$ rpki-client -vvf repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a333a3a2f34382d3438203d3e203338353030.roa File: 323430333a323730303a333a3a2f34382d3438203d3e203338353030.roa (raw, json) Hash identifier: 4XZ+2oDbC6jWPVbtwhOIpx0Ovr9SsBW1YMGL1IND6yA= Subject key identifier: E0:67:F2:DD:6A:D9:8D:7C:B9:BE:BC:ED:04:F7:B6:26:CB:74:6E:66 Certificate issuer: /CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Certificate serial: 2547664FB4A0425F8B60FC34026C40ADC0CA2F44 Authority key identifier: BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a333a3a2f34382d3438203d3e203338353030.roa Signing time: Mon 02 Jun 2025 02:03:51 +0000 ROA not before: Mon 02 Jun 2025 01:58:51 +0000 ROA not after: Mon 01 Jun 2026 02:03:51 +0000 asID: 38500 IP address blocks: 2403:2700:3::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 16:54:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:47:66:4f:b4:a0:42:5f:8b:60:fc:34:02:6c:40:ad:c0:ca:2f:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Validity Not Before: Jun 2 01:58:51 2025 GMT Not After : Jun 1 02:03:51 2026 GMT Subject: CN=E067F2DD6AD98D7CB9BEBCED04F7B626CB746E66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:e4:2d:db:ea:50:97:79:ce:32:84:6a:39:f0: 4c:c9:1e:09:12:ae:4a:74:3d:95:e3:ac:79:84:7c: 1e:1c:bd:03:09:44:e1:87:28:34:54:89:f5:a7:a0: bd:3e:54:09:9a:df:34:d2:94:27:03:7f:df:3e:95: 84:ba:d4:31:30:bf:23:51:af:fa:c1:b8:c2:7b:e4: dd:d6:b9:11:21:6b:52:82:a0:92:86:c0:40:4c:91: a1:dc:e9:05:44:fc:31:26:db:74:0b:dd:f4:7e:5e: 3a:0c:3e:15:1f:7c:15:f7:9a:73:63:4e:2e:34:a6: 05:f7:29:76:64:39:01:c9:85:00:0e:4f:a0:c1:ee: 4b:3c:b9:f1:2e:70:06:4f:4b:e8:c1:86:d8:12:88: 82:e8:4c:1a:6b:ed:ce:a6:52:7a:7d:bf:50:60:8a: 32:77:6f:ea:19:05:31:20:a4:3b:95:f1:7d:ca:86: 7c:fd:5d:7e:d3:a2:5c:98:98:f0:73:85:7a:e3:21: 2d:f8:4e:de:33:cc:18:32:b9:e7:27:a0:54:4d:9e: e1:e0:ea:26:7c:a8:58:e4:22:be:ba:4a:3a:2d:72: 06:85:e8:60:58:3f:9a:8b:77:ab:5a:6f:64:de:fe: 1a:42:dd:39:64:09:63:e2:55:f5:df:dd:35:99:56: bb:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:67:F2:DD:6A:D9:8D:7C:B9:BE:BC:ED:04:F7:B6:26:CB:74:6E:66 X509v3 Authority Key Identifier: keyid:BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a333a3a2f34382d3438203d3e203338353030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2700:3::/48 Signature Algorithm: sha256WithRSAEncryption a6:b5:51:57:e9:cd:6a:d3:fb:93:74:4d:9a:16:ad:36:ec:78: cf:b9:63:05:86:29:3f:08:e6:84:d8:57:72:d9:c4:cd:fc:bf: 94:c2:3c:00:1d:4e:18:0c:fe:95:e7:0a:43:d7:95:7b:72:95: e1:44:bf:99:b4:24:c7:ff:b4:2d:23:b7:c2:6f:9d:62:2a:f8: 36:54:e1:4d:ab:16:bb:8d:5b:da:10:57:4a:47:c8:13:42:64: cd:aa:43:e5:a2:fb:ac:31:1a:69:19:2c:b5:e1:96:0c:2b:74: a7:23:d3:e2:20:b1:e7:aa:ae:b7:65:97:d6:b2:d1:ed:dc:87: 13:dc:77:db:db:be:d1:4d:ae:14:c6:b6:ed:d1:ee:97:e0:e7: 77:9f:fd:24:6d:1f:ec:89:42:df:be:69:0e:2d:54:6d:84:02: 7b:5f:ad:07:17:f4:6a:62:53:04:f5:2e:06:4c:82:c2:63:62: e4:4a:69:29:d2:43:c8:26:34:7b:be:b9:7c:13:10:9e:98:89: 34:e7:73:96:93:d6:1c:a9:f8:17:48:24:01:c9:aa:2a:2b:46: 1e:a7:66:f9:88:49:1d:1c:d6:a0:cf:10:6a:a2:59:61:ef:5e: a2:4f:b1:0b:ad:55:95:9c:41:99:5b:03:c5:d4:d2:7f:57:e2: 42:5d:98:e5 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUJUdmT7SgQl+LYPw0AmxArcDKL0QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVD RTFEQjFEMDAeFw0yNTA2MDIwMTU4NTFaFw0yNjA2MDEwMjAzNTFaMDMxMTAvBgNV BAMTKEUwNjdGMkRENkFEOThEN0NCOUJFQkNFRDA0RjdCNjI2Q0I3NDZFNjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA5C3b6lCXec4yhGo58EzJHgkS rkp0PZXjrHmEfB4cvQMJROGHKDRUifWnoL0+VAma3zTSlCcDf98+lYS61DEwvyNR r/rBuMJ75N3WuREha1KCoJKGwEBMkaHc6QVE/DEm23QL3fR+XjoMPhUffBX3mnNj Ti40pgX3KXZkOQHJhQAOT6DB7ks8ufEucAZPS+jBhtgSiILoTBpr7c6mUnp9v1Bg ijJ3b+oZBTEgpDuV8X3Khnz9XX7TolyYmPBzhXrjIS34Tt4zzBgyuecnoFRNnuHg 6iZ8qFjkIr66SjotcgaF6GBYP5qLd6tab2Te/hpC3TlkCWPiVfXf3TWZVrsTAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQU4Gfy3WrZjXy5vrztBPe2Jst0bmYwHwYDVR0j BBgwFoAUuwUpPT6dzQ9K2SYQDBkYhc4dsdAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MDQwNjhmMy1hNzViLTQ3NjQtOWU4MC0xZmE1NzI5MjA3ZmMvMC9CQjA1MjkzRDNF OURDRDBGNEFEOTI2MTAwQzE5MTg4NUNFMURCMUQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVDRTFE QjFEMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IwNDA2OGYzLWE3NWItNDc2NC05 ZTgwLTFmYTU3MjkyMDdmYy8wLzMyMzQzMDMzM2EzMjM3MzAzMDNhMzMzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAMnAAADMA0G CSqGSIb3DQEBCwUAA4IBAQCmtVFX6c1q0/uTdE2aFq027HjPuWMFhik/COaE2Fdy 2cTN/L+UwjwAHU4YDP6V5wpD15V7cpXhRL+ZtCTH/7QtI7fCb51iKvg2VOFNqxa7 jVvaEFdKR8gTQmTNqkPlovusMRppGSy14ZYMK3SnI9PiILHnqq63ZZfWstHt3IcT 3Hfb277RTa4Uxrbt0e6X4Od3n/0kbR/siULfvmkOLVRthAJ7X60HF/RqYlME9S4G TILCY2LkSmkp0kPIJjR7vrl8ExCemIk053OWk9YcqfgXSCQByaoqK0Yep2b5iEkd HNagzxBqollh716iT7ELrVWVnEGZWwPF1NJ/V+JCXZjl -----END CERTIFICATE-----Generated at Sat Jun 7 13:52:33 2025 by rpki-client