$ rpki-client -vvf repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a633030303a3a2f33352d3335203d3e20313331373439.roa File: 323430323a626538303a633030303a3a2f33352d3335203d3e20313331373439.roa (raw, json) Hash identifier: noUPhk/lMic4mWf4jKWj6yuqbnoenZnLHoMy6mHYvdE= Subject key identifier: 15:8F:55:9E:50:1F:71:6A:8B:81:50:E2:48:D7:99:5A:C7:B1:46:15 Certificate issuer: /CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Certificate serial: 2F595BCBB4FDD1ACA77CC3FEFD140F961E383CD9 Authority key identifier: 10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a633030303a3a2f33352d3335203d3e20313331373439.roa Signing time: Mon 02 Jun 2025 01:02:41 +0000 ROA not before: Mon 02 Jun 2025 00:57:41 +0000 ROA not after: Mon 01 Jun 2026 01:02:41 +0000 asID: 131749 IP address blocks: 2402:be80:c000::/35 maxlen: 35 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 10:05:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:59:5b:cb:b4:fd:d1:ac:a7:7c:c3:fe:fd:14:0f:96:1e:38:3c:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Validity Not Before: Jun 2 00:57:41 2025 GMT Not After : Jun 1 01:02:41 2026 GMT Subject: CN=158F559E501F716A8B8150E248D7995AC7B14615 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:2f:d1:11:9e:32:b3:1a:87:1b:56:61:9b:cb: 17:a8:d1:6d:0c:79:c1:b6:dd:91:40:77:6b:71:22: 2e:fd:d1:c9:74:bf:0a:13:16:a6:af:c6:d1:16:c6: a3:cd:f2:02:6b:2e:46:d0:db:81:1f:62:0e:60:4f: 3d:a6:75:e8:5e:41:ff:04:02:2f:ba:74:8f:56:4b: 66:e6:5f:ca:f5:0e:dc:5e:8b:bf:fc:a5:db:7d:52: d6:3e:16:bb:1a:71:a1:19:27:7d:d6:31:fe:ef:0d: f2:ff:89:43:e8:dd:ba:d7:bb:de:0d:4b:25:2f:32: 72:5d:b3:dd:4a:bc:f7:ca:86:1a:66:80:88:1d:b2: 1b:47:db:ce:15:1c:f2:a9:5c:62:43:77:d1:32:cb: 7b:b1:c9:77:b2:d2:02:e1:e5:64:bf:93:9d:e0:29: 0d:0c:69:6f:91:51:5d:47:8a:3d:e6:78:82:d6:d8: 01:64:66:33:e3:83:f2:b7:9a:8d:35:a2:cf:5e:59: 4f:b4:95:31:b9:7d:78:a0:4f:8c:85:4d:7a:21:3d: 3f:84:5a:d5:55:96:61:fe:85:a1:58:2f:f6:dc:02: f8:82:a4:34:ed:27:46:74:f0:05:63:03:cc:5e:85: 43:2f:50:78:cb:41:5f:f2:0e:22:7d:54:2c:43:64: c4:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:8F:55:9E:50:1F:71:6A:8B:81:50:E2:48:D7:99:5A:C7:B1:46:15 X509v3 Authority Key Identifier: keyid:10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a633030303a3a2f33352d3335203d3e20313331373439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:be80:c000::/35 Signature Algorithm: sha256WithRSAEncryption 3e:f6:46:d7:b9:8f:84:53:b4:04:a7:2e:e7:71:a5:b6:aa:de: d8:b8:8f:50:5a:76:c6:37:60:d8:c2:50:14:1d:97:06:39:b7: 86:7f:ea:26:0c:2f:3c:d3:78:50:19:5f:bf:eb:e4:8a:aa:e9: 20:37:f4:88:e4:39:fe:85:ea:80:9c:c8:c3:f0:b8:ef:22:b2: e3:64:c1:f7:47:42:74:11:c3:05:8a:a0:21:ac:0d:e7:70:fa: 9f:4b:32:35:f6:e7:0a:e9:62:17:a9:f6:89:89:82:80:c8:6d: 00:20:12:3b:2a:07:d2:dc:ff:d3:80:7c:c7:75:5b:90:e7:aa: 5a:79:f7:f3:ad:61:5e:4c:b0:45:17:03:67:3d:55:4f:2b:7e: 23:49:78:a1:92:dd:71:ae:04:6a:48:0b:00:34:5e:1e:23:2c: 95:f5:a3:3c:e0:af:d5:ff:95:f4:00:5a:12:35:cf:87:23:35: 1e:a8:ec:84:25:bc:34:e7:b6:37:56:f8:cc:ad:73:32:b2:96: fe:ec:cf:b5:b9:e8:57:c8:69:68:39:df:a0:1b:5f:e3:88:c9: 42:58:25:33:8f:15:89:c9:1e:cf:af:31:71:a2:71:a7:48:3b: a9:ab:a0:5a:7a:d2:f0:66:1c:10:e4:f7:6b:8b:e7:03:ee:1b: eb:05:74:dd -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUL1lby7T90aynfMP+/RQPlh44PNkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5 NTIyNDZGRjAeFw0yNTA2MDIwMDU3NDFaFw0yNjA2MDEwMTAyNDFaMDMxMTAvBgNV BAMTKDE1OEY1NTlFNTAxRjcxNkE4QjgxNTBFMjQ4RDc5OTVBQzdCMTQ2MTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD7L9ERnjKzGocbVmGbyxeo0W0M ecG23ZFAd2txIi790cl0vwoTFqavxtEWxqPN8gJrLkbQ24EfYg5gTz2mdeheQf8E Ai+6dI9WS2bmX8r1Dtxei7/8pdt9UtY+FrsacaEZJ33WMf7vDfL/iUPo3brXu94N SyUvMnJds91KvPfKhhpmgIgdshtH284VHPKpXGJDd9Eyy3uxyXey0gLh5WS/k53g KQ0MaW+RUV1Hij3meILW2AFkZjPjg/K3mo01os9eWU+0lTG5fXigT4yFTXohPT+E WtVVlmH+haFYL/bcAviCpDTtJ0Z08AVjA8xehUMvUHjLQV/yDiJ9VCxDZMS/AgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUFY9VnlAfcWqLgVDiSNeZWsexRhUwHwYDVR0j BBgwFoAUEP41sEDoo9BeW+m+5PCmNpUiRv8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MDBmNGYzNy1jN2ZiLTQ3ZDAtOGE4NS1lY2ZkMTJiOTE1ZjUvMC8xMEZFMzVCMDQw RThBM0QwNUU1QkU5QkVFNEYwQTYzNjk1MjI0NkZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5NTIy NDZGRi5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMwMGY0ZjM3LWM3ZmItNDdkMC04 YTg1LWVjZmQxMmI5MTVmNS8wLzMyMzQzMDMyM2E2MjY1MzgzMDNhNjMzMDMwMzAz YTNhMmYzMzM1MmQzMzM1MjAzZDNlMjAzMTMzMzEzNzM0Mzkucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgUk Ar6AwDANBgkqhkiG9w0BAQsFAAOCAQEAPvZG17mPhFO0BKcu53Gltqre2LiPUFp2 xjdg2MJQFB2XBjm3hn/qJgwvPNN4UBlfv+vkiqrpIDf0iOQ5/oXqgJzIw/C47yKy 42TB90dCdBHDBYqgIawN53D6n0syNfbnCuliF6n2iYmCgMhtACASOyoH0tz/04B8 x3VbkOeqWnn3861hXkywRRcDZz1VTyt+I0l4oZLdca4EakgLADReHiMslfWjPOCv 1f+V9ABaEjXPhyM1HqjshCW8NOe2N1b4zK1zMrKW/uzPtbnoV8hpaDnfoBtf44jJ QlglM48Vickez68xcaJxp0g7qaugWnrS8GYcEOT3a4vnA+4b6wV03Q== -----END CERTIFICATE-----Generated at Thu Jun 5 18:25:57 2025 by rpki-client