$ rpki-client -vvf repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a363030303a3a2f33352d3335203d3e20313331373439.roa File: 323430323a626538303a363030303a3a2f33352d3335203d3e20313331373439.roa (raw, json) Hash identifier: +XotVkUYpiJ83hc89EWoIGxGRhhZu0xl8ZYTUA6r/r8= Subject key identifier: 1F:9C:BE:B2:B8:9E:81:B6:43:A7:F2:E0:DC:07:D0:3D:40:77:1C:E0 Certificate issuer: /CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Certificate serial: B76BCA4A63B0F1924DB676C2ED082C8722D64E Authority key identifier: 10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a363030303a3a2f33352d3335203d3e20313331373439.roa Signing time: Mon 02 Jun 2025 01:02:40 +0000 ROA not before: Mon 02 Jun 2025 00:57:40 +0000 ROA not after: Mon 01 Jun 2026 01:02:40 +0000 asID: 131749 IP address blocks: 2402:be80:6000::/35 maxlen: 35 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 10:05:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: b7:6b:ca:4a:63:b0:f1:92:4d:b6:76:c2:ed:08:2c:87:22:d6:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Validity Not Before: Jun 2 00:57:40 2025 GMT Not After : Jun 1 01:02:40 2026 GMT Subject: CN=1F9CBEB2B89E81B643A7F2E0DC07D03D40771CE0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:58:7a:a8:12:0a:08:b7:cf:93:d2:92:21:c1: 33:7c:ae:68:df:44:05:3c:0d:34:81:23:01:21:b3: 2b:fd:a1:55:1c:ff:0a:7b:f0:29:29:33:a3:ec:bb: 76:b2:a1:81:1b:21:66:bb:6b:df:f0:58:24:27:11: 02:67:08:66:19:53:e7:1a:4b:8f:35:2f:77:a6:dc: 49:13:67:87:93:cd:9a:f8:9c:02:3a:9c:0d:f8:df: 8d:0e:99:87:f0:f5:71:46:88:10:35:cc:24:fb:a3: 45:47:cb:83:b1:d8:92:b9:54:cd:1a:fd:50:bb:aa: 48:eb:05:11:18:8e:12:21:7a:6f:07:c7:17:35:0d: 0a:9e:39:f7:f2:30:ba:44:b6:25:90:da:82:a4:cf: 1c:37:b8:83:d5:9b:31:1a:2b:80:28:7f:fd:19:54: 95:04:09:85:dd:d3:a6:95:1f:bf:bd:e5:a1:9d:c8: 02:e6:a1:83:04:c7:b8:09:a1:f1:6e:bf:f5:a7:b8: 65:7b:b8:37:6f:af:4c:34:a9:2d:a9:6b:62:39:ed: f1:94:d2:cb:72:8f:0a:79:96:d7:b1:3c:7b:c4:c8: 7e:fb:45:04:8b:97:e8:dd:04:54:7c:93:86:31:79: 9e:99:51:ba:db:28:df:3e:e0:8f:ff:68:37:23:a1: 57:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:9C:BE:B2:B8:9E:81:B6:43:A7:F2:E0:DC:07:D0:3D:40:77:1C:E0 X509v3 Authority Key Identifier: keyid:10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a363030303a3a2f33352d3335203d3e20313331373439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:be80:6000::/35 Signature Algorithm: sha256WithRSAEncryption 32:17:f4:d9:92:cd:49:0a:3f:63:28:91:b0:06:a4:6b:6f:ac: 74:c8:b1:de:02:28:9d:ac:e5:f1:6b:7a:00:9b:cb:40:fc:43: 69:c2:81:fb:f3:ff:cb:4d:34:06:17:a3:d3:13:08:56:9e:f4: c4:d0:cc:75:d8:f3:a6:67:5e:13:32:16:cc:0e:ec:87:24:51: 48:a1:8b:b3:48:5e:27:a1:b0:f5:bd:4f:e6:86:2c:af:32:81: 9f:c0:52:86:d5:3f:bc:8f:8f:26:f2:53:50:b8:6d:8c:ef:51: 4b:db:47:0c:bf:bb:ea:09:60:c9:5e:c2:cb:f1:64:f0:bd:bb: 86:c4:52:8f:50:42:ed:53:2a:bf:f0:c3:6a:39:c2:ca:87:d2: ef:45:41:ef:0c:d2:76:56:ea:56:13:20:e7:02:15:64:66:e4: b6:5c:1f:ea:54:7b:40:26:32:02:53:b7:c5:de:50:10:07:c9: 7e:89:cd:e7:10:48:eb:6b:07:cd:98:3c:78:b7:69:c7:1d:f4: 02:65:51:51:6a:51:40:86:ec:c7:8d:5c:30:de:9d:36:f4:75: a5:2d:6b:f4:5a:aa:fe:bc:da:1c:11:5e:19:f2:24:1b:ad:ff: 78:70:15:06:04:74:64:aa:1b:87:3e:68:f4:17:96:87:24:99: 79:f9:cb:10 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUALdrykpjsPGSTbZ2wu0ILIci1k4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5 NTIyNDZGRjAeFw0yNTA2MDIwMDU3NDBaFw0yNjA2MDEwMTAyNDBaMDMxMTAvBgNV BAMTKDFGOUNCRUIyQjg5RTgxQjY0M0E3RjJFMERDMDdEMDNENDA3NzFDRTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBWHqoEgoIt8+T0pIhwTN8rmjf RAU8DTSBIwEhsyv9oVUc/wp78CkpM6Psu3ayoYEbIWa7a9/wWCQnEQJnCGYZU+ca S481L3em3EkTZ4eTzZr4nAI6nA34340OmYfw9XFGiBA1zCT7o0VHy4Ox2JK5VM0a /VC7qkjrBREYjhIhem8Hxxc1DQqeOffyMLpEtiWQ2oKkzxw3uIPVmzEaK4Aof/0Z VJUECYXd06aVH7+95aGdyALmoYMEx7gJofFuv/WnuGV7uDdvr0w0qS2pa2I57fGU 0styjwp5ltexPHvEyH77RQSLl+jdBFR8k4YxeZ6ZUbrbKN8+4I//aDcjoVfbAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUH5y+sriegbZDp/Lg3AfQPUB3HOAwHwYDVR0j BBgwFoAUEP41sEDoo9BeW+m+5PCmNpUiRv8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MDBmNGYzNy1jN2ZiLTQ3ZDAtOGE4NS1lY2ZkMTJiOTE1ZjUvMC8xMEZFMzVCMDQw RThBM0QwNUU1QkU5QkVFNEYwQTYzNjk1MjI0NkZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5NTIy NDZGRi5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMwMGY0ZjM3LWM3ZmItNDdkMC04 YTg1LWVjZmQxMmI5MTVmNS8wLzMyMzQzMDMyM2E2MjY1MzgzMDNhMzYzMDMwMzAz YTNhMmYzMzM1MmQzMzM1MjAzZDNlMjAzMTMzMzEzNzM0Mzkucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgUk Ar6AYDANBgkqhkiG9w0BAQsFAAOCAQEAMhf02ZLNSQo/YyiRsAaka2+sdMix3gIo nazl8Wt6AJvLQPxDacKB+/P/y000Bhej0xMIVp70xNDMddjzpmdeEzIWzA7shyRR SKGLs0heJ6Gw9b1P5oYsrzKBn8BShtU/vI+PJvJTULhtjO9RS9tHDL+76glgyV7C y/Fk8L27hsRSj1BC7VMqv/DDajnCyofS70VB7wzSdlbqVhMg5wIVZGbktlwf6lR7 QCYyAlO3xd5QEAfJfonN5xBI62sHzZg8eLdpxx30AmVRUWpRQIbsx41cMN6dNvR1 pS1r9Fqq/rzaHBFeGfIkG63/eHAVBgR0ZKobhz5o9BeWhySZefnLEA== -----END CERTIFICATE-----Generated at Thu Jun 5 18:26:08 2025 by rpki-client