$ rpki-client -vvf repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a3a2f33352d3335203d3e20313331373439.roa File: 323430323a626538303a3a2f33352d3335203d3e20313331373439.roa (raw, json) Hash identifier: Oqj6PoE4F8AznRA3O47Q/vammp0q4o8hLusJKPdYYNc= Subject key identifier: 81:AC:4F:3D:3A:EC:09:F2:42:F4:87:94:D0:06:D4:67:5A:DE:95:8E Certificate issuer: /CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Certificate serial: 15E3C61DD73A80A7D393B6094A8B6F06FF0251F8 Authority key identifier: 10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a3a2f33352d3335203d3e20313331373439.roa Signing time: Mon 02 Jun 2025 01:02:41 +0000 ROA not before: Mon 02 Jun 2025 00:57:41 +0000 ROA not after: Mon 01 Jun 2026 01:02:41 +0000 asID: 131749 IP address blocks: 2402:be80::/35 maxlen: 35 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 10:05:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:e3:c6:1d:d7:3a:80:a7:d3:93:b6:09:4a:8b:6f:06:ff:02:51:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Validity Not Before: Jun 2 00:57:41 2025 GMT Not After : Jun 1 01:02:41 2026 GMT Subject: CN=81AC4F3D3AEC09F242F48794D006D4675ADE958E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:c0:5c:38:2c:2a:df:23:14:d0:f5:0b:4a:b6: e3:e0:8e:3b:b3:34:e6:e7:94:a7:f5:98:b2:3e:c6: 9c:e3:2b:36:c7:1b:da:d1:51:cc:88:80:13:c1:f8: 68:b7:2b:56:3b:55:ec:2e:d4:2c:f3:4e:b6:b2:4b: 14:00:15:39:ba:33:ef:7a:fe:7f:89:50:41:a0:a8: 65:97:66:5c:f7:1e:a6:3b:61:ab:14:ce:66:2f:9e: 2b:86:a6:cb:f7:68:fa:e5:5d:52:21:ef:ba:1c:25: 0c:6a:28:91:08:0c:5d:e9:69:9f:71:42:01:bb:80: 49:c4:9b:ba:eb:4a:a4:c5:08:14:3a:bf:46:ab:83: a5:f3:86:ce:2d:1b:66:fa:4a:60:fc:8e:e8:86:b3: 58:0d:e9:86:cc:ce:36:92:b5:49:95:60:b3:98:94: 44:af:56:f8:a1:31:f9:d1:73:02:05:cc:7d:e3:e2: 21:76:eb:17:41:42:aa:0e:6d:5d:46:61:ae:a5:a5: 7a:d4:9f:a7:34:ff:ed:71:c6:d8:40:dc:29:21:d6: d6:a7:fa:27:ed:f8:02:5e:05:eb:36:47:1f:8d:3f: ba:28:84:90:11:3e:64:ed:7d:04:b2:20:86:8c:2e: 4d:95:76:e8:a5:3d:8d:65:2b:cc:1b:3f:82:b7:6a: 25:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:AC:4F:3D:3A:EC:09:F2:42:F4:87:94:D0:06:D4:67:5A:DE:95:8E X509v3 Authority Key Identifier: keyid:10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a3a2f33352d3335203d3e20313331373439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:be80::/35 Signature Algorithm: sha256WithRSAEncryption 57:90:53:07:40:83:16:71:bc:4f:d2:61:e6:0a:76:a1:4f:39: 4f:63:a1:97:7b:6f:c3:29:25:15:95:9e:df:ee:2a:5b:4b:14: 65:c0:ac:1a:85:bf:07:5f:de:40:af:05:64:74:73:47:cf:b9: 71:e4:de:c3:41:e4:65:e6:64:e8:76:5b:97:30:a6:d4:9d:ea: 13:db:31:96:a1:0c:5f:a7:2f:ca:7b:a0:f4:d6:ed:9c:a8:e5: b1:61:9f:39:ae:90:87:26:5e:13:b4:74:5a:04:18:59:18:46: cb:09:cb:54:d3:38:e7:fb:64:89:3d:b7:22:cb:5b:f4:85:b6: 1f:7f:0d:61:9c:bd:91:c7:20:c5:2a:53:15:b4:34:ec:6c:52: 93:f1:db:e4:4a:06:29:6c:d2:d1:5e:4f:6e:36:1f:58:65:22: 6a:4a:85:7a:dc:90:22:ac:52:ea:ff:b5:96:08:48:1f:b0:b9: 93:bb:f5:d8:77:4d:3c:95:b0:ac:08:ea:55:10:7a:4f:69:8f: d4:fe:43:d6:4c:51:16:f6:fa:df:d8:36:94:2b:8f:c6:01:62: 65:81:23:18:3e:ed:bb:7e:3d:68:9b:61:c6:87:87:97:d5:29: 47:a8:31:e7:6a:a4:8c:da:b5:77:e0:94:19:a3:55:3a:d2:9c: 58:c1:00:ee -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUFePGHdc6gKfTk7YJSotvBv8CUfgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5 NTIyNDZGRjAeFw0yNTA2MDIwMDU3NDFaFw0yNjA2MDEwMTAyNDFaMDMxMTAvBgNV BAMTKDgxQUM0RjNEM0FFQzA5RjI0MkY0ODc5NEQwMDZENDY3NUFERTk1OEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3wFw4LCrfIxTQ9QtKtuPgjjuz NObnlKf1mLI+xpzjKzbHG9rRUcyIgBPB+Gi3K1Y7Vewu1CzzTraySxQAFTm6M+96 /n+JUEGgqGWXZlz3HqY7YasUzmYvniuGpsv3aPrlXVIh77ocJQxqKJEIDF3paZ9x QgG7gEnEm7rrSqTFCBQ6v0arg6Xzhs4tG2b6SmD8juiGs1gN6YbMzjaStUmVYLOY lESvVvihMfnRcwIFzH3j4iF26xdBQqoObV1GYa6lpXrUn6c0/+1xxthA3Ckh1tan +ift+AJeBes2Rx+NP7oohJARPmTtfQSyIIaMLk2VduilPY1lK8wbP4K3aiX3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUgaxPPTrsCfJC9IeU0AbUZ1relY4wHwYDVR0j BBgwFoAUEP41sEDoo9BeW+m+5PCmNpUiRv8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MDBmNGYzNy1jN2ZiLTQ3ZDAtOGE4NS1lY2ZkMTJiOTE1ZjUvMC8xMEZFMzVCMDQw RThBM0QwNUU1QkU5QkVFNEYwQTYzNjk1MjI0NkZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5NTIy NDZGRi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMwMGY0ZjM3LWM3ZmItNDdkMC04 YTg1LWVjZmQxMmI5MTVmNS8wLzMyMzQzMDMyM2E2MjY1MzgzMDNhM2EyZjMzMzUy ZDMzMzUyMDNkM2UyMDMxMzMzMTM3MzQzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBSQCvoAAMA0GCSqG SIb3DQEBCwUAA4IBAQBXkFMHQIMWcbxP0mHmCnahTzlPY6GXe2/DKSUVlZ7f7ipb SxRlwKwahb8HX95ArwVkdHNHz7lx5N7DQeRl5mTodluXMKbUneoT2zGWoQxfpy/K e6D01u2cqOWxYZ85rpCHJl4TtHRaBBhZGEbLCctU0zjn+2SJPbciy1v0hbYffw1h nL2RxyDFKlMVtDTsbFKT8dvkSgYpbNLRXk9uNh9YZSJqSoV63JAirFLq/7WWCEgf sLmTu/XYd008lbCsCOpVEHpPaY/U/kPWTFEW9vrf2DaUK4/GAWJlgSMYPu27fj1o m2HGh4eX1SlHqDHnaqSM2rV34JQZo1U60pxYwQDu -----END CERTIFICATE-----Generated at Thu Jun 5 18:18:40 2025 by rpki-client