$ rpki-client -vvf repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/323430353a386530303a3a2f33322d3332203d3e203234323034.roa File: 323430353a386530303a3a2f33322d3332203d3e203234323034.roa (raw, json) Hash identifier: qKSq3uz3mAbrZSzfHP44tJYlF6gqnOloWG4wyUGOKH8= Subject key identifier: BB:7C:20:D2:09:BA:14:4F:A8:DC:00:7A:F6:9C:D9:FA:44:B0:F7:C7 Certificate issuer: /CN=28351380A86044778274FC7CEC0F116CF3B3CA39 Certificate serial: 54E690F944A63E9D30BA5D0CCDBE9C11E5D08335 Authority key identifier: 28:35:13:80:A8:60:44:77:82:74:FC:7C:EC:0F:11:6C:F3:B3:CA:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/323430353a386530303a3a2f33322d3332203d3e203234323034.roa Signing time: Mon 02 Jun 2025 02:03:28 +0000 ROA not before: Mon 02 Jun 2025 01:58:28 +0000 ROA not after: Mon 01 Jun 2026 02:03:28 +0000 asID: 24204 IP address blocks: 2405:8e00::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.crl rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 18:33:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:e6:90:f9:44:a6:3e:9d:30:ba:5d:0c:cd:be:9c:11:e5:d0:83:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28351380A86044778274FC7CEC0F116CF3B3CA39 Validity Not Before: Jun 2 01:58:28 2025 GMT Not After : Jun 1 02:03:28 2026 GMT Subject: CN=BB7C20D209BA144FA8DC007AF69CD9FA44B0F7C7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:bd:66:f5:46:a7:27:c4:e2:4f:d7:7f:b2:55: ea:05:ef:3f:88:c8:53:6a:bc:cf:d7:06:9b:9c:a7: 7b:47:89:19:12:59:20:d9:bb:4d:11:1e:bb:9a:74: 40:37:1f:d8:ed:c9:15:f3:f2:0f:01:74:3e:9b:9b: 8a:9c:13:1f:a7:83:da:f0:8a:cd:97:72:ae:74:69: d4:28:02:26:7a:01:65:86:9f:0b:35:97:0d:c3:21: bf:c2:4f:12:8d:63:a2:d6:05:ee:61:87:17:d7:a6: 88:58:f1:f2:c9:c1:09:60:b7:f1:dd:27:4a:ac:bb: 1b:ae:84:a3:72:33:db:19:2d:da:20:f9:f6:e4:27: 98:be:01:ef:29:d6:6e:12:28:3d:e2:a1:7c:68:52: e3:5d:26:b1:cc:05:4f:a0:a4:d6:24:f7:52:8a:85: 9e:af:46:14:bc:3f:1f:c4:c7:32:94:1d:c2:27:f1: 03:48:8d:82:ab:e1:4f:f7:e6:3e:66:ba:39:ce:ec: ef:47:8a:3a:26:e7:83:26:83:8f:bf:93:b5:48:b9: e2:f9:5b:59:4f:f9:8a:1c:81:84:c6:03:42:5a:b5: 05:d4:9e:27:2b:52:9b:2c:31:77:0e:a8:5e:0a:d1: 37:c4:16:df:b2:4e:c0:fb:97:40:55:dc:42:fc:15: 2a:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:7C:20:D2:09:BA:14:4F:A8:DC:00:7A:F6:9C:D9:FA:44:B0:F7:C7 X509v3 Authority Key Identifier: keyid:28:35:13:80:A8:60:44:77:82:74:FC:7C:EC:0F:11:6C:F3:B3:CA:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/323430353a386530303a3a2f33322d3332203d3e203234323034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:8e00::/32 Signature Algorithm: sha256WithRSAEncryption a2:ad:a8:49:11:14:b6:67:cb:c5:d4:fb:48:12:21:8f:a2:0b: 17:d8:e0:fb:09:89:70:d5:50:4d:65:1a:8b:3f:1c:d3:38:45: 3c:1c:b8:ef:0e:24:53:45:f8:22:c2:d8:f4:92:23:ae:9c:82: 19:eb:2c:b6:6d:18:17:a1:22:48:35:87:83:05:8d:82:ab:43: 1a:b0:9b:8c:8b:87:15:cb:4a:11:12:ce:82:f8:9a:c7:df:44: 45:6d:4b:6a:02:7a:b9:4f:d8:49:65:2d:da:bc:0f:61:b7:70: e4:6a:90:08:52:15:06:37:d2:12:59:40:11:12:0e:3e:1a:bc: ca:e9:c7:da:6d:15:e0:ee:d7:e0:e2:ec:8f:07:66:6a:64:fb: dc:d8:70:ae:1d:84:4e:ac:11:64:8d:a8:d8:50:b5:14:6e:4b: ec:48:66:ca:92:1b:5b:d0:5a:34:f8:6a:ff:ae:e4:11:45:8d: 98:ee:e0:d4:d9:da:fa:96:38:1b:90:00:d6:e5:8e:f2:3a:7d: 36:f7:ef:1d:d4:ec:69:d9:34:50:59:93:13:07:63:91:d7:cc: 25:48:6d:89:10:de:c4:5a:f7:04:18:29:78:5c:c3:d9:0c:f1: 00:b6:65:c7:b0:db:24:7d:d7:a9:c4:0a:23:de:af:6f:1d:c9: 7a:13:76:b5 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUVOaQ+USmPp0wul0Mzb6cEeXQgzUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjExNkNG M0IzQ0EzOTAeFw0yNTA2MDIwMTU4MjhaFw0yNjA2MDEwMjAzMjhaMDMxMTAvBgNV BAMTKEJCN0MyMEQyMDlCQTE0NEZBOERDMDA3QUY2OUNEOUZBNDRCMEY3QzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrvWb1RqcnxOJP13+yVeoF7z+I yFNqvM/XBpucp3tHiRkSWSDZu00RHruadEA3H9jtyRXz8g8BdD6bm4qcEx+ng9rw is2Xcq50adQoAiZ6AWWGnws1lw3DIb/CTxKNY6LWBe5hhxfXpohY8fLJwQlgt/Hd J0qsuxuuhKNyM9sZLdog+fbkJ5i+Ae8p1m4SKD3ioXxoUuNdJrHMBU+gpNYk91KK hZ6vRhS8Px/ExzKUHcIn8QNIjYKr4U/35j5mujnO7O9Hijom54Mmg4+/k7VIueL5 W1lP+YocgYTGA0JatQXUnicrUpssMXcOqF4K0TfEFt+yTsD7l0BV3EL8FSonAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUu3wg0gm6FE+o3AB69pzZ+kSw98cwHwYDVR0j BBgwFoAUKDUTgKhgRHeCdPx87A8RbPOzyjkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MjRhOTEwNS04ZDJhLTRiMzgtYTZhZS0wNWVhZDY5NzE5YTMvMC8yODM1MTM4MEE4 NjA0NDc3ODI3NEZDN0NFQzBGMTE2Q0YzQjNDQTM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjExNkNGM0Iz Q0EzOS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUyNGE5MTA1LThkMmEtNGIzOC1h NmFlLTA1ZWFkNjk3MTlhMy8wLzMyMzQzMDM1M2EzODY1MzAzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMyMzQzMjMwMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBY4AMA0GCSqGSIb3 DQEBCwUAA4IBAQCirahJERS2Z8vF1PtIEiGPogsX2OD7CYlw1VBNZRqLPxzTOEU8 HLjvDiRTRfgiwtj0kiOunIIZ6yy2bRgXoSJINYeDBY2Cq0MasJuMi4cVy0oREs6C +JrH30RFbUtqAnq5T9hJZS3avA9ht3DkapAIUhUGN9ISWUAREg4+GrzK6cfabRXg 7tfg4uyPB2ZqZPvc2HCuHYROrBFkjajYULUUbkvsSGbKkhtb0Fo0+Gr/ruQRRY2Y 7uDU2dr6ljgbkADW5Y7yOn029+8d1Oxp2TRQWZMTB2OR18wlSG2JEN7EWvcEGCl4 XMPZDPEAtmXHsNskfdepxAoj3q9vHcl6E3a1 -----END CERTIFICATE-----Generated at Sun Jun 8 07:25:57 2025 by rpki-client