$ rpki-client -vvf repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/323430323a613030303a383030303a3a2f33342d3334203d3e203234323131.roa File: 323430323a613030303a383030303a3a2f33342d3334203d3e203234323131.roa (raw, json) Hash identifier: rYgMn0qf5Si8F9ykekewfrOOH5qLGsXSWGvHlZ0POHo= Subject key identifier: 79:B1:06:CE:8F:8F:02:73:F9:82:AF:B5:34:4B:5C:1E:F2:C7:05:B6 Certificate issuer: /CN=DC935B44A30F5AECC1B1A1508E4B812572AB769B Certificate serial: 5E969E77E10496DA3EB092C63CCFFED6083F6749 Authority key identifier: DC:93:5B:44:A3:0F:5A:EC:C1:B1:A1:50:8E:4B:81:25:72:AB:76:9B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/323430323a613030303a383030303a3a2f33342d3334203d3e203234323131.roa Signing time: Mon 02 Jun 2025 01:03:24 +0000 ROA not before: Mon 02 Jun 2025 00:58:24 +0000 ROA not after: Mon 01 Jun 2026 01:03:24 +0000 asID: 24211 IP address blocks: 2402:a000:8000::/34 maxlen: 34 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.crl rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 17:49:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:96:9e:77:e1:04:96:da:3e:b0:92:c6:3c:cf:fe:d6:08:3f:67:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DC935B44A30F5AECC1B1A1508E4B812572AB769B Validity Not Before: Jun 2 00:58:24 2025 GMT Not After : Jun 1 01:03:24 2026 GMT Subject: CN=79B106CE8F8F0273F982AFB5344B5C1EF2C705B6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:7e:b2:ee:a7:8b:92:78:e3:38:d0:80:ab:e0: 9e:89:f6:10:3e:53:63:c2:0e:e2:9b:de:fc:61:5c: 2d:9c:c8:ce:f3:75:4a:9d:e3:67:de:95:66:90:ba: 70:04:1f:65:34:15:c7:15:2f:f8:5a:1e:83:b1:51: d5:b5:eb:ab:da:00:b1:6f:19:e4:a8:e0:5b:f8:d7: 71:f1:8a:fe:fb:dc:41:1f:c9:c9:87:7f:89:79:84: 0f:bf:1c:03:73:c9:a7:12:82:e1:3e:d2:b0:a6:f1: 2d:df:3e:13:9a:32:1a:92:9a:8c:6b:fa:f2:fb:b3: e2:96:4d:83:bb:7c:ce:c7:cb:5e:c3:8c:86:c0:f4: e5:2d:f3:9f:1f:60:02:e7:0b:c8:63:17:7e:76:8c: bb:c4:bd:38:c3:d9:aa:c8:1b:09:e7:c0:6c:73:a3: c4:d5:c9:eb:50:24:03:b5:ec:87:4d:7f:10:20:0d: 9e:df:c0:71:fb:1e:bd:6d:6e:ee:ac:59:f0:56:fb: b3:ee:f2:2e:2d:a8:00:e8:91:cf:86:a2:2b:a5:b3: 19:fc:ea:b6:7b:e8:5b:82:32:1f:da:4b:a7:d5:43: 92:71:43:47:9b:35:4b:2f:bc:27:f9:de:86:31:0e: ac:03:87:d3:6d:a8:89:b5:1c:28:8d:f3:04:ee:f0: 5d:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:B1:06:CE:8F:8F:02:73:F9:82:AF:B5:34:4B:5C:1E:F2:C7:05:B6 X509v3 Authority Key Identifier: keyid:DC:93:5B:44:A3:0F:5A:EC:C1:B1:A1:50:8E:4B:81:25:72:AB:76:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/323430323a613030303a383030303a3a2f33342d3334203d3e203234323131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:a000:8000::/34 Signature Algorithm: sha256WithRSAEncryption b8:79:77:3d:06:ac:b8:f3:b2:a3:db:e4:19:3b:f8:cc:c6:70: ce:9b:30:a9:aa:12:19:34:bc:bd:61:d4:b3:70:85:8c:0a:2d: 71:c5:94:94:1f:ca:7b:5e:0e:b5:2d:c8:8d:41:85:7d:a5:50: ca:65:8d:b6:7f:99:ce:c9:9b:01:e3:55:39:fe:af:aa:85:26: bc:c9:93:61:4c:0e:d4:21:89:90:d8:74:1f:98:b2:f7:5f:db: a3:bf:3f:66:7a:40:e5:f7:c0:a2:6a:f2:30:20:a9:58:62:5c: 93:cb:59:24:2b:70:b3:b0:90:af:75:d2:8e:f3:48:df:59:e4: 3c:45:0e:42:02:7a:23:cd:f2:3a:2d:6c:96:20:ba:3f:82:9b: 9f:83:ab:1d:a1:96:1a:74:6b:2b:80:65:55:60:15:e9:9c:da: 06:32:8f:50:86:94:18:e7:2b:d8:4a:17:9b:90:13:d2:50:0b: 0b:85:23:98:5f:60:f9:f4:45:ed:05:05:ec:09:70:f7:f5:78: ca:50:5a:1a:cc:bc:41:60:b1:94:d6:88:90:36:c9:9c:d5:1d: 1f:fb:c7:7b:1f:f1:16:fe:42:b6:60:9b:c2:85:34:ea:f0:34: e9:10:07:a1:c9:a8:ca:07:3c:fc:32:ef:03:91:bd:5b:e4:b2: b5:f9:94:3d -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUXpaed+EElto+sJLGPM/+1gg/Z0kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREM5MzVCNDRBMzBGNUFFQ0MxQjFBMTUwOEU0QjgxMjU3 MkFCNzY5QjAeFw0yNTA2MDIwMDU4MjRaFw0yNjA2MDEwMTAzMjRaMDMxMTAvBgNV BAMTKDc5QjEwNkNFOEY4RjAyNzNGOTgyQUZCNTM0NEI1QzFFRjJDNzA1QjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRfrLup4uSeOM40ICr4J6J9hA+ U2PCDuKb3vxhXC2cyM7zdUqd42felWaQunAEH2U0FccVL/haHoOxUdW166vaALFv GeSo4Fv413Hxiv773EEfycmHf4l5hA+/HANzyacSguE+0rCm8S3fPhOaMhqSmoxr +vL7s+KWTYO7fM7Hy17DjIbA9OUt858fYALnC8hjF352jLvEvTjD2arIGwnnwGxz o8TVyetQJAO17IdNfxAgDZ7fwHH7Hr1tbu6sWfBW+7Pu8i4tqADokc+Goiulsxn8 6rZ76FuCMh/aS6fVQ5JxQ0ebNUsvvCf53oYxDqwDh9NtqIm1HCiN8wTu8F3JAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUebEGzo+PAnP5gq+1NEtcHvLHBbYwHwYDVR0j BBgwFoAU3JNbRKMPWuzBsaFQjkuBJXKrdpswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OWYwMTNmOS1iNGY3LTQ1OGMtYWFjNS0wODA0MWIzZjY1ZTYvMC9EQzkzNUI0NEEz MEY1QUVDQzFCMUExNTA4RTRCODEyNTcyQUI3NjlCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREM5MzVCNDRBMzBGNUFFQ0MxQjFBMTUwOEU0QjgxMjU3MkFC NzY5Qi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU5ZjAxM2Y5LWI0ZjctNDU4Yy1h YWM1LTA4MDQxYjNmNjVlNi8wLzMyMzQzMDMyM2E2MTMwMzAzMDNhMzgzMDMwMzAz YTNhMmYzMzM0MmQzMzM0MjAzZDNlMjAzMjM0MzIzMTMxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYGJAKg AIAwDQYJKoZIhvcNAQELBQADggEBALh5dz0GrLjzsqPb5Bk7+MzGcM6bMKmqEhk0 vL1h1LNwhYwKLXHFlJQfynteDrUtyI1BhX2lUMpljbZ/mc7JmwHjVTn+r6qFJrzJ k2FMDtQhiZDYdB+Ysvdf26O/P2Z6QOX3wKJq8jAgqVhiXJPLWSQrcLOwkK910o7z SN9Z5DxFDkICeiPN8jotbJYguj+Cm5+Dqx2hlhp0ayuAZVVgFemc2gYyj1CGlBjn K9hKF5uQE9JQCwuFI5hfYPn0Re0FBewJcPf1eMpQWhrMvEFgsZTWiJA2yZzVHR/7 x3sf8Rb+QrZgm8KFNOrwNOkQB6HJqMoHPPwy7wORvVvksrX5lD0= -----END CERTIFICATE-----Generated at Tue Oct 28 06:32:41 2025 by rpki-client