$ rpki-client -vvf repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/323430323a613030303a633030303a3a2f33342d3334203d3e203234323131.roa File: 323430323a613030303a633030303a3a2f33342d3334203d3e203234323131.roa (raw, json) Hash identifier: wjmU/K5zRzNrMxAbA5/SGYFAg8fk9jDDkhO1NhPUnYI= Subject key identifier: A1:A6:6C:B9:B4:1B:D7:0C:87:38:31:6D:0D:6B:66:3C:D6:A2:8E:C9 Certificate issuer: /CN=DC935B44A30F5AECC1B1A1508E4B812572AB769B Certificate serial: 3B384D5B8766554D0FF0FE5DF6A2E61A0B20F9D9 Authority key identifier: DC:93:5B:44:A3:0F:5A:EC:C1:B1:A1:50:8E:4B:81:25:72:AB:76:9B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/323430323a613030303a633030303a3a2f33342d3334203d3e203234323131.roa Signing time: Mon 02 Jun 2025 01:03:24 +0000 ROA not before: Mon 02 Jun 2025 00:58:24 +0000 ROA not after: Mon 01 Jun 2026 01:03:24 +0000 asID: 24211 IP address blocks: 2402:a000:c000::/34 maxlen: 34 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.crl rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 11:49:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:38:4d:5b:87:66:55:4d:0f:f0:fe:5d:f6:a2:e6:1a:0b:20:f9:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DC935B44A30F5AECC1B1A1508E4B812572AB769B Validity Not Before: Jun 2 00:58:24 2025 GMT Not After : Jun 1 01:03:24 2026 GMT Subject: CN=A1A66CB9B41BD70C8738316D0D6B663CD6A28EC9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:a8:d4:ab:6c:b9:ce:42:3e:29:a5:3c:5e:ec: 9e:8e:d4:05:9c:6a:50:67:8a:f3:29:c6:77:14:d9: 63:79:5d:41:8d:8d:1d:e5:4e:98:be:81:2a:a0:93: 3c:3c:a8:47:9b:85:c4:bc:8b:ca:64:28:ca:6d:72: b5:b1:00:2c:04:19:ef:ca:f9:e2:0c:38:d9:c5:96: 6c:8b:5b:2f:0f:cb:7a:61:22:2c:ef:a6:a9:48:45: 36:63:f1:da:5a:45:a3:bc:2b:42:ad:92:c0:c5:83: 44:c2:c0:79:9b:0f:e1:12:01:e5:70:cf:5b:88:bb: 5e:a3:2e:20:8e:90:b6:a6:6e:00:a3:00:5b:f0:0c: 01:98:85:53:bb:90:83:09:57:89:d4:cd:da:6d:34: a3:ad:a0:61:dc:38:6e:eb:1a:5b:ba:c2:71:78:91: 6d:db:b5:d3:f6:d7:60:3c:d3:9d:dc:ea:16:0e:08: 3d:2a:3c:56:e7:60:8c:83:64:1e:2b:fd:a9:a0:92: 8c:91:44:af:a2:72:1b:d3:fd:6c:33:7e:9f:4f:2d: 29:dd:4f:74:93:ae:bf:60:d1:33:30:1a:67:1f:2c: a4:7c:7c:50:b7:59:c4:d4:e1:c5:0b:87:f5:45:8c: 6b:f3:75:63:52:4b:7f:aa:f5:c6:cf:b9:71:72:6a: 97:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:A6:6C:B9:B4:1B:D7:0C:87:38:31:6D:0D:6B:66:3C:D6:A2:8E:C9 X509v3 Authority Key Identifier: keyid:DC:93:5B:44:A3:0F:5A:EC:C1:B1:A1:50:8E:4B:81:25:72:AB:76:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/323430323a613030303a633030303a3a2f33342d3334203d3e203234323131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:a000:c000::/34 Signature Algorithm: sha256WithRSAEncryption 1b:02:00:ed:be:6e:06:5e:06:07:11:c6:25:99:b7:c9:e6:6c: 9d:d4:bb:b6:8d:3c:e7:2e:a5:ee:7d:6a:59:51:12:50:43:57: 70:29:7c:3f:09:ea:cc:bc:83:e6:10:27:68:69:a9:4c:59:49: 78:c5:fd:46:e2:16:7d:6e:f4:63:57:0a:27:a9:eb:52:81:3d: 2f:e5:1e:8e:6b:0c:53:a5:98:95:66:15:e0:61:40:e4:87:ba: cf:22:50:a9:f9:3c:cb:f8:bc:b0:97:16:25:ee:3b:0a:40:47: 7f:02:f1:2d:5a:9c:1e:72:6c:8e:6b:bc:77:1c:e0:64:7a:69: 55:e3:0f:06:a6:c7:34:2f:73:55:06:5e:cf:4d:54:8a:12:8f: 6e:be:17:6a:df:c3:2f:8d:9d:6d:55:36:62:9f:8c:10:a8:1f: 47:43:25:e2:9a:e0:c0:0b:d4:e8:3c:1b:0c:c3:eb:8e:0e:d0: a3:1c:a8:cd:1d:2a:2d:31:af:8b:94:37:62:0b:15:9f:7e:d8: 22:be:49:a2:1c:dd:fd:44:b7:c8:b3:1f:cc:6f:3d:99:3e:e6: 65:a0:31:21:b7:83:86:3f:ab:c0:4d:63:0f:d1:37:18:be:00: ea:04:e6:fb:3b:21:aa:54:e7:44:c1:49:40:ff:59:b3:77:de: eb:1e:96:d0 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUOzhNW4dmVU0P8P5d9qLmGgsg+dkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREM5MzVCNDRBMzBGNUFFQ0MxQjFBMTUwOEU0QjgxMjU3 MkFCNzY5QjAeFw0yNTA2MDIwMDU4MjRaFw0yNjA2MDEwMTAzMjRaMDMxMTAvBgNV BAMTKEExQTY2Q0I5QjQxQkQ3MEM4NzM4MzE2RDBENkI2NjNDRDZBMjhFQzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHqNSrbLnOQj4ppTxe7J6O1AWc alBnivMpxncU2WN5XUGNjR3lTpi+gSqgkzw8qEebhcS8i8pkKMptcrWxACwEGe/K +eIMONnFlmyLWy8Py3phIizvpqlIRTZj8dpaRaO8K0KtksDFg0TCwHmbD+ESAeVw z1uIu16jLiCOkLambgCjAFvwDAGYhVO7kIMJV4nUzdptNKOtoGHcOG7rGlu6wnF4 kW3btdP212A8053c6hYOCD0qPFbnYIyDZB4r/amgkoyRRK+ichvT/Wwzfp9PLSnd T3STrr9g0TMwGmcfLKR8fFC3WcTU4cULh/VFjGvzdWNSS3+q9cbPuXFyapctAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUoaZsubQb1wyHODFtDWtmPNaijskwHwYDVR0j BBgwFoAU3JNbRKMPWuzBsaFQjkuBJXKrdpswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OWYwMTNmOS1iNGY3LTQ1OGMtYWFjNS0wODA0MWIzZjY1ZTYvMC9EQzkzNUI0NEEz MEY1QUVDQzFCMUExNTA4RTRCODEyNTcyQUI3NjlCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREM5MzVCNDRBMzBGNUFFQ0MxQjFBMTUwOEU0QjgxMjU3MkFC NzY5Qi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU5ZjAxM2Y5LWI0ZjctNDU4Yy1h YWM1LTA4MDQxYjNmNjVlNi8wLzMyMzQzMDMyM2E2MTMwMzAzMDNhNjMzMDMwMzAz YTNhMmYzMzM0MmQzMzM0MjAzZDNlMjAzMjM0MzIzMTMxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYGJAKg AMAwDQYJKoZIhvcNAQELBQADggEBABsCAO2+bgZeBgcRxiWZt8nmbJ3Uu7aNPOcu pe59allRElBDV3ApfD8J6sy8g+YQJ2hpqUxZSXjF/UbiFn1u9GNXCiep61KBPS/l Ho5rDFOlmJVmFeBhQOSHus8iUKn5PMv4vLCXFiXuOwpAR38C8S1anB5ybI5rvHcc 4GR6aVXjDwamxzQvc1UGXs9NVIoSj26+F2rfwy+NnW1VNmKfjBCoH0dDJeKa4MAL 1Og8GwzD644O0KMcqM0dKi0xr4uUN2ILFZ9+2CK+SaIc3f1Et8izH8xvPZk+5mWg MSG3g4Y/q8BNYw/RNxi+AOoE5vs7IapU50TBSUD/WbN33useltA= -----END CERTIFICATE-----Generated at Thu Jun 5 18:21:00 2025 by rpki-client