$ rpki-client -vvf repo-rpki.idnic.net/repo/6e5fdf6c-0d01-492b-8004-a48ee5a12474/0/323430313a353532303a3a2f33322d3332203d3e20313532303332.roa File: 323430313a353532303a3a2f33322d3332203d3e20313532303332.roa (raw, json) Hash identifier: 17S1NzRw5+8IP/n/zFRvAJ9ydBwiGj1bRmgVr44VYpQ= Subject key identifier: BC:0D:84:02:C3:31:57:D0:E0:B0:5F:28:BC:11:6A:D5:71:4A:4A:32 Certificate issuer: /CN=CEC26429DF308615870C1F47E8CDE4F9B4A37CE8 Certificate serial: 19C16C5DB95FC175D120F62F1151CF933FDE9CAB Authority key identifier: CE:C2:64:29:DF:30:86:15:87:0C:1F:47:E8:CD:E4:F9:B4:A3:7C:E8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEC26429DF308615870C1F47E8CDE4F9B4A37CE8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6e5fdf6c-0d01-492b-8004-a48ee5a12474/0/323430313a353532303a3a2f33322d3332203d3e20313532303332.roa Signing time: Tue 02 Sep 2025 01:00:53 +0000 ROA not before: Tue 02 Sep 2025 00:55:53 +0000 ROA not after: Tue 01 Sep 2026 01:00:53 +0000 asID: 152032 IP address blocks: 2401:5520::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6e5fdf6c-0d01-492b-8004-a48ee5a12474/0/CEC26429DF308615870C1F47E8CDE4F9B4A37CE8.crl rsync://repo-rpki.idnic.net/repo/6e5fdf6c-0d01-492b-8004-a48ee5a12474/0/CEC26429DF308615870C1F47E8CDE4F9B4A37CE8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEC26429DF308615870C1F47E8CDE4F9B4A37CE8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 19:59:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:c1:6c:5d:b9:5f:c1:75:d1:20:f6:2f:11:51:cf:93:3f:de:9c:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CEC26429DF308615870C1F47E8CDE4F9B4A37CE8 Validity Not Before: Sep 2 00:55:53 2025 GMT Not After : Sep 1 01:00:53 2026 GMT Subject: CN=BC0D8402C33157D0E0B05F28BC116AD5714A4A32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:c5:43:99:cc:fb:95:3c:96:5d:c7:0e:5a:6c: b5:cb:c4:52:22:d6:0f:b1:50:2e:12:9e:a2:a1:26: 8c:ae:c9:a0:55:71:b6:97:fa:67:19:8b:38:fb:67: 0f:94:35:a5:3c:7e:b7:1e:2e:b3:b4:c3:d5:be:65: a5:5c:0e:f4:6e:ff:89:d9:e6:a2:9e:fe:95:28:56: ab:d0:cb:a0:c0:10:fe:b2:50:28:85:50:71:1b:44: e8:83:07:0b:11:07:d0:54:b6:57:2b:05:27:31:a6: 2e:e0:7f:b3:11:46:92:54:60:92:15:39:44:b7:a7: 9e:8c:e5:85:09:d2:ca:29:dd:be:10:1d:91:0b:e0: bf:21:4e:0a:e7:c8:9e:b3:d9:f5:8c:d7:38:6c:51: 20:e4:cc:f3:ae:8c:99:b3:43:ec:37:de:bd:4b:f4: 86:80:60:8a:bb:4d:ec:72:57:b8:a8:f1:f7:8e:47: d6:fc:96:cb:ab:0e:71:da:26:d1:c7:18:08:46:63: af:86:57:cf:a3:0b:87:55:a4:9a:21:ae:de:b2:22: d7:16:fc:f2:30:ee:18:97:e7:58:7c:a7:5e:00:06: b3:fd:a7:1e:78:51:90:3d:c1:b5:af:84:fa:ff:00: 6a:15:6f:a7:a2:d4:b3:e5:3e:42:cc:6b:89:5a:6a: 23:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:0D:84:02:C3:31:57:D0:E0:B0:5F:28:BC:11:6A:D5:71:4A:4A:32 X509v3 Authority Key Identifier: keyid:CE:C2:64:29:DF:30:86:15:87:0C:1F:47:E8:CD:E4:F9:B4:A3:7C:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6e5fdf6c-0d01-492b-8004-a48ee5a12474/0/CEC26429DF308615870C1F47E8CDE4F9B4A37CE8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEC26429DF308615870C1F47E8CDE4F9B4A37CE8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6e5fdf6c-0d01-492b-8004-a48ee5a12474/0/323430313a353532303a3a2f33322d3332203d3e20313532303332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:5520::/32 Signature Algorithm: sha256WithRSAEncryption 43:dc:60:f5:81:02:b4:28:b1:1c:23:6f:fa:85:17:12:e2:48: 25:e8:16:52:ce:77:55:d1:9a:c1:ef:e5:3d:78:ca:54:a1:28: 11:5b:b5:93:37:af:b9:3e:68:5f:d4:98:ce:96:0c:0d:33:ad: 9d:ba:d1:dd:cf:77:cb:ae:22:7f:87:d6:24:ce:63:b1:c2:0b: 70:1e:15:8d:c8:5a:87:a3:1a:94:36:5d:c7:dc:cc:a6:49:6c: 0d:b7:d0:5f:e3:57:43:32:46:a4:aa:6c:02:b1:27:07:fa:4c: 65:46:61:93:4e:5b:a5:28:cd:d2:f2:84:3a:9b:9f:09:e8:fd: 8c:51:df:66:85:6e:00:af:18:ea:8a:65:c9:76:c0:c2:3b:15: 08:30:a9:6e:7f:b7:b0:15:50:bc:af:5c:76:3e:cd:85:9f:d1: 67:d7:72:e1:a4:61:76:5b:93:17:85:35:4e:01:c7:83:83:3f: 8d:7c:68:aa:e8:40:a1:24:cd:f6:ad:07:ab:dd:59:1c:ed:eb: 17:e5:37:28:f5:b8:f7:67:0f:91:6a:33:9d:04:96:a8:b8:af: b9:8e:d6:e2:b1:61:94:4d:f3:fc:23:91:a3:35:c3:36:15:f6: 8d:2e:9d:c0:fb:13:1a:d8:22:da:99:fe:c0:cd:e9:3c:5b:f7: 80:d5:5f:e1 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUGcFsXblfwXXRIPYvEVHPkz/enKswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0VDMjY0MjlERjMwODYxNTg3MEMxRjQ3RThDREU0RjlC NEEzN0NFODAeFw0yNTA5MDIwMDU1NTNaFw0yNjA5MDEwMTAwNTNaMDMxMTAvBgNV BAMTKEJDMEQ4NDAyQzMzMTU3RDBFMEIwNUYyOEJDMTE2QUQ1NzE0QTRBMzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbxUOZzPuVPJZdxw5abLXLxFIi 1g+xUC4SnqKhJoyuyaBVcbaX+mcZizj7Zw+UNaU8frceLrO0w9W+ZaVcDvRu/4nZ 5qKe/pUoVqvQy6DAEP6yUCiFUHEbROiDBwsRB9BUtlcrBScxpi7gf7MRRpJUYJIV OUS3p56M5YUJ0sop3b4QHZEL4L8hTgrnyJ6z2fWM1zhsUSDkzPOujJmzQ+w33r1L 9IaAYIq7TexyV7io8feOR9b8lsurDnHaJtHHGAhGY6+GV8+jC4dVpJohrt6yItcW /PIw7hiX51h8p14ABrP9px54UZA9wbWvhPr/AGoVb6ei1LPlPkLMa4laaiNbAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUvA2EAsMxV9DgsF8ovBFq1XFKSjIwHwYDVR0j BBgwFoAUzsJkKd8whhWHDB9H6M3k+bSjfOgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZTVmZGY2Yy0wZDAxLTQ5MmItODAwNC1hNDhlZTVhMTI0NzQvMC9DRUMyNjQyOURG MzA4NjE1ODcwQzFGNDdFOENERTRGOUI0QTM3Q0U4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0VDMjY0MjlERjMwODYxNTg3MEMxRjQ3RThDREU0RjlCNEEz N0NFOC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZlNWZkZjZjLTBkMDEtNDkyYi04 MDA0LWE0OGVlNWExMjQ3NC8wLzMyMzQzMDMxM2EzNTM1MzIzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzUzMjMwMzMzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQBVSAwDQYJKoZI hvcNAQELBQADggEBAEPcYPWBArQosRwjb/qFFxLiSCXoFlLOd1XRmsHv5T14ylSh KBFbtZM3r7k+aF/UmM6WDA0zrZ260d3Pd8uuIn+H1iTOY7HCC3AeFY3IWoejGpQ2 XcfczKZJbA230F/jV0MyRqSqbAKxJwf6TGVGYZNOW6UozdLyhDqbnwno/YxR32aF bgCvGOqKZcl2wMI7FQgwqW5/t7AVULyvXHY+zYWf0WfXcuGkYXZbkxeFNU4Bx4OD P418aKroQKEkzfatB6vdWRzt6xflNyj1uPdnD5FqM50Elqi4r7mO1uKxYZRN8/wj kaM1wzYV9o0uncD7ExrYItqZ/sDN6Txb94DVX+E= -----END CERTIFICATE-----Generated at Mon Sep 8 12:32:10 2025 by rpki-client