$ rpki-client -vvf repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a613030303a3a2f33352d3335203d3e20313331373439.roa File: 323430323a626538303a613030303a3a2f33352d3335203d3e20313331373439.roa (raw, json) Hash identifier: YJQzg1U9jA4AWFaUYLdryvvEck232YTbH13zq010OFw= Subject key identifier: 01:97:32:EA:E2:DF:86:12:E8:46:9F:B0:44:44:A4:77:94:85:E6:94 Certificate issuer: /CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Certificate serial: 13AC7F36F7CD4B5620C1041F7E75D5E2946937BB Authority key identifier: 10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a613030303a3a2f33352d3335203d3e20313331373439.roa Signing time: Mon 02 Jun 2025 01:02:40 +0000 ROA not before: Mon 02 Jun 2025 00:57:40 +0000 ROA not after: Mon 01 Jun 2026 01:02:40 +0000 asID: 131749 IP address blocks: 2402:be80:a000::/35 maxlen: 35 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 10:05:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:ac:7f:36:f7:cd:4b:56:20:c1:04:1f:7e:75:d5:e2:94:69:37:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Validity Not Before: Jun 2 00:57:40 2025 GMT Not After : Jun 1 01:02:40 2026 GMT Subject: CN=019732EAE2DF8612E8469FB04444A4779485E694 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:21:0c:99:5c:7b:0f:53:07:b1:3e:8b:b0:31: 93:29:a0:dd:8c:4a:87:78:f5:7f:8b:38:46:97:1a: f5:9d:b9:eb:a4:b8:e6:c9:98:de:5f:35:92:3f:f1: 91:97:02:a3:c5:2f:76:0b:01:6c:8e:11:39:bd:7e: cc:c5:38:33:3e:91:2b:b0:15:91:ac:34:ce:da:83: 20:12:a2:fb:1a:63:bf:70:5f:52:c8:c4:1a:fd:b0: cb:99:47:49:45:3b:cb:e2:15:87:99:42:cc:74:49: a9:e8:c1:7d:1f:ab:60:a5:df:f5:2a:0a:82:08:6b: 8b:b7:0c:b9:72:f5:e1:b8:e4:d7:20:79:b4:24:1a: 33:6b:2e:fc:c4:55:ec:29:d2:c9:66:ed:d4:9e:b8: bf:3d:21:a4:e7:7d:2f:80:4a:c7:57:38:d3:c2:1b: c8:d0:7a:50:bb:43:8f:dc:a8:2a:98:bb:6e:01:0e: 30:4b:3a:53:fb:4d:1c:0f:56:bf:55:72:26:5c:ca: 06:75:cb:62:7e:8e:68:c6:8f:d0:05:7d:02:f0:9d: e6:ea:97:48:8e:1c:37:64:43:04:82:81:32:57:ca: 09:a4:c2:cd:4e:79:86:54:91:64:60:72:81:28:b1: 7d:36:67:98:d0:7f:95:5d:8a:73:8e:86:d6:bc:f8: 24:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:97:32:EA:E2:DF:86:12:E8:46:9F:B0:44:44:A4:77:94:85:E6:94 X509v3 Authority Key Identifier: keyid:10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a613030303a3a2f33352d3335203d3e20313331373439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:be80:a000::/35 Signature Algorithm: sha256WithRSAEncryption 78:f0:26:9a:90:01:53:ac:98:57:62:17:9b:9e:4e:eb:e8:d2: e9:8a:75:10:9f:b7:d2:0e:db:85:e0:c8:fb:91:c1:5e:6c:46: 15:dd:af:35:24:17:0f:1f:50:67:8a:ae:74:aa:49:1d:a0:c0: 7b:9d:f9:81:13:e1:d5:71:d7:36:4e:e1:15:88:9a:9c:f4:20: 3f:c5:83:5f:26:67:15:18:b4:3c:5c:c2:65:6a:f3:21:7e:71: 57:6f:f7:c8:eb:da:fd:fa:f1:5c:65:e8:9d:bd:dc:d9:c8:c8: a6:f9:7f:2c:bd:8e:0c:69:01:e4:14:f4:1f:e9:ac:e0:58:e4: ee:81:76:5c:a5:02:d7:8d:8f:4d:9a:f9:09:78:6b:b0:48:b0: 05:31:c9:c5:25:b9:d7:28:34:55:b3:65:89:9d:d5:32:2e:66: db:18:b5:ed:67:4e:a5:fd:c1:0b:e7:6c:fc:59:8d:f2:8c:d3: 9b:ee:eb:7c:a0:f8:ae:63:0a:08:0f:32:d5:76:a1:e1:c3:51: 56:8e:ee:21:9b:24:d6:95:6f:4a:f8:a9:34:a9:56:41:9e:17: 47:17:6c:8a:7b:86:75:fc:b1:12:5c:34:5b:07:29:2b:83:6a: 9f:2f:62:96:7b:a6:60:5f:4c:10:3d:56:56:6b:90:af:86:75: 8c:bd:6c:3e -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUE6x/NvfNS1YgwQQffnXV4pRpN7swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5 NTIyNDZGRjAeFw0yNTA2MDIwMDU3NDBaFw0yNjA2MDEwMTAyNDBaMDMxMTAvBgNV BAMTKDAxOTczMkVBRTJERjg2MTJFODQ2OUZCMDQ0NDRBNDc3OTQ4NUU2OTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGIQyZXHsPUwexPouwMZMpoN2M Sod49X+LOEaXGvWdueukuObJmN5fNZI/8ZGXAqPFL3YLAWyOETm9fszFODM+kSuw FZGsNM7agyASovsaY79wX1LIxBr9sMuZR0lFO8viFYeZQsx0SanowX0fq2Cl3/Uq CoIIa4u3DLly9eG45NcgebQkGjNrLvzEVewp0slm7dSeuL89IaTnfS+ASsdXONPC G8jQelC7Q4/cqCqYu24BDjBLOlP7TRwPVr9VciZcygZ1y2J+jmjGj9AFfQLwnebq l0iOHDdkQwSCgTJXygmkws1OeYZUkWRgcoEosX02Z5jQf5VdinOOhta8+CR/AgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUAZcy6uLfhhLoRp+wRESkd5SF5pQwHwYDVR0j BBgwFoAUEP41sEDoo9BeW+m+5PCmNpUiRv8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MDBmNGYzNy1jN2ZiLTQ3ZDAtOGE4NS1lY2ZkMTJiOTE1ZjUvMC8xMEZFMzVCMDQw RThBM0QwNUU1QkU5QkVFNEYwQTYzNjk1MjI0NkZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5NTIy NDZGRi5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMwMGY0ZjM3LWM3ZmItNDdkMC04 YTg1LWVjZmQxMmI5MTVmNS8wLzMyMzQzMDMyM2E2MjY1MzgzMDNhNjEzMDMwMzAz YTNhMmYzMzM1MmQzMzM1MjAzZDNlMjAzMTMzMzEzNzM0Mzkucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgUk Ar6AoDANBgkqhkiG9w0BAQsFAAOCAQEAePAmmpABU6yYV2IXm55O6+jS6Yp1EJ+3 0g7bheDI+5HBXmxGFd2vNSQXDx9QZ4qudKpJHaDAe535gRPh1XHXNk7hFYianPQg P8WDXyZnFRi0PFzCZWrzIX5xV2/3yOva/frxXGXonb3c2cjIpvl/LL2ODGkB5BT0 H+ms4Fjk7oF2XKUC142PTZr5CXhrsEiwBTHJxSW51yg0VbNliZ3VMi5m2xi17WdO pf3BC+ds/FmN8ozTm+7rfKD4rmMKCA8y1Xah4cNRVo7uIZsk1pVvSvipNKlWQZ4X RxdsinuGdfyxElw0WwcpK4Nqny9ilnumYF9MED1WVmuQr4Z1jL1sPg== -----END CERTIFICATE-----Generated at Thu Jun 5 18:28:36 2025 by rpki-client