqEzRmg3uKa973TMxSkSKmGWaqkMsyxY+7L/JZ6Xv hnvts12NHeZEsABlcQRQDFSvhTThJ3HgUCRTKMDMlh3G/Le510UQ2hZNyzew8qWG OqWtBFORaMp2bwITv2HPeMcWQvyQdFgce7D8NHI= -----END CERTIFICATE-----Generated at Thu Jun 5 18:12:45 2025 by rpki-client