$ rpki-client -vvf repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/323430333a38303a3a2f33322d3332203d3e20313334363233.roa File: 323430333a38303a3a2f33322d3332203d3e20313334363233.roa (raw, json) Hash identifier: 6DmXkqMFBwmOgmu7GrU8MAR3khWhl6gAoERCQcW2kCE= Subject key identifier: 77:FF:7C:70:78:3F:E8:A5:6D:03:56:5E:2F:AC:18:EA:7A:10:01:F6 Certificate issuer: /CN=2985976A4B3081770748882703E16497964D05A6 Certificate serial: 5D515DFA7401EF4EA1537DC5D6C22ABD6937EEF6 Authority key identifier: 29:85:97:6A:4B:30:81:77:07:48:88:27:03:E1:64:97:96:4D:05:A6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2985976A4B3081770748882703E16497964D05A6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/323430333a38303a3a2f33322d3332203d3e20313334363233.roa Signing time: Fri 06 Jun 2025 07:00:02 +0000 ROA not before: Fri 06 Jun 2025 06:55:02 +0000 ROA not after: Fri 05 Jun 2026 07:00:02 +0000 asID: 134623 IP address blocks: 2403:80::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/2985976A4B3081770748882703E16497964D05A6.crl rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/2985976A4B3081770748882703E16497964D05A6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2985976A4B3081770748882703E16497964D05A6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 18:31:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:51:5d:fa:74:01:ef:4e:a1:53:7d:c5:d6:c2:2a:bd:69:37:ee:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2985976A4B3081770748882703E16497964D05A6 Validity Not Before: Jun 6 06:55:02 2025 GMT Not After : Jun 5 07:00:02 2026 GMT Subject: CN=77FF7C70783FE8A56D03565E2FAC18EA7A1001F6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:03:94:97:0a:f2:c5:bc:9a:17:b3:81:c1:4e: a5:db:c9:4e:d2:98:ad:e3:66:fd:83:ca:16:c6:ab: c0:21:49:cb:e8:7a:a9:95:f2:0d:fe:b1:6f:03:a8: 0f:f3:66:a1:c6:15:20:9e:9c:12:a4:75:a6:41:8f: 79:50:a9:42:f5:ee:0b:6f:bb:68:b8:26:70:31:76: 74:3d:05:f4:64:71:b1:c2:95:c7:b9:c6:22:9a:c4: 70:24:c8:c2:07:f7:dd:f2:ab:60:b9:ae:94:77:2c: 95:89:4c:6d:56:c6:19:e7:cf:1b:f0:c7:1c:37:ec: ed:0d:06:1b:6b:d0:22:39:ed:ef:1c:2b:a6:27:68: eb:3b:7a:55:80:27:91:68:b1:ab:8b:64:d2:c8:b4: 44:af:86:dd:b3:12:8e:c1:f7:88:b7:f0:20:a2:c9: 56:03:4e:26:4b:74:2c:57:f0:bb:0b:ac:8f:d1:63: ef:e3:94:6f:16:10:6e:52:ea:79:6a:c7:1d:5a:a7: 20:fb:22:6c:76:99:52:3f:42:c5:e5:c9:7c:e0:87: 88:b9:02:4a:d1:45:d0:8c:f1:f8:59:2b:6e:50:a2: 9b:76:76:f7:93:34:05:dd:5f:d7:6f:47:93:4e:e4: 6e:87:60:bb:39:a6:68:40:e6:c7:05:70:26:5f:e3: 94:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:FF:7C:70:78:3F:E8:A5:6D:03:56:5E:2F:AC:18:EA:7A:10:01:F6 X509v3 Authority Key Identifier: keyid:29:85:97:6A:4B:30:81:77:07:48:88:27:03:E1:64:97:96:4D:05:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/2985976A4B3081770748882703E16497964D05A6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2985976A4B3081770748882703E16497964D05A6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/323430333a38303a3a2f33322d3332203d3e20313334363233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:80::/32 Signature Algorithm: sha256WithRSAEncryption c4:3c:b2:74:a9:f9:b9:76:ff:86:5b:02:f8:b5:3a:75:0f:6e: c4:0f:b0:8e:1d:c2:82:d4:a2:61:be:a1:39:6d:ee:93:1a:92: 3b:5d:0c:b7:d2:fb:35:8e:f3:9e:4b:c8:72:27:53:72:cc:12: f2:b4:ce:ec:2e:ac:5d:e1:ae:53:32:80:48:3f:71:8e:38:e6: 2f:cd:d4:b4:1f:5b:fc:61:0f:a1:93:8a:e3:7f:e9:32:38:ad: ad:0c:f6:7c:9f:f1:e4:12:6f:22:cd:a2:12:02:f5:3b:a8:1b: 52:5e:d1:40:23:fe:1b:bb:60:1c:17:be:00:28:3b:3d:7a:c5: 30:51:fd:27:af:45:7a:c9:12:a1:75:2b:2a:ad:ac:d5:02:9b: 4b:89:c3:6f:a8:d1:96:a1:6a:1d:90:21:4f:cf:5d:88:ba:d6: de:c8:0c:76:c1:42:d6:ea:8e:59:8e:41:43:e0:18:9f:b4:68: 90:72:15:d6:8e:3b:a1:fb:22:15:1f:3d:9b:39:20:2e:4e:43: 10:71:c2:9b:8b:e2:6c:63:83:1d:bd:46:3c:70:ac:c4:33:2f: 91:21:b5:72:ac:76:1d:f9:a5:eb:2a:c9:80:65:17:8c:22:62: f0:4e:7f:a7:7e:26:ae:58:fc:a3:e7:bc:14:4c:3e:a5:7b:b7: 8c:0d:6b:98 -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUXVFd+nQB706hU33F1sIqvWk37vYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk4NTk3NkE0QjMwODE3NzA3NDg4ODI3MDNFMTY0OTc5 NjREMDVBNjAeFw0yNTA2MDYwNjU1MDJaFw0yNjA2MDUwNzAwMDJaMDMxMTAvBgNV BAMTKDc3RkY3QzcwNzgzRkU4QTU2RDAzNTY1RTJGQUMxOEVBN0ExMDAxRjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCiA5SXCvLFvJoXs4HBTqXbyU7S mK3jZv2DyhbGq8AhScvoeqmV8g3+sW8DqA/zZqHGFSCenBKkdaZBj3lQqUL17gtv u2i4JnAxdnQ9BfRkcbHClce5xiKaxHAkyMIH993yq2C5rpR3LJWJTG1Wxhnnzxvw xxw37O0NBhtr0CI57e8cK6YnaOs7elWAJ5FosauLZNLItESvht2zEo7B94i38CCi yVYDTiZLdCxX8LsLrI/RY+/jlG8WEG5S6nlqxx1apyD7Imx2mVI/QsXlyXzgh4i5 AkrRRdCM8fhZK25Qopt2dveTNAXdX9dvR5NO5G6HYLs5pmhA5scFcCZf45QPAgMB AAGjggIuMIICKjAdBgNVHQ4EFgQUd/98cHg/6KVtA1ZeL6wY6noQAfYwHwYDVR0j BBgwFoAUKYWXakswgXcHSIgnA+Fkl5ZNBaYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZWQxMDBkZi0wNDQxLTQzODEtYTNmYS01ODdkYjllOWMyZjAvMC8yOTg1OTc2QTRC MzA4MTc3MDc0ODg4MjcwM0UxNjQ5Nzk2NEQwNUE2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjk4NTk3NkE0QjMwODE3NzA3NDg4ODI3MDNFMTY0OTc5NjRE MDVBNi5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2VkMTAwZGYtMDQ0MS00MzgxLWEz ZmEtNTg3ZGI5ZTljMmYwLzAvMzIzNDMwMzMzYTM4MzAzYTNhMmYzMzMyMmQzMzMy MjAzZDNlMjAzMTMzMzQzNjMyMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAwCAMA0GCSqGSIb3DQEB CwUAA4IBAQDEPLJ0qfm5dv+GWwL4tTp1D27ED7COHcKC1KJhvqE5be6TGpI7XQy3 0vs1jvOeS8hyJ1NyzBLytM7sLqxd4a5TMoBIP3GOOOYvzdS0H1v8YQ+hk4rjf+ky OK2tDPZ8n/HkEm8izaISAvU7qBtSXtFAI/4bu2AcF74AKDs9esUwUf0nr0V6yRKh dSsqrazVAptLicNvqNGWoWodkCFPz12IutbeyAx2wULW6o5ZjkFD4BiftGiQchXW jjuh+yIVHz2bOSAuTkMQccKbi+JsY4MdvUY8cKzEMy+RIbVyrHYd+aXrKsmAZReM ImLwTn+nfiauWPyj57wUTD6le7eMDWuY -----END CERTIFICATE-----Generated at Sat Jun 7 04:05:40 2025 by rpki-client