$ rpki-client -vvf repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a3a2f33322d3332203d3e20313331373439.roa File: 323430323a626538303a3a2f33322d3332203d3e20313331373439.roa (raw, json) Hash identifier: rAFjuW4Ob+s+8+VX602W+l2HlUbwposeuUvXP5ZI5FU= Subject key identifier: F9:E2:DE:72:35:A3:51:E4:C4:74:2D:C8:0E:AC:C6:EC:04:BE:6E:FF Certificate issuer: /CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Certificate serial: 5D30E1914B2E5D39A5C8D059C76FE49F37C1CB04 Authority key identifier: 10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a3a2f33322d3332203d3e20313331373439.roa Signing time: Mon 02 Jun 2025 01:02:41 +0000 ROA not before: Mon 02 Jun 2025 00:57:41 +0000 ROA not after: Mon 01 Jun 2026 01:02:41 +0000 asID: 131749 IP address blocks: 2402:be80::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 10:05:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:30:e1:91:4b:2e:5d:39:a5:c8:d0:59:c7:6f:e4:9f:37:c1:cb:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Validity Not Before: Jun 2 00:57:41 2025 GMT Not After : Jun 1 01:02:41 2026 GMT Subject: CN=F9E2DE7235A351E4C4742DC80EACC6EC04BE6EFF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:2c:86:c0:fb:75:53:ee:0d:d2:2c:48:03:df: b8:4b:28:47:a7:18:a1:a3:a6:1f:c8:cb:c9:6e:d3: 4b:ca:dd:b2:14:39:bd:a2:3b:a7:88:26:10:f6:fe: 5b:90:23:bb:a1:b1:09:c4:32:13:c3:c4:8b:12:e8: 85:63:8e:f7:31:a5:0f:a8:93:ed:05:82:27:37:05: d7:19:f2:42:8a:f8:34:34:83:17:c8:e3:35:4f:7d: a6:93:55:59:fb:f3:e9:83:e3:12:e8:cd:55:85:41: 7f:cb:16:ae:ae:70:f8:ef:32:f7:27:13:61:86:22: 38:b9:0a:9c:e0:e5:02:e6:1b:7c:7e:b8:12:68:a5: a2:29:34:b7:57:db:14:0f:74:66:77:f4:ca:5d:78: 9a:07:ce:f5:fd:41:8c:36:2f:ef:c3:5b:4e:4e:9f: 9c:cc:3d:db:92:bf:a7:f7:76:08:3f:2e:1c:af:c8: 7e:69:6f:ae:69:ce:8b:8f:ed:7d:77:9c:a5:6e:e2: 68:e7:2e:7a:e6:9b:8a:92:7d:61:67:0f:74:28:46: 23:87:0b:21:34:10:e8:dc:a3:fa:02:fd:b7:59:99: df:09:b1:aa:eb:9f:74:0b:e2:66:82:7f:bf:cf:f7: 17:47:d0:6f:01:82:83:05:91:6d:f8:64:92:c4:69: 9b:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:E2:DE:72:35:A3:51:E4:C4:74:2D:C8:0E:AC:C6:EC:04:BE:6E:FF X509v3 Authority Key Identifier: keyid:10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a3a2f33322d3332203d3e20313331373439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:be80::/32 Signature Algorithm: sha256WithRSAEncryption 1e:71:91:9a:63:c6:38:11:68:a3:1f:02:f2:3c:1f:d4:a3:c1: 3e:9e:a2:93:c9:e8:66:6a:9f:22:62:63:18:64:a8:ae:62:bd: 87:3d:a1:e8:6e:16:ee:d1:9e:3f:32:5f:74:82:5b:1a:d6:12: c1:59:65:e8:82:a8:fa:ba:38:70:f3:f8:27:aa:6b:86:ee:97: 4f:fb:10:ba:c5:48:6e:d5:dc:58:a1:82:fa:0d:b5:b9:7f:68: 6d:c8:49:ef:6e:0b:45:39:15:0a:61:03:ae:9c:3e:ef:4d:c7: 5b:c6:da:32:8c:1a:86:7c:01:0a:fd:78:a8:cd:33:4b:13:8e: 00:c8:26:a4:98:a6:d1:a7:aa:68:c0:ca:6b:11:0e:9e:70:44: bf:69:2f:51:00:b2:41:46:90:f9:09:d3:5b:ef:d0:81:6b:dc: c9:76:df:1f:6c:95:30:14:ce:39:9d:1b:cc:ea:46:10:7d:22: b4:8a:da:76:00:73:78:e7:e5:7e:74:91:cd:da:78:b9:3e:64: 19:10:b0:94:28:79:53:b2:5d:e4:a5:67:db:78:81:58:03:4e: 38:b0:12:fb:14:72:7a:65:46:25:b2:3f:19:78:83:98:05:93: d5:be:d2:0a:89:3f:d3:13:c8:73:2c:61:f3:53:26:29:9a:2e: 2d:d4:e4:f2 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUXTDhkUsuXTmlyNBZx2/knzfBywQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5 NTIyNDZGRjAeFw0yNTA2MDIwMDU3NDFaFw0yNjA2MDEwMTAyNDFaMDMxMTAvBgNV BAMTKEY5RTJERTcyMzVBMzUxRTRDNDc0MkRDODBFQUNDNkVDMDRCRTZFRkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrLIbA+3VT7g3SLEgD37hLKEen GKGjph/Iy8lu00vK3bIUOb2iO6eIJhD2/luQI7uhsQnEMhPDxIsS6IVjjvcxpQ+o k+0Fgic3BdcZ8kKK+DQ0gxfI4zVPfaaTVVn78+mD4xLozVWFQX/LFq6ucPjvMvcn E2GGIji5Cpzg5QLmG3x+uBJopaIpNLdX2xQPdGZ39MpdeJoHzvX9QYw2L+/DW05O n5zMPduSv6f3dgg/LhyvyH5pb65pzouP7X13nKVu4mjnLnrmm4qSfWFnD3QoRiOH CyE0EOjco/oC/bdZmd8Jsarrn3QL4maCf7/P9xdH0G8BgoMFkW34ZJLEaZttAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQU+eLecjWjUeTEdC3IDqzG7AS+bv8wHwYDVR0j BBgwFoAUEP41sEDoo9BeW+m+5PCmNpUiRv8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MDBmNGYzNy1jN2ZiLTQ3ZDAtOGE4NS1lY2ZkMTJiOTE1ZjUvMC8xMEZFMzVCMDQw RThBM0QwNUU1QkU5QkVFNEYwQTYzNjk1MjI0NkZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5NTIy NDZGRi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMwMGY0ZjM3LWM3ZmItNDdkMC04 YTg1LWVjZmQxMmI5MTVmNS8wLzMyMzQzMDMyM2E2MjY1MzgzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzMTM3MzQzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQCvoAwDQYJKoZI hvcNAQELBQADggEBAB5xkZpjxjgRaKMfAvI8H9SjwT6eopPJ6GZqnyJiYxhkqK5i vYc9oehuFu7Rnj8yX3SCWxrWEsFZZeiCqPq6OHDz+Ceqa4bul0/7ELrFSG7V3Fih gvoNtbl/aG3ISe9uC0U5FQphA66cPu9Nx1vG2jKMGoZ8AQr9eKjNM0sTjgDIJqSY ptGnqmjAymsRDp5wRL9pL1EAskFGkPkJ01vv0IFr3Ml23x9slTAUzjmdG8zqRhB9 IrSK2nYAc3jn5X50kc3aeLk+ZBkQsJQoeVOyXeSlZ9t4gVgDTjiwEvsUcnplRiWy Pxl4g5gFk9W+0gqJP9MTyHMsYfNTJimaLi3U5PI= -----END CERTIFICATE-----Generated at Thu Jun 5 18:22:33 2025 by rpki-client