$ rpki-client -vvf repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a343030303a3a2f33352d3335203d3e20313331373439.roa File: 323430323a626538303a343030303a3a2f33352d3335203d3e20313331373439.roa (raw, json) Hash identifier: NQhanJjaDTGlHqgVpp7WZk1oBiHC9a8024nRDhFHB5U= Subject key identifier: 6F:11:66:68:16:D7:3F:CB:69:61:67:9B:F1:0F:1E:7B:FF:C9:89:E2 Certificate issuer: /CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Certificate serial: 732B0E6EF9104505321F344C6A1A4588EA0BCEF8 Authority key identifier: 10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a343030303a3a2f33352d3335203d3e20313331373439.roa Signing time: Mon 02 Jun 2025 01:02:40 +0000 ROA not before: Mon 02 Jun 2025 00:57:40 +0000 ROA not after: Mon 01 Jun 2026 01:02:40 +0000 asID: 131749 IP address blocks: 2402:be80:4000::/35 maxlen: 35 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 10:05:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:2b:0e:6e:f9:10:45:05:32:1f:34:4c:6a:1a:45:88:ea:0b:ce:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Validity Not Before: Jun 2 00:57:40 2025 GMT Not After : Jun 1 01:02:40 2026 GMT Subject: CN=6F11666816D73FCB6961679BF10F1E7BFFC989E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fe:bc:be:83:ae:a4:6b:72:bc:33:19:c4:ac:af: 64:8f:0b:9c:2b:9a:66:a6:80:86:31:21:f3:21:05: a1:cb:56:59:6a:04:ee:c6:33:39:05:f9:02:f3:3c: 58:48:46:92:24:80:3d:a0:39:57:e2:fc:ef:85:73: 17:21:d6:9e:4c:d6:88:b7:e9:22:25:81:93:20:b9: 5d:e4:8c:a4:cb:54:87:f0:d6:12:cc:c9:7c:73:d4: ee:65:ee:3e:3c:73:46:27:88:3b:d8:ca:bb:70:ff: d7:e9:c1:0e:bf:90:eb:0f:db:19:51:e9:da:36:61: 62:7a:bc:55:cb:da:51:5e:f5:7a:dc:86:0e:88:1c: aa:d0:9b:3d:d2:a0:ad:dd:ef:19:e5:b2:7d:87:02: 97:0b:96:f8:9a:78:20:75:b4:ae:9e:5e:f2:cc:ba: da:ac:df:46:0d:df:c5:45:08:d2:a8:b3:99:47:6a: 5e:f3:24:db:0d:7a:de:f4:8c:bb:77:38:5d:d7:28: 6f:f4:ab:78:44:e5:05:99:eb:42:97:68:72:41:7b: 2f:9c:72:88:4a:d9:e7:2f:81:a0:41:cc:b7:8d:47: 7d:ef:b9:7b:46:fb:30:b9:31:19:c9:19:af:73:87: 53:58:78:bf:97:f6:51:7d:ec:45:78:d1:a2:d7:13: 8d:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:11:66:68:16:D7:3F:CB:69:61:67:9B:F1:0F:1E:7B:FF:C9:89:E2 X509v3 Authority Key Identifier: keyid:10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a343030303a3a2f33352d3335203d3e20313331373439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:be80:4000::/35 Signature Algorithm: sha256WithRSAEncryption 21:82:78:88:62:f1:a2:87:d0:ad:ae:fd:e8:f1:53:94:00:d9: d1:6c:5e:5c:7f:22:f5:1f:6e:9c:e4:8b:ca:c2:f1:99:1d:4e: 23:bb:c1:89:0f:7e:1f:ca:51:d1:e3:5a:3a:bf:36:e9:f5:79: 70:8f:c2:44:e1:d9:08:41:5d:4b:fc:cc:c6:11:c2:04:48:86: 84:1e:67:fd:df:84:03:ab:71:dc:b5:0b:b1:34:58:fa:ef:4d: ae:1b:37:be:ec:22:38:79:5b:c7:86:0e:f5:01:25:01:1e:61: e9:00:2c:ec:4f:91:77:e2:f5:46:9e:75:ff:a8:eb:b5:b1:42: 3e:16:b5:aa:5d:56:4b:f7:52:a9:55:b4:f8:cb:f2:76:c5:66: d8:ce:85:5e:27:54:5a:54:4d:1d:55:36:cf:db:98:ea:8c:68: ed:1c:e4:59:f7:f5:c6:85:9c:dc:1d:a0:8e:cc:25:df:2d:9f: f1:e5:8e:32:dd:c7:34:29:10:ef:a2:ee:69:eb:dc:c4:22:c7: 0a:4b:f3:1a:f7:3c:35:a1:82:d9:8f:c0:5c:f5:21:83:8b:c5: f7:ec:a8:2f:ce:51:77:18:c1:6d:ce:a6:f4:46:8b:86:45:c6: e1:ff:f6:90:32:87:5a:31:a8:a5:8a:7e:5f:f0:1a:b3:b0:01: 29:00:d7:6e -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUcysObvkQRQUyHzRMahpFiOoLzvgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5 NTIyNDZGRjAeFw0yNTA2MDIwMDU3NDBaFw0yNjA2MDEwMTAyNDBaMDMxMTAvBgNV BAMTKDZGMTE2NjY4MTZENzNGQ0I2OTYxNjc5QkYxMEYxRTdCRkZDOTg5RTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD+vL6DrqRrcrwzGcSsr2SPC5wr mmamgIYxIfMhBaHLVllqBO7GMzkF+QLzPFhIRpIkgD2gOVfi/O+Fcxch1p5M1oi3 6SIlgZMguV3kjKTLVIfw1hLMyXxz1O5l7j48c0YniDvYyrtw/9fpwQ6/kOsP2xlR 6do2YWJ6vFXL2lFe9Xrchg6IHKrQmz3SoK3d7xnlsn2HApcLlviaeCB1tK6eXvLM utqs30YN38VFCNKos5lHal7zJNsNet70jLt3OF3XKG/0q3hE5QWZ60KXaHJBey+c cohK2ecvgaBBzLeNR33vuXtG+zC5MRnJGa9zh1NYeL+X9lF97EV40aLXE40vAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUbxFmaBbXP8tpYWeb8Q8ee//JieIwHwYDVR0j BBgwFoAUEP41sEDoo9BeW+m+5PCmNpUiRv8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MDBmNGYzNy1jN2ZiLTQ3ZDAtOGE4NS1lY2ZkMTJiOTE1ZjUvMC8xMEZFMzVCMDQw RThBM0QwNUU1QkU5QkVFNEYwQTYzNjk1MjI0NkZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5NTIy NDZGRi5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMwMGY0ZjM3LWM3ZmItNDdkMC04 YTg1LWVjZmQxMmI5MTVmNS8wLzMyMzQzMDMyM2E2MjY1MzgzMDNhMzQzMDMwMzAz YTNhMmYzMzM1MmQzMzM1MjAzZDNlMjAzMTMzMzEzNzM0Mzkucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgUk Ar6AQDANBgkqhkiG9w0BAQsFAAOCAQEAIYJ4iGLxoofQra796PFTlADZ0WxeXH8i 9R9unOSLysLxmR1OI7vBiQ9+H8pR0eNaOr826fV5cI/CROHZCEFdS/zMxhHCBEiG hB5n/d+EA6tx3LULsTRY+u9Nrhs3vuwiOHlbx4YO9QElAR5h6QAs7E+Rd+L1Rp51 /6jrtbFCPha1ql1WS/dSqVW0+MvydsVm2M6FXidUWlRNHVU2z9uY6oxo7RzkWff1 xoWc3B2gjswl3y2f8eWOMt3HNCkQ76LuaevcxCLHCkvzGvc8NaGC2Y/AXPUhg4vF 9+yoL85RdxjBbc6m9EaLhkXG4f/2kDKHWjGopYp+X/Aas7ABKQDXbg== -----END CERTIFICATE-----Generated at Thu Jun 5 18:27:43 2025 by rpki-client