$ rpki-client -vvf repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/323430333a326530303a3a2f33322d3438203d3e203234353332.roa File: 323430333a326530303a3a2f33322d3438203d3e203234353332.roa (raw, json) Hash identifier: 1GnFCQ0Tavqgsu3zMfhYc58ad3h7NpVZT5asqIEYmDA= Subject key identifier: 81:B3:87:3C:6A:0A:3D:6D:71:22:8E:5A:41:DC:13:96:10:4F:3E:5A Certificate issuer: /CN=428AA4240E741F27E3A21EFC29D45F0AECC7FE96 Certificate serial: 5BB6C4DA784B084CAF3512C21B86BC0A457353B3 Authority key identifier: 42:8A:A4:24:0E:74:1F:27:E3:A2:1E:FC:29:D4:5F:0A:EC:C7:FE:96 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.cer Subject info access: rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/323430333a326530303a3a2f33322d3438203d3e203234353332.roa Signing time: Mon 02 Jun 2025 02:04:44 +0000 ROA not before: Mon 02 Jun 2025 01:59:44 +0000 ROA not after: Mon 01 Jun 2026 02:04:44 +0000 asID: 24532 IP address blocks: 2403:2e00::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.crl rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 18:39:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:b6:c4:da:78:4b:08:4c:af:35:12:c2:1b:86:bc:0a:45:73:53:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=428AA4240E741F27E3A21EFC29D45F0AECC7FE96 Validity Not Before: Jun 2 01:59:44 2025 GMT Not After : Jun 1 02:04:44 2026 GMT Subject: CN=81B3873C6A0A3D6D71228E5A41DC1396104F3E5A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:c2:cd:bf:b2:d5:74:39:01:9d:57:3a:90:d0: c6:ba:a2:49:2b:aa:42:b3:fc:20:be:80:50:38:a8: 9c:23:df:19:02:ae:1d:7a:ca:60:d1:05:b7:3d:1a: 04:4f:b0:3a:e1:cb:48:9c:a9:0f:22:fc:75:c7:e3: 3d:c4:2f:a2:91:5a:f2:b7:6c:db:32:25:59:54:92: f2:df:b2:8a:15:e5:63:23:93:ef:04:9b:da:f7:72: 32:ed:74:3a:3c:0b:fa:f2:58:64:e8:36:6c:e8:5e: 0c:b8:69:0e:8c:53:f4:63:c6:3e:c2:a2:16:15:be: 7a:f8:3f:d8:56:cb:9c:68:4d:86:fd:54:6d:e9:95: e0:5c:0e:01:14:8a:f6:46:fa:12:74:a4:f6:70:7f: db:05:60:a7:85:3e:57:ca:88:ed:95:cd:6a:c2:54: 6a:2f:42:52:bd:9d:fc:94:cf:6a:2a:21:30:fe:79: 62:35:69:ca:86:81:22:e0:d5:7a:38:96:81:50:c0: f2:64:fa:8b:12:8d:b0:c7:d7:a0:8d:7a:b7:47:26: 5f:d3:a8:5a:fa:be:bd:14:83:42:b2:ee:9c:aa:17: 3e:2d:28:28:56:e4:eb:83:21:85:fa:3c:3a:f9:17: e0:04:57:a7:5c:3d:bd:eb:78:e7:fc:f5:cf:bf:5d: 81:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:B3:87:3C:6A:0A:3D:6D:71:22:8E:5A:41:DC:13:96:10:4F:3E:5A X509v3 Authority Key Identifier: keyid:42:8A:A4:24:0E:74:1F:27:E3:A2:1E:FC:29:D4:5F:0A:EC:C7:FE:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/323430333a326530303a3a2f33322d3438203d3e203234353332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2e00::/32 Signature Algorithm: sha256WithRSAEncryption 11:05:23:e1:4a:9f:8b:55:ab:3a:60:f6:a2:33:04:e4:4e:c5: 54:72:62:c2:d7:b1:4a:1c:ce:0f:34:ef:b8:fc:e5:6b:8c:d2: f2:4d:1a:ad:28:97:7f:8b:4e:3d:5d:6d:a2:9e:f3:47:99:6b: 20:11:8e:44:6a:f6:2a:c7:70:39:7b:32:f1:00:24:b0:27:16: 6d:93:9c:8f:ef:72:af:f8:b9:6b:25:9b:30:6f:af:05:c8:22: e5:5e:ce:a3:c8:f9:e6:6e:ac:69:5e:37:6c:e2:39:a8:d0:44: 38:22:34:ba:a9:35:0b:53:37:b5:bd:36:ca:05:ef:ba:b7:50: f6:c3:1a:0e:f3:49:52:f4:f0:ea:2a:6d:0c:f7:f6:08:d5:df: 11:87:d3:84:5f:c2:96:6b:5c:d4:04:a7:7d:e3:03:a8:7e:3a: ad:04:99:be:e7:7b:16:f2:61:c1:fb:81:91:01:5a:a3:eb:ad: dd:a4:06:f1:b5:bf:13:84:a0:31:74:6e:c1:92:33:dd:87:74: b3:44:18:c7:a9:d4:29:0a:6e:aa:b0:42:63:12:35:b4:21:ef: 68:13:6a:e2:e5:dd:a2:ef:3f:2b:04:8b:be:8a:4b:e7:77:fd: 4c:7a:7e:8f:4f:4e:3d:a6:e5:c2:3e:87:7c:85:91:e0:25:ed: 96:b6:da:86 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUW7bE2nhLCEyvNRLCG4a8CkVzU7MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDI4QUE0MjQwRTc0MUYyN0UzQTIxRUZDMjlENDVGMEFF Q0M3RkU5NjAeFw0yNTA2MDIwMTU5NDRaFw0yNjA2MDEwMjA0NDRaMDMxMTAvBgNV BAMTKDgxQjM4NzNDNkEwQTNENkQ3MTIyOEU1QTQxREMxMzk2MTA0RjNFNUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClws2/stV0OQGdVzqQ0Ma6okkr qkKz/CC+gFA4qJwj3xkCrh16ymDRBbc9GgRPsDrhy0icqQ8i/HXH4z3EL6KRWvK3 bNsyJVlUkvLfsooV5WMjk+8Em9r3cjLtdDo8C/ryWGToNmzoXgy4aQ6MU/Rjxj7C ohYVvnr4P9hWy5xoTYb9VG3pleBcDgEUivZG+hJ0pPZwf9sFYKeFPlfKiO2VzWrC VGovQlK9nfyUz2oqITD+eWI1acqGgSLg1Xo4loFQwPJk+osSjbDH16CNerdHJl/T qFr6vr0Ug0Ky7pyqFz4tKChW5OuDIYX6PDr5F+AEV6dcPb3reOf89c+/XYEHAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUgbOHPGoKPW1xIo5aQdwTlhBPPlowHwYDVR0j BBgwFoAUQoqkJA50Hyfjoh78KdRfCuzH/pYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NDNlMmU2Ny1hMTcxLTRkOWUtYTkzNS00MDY5MDJiMWUxM2IvMC80MjhBQTQyNDBF NzQxRjI3RTNBMjFFRkMyOUQ0NUYwQUVDQzdGRTk2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDI4QUE0MjQwRTc0MUYyN0UzQTIxRUZDMjlENDVGMEFFQ0M3 RkU5Ni5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk0M2UyZTY3LWExNzEtNGQ5ZS1h OTM1LTQwNjkwMmIxZTEzYi8wLzMyMzQzMDMzM2EzMjY1MzAzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMyMzQzNTMzMzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAy4AMA0GCSqGSIb3 DQEBCwUAA4IBAQARBSPhSp+LVas6YPaiMwTkTsVUcmLC17FKHM4PNO+4/OVrjNLy TRqtKJd/i049XW2invNHmWsgEY5EavYqx3A5ezLxACSwJxZtk5yP73Kv+LlrJZsw b68FyCLlXs6jyPnmbqxpXjds4jmo0EQ4IjS6qTULUze1vTbKBe+6t1D2wxoO80lS 9PDqKm0M9/YI1d8Rh9OEX8KWa1zUBKd94wOofjqtBJm+53sW8mHB+4GRAVqj663d pAbxtb8ThKAxdG7BkjPdh3SzRBjHqdQpCm6qsEJjEjW0Ie9oE2ri5d2i7z8rBIu+ ikvnd/1Men6PT049puXCPod8hZHgJe2WttqG -----END CERTIFICATE-----Generated at Thu Jun 5 18:21:43 2025 by rpki-client