$ rpki-client -vvf repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/323430323a3630303a3a2f33322d3438203d3e203338353135.roa File: 323430323a3630303a3a2f33322d3438203d3e203338353135.roa (raw, json) Hash identifier: Pzi7GR8j0R6wiVbVAxvFIEhEVNaHRMjCobhRay+uqBw= Subject key identifier: 35:4E:30:71:72:99:4E:C4:43:1D:67:26:EC:BB:D7:CB:C2:27:E4:D8 Certificate issuer: /CN=935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3 Certificate serial: 0C8026CE1C4CC0256E34AB137AF915FFE1C3971E Authority key identifier: 93:5D:B2:D4:48:8F:AE:2C:11:E1:BF:3B:DF:20:D8:2A:2D:DF:D8:F3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/323430323a3630303a3a2f33322d3438203d3e203338353135.roa Signing time: Mon 02 Jun 2025 01:03:17 +0000 ROA not before: Mon 02 Jun 2025 00:58:17 +0000 ROA not after: Mon 01 Jun 2026 01:03:17 +0000 asID: 38515 IP address blocks: 2402:600::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.crl rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 22:03:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:80:26:ce:1c:4c:c0:25:6e:34:ab:13:7a:f9:15:ff:e1:c3:97:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3 Validity Not Before: Jun 2 00:58:17 2025 GMT Not After : Jun 1 01:03:17 2026 GMT Subject: CN=354E307172994EC4431D6726ECBBD7CBC227E4D8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:a8:9c:1d:0e:c0:4c:f2:8c:ea:5c:a1:63:56: 1d:f0:bc:5a:7b:c2:0b:6f:9d:6a:24:13:fd:01:87: 44:8e:2d:48:5c:aa:3f:4f:1d:79:5e:03:ca:d8:09: 5f:ef:5c:9d:26:92:ea:09:42:d4:c4:36:4f:c4:06: 41:3d:d4:d9:17:2d:46:83:30:2d:26:51:65:ad:97: f6:f6:fd:76:e2:46:f7:42:34:e1:a2:07:d6:c7:12: 7c:f4:32:63:f8:91:4b:f8:0b:7c:d3:4a:e6:39:5b: 6f:cc:f9:7d:af:0e:f0:0a:75:ec:ef:3d:19:40:99: c4:8b:04:bd:01:b7:04:a0:d4:da:ad:57:7f:1a:c2: b4:c2:57:7a:bc:27:7a:93:93:5c:32:16:4f:4a:1b: 13:25:66:67:e6:a1:a8:0a:1f:40:2d:a4:2d:25:c5: bf:01:27:60:d0:74:b7:cc:21:24:31:5f:8f:d6:f7: 5e:22:69:cc:40:98:0f:5d:55:77:44:90:3b:aa:c5: 7a:30:7b:e1:f9:6e:c9:ae:98:c2:0b:b2:65:a0:c6: af:d4:2b:b7:5e:47:b7:18:a2:28:81:c6:28:2c:59: fa:4b:56:e0:04:62:43:9e:29:df:e0:0b:ea:c8:cd: 2c:28:79:e3:22:53:a2:82:7b:48:53:b8:41:a0:e3: 3e:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:4E:30:71:72:99:4E:C4:43:1D:67:26:EC:BB:D7:CB:C2:27:E4:D8 X509v3 Authority Key Identifier: keyid:93:5D:B2:D4:48:8F:AE:2C:11:E1:BF:3B:DF:20:D8:2A:2D:DF:D8:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/935DB2D4488FAE2C11E1BF3BDF20D82A2DDFD8F3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6c4c64a9-3537-4bc7-8613-8e981629e4ca/0/323430323a3630303a3a2f33322d3438203d3e203338353135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:600::/32 Signature Algorithm: sha256WithRSAEncryption 22:f9:be:86:b6:36:c4:6d:ff:60:49:3d:a9:0a:9e:ec:ff:5a: d8:fd:73:77:01:f6:6d:47:81:4e:df:76:2a:f5:d8:04:da:87: 7b:90:40:0b:3a:6d:2c:88:52:74:76:3f:ad:ef:f3:c6:01:c9: 69:23:e2:53:fd:34:9c:90:ca:1f:0d:b2:d5:15:ef:90:c9:90: 2b:3f:0d:9e:64:ec:21:a3:4f:51:02:14:12:c5:90:50:49:bd: f9:25:21:7d:d6:c8:44:f2:08:99:d9:1c:ea:4d:20:09:f6:e7: 63:29:0b:42:db:61:28:bb:f0:a1:c9:45:11:9a:ef:a9:3c:00: 80:64:24:c8:0d:ca:33:90:e3:ad:06:73:f0:9c:15:c6:02:3e: f3:40:d9:fe:b3:74:f5:d2:6e:ab:2d:59:79:af:3e:a9:22:3a: 2f:28:39:21:01:2f:0e:ed:58:b1:03:10:52:97:83:ca:3b:c8: 15:0d:3f:8f:6c:c0:e2:7d:f2:14:52:1d:c6:83:a1:f1:68:aa: e1:87:b6:a4:37:da:7a:12:f2:9b:d8:8f:d3:f8:f1:18:8f:c1: 29:c9:63:26:12:29:aa:57:d4:dc:4a:a4:3f:5f:b4:01:2a:8d: cd:bc:b3:e6:d7:34:11:a5:a7:cd:1f:fc:6c:ed:fc:92:74:91: 22:b3:c6:b8 -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUDIAmzhxMwCVuNKsTevkV/+HDlx4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTM1REIyRDQ0ODhGQUUyQzExRTFCRjNCREYyMEQ4MkEy RERGRDhGMzAeFw0yNTA2MDIwMDU4MTdaFw0yNjA2MDEwMTAzMTdaMDMxMTAvBgNV BAMTKDM1NEUzMDcxNzI5OTRFQzQ0MzFENjcyNkVDQkJEN0NCQzIyN0U0RDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTqJwdDsBM8ozqXKFjVh3wvFp7 wgtvnWokE/0Bh0SOLUhcqj9PHXleA8rYCV/vXJ0mkuoJQtTENk/EBkE91NkXLUaD MC0mUWWtl/b2/XbiRvdCNOGiB9bHEnz0MmP4kUv4C3zTSuY5W2/M+X2vDvAKdezv PRlAmcSLBL0BtwSg1NqtV38awrTCV3q8J3qTk1wyFk9KGxMlZmfmoagKH0AtpC0l xb8BJ2DQdLfMISQxX4/W914iacxAmA9dVXdEkDuqxXowe+H5bsmumMILsmWgxq/U K7deR7cYoiiBxigsWfpLVuAEYkOeKd/gC+rIzSwoeeMiU6KCe0hTuEGg4z5JAgMB AAGjggIuMIICKjAdBgNVHQ4EFgQUNU4wcXKZTsRDHWcm7LvXy8In5NgwHwYDVR0j BBgwFoAUk12y1EiPriwR4b873yDYKi3f2PMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 YzRjNjRhOS0zNTM3LTRiYzctODYxMy04ZTk4MTYyOWU0Y2EvMC85MzVEQjJENDQ4 OEZBRTJDMTFFMUJGM0JERjIwRDgyQTJEREZEOEYzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTM1REIyRDQ0ODhGQUUyQzExRTFCRjNCREYyMEQ4MkEyRERG RDhGMy5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNmM0YzY0YTktMzUzNy00YmM3LTg2 MTMtOGU5ODE2MjllNGNhLzAvMzIzNDMwMzIzYTM2MzAzMDNhM2EyZjMzMzIyZDM0 MzgyMDNkM2UyMDMzMzgzNTMxMzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAgYAMA0GCSqGSIb3DQEB CwUAA4IBAQAi+b6GtjbEbf9gST2pCp7s/1rY/XN3AfZtR4FO33Yq9dgE2od7kEAL Om0siFJ0dj+t7/PGAclpI+JT/TSckMofDbLVFe+QyZArPw2eZOwho09RAhQSxZBQ Sb35JSF91shE8giZ2RzqTSAJ9udjKQtC22Eou/ChyUURmu+pPACAZCTIDcozkOOt BnPwnBXGAj7zQNn+s3T10m6rLVl5rz6pIjovKDkhAS8O7VixAxBSl4PKO8gVDT+P bMDiffIUUh3Gg6HxaKrhh7akN9p6EvKb2I/T+PEYj8EpyWMmEimqV9TcSqQ/X7QB Ko3NvLPm1zQRpafNH/xs7fySdJEis8a4 -----END CERTIFICATE-----Generated at Sat Jun 7 14:52:18 2025 by rpki-client