$ rpki-client -vvf repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/323430313a313730303a3a2f33322d3438203d3e203535363636.roa File: 323430313a313730303a3a2f33322d3438203d3e203535363636.roa (raw, json) Hash identifier: wJcVXH5kdnO3oVC250cjFRiURy0rH8CsrLKZhYlCnvE= Subject key identifier: CA:DB:9A:F9:62:3D:0E:E3:1A:06:40:10:EC:60:81:C4:05:02:EF:0C Certificate issuer: /CN=C00163880F235714759920507217F2A7D557C953 Certificate serial: 05CD20C3E2A1CD304431A04A57718FA1C7BA8C2B Authority key identifier: C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/323430313a313730303a3a2f33322d3438203d3e203535363636.roa Signing time: Mon 02 Jun 2025 02:05:09 +0000 ROA not before: Mon 02 Jun 2025 02:00:09 +0000 ROA not after: Mon 01 Jun 2026 02:05:09 +0000 asID: 55666 IP address blocks: 2401:1700::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 13:19:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:cd:20:c3:e2:a1:cd:30:44:31:a0:4a:57:71:8f:a1:c7:ba:8c:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C00163880F235714759920507217F2A7D557C953 Validity Not Before: Jun 2 02:00:09 2025 GMT Not After : Jun 1 02:05:09 2026 GMT Subject: CN=CADB9AF9623D0EE31A064010EC6081C40502EF0C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:68:47:2f:83:2f:ea:43:ec:3d:19:d8:52:42: 98:55:44:93:ff:4e:38:e9:e0:2e:04:43:83:da:5a: 2c:06:92:77:8c:15:f2:07:5a:c7:e4:ac:f6:1a:ab: 19:bd:84:9c:e1:fb:ed:05:df:e2:f9:5f:d2:41:26: c8:bb:7a:73:c4:1c:17:30:cb:40:89:77:7c:11:59: 8d:61:fc:4d:22:47:9a:bf:12:de:4a:11:7a:7e:54: d1:de:f2:2f:b7:73:27:a7:df:3c:c8:ef:41:02:4d: 42:81:8b:e9:75:3f:60:79:6a:e2:fb:42:d4:bf:47: 71:ac:21:7b:8c:7e:6e:14:81:0e:a8:f7:bf:37:2c: c6:0b:02:6c:0b:cc:e6:39:e6:1d:c8:9a:84:f2:d2: 7b:0d:ac:47:0e:db:54:59:0c:6c:f7:40:4d:c4:d2: 9f:d7:b3:bc:50:ac:8d:7a:83:6e:4d:f6:3c:6a:2c: 58:f1:45:59:cd:89:16:70:a5:09:96:77:30:f2:ff: 17:58:53:17:47:81:05:f3:ae:2e:14:9a:13:7d:e4: 0b:95:bc:4b:23:cf:bb:77:6e:77:4e:a7:f3:f3:ea: 40:44:67:dc:3c:bc:7d:85:e3:2d:b8:bf:a1:3e:4e: 2c:48:19:d8:1c:0f:1e:45:4d:1d:f3:62:29:b2:c3: 85:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:DB:9A:F9:62:3D:0E:E3:1A:06:40:10:EC:60:81:C4:05:02:EF:0C X509v3 Authority Key Identifier: keyid:C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/323430313a313730303a3a2f33322d3438203d3e203535363636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:1700::/32 Signature Algorithm: sha256WithRSAEncryption 53:e0:13:61:33:16:cc:8c:0a:5c:49:74:d8:1f:90:ef:67:2e: fa:30:47:93:85:7f:b4:1c:70:7d:9b:96:4b:c0:97:60:e7:e7: 97:e2:31:87:97:66:b7:ed:0b:a9:2b:18:75:1f:83:46:bc:47: 30:ef:f6:ae:12:76:ae:f1:6d:5a:ed:bd:ea:a7:bd:3a:6b:ed: 62:70:e9:c1:62:29:23:d4:6a:47:be:4f:1e:44:ae:64:8e:a4: df:42:f3:9a:b8:6b:0d:9d:8e:b4:07:6b:5d:77:72:e3:59:cb: 54:98:b0:d6:53:69:cf:59:f7:ee:c8:aa:7f:bc:d8:86:1a:11: 73:b5:11:b2:b2:1a:74:f6:df:5d:2f:8c:60:0d:79:18:26:77: 0d:51:20:ab:66:57:7a:aa:5e:9c:07:c2:9b:a0:ea:ba:e9:0e: c9:bb:04:86:22:10:f8:a6:12:5b:d0:d3:65:5d:12:97:d5:93: 87:dc:c3:db:61:69:d9:5c:09:ff:be:fe:75:58:12:04:4c:27: 53:bc:a0:86:f8:dd:06:7c:2c:94:49:11:e2:a2:80:62:4f:be: ff:f1:b8:a7:4a:57:38:52:66:e4:76:0a:8e:39:66:0e:f4:ba: 0f:1e:9c:c4:45:e4:65:40:33:8b:3c:56:18:25:0c:ff:3e:9c: c7:1e:59:c5 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUBc0gw+KhzTBEMaBKV3GPoce6jCswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdE NTU3Qzk1MzAeFw0yNTA2MDIwMjAwMDlaFw0yNjA2MDEwMjA1MDlaMDMxMTAvBgNV BAMTKENBREI5QUY5NjIzRDBFRTMxQTA2NDAxMEVDNjA4MUM0MDUwMkVGMEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqaEcvgy/qQ+w9GdhSQphVRJP/ Tjjp4C4EQ4PaWiwGkneMFfIHWsfkrPYaqxm9hJzh++0F3+L5X9JBJsi7enPEHBcw y0CJd3wRWY1h/E0iR5q/Et5KEXp+VNHe8i+3cyen3zzI70ECTUKBi+l1P2B5auL7 QtS/R3GsIXuMfm4UgQ6o9783LMYLAmwLzOY55h3ImoTy0nsNrEcO21RZDGz3QE3E 0p/Xs7xQrI16g25N9jxqLFjxRVnNiRZwpQmWdzDy/xdYUxdHgQXzri4UmhN95AuV vEsjz7t3bndOp/Pz6kBEZ9w8vH2F4y24v6E+TixIGdgcDx5FTR3zYimyw4UDAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUytua+WI9DuMaBkAQ7GCBxAUC7wwwHwYDVR0j BBgwFoAUwAFjiA8jVxR1mSBQchfyp9VXyVMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZWE3YTExNS1iOGI4LTQ5MGItODMyMC1jOWU1OWExMDAzZGQvMC9DMDAxNjM4ODBG MjM1NzE0NzU5OTIwNTA3MjE3RjJBN0Q1NTdDOTUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdENTU3 Qzk1My5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlYTdhMTE1LWI4YjgtNDkwYi04 MzIwLWM5ZTU5YTEwMDNkZC8wLzMyMzQzMDMxM2EzMTM3MzAzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDM1MzUzNjM2MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkARcAMA0GCSqGSIb3 DQEBCwUAA4IBAQBT4BNhMxbMjApcSXTYH5DvZy76MEeThX+0HHB9m5ZLwJdg5+eX 4jGHl2a37QupKxh1H4NGvEcw7/auEnau8W1a7b3qp706a+1icOnBYikj1GpHvk8e RK5kjqTfQvOauGsNnY60B2tdd3LjWctUmLDWU2nPWffuyKp/vNiGGhFztRGyshp0 9t9dL4xgDXkYJncNUSCrZld6ql6cB8KboOq66Q7JuwSGIhD4phJb0NNlXRKX1ZOH 3MPbYWnZXAn/vv51WBIETCdTvKCG+N0GfCyUSRHiooBiT77/8binSlc4UmbkdgqO OWYO9LoPHpzEReRlQDOLPFYYJQz/PpzHHlnF -----END CERTIFICATE-----Generated at Fri Jun 6 16:50:36 2025 by rpki-client