$ rpki-client -vvf repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a323a3a2f34382d3438203d3e203338353030.roa File: 323430333a323730303a323a3a2f34382d3438203d3e203338353030.roa (raw, json) Hash identifier: 0t+sP9mMUayz06wxXRa0Zlci2ba1YMNRtNd8apwlSzo= Subject key identifier: 5C:45:E7:A1:F8:37:D6:37:51:79:97:9F:4F:29:80:54:D7:A7:1E:56 Certificate issuer: /CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Certificate serial: 55634BABBE5CE5EE71D890026CCD6D3270E015A2 Authority key identifier: BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a323a3a2f34382d3438203d3e203338353030.roa Signing time: Mon 02 Jun 2025 02:03:47 +0000 ROA not before: Mon 02 Jun 2025 01:58:47 +0000 ROA not after: Mon 01 Jun 2026 02:03:47 +0000 asID: 38500 IP address blocks: 2403:2700:2::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 16:54:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:63:4b:ab:be:5c:e5:ee:71:d8:90:02:6c:cd:6d:32:70:e0:15:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Validity Not Before: Jun 2 01:58:47 2025 GMT Not After : Jun 1 02:03:47 2026 GMT Subject: CN=5C45E7A1F837D6375179979F4F298054D7A71E56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:d1:ce:35:31:55:af:a3:83:9c:98:4a:99:9e: 96:c6:f9:01:21:e9:26:11:92:40:18:08:b7:7d:20: 40:a8:bd:80:45:bb:57:96:cf:66:a3:09:2d:49:fa: b6:89:f2:08:1c:42:e6:ef:58:54:d5:12:dd:86:32: 2b:8e:5e:0f:0d:33:b4:d7:91:49:49:64:22:7f:5c: 29:a2:68:ac:d6:1c:39:6c:09:0a:08:d3:ea:4f:b6: 0f:c3:37:56:ad:c5:2b:c3:fa:f8:68:80:73:ea:49: de:9f:fc:70:5b:cd:a9:a1:6d:f1:90:bb:2a:a4:26: af:eb:ae:09:26:9c:d6:2d:23:ad:5f:e4:70:af:66: 19:a2:61:b9:f0:3d:d1:a0:94:96:ba:ee:85:d0:9d: 62:23:44:a5:ff:0c:15:95:f1:ea:50:b5:7e:d6:b5: b7:47:6b:81:bf:aa:15:c7:75:53:49:b1:df:f0:42: 94:d0:bb:da:36:3f:bb:74:22:f7:65:36:aa:b0:c1: cd:b6:da:e3:98:06:2c:e1:59:a9:22:c5:b4:e8:24: 2f:72:94:09:7c:d6:74:ab:3f:d1:fa:b4:c2:40:f0: 91:62:b2:a1:ae:e5:55:73:e8:9b:c7:67:da:a0:f0: bd:40:5a:9b:9d:d4:70:47:14:2a:a9:04:fc:b3:bc: a3:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:45:E7:A1:F8:37:D6:37:51:79:97:9F:4F:29:80:54:D7:A7:1E:56 X509v3 Authority Key Identifier: keyid:BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a323a3a2f34382d3438203d3e203338353030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2700:2::/48 Signature Algorithm: sha256WithRSAEncryption 63:42:ba:d9:39:56:af:d0:5e:f3:a3:10:b9:52:23:28:6c:67: db:32:81:67:81:1a:2a:2b:85:12:7e:1c:01:c5:38:d8:cc:7f: ea:8e:b1:ef:11:73:18:db:b8:b7:fa:0d:e1:40:c1:e6:d9:c0: 5f:0e:c7:93:aa:1a:96:59:b8:84:c0:16:50:4c:aa:75:05:fd: 37:1d:82:c6:2a:b2:52:2f:34:47:4b:8f:c7:54:c7:e7:b9:12: 71:7a:b0:92:aa:84:86:09:87:6c:22:81:d6:77:9a:d4:53:aa: ed:bc:94:2d:10:88:0e:2c:a9:8e:e6:1a:7e:0e:48:96:97:f4: 91:28:29:47:94:8d:27:9e:85:6e:7a:f4:00:5c:19:08:33:58: 35:8e:0e:3e:fc:f2:82:65:cb:45:ab:ca:b7:f6:89:4e:15:f9: 7d:03:88:f0:8e:e2:91:2c:ad:b4:49:4b:5d:67:49:2c:5c:b1: bc:2c:71:d4:6d:c2:aa:ce:09:92:83:1d:3b:c3:ff:97:51:f1: 8b:7f:bb:ba:69:9d:9c:f4:94:c1:a7:2a:b2:ac:05:2b:8f:08: 3f:06:37:ae:5d:6f:21:15:c5:64:6d:b7:96:c5:6c:60:6d:b1: 9e:4a:af:c8:fd:66:40:c1:39:41:58:17:3a:17:09:ac:69:fa: 55:fb:3b:2a -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUVWNLq75c5e5x2JACbM1tMnDgFaIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVD RTFEQjFEMDAeFw0yNTA2MDIwMTU4NDdaFw0yNjA2MDEwMjAzNDdaMDMxMTAvBgNV BAMTKDVDNDVFN0ExRjgzN0Q2Mzc1MTc5OTc5RjRGMjk4MDU0RDdBNzFFNTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCq0c41MVWvo4OcmEqZnpbG+QEh 6SYRkkAYCLd9IECovYBFu1eWz2ajCS1J+raJ8ggcQubvWFTVEt2GMiuOXg8NM7TX kUlJZCJ/XCmiaKzWHDlsCQoI0+pPtg/DN1atxSvD+vhogHPqSd6f/HBbzamhbfGQ uyqkJq/rrgkmnNYtI61f5HCvZhmiYbnwPdGglJa67oXQnWIjRKX/DBWV8epQtX7W tbdHa4G/qhXHdVNJsd/wQpTQu9o2P7t0IvdlNqqwwc222uOYBizhWakixbToJC9y lAl81nSrP9H6tMJA8JFisqGu5VVz6JvHZ9qg8L1AWpud1HBHFCqpBPyzvKN9AgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUXEXnofg31jdReZefTymAVNenHlYwHwYDVR0j BBgwFoAUuwUpPT6dzQ9K2SYQDBkYhc4dsdAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MDQwNjhmMy1hNzViLTQ3NjQtOWU4MC0xZmE1NzI5MjA3ZmMvMC9CQjA1MjkzRDNF OURDRDBGNEFEOTI2MTAwQzE5MTg4NUNFMURCMUQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVDRTFE QjFEMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IwNDA2OGYzLWE3NWItNDc2NC05 ZTgwLTFmYTU3MjkyMDdmYy8wLzMyMzQzMDMzM2EzMjM3MzAzMDNhMzIzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAMnAAACMA0G CSqGSIb3DQEBCwUAA4IBAQBjQrrZOVav0F7zoxC5UiMobGfbMoFngRoqK4USfhwB xTjYzH/qjrHvEXMY27i3+g3hQMHm2cBfDseTqhqWWbiEwBZQTKp1Bf03HYLGKrJS LzRHS4/HVMfnuRJxerCSqoSGCYdsIoHWd5rUU6rtvJQtEIgOLKmO5hp+DkiWl/SR KClHlI0nnoVuevQAXBkIM1g1jg4+/PKCZctFq8q39olOFfl9A4jwjuKRLK20SUtd Z0ksXLG8LHHUbcKqzgmSgx07w/+XUfGLf7u6aZ2c9JTBpyqyrAUrjwg/BjeuXW8h FcVkbbeWxWxgbbGeSq/I/WZAwTlBWBc6FwmsafpV+zsq -----END CERTIFICATE-----Generated at Sat Jun 7 13:56:44 2025 by rpki-client