$ rpki-client -vvf repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/323430323a613030303a343030303a3a2f33342d3334203d3e203234323131.roa File: 323430323a613030303a343030303a3a2f33342d3334203d3e203234323131.roa (raw, json) Hash identifier: 8V7ZayO1EWtoGgR7suJnzq42sHcJ3tI9V47XAXCkvzA= Subject key identifier: 65:C3:01:E6:A5:43:FE:0D:AA:5D:B3:D4:C9:5A:5C:B3:57:F3:96:C7 Certificate issuer: /CN=DC935B44A30F5AECC1B1A1508E4B812572AB769B Certificate serial: 2D9DF5CDE27264BE9FFF201819F9E404A8140E22 Authority key identifier: DC:93:5B:44:A3:0F:5A:EC:C1:B1:A1:50:8E:4B:81:25:72:AB:76:9B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/323430323a613030303a343030303a3a2f33342d3334203d3e203234323131.roa Signing time: Mon 02 Jun 2025 01:03:24 +0000 ROA not before: Mon 02 Jun 2025 00:58:24 +0000 ROA not after: Mon 01 Jun 2026 01:03:24 +0000 asID: 24211 IP address blocks: 2402:a000:4000::/34 maxlen: 34 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.crl rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 11:49:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:9d:f5:cd:e2:72:64:be:9f:ff:20:18:19:f9:e4:04:a8:14:0e:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DC935B44A30F5AECC1B1A1508E4B812572AB769B Validity Not Before: Jun 2 00:58:24 2025 GMT Not After : Jun 1 01:03:24 2026 GMT Subject: CN=65C301E6A543FE0DAA5DB3D4C95A5CB357F396C7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b8:79:06:fa:6a:83:04:e0:a0:20:6f:80:33: 02:e1:30:e4:f0:1d:0e:fd:82:ea:be:df:9c:fe:5d: 9f:0e:c2:6b:48:a1:95:89:5d:59:c3:c8:3f:04:f5: 2c:fe:9e:1d:83:5c:97:37:ae:9c:be:b0:84:e6:3b: 7c:33:93:fd:3b:c0:f7:f9:0c:aa:d5:4f:f6:14:b5: 06:89:e8:1b:56:89:be:39:04:34:c0:69:dd:61:b5: 23:3d:6b:6b:50:85:ea:44:24:3a:2b:98:c7:a8:93: 10:6a:58:09:86:38:61:b2:c7:52:80:fd:55:f6:fa: 22:99:90:92:30:a3:79:73:f1:58:b4:aa:c3:e1:28: 5f:44:8d:bb:4a:e2:0f:52:f3:04:aa:83:c5:5d:a7: ae:c2:8a:f2:a7:c8:fb:67:e6:74:89:3f:2c:54:18: 2e:15:74:8e:bc:66:b8:14:4f:5b:c6:db:4a:a3:13: 01:07:63:5f:58:12:ed:cd:ec:5e:03:2a:63:b4:90: 9d:16:3e:ff:06:8b:f4:5f:6b:48:91:2d:f8:14:ae: 61:68:b1:d0:88:f6:8c:19:8e:15:98:5a:d4:df:80: 69:84:9f:8b:70:4a:ed:18:63:e3:5b:ab:9b:dc:3e: e4:ea:3c:4c:90:68:fc:37:00:1d:9b:e6:6b:0f:6b: f0:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:C3:01:E6:A5:43:FE:0D:AA:5D:B3:D4:C9:5A:5C:B3:57:F3:96:C7 X509v3 Authority Key Identifier: keyid:DC:93:5B:44:A3:0F:5A:EC:C1:B1:A1:50:8E:4B:81:25:72:AB:76:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/323430323a613030303a343030303a3a2f33342d3334203d3e203234323131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:a000:4000::/34 Signature Algorithm: sha256WithRSAEncryption 75:bc:55:4a:a0:ba:11:7c:df:0c:c4:ef:25:38:a8:de:3e:38: 94:aa:02:b7:4b:8f:fa:92:10:80:da:0e:06:f5:ec:f5:22:d2: f9:f2:08:38:c6:ef:6e:1f:d6:c8:c7:ed:60:ac:9d:6a:c9:36: d8:df:ef:4c:d1:1a:f7:ab:ce:10:3f:f9:04:10:bd:52:77:83: 23:03:a5:53:cc:df:a7:58:00:1e:d4:70:20:82:f8:c2:07:90: e2:86:83:7e:3c:5d:27:9b:fc:99:a5:90:24:05:0d:a7:2a:66: 37:72:33:9a:77:da:ca:90:e7:1b:8c:ab:02:42:cd:b6:f1:59: fb:ed:71:33:14:ce:ef:6f:06:e1:be:10:43:ef:9c:8b:a7:fa: 0c:24:d9:bb:57:3e:98:96:ac:0d:8d:c0:85:37:48:9b:19:d5: a1:0d:02:3d:5f:d1:e3:d0:7c:23:20:c0:f3:ac:ec:8f:f2:e1: e7:0c:c8:3f:45:a4:9e:36:8e:02:c8:ee:89:f7:d8:06:25:a8: df:96:50:4b:bd:6e:27:6d:cd:09:8d:f8:a5:f2:94:78:9a:aa: 69:f5:2e:51:e2:53:57:3a:dc:ee:f1:2b:27:05:38:b3:46:f2: ed:36:fb:4a:b6:15:77:c5:99:10:d8:28:39:f8:b2:80:59:a8: 03:7b:6e:ba -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIULZ31zeJyZL6f/yAYGfnkBKgUDiIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREM5MzVCNDRBMzBGNUFFQ0MxQjFBMTUwOEU0QjgxMjU3 MkFCNzY5QjAeFw0yNTA2MDIwMDU4MjRaFw0yNjA2MDEwMTAzMjRaMDMxMTAvBgNV BAMTKDY1QzMwMUU2QTU0M0ZFMERBQTVEQjNENEM5NUE1Q0IzNTdGMzk2QzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCuHkG+mqDBOCgIG+AMwLhMOTw HQ79guq+35z+XZ8OwmtIoZWJXVnDyD8E9Sz+nh2DXJc3rpy+sITmO3wzk/07wPf5 DKrVT/YUtQaJ6BtWib45BDTAad1htSM9a2tQhepEJDormMeokxBqWAmGOGGyx1KA /VX2+iKZkJIwo3lz8Vi0qsPhKF9EjbtK4g9S8wSqg8Vdp67CivKnyPtn5nSJPyxU GC4VdI68ZrgUT1vG20qjEwEHY19YEu3N7F4DKmO0kJ0WPv8Gi/Rfa0iRLfgUrmFo sdCI9owZjhWYWtTfgGmEn4twSu0YY+Nbq5vcPuTqPEyQaPw3AB2b5msPa/BzAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUZcMB5qVD/g2qXbPUyVpcs1fzlscwHwYDVR0j BBgwFoAU3JNbRKMPWuzBsaFQjkuBJXKrdpswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OWYwMTNmOS1iNGY3LTQ1OGMtYWFjNS0wODA0MWIzZjY1ZTYvMC9EQzkzNUI0NEEz MEY1QUVDQzFCMUExNTA4RTRCODEyNTcyQUI3NjlCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREM5MzVCNDRBMzBGNUFFQ0MxQjFBMTUwOEU0QjgxMjU3MkFC NzY5Qi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU5ZjAxM2Y5LWI0ZjctNDU4Yy1h YWM1LTA4MDQxYjNmNjVlNi8wLzMyMzQzMDMyM2E2MTMwMzAzMDNhMzQzMDMwMzAz YTNhMmYzMzM0MmQzMzM0MjAzZDNlMjAzMjM0MzIzMTMxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYGJAKg AEAwDQYJKoZIhvcNAQELBQADggEBAHW8VUqguhF83wzE7yU4qN4+OJSqArdLj/qS EIDaDgb17PUi0vnyCDjG724f1sjH7WCsnWrJNtjf70zRGverzhA/+QQQvVJ3gyMD pVPM36dYAB7UcCCC+MIHkOKGg348XSeb/JmlkCQFDacqZjdyM5p32sqQ5xuMqwJC zbbxWfvtcTMUzu9vBuG+EEPvnIun+gwk2btXPpiWrA2NwIU3SJsZ1aENAj1f0ePQ fCMgwPOs7I/y4ecMyD9FpJ42jgLI7on32AYlqN+WUEu9bidtzQmN+KXylHiaqmn1 LlHiU1c63O7xKycFOLNG8u02+0q2FXfFmRDYKDn4soBZqAN7bro= -----END CERTIFICATE-----Generated at Thu Jun 5 18:21:41 2025 by rpki-client