$ rpki-client -vvf repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a323030303a3a2f33352d3335203d3e20313331373439.roa File: 323430323a626538303a323030303a3a2f33352d3335203d3e20313331373439.roa (raw, json) Hash identifier: 85lx2+O0c1Tye1V/YF4G0HFNwN1FRAy3MZlTA2YttNs= Subject key identifier: F8:8B:3F:C3:E3:24:98:04:19:CC:93:5A:37:FE:51:F0:4E:2D:C6:60 Certificate issuer: /CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Certificate serial: 1229D1180ADAFD1D3895CAD8EA9B8A4458DD2E10 Authority key identifier: 10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a323030303a3a2f33352d3335203d3e20313331373439.roa Signing time: Mon 02 Jun 2025 01:02:41 +0000 ROA not before: Mon 02 Jun 2025 00:57:41 +0000 ROA not after: Mon 01 Jun 2026 01:02:41 +0000 asID: 131749 IP address blocks: 2402:be80:2000::/35 maxlen: 35 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 10:05:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:29:d1:18:0a:da:fd:1d:38:95:ca:d8:ea:9b:8a:44:58:dd:2e:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Validity Not Before: Jun 2 00:57:41 2025 GMT Not After : Jun 1 01:02:41 2026 GMT Subject: CN=F88B3FC3E324980419CC935A37FE51F04E2DC660 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:2d:b2:06:d8:be:b0:c1:a5:25:eb:0a:f4:7b: 67:65:3f:39:f5:04:71:e9:f3:c1:23:5a:4f:9f:7f: ec:1d:81:01:ea:38:d7:21:cd:86:44:62:47:bd:cd: 0b:94:7a:d2:3a:bb:36:47:7c:6e:f1:16:99:64:93: b2:c4:1a:86:33:73:32:40:bc:1b:10:c0:2c:d1:03: de:1d:86:92:aa:17:1f:7a:52:8a:0e:7f:c6:6c:52: 98:7a:e6:97:cc:af:18:95:1a:98:12:cb:02:c1:57: e2:b4:ab:5a:80:43:8c:4e:d8:1f:9d:8f:01:78:46: 69:35:3e:3f:1c:b0:dd:d4:29:4c:95:c3:67:e4:49: 80:0b:7d:4b:29:40:7c:a6:29:f8:6c:33:79:c0:c9: 7d:84:d9:36:05:4f:d4:5b:15:ca:71:8f:e1:b6:26: f2:0a:9d:21:45:98:19:e7:db:ed:bf:79:ec:92:67: e1:d9:db:e4:12:78:92:74:98:d6:57:c2:36:c9:c1: 88:71:f7:4f:9e:82:13:fe:34:1d:d2:3b:96:4b:da: 40:59:da:77:6e:58:4b:e2:80:a5:ef:35:04:d5:0a: c4:6e:37:9a:ac:38:44:89:6b:45:2e:af:39:2d:99: 05:71:69:6a:0f:85:f5:c4:12:15:1d:bb:82:d0:16: ce:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:8B:3F:C3:E3:24:98:04:19:CC:93:5A:37:FE:51:F0:4E:2D:C6:60 X509v3 Authority Key Identifier: keyid:10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a323030303a3a2f33352d3335203d3e20313331373439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:be80:2000::/35 Signature Algorithm: sha256WithRSAEncryption 7a:59:20:57:79:6a:d5:a1:a2:c9:3b:91:b7:ac:ea:b7:4c:2e: 26:8c:51:b9:80:1a:14:ea:a6:4b:55:9f:e6:18:21:84:88:20: ae:b4:e8:bb:15:ea:c5:f3:af:e6:cf:44:c9:5b:66:6f:bf:23: 9f:4e:7b:fd:87:51:7f:df:82:15:13:5d:49:71:11:b4:49:f2: 3d:a8:60:eb:d6:82:fa:f0:5a:bd:4a:01:2f:ad:b0:d1:39:03: 45:35:c2:e6:b0:7e:3c:9e:c6:cb:af:07:38:3d:5c:57:cb:8d: 36:3a:28:8e:1b:3e:7c:64:5f:2c:fd:4e:98:d0:b7:c4:d2:dc: 06:58:ba:22:e5:e4:69:85:a9:34:cb:28:24:5a:08:5f:f6:17: 56:d2:ae:25:ca:0c:54:41:78:29:2e:36:0a:0c:52:f8:1e:bb: f1:47:5e:27:80:9d:1c:81:d6:51:7d:e5:e8:49:de:29:52:df: 95:8e:2c:a3:13:1f:fb:4b:ed:02:52:ac:df:53:6d:14:32:f1: 90:34:95:c5:0d:83:b3:f3:8e:d7:71:98:d1:d8:6e:d3:85:3b: 9d:bd:3d:5b:50:aa:80:43:42:f3:ee:3a:fe:e7:68:04:d8:fa: 77:a2:f9:f0:34:d8:97:8f:ce:e8:99:78:83:ca:85:ba:38:6a: 50:e2:b3:7f -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUEinRGAra/R04lcrY6puKRFjdLhAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5 NTIyNDZGRjAeFw0yNTA2MDIwMDU3NDFaFw0yNjA2MDEwMTAyNDFaMDMxMTAvBgNV BAMTKEY4OEIzRkMzRTMyNDk4MDQxOUNDOTM1QTM3RkU1MUYwNEUyREM2NjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1LbIG2L6wwaUl6wr0e2dlPzn1 BHHp88EjWk+ff+wdgQHqONchzYZEYke9zQuUetI6uzZHfG7xFplkk7LEGoYzczJA vBsQwCzRA94dhpKqFx96UooOf8ZsUph65pfMrxiVGpgSywLBV+K0q1qAQ4xO2B+d jwF4Rmk1Pj8csN3UKUyVw2fkSYALfUspQHymKfhsM3nAyX2E2TYFT9RbFcpxj+G2 JvIKnSFFmBnn2+2/eeySZ+HZ2+QSeJJ0mNZXwjbJwYhx90+eghP+NB3SO5ZL2kBZ 2nduWEvigKXvNQTVCsRuN5qsOESJa0UurzktmQVxaWoPhfXEEhUdu4LQFs4xAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQU+Is/w+MkmAQZzJNaN/5R8E4txmAwHwYDVR0j BBgwFoAUEP41sEDoo9BeW+m+5PCmNpUiRv8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MDBmNGYzNy1jN2ZiLTQ3ZDAtOGE4NS1lY2ZkMTJiOTE1ZjUvMC8xMEZFMzVCMDQw RThBM0QwNUU1QkU5QkVFNEYwQTYzNjk1MjI0NkZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5NTIy NDZGRi5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMwMGY0ZjM3LWM3ZmItNDdkMC04 YTg1LWVjZmQxMmI5MTVmNS8wLzMyMzQzMDMyM2E2MjY1MzgzMDNhMzIzMDMwMzAz YTNhMmYzMzM1MmQzMzM1MjAzZDNlMjAzMTMzMzEzNzM0Mzkucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgUk Ar6AIDANBgkqhkiG9w0BAQsFAAOCAQEAelkgV3lq1aGiyTuRt6zqt0wuJoxRuYAa FOqmS1Wf5hghhIggrrTouxXqxfOv5s9EyVtmb78jn057/YdRf9+CFRNdSXERtEny Pahg69aC+vBavUoBL62w0TkDRTXC5rB+PJ7Gy68HOD1cV8uNNjoojhs+fGRfLP1O mNC3xNLcBli6IuXkaYWpNMsoJFoIX/YXVtKuJcoMVEF4KS42CgxS+B678UdeJ4Cd HIHWUX3l6EneKVLflY4soxMf+0vtAlKs31NtFDLxkDSVxQ2Ds/OO13GY0dhu04U7 nb09W1CqgENC8+46/udoBNj6d6L58DTYl4/O6Jl4g8qFujhqUOKzfw== -----END CERTIFICATE-----Generated at Thu Jun 5 18:31:13 2025 by rpki-client