$ rpki-client -vvf repo-rpki.idnic.net/repo/ac3f2288-88cf-4d2b-bba6-a03dd5f83761/0/323430373a396338303a3a2f33322d3438203d3e20313335343834.roa File: 323430373a396338303a3a2f33322d3438203d3e20313335343834.roa (raw, json) Hash identifier: PjdoU1IlaOBuAqcQYAfTUBsBWxQvsuLv55cXKjpLDcw= Subject key identifier: C9:F4:E3:92:65:7D:30:3E:AD:18:00:9D:FB:0E:90:BC:BE:96:82:5C Certificate issuer: /CN=0E8637C23FD7FD1ABF91B025E48040909797EA6C Certificate serial: 760E65585A44CCEE22012862EDE9C6783F838B6E Authority key identifier: 0E:86:37:C2:3F:D7:FD:1A:BF:91:B0:25:E4:80:40:90:97:97:EA:6C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0E8637C23FD7FD1ABF91B025E48040909797EA6C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ac3f2288-88cf-4d2b-bba6-a03dd5f83761/0/323430373a396338303a3a2f33322d3438203d3e20313335343834.roa Signing time: Mon 02 Jun 2025 02:04:24 +0000 ROA not before: Mon 02 Jun 2025 01:59:24 +0000 ROA not after: Mon 01 Jun 2026 02:04:24 +0000 asID: 135484 IP address blocks: 2407:9c80::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ac3f2288-88cf-4d2b-bba6-a03dd5f83761/0/0E8637C23FD7FD1ABF91B025E48040909797EA6C.crl rsync://repo-rpki.idnic.net/repo/ac3f2288-88cf-4d2b-bba6-a03dd5f83761/0/0E8637C23FD7FD1ABF91B025E48040909797EA6C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0E8637C23FD7FD1ABF91B025E48040909797EA6C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 19:47:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:0e:65:58:5a:44:cc:ee:22:01:28:62:ed:e9:c6:78:3f:83:8b:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E8637C23FD7FD1ABF91B025E48040909797EA6C Validity Not Before: Jun 2 01:59:24 2025 GMT Not After : Jun 1 02:04:24 2026 GMT Subject: CN=C9F4E392657D303EAD18009DFB0E90BCBE96825C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:55:7e:87:cc:3e:e8:26:71:f9:3b:e9:a7:d0: 54:24:ae:d0:17:8d:e8:95:74:d1:ba:3a:69:07:b2: c3:95:ab:86:f7:0e:2e:e1:f4:60:7c:83:2e:1f:82: e8:07:07:c2:ad:ae:85:58:13:2c:c3:cf:c2:f6:c6: 1c:67:2a:6b:bb:f3:68:95:4c:ec:8f:fc:95:c7:c5: 46:cf:f9:9f:cc:d1:7d:d2:05:00:e8:db:2a:f3:dd: e3:cd:e1:bf:bb:49:21:5a:8b:2e:b1:d6:c3:3b:36: 90:9e:ea:ed:cf:e7:a8:8d:ec:f7:ca:91:bd:b8:d2: 08:fa:76:61:b9:98:1e:55:76:2f:5c:57:24:71:56: 15:26:f5:7f:d4:a8:e4:72:89:14:cf:3d:89:f2:02: 72:53:b6:c0:30:9b:2f:b6:ce:4d:5b:a1:5a:46:9c: 34:20:02:f9:c4:24:c1:28:68:73:1e:d6:cd:4a:68: 66:7f:87:4a:8f:10:8a:6a:7e:99:d9:8f:e2:9e:f8: d5:e5:f8:98:ee:7d:76:b1:51:31:09:e3:61:fd:51: 9e:c3:74:f3:fb:10:d4:e4:8a:9e:2d:8b:11:9e:d0: c9:60:be:f5:4c:9f:5b:86:12:75:f5:4c:d9:ba:cb: 6f:5a:31:21:4f:38:d7:af:05:81:b5:8b:a1:0b:90: c2:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:F4:E3:92:65:7D:30:3E:AD:18:00:9D:FB:0E:90:BC:BE:96:82:5C X509v3 Authority Key Identifier: keyid:0E:86:37:C2:3F:D7:FD:1A:BF:91:B0:25:E4:80:40:90:97:97:EA:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ac3f2288-88cf-4d2b-bba6-a03dd5f83761/0/0E8637C23FD7FD1ABF91B025E48040909797EA6C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0E8637C23FD7FD1ABF91B025E48040909797EA6C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ac3f2288-88cf-4d2b-bba6-a03dd5f83761/0/323430373a396338303a3a2f33322d3438203d3e20313335343834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2407:9c80::/32 Signature Algorithm: sha256WithRSAEncryption 19:53:a0:8c:40:0c:e6:50:05:76:57:73:64:f6:f9:47:a2:b4: f7:25:b5:0d:50:4a:2f:a9:15:18:b6:03:63:23:b7:89:24:5a: ab:23:88:a0:04:e5:2c:f3:d0:a4:52:08:4e:bb:78:39:8f:dd: a9:6e:35:14:2c:ce:fe:d6:20:6b:e2:3b:42:4b:d4:fb:16:f7: 53:6d:d3:da:3f:54:cf:65:14:86:db:f5:62:27:8c:5c:68:a9: 9e:fe:e5:1a:ff:c4:d3:d7:86:f8:3e:e4:02:66:8b:10:e7:21: 76:2b:f2:6d:4d:90:60:3e:5f:04:94:69:a1:d0:e1:28:a4:d9: 4d:1e:65:cf:77:8a:da:07:9d:9a:5c:e1:93:2c:f8:6a:c3:53: 17:9a:00:61:7e:3b:33:33:78:ba:91:f8:55:08:ff:bc:b4:0c: 9d:9e:0c:9d:b1:7b:8c:fa:85:8d:6c:e5:bc:6d:b7:23:d3:69: f4:8e:62:f1:82:a5:88:61:7e:2a:2a:6b:7b:be:2f:28:5e:b5: aa:34:73:33:0b:24:d9:fe:99:dd:ff:cf:5a:7f:dd:d7:df:24: 91:06:c1:71:e7:3b:7f:61:ec:73:ac:9f:11:02:7d:e6:37:7a: 84:f4:28:44:bf:53:c5:97:e9:03:f1:48:d6:df:73:61:d3:2e: 3f:51:f6:bf -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUdg5lWFpEzO4iAShi7enGeD+Di24wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEU4NjM3QzIzRkQ3RkQxQUJGOTFCMDI1RTQ4MDQwOTA5 Nzk3RUE2QzAeFw0yNTA2MDIwMTU5MjRaFw0yNjA2MDEwMjA0MjRaMDMxMTAvBgNV BAMTKEM5RjRFMzkyNjU3RDMwM0VBRDE4MDA5REZCMEU5MEJDQkU5NjgyNUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQVX6HzD7oJnH5O+mn0FQkrtAX jeiVdNG6OmkHssOVq4b3Di7h9GB8gy4fgugHB8KtroVYEyzDz8L2xhxnKmu782iV TOyP/JXHxUbP+Z/M0X3SBQDo2yrz3ePN4b+7SSFaiy6x1sM7NpCe6u3P56iN7PfK kb240gj6dmG5mB5Vdi9cVyRxVhUm9X/UqORyiRTPPYnyAnJTtsAwmy+2zk1boVpG nDQgAvnEJMEoaHMe1s1KaGZ/h0qPEIpqfpnZj+Ke+NXl+JjufXaxUTEJ42H9UZ7D dPP7ENTkip4tixGe0MlgvvVMn1uGEnX1TNm6y29aMSFPONevBYG1i6ELkMK1AgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUyfTjkmV9MD6tGACd+w6QvL6WglwwHwYDVR0j BBgwFoAUDoY3wj/X/Rq/kbAl5IBAkJeX6mwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h YzNmMjI4OC04OGNmLTRkMmItYmJhNi1hMDNkZDVmODM3NjEvMC8wRTg2MzdDMjNG RDdGRDFBQkY5MUIwMjVFNDgwNDA5MDk3OTdFQTZDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEU4NjM3QzIzRkQ3RkQxQUJGOTFCMDI1RTQ4MDQwOTA5Nzk3 RUE2Qy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FjM2YyMjg4LTg4Y2YtNGQyYi1i YmE2LWEwM2RkNWY4Mzc2MS8wLzMyMzQzMDM3M2EzOTYzMzgzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzNTM0MzgzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQHnIAwDQYJKoZI hvcNAQELBQADggEBABlToIxADOZQBXZXc2T2+UeitPcltQ1QSi+pFRi2A2Mjt4kk WqsjiKAE5Szz0KRSCE67eDmP3aluNRQszv7WIGviO0JL1PsW91Nt09o/VM9lFIbb 9WInjFxoqZ7+5Rr/xNPXhvg+5AJmixDnIXYr8m1NkGA+XwSUaaHQ4Sik2U0eZc93 itoHnZpc4ZMs+GrDUxeaAGF+OzMzeLqR+FUI/7y0DJ2eDJ2xe4z6hY1s5bxttyPT afSOYvGCpYhhfioqa3u+Lyhetao0czMLJNn+md3/z1p/3dffJJEGwXHnO39h7HOs nxECfeY3eoT0KES/U8WX6QPxSNbfc2HTLj9R9r8= -----END CERTIFICATE-----Generated at Sun Jun 8 16:38:29 2025 by rpki-client