$ rpki-client -vvf repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343030313a3a2f34382d3438203d3e203338353030.roa File: 323430333a323730303a343030313a3a2f34382d3438203d3e203338353030.roa (raw, json) Hash identifier: KUe9YItWJewDr+vCEqi/EWllhXguJY0TmzIo3kUmGpg= Subject key identifier: 77:B7:F1:6C:F0:BA:2B:73:A3:77:3B:90:B4:8D:FB:D1:EE:7A:B9:A2 Certificate issuer: /CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Certificate serial: 337E99DFF85120A67547D06FCD26F3D59987B676 Authority key identifier: BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343030313a3a2f34382d3438203d3e203338353030.roa Signing time: Mon 02 Jun 2025 02:03:49 +0000 ROA not before: Mon 02 Jun 2025 01:58:49 +0000 ROA not after: Mon 01 Jun 2026 02:03:49 +0000 asID: 38500 IP address blocks: 2403:2700:4001::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 16:54:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:7e:99:df:f8:51:20:a6:75:47:d0:6f:cd:26:f3:d5:99:87:b6:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Validity Not Before: Jun 2 01:58:49 2025 GMT Not After : Jun 1 02:03:49 2026 GMT Subject: CN=77B7F16CF0BA2B73A3773B90B48DFBD1EE7AB9A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:3e:92:ff:e5:c1:0f:88:5b:0a:2c:f7:33:fe: d9:e5:a0:ad:d7:dc:23:d8:04:5f:3d:1c:9a:18:29: 11:06:92:04:7d:10:f8:31:d3:e9:dc:c7:82:9f:48: 23:c5:d2:0b:d2:79:9c:81:4f:21:04:3d:05:82:f0: 38:c0:b2:85:15:1b:76:90:60:73:f7:1a:0e:f9:66: 07:7e:c7:ae:09:24:69:6c:94:f9:5e:7f:84:8d:44: 06:6b:b2:c7:75:66:d3:e7:45:9b:86:c7:e3:ae:c1: d1:f1:9a:70:0d:e1:e5:e6:1e:41:7b:9b:91:a9:a9: 15:42:54:4c:2e:b4:63:ed:71:63:af:9f:3d:cb:b5: 2b:3d:64:c9:53:c4:58:16:d6:45:35:7e:6e:90:d9: d0:f1:ef:ff:c1:d0:18:3b:db:07:bb:77:3c:90:6b: a2:a8:cd:53:ea:88:0f:8e:fb:1d:02:0e:75:dc:df: 2f:99:af:f9:32:14:fa:01:af:c7:f2:1e:de:92:92: 93:06:a3:fc:d1:a3:52:28:48:ee:bb:d4:f9:62:2c: dd:20:21:81:d3:e4:41:11:b0:4d:04:6b:d3:98:68: 5c:0e:b8:0b:52:6b:8b:24:43:a6:6c:50:bd:4e:00: 30:ac:37:96:1c:42:c6:cb:f5:5c:61:be:c3:58:e0: 37:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:B7:F1:6C:F0:BA:2B:73:A3:77:3B:90:B4:8D:FB:D1:EE:7A:B9:A2 X509v3 Authority Key Identifier: keyid:BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343030313a3a2f34382d3438203d3e203338353030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2700:4001::/48 Signature Algorithm: sha256WithRSAEncryption 26:66:2c:35:74:99:4c:73:8d:21:63:37:a2:2d:3b:29:cf:5d: 99:d6:14:1f:11:41:fb:a2:32:fd:e4:eb:df:b5:35:85:a3:4d: 8b:5f:41:ab:f4:e6:a6:d1:c0:10:54:b6:b1:6c:e6:28:01:e1: 01:6b:cd:6f:f0:94:9f:89:a1:d2:d7:af:20:3d:d8:a1:fe:49: c6:db:7e:2f:f1:86:1a:45:d2:46:bd:26:50:94:1a:27:ff:c7: 51:e5:da:36:b8:e1:6c:a7:ff:ab:0f:fd:b8:62:11:d3:e6:4f: db:f3:50:20:2c:1b:a8:c4:2b:bf:db:b2:57:2c:b4:cc:8e:8e: f0:fa:5a:fc:4d:d9:ae:90:78:da:32:4a:30:9c:0a:3b:05:82: 28:e5:84:78:f1:f2:3c:39:5e:01:68:6f:f0:d0:ce:50:f7:bb: 1c:39:3f:2c:3c:b6:b9:c6:c8:20:7c:f3:ca:02:28:95:15:ea: 12:25:ea:ca:99:e9:40:93:56:f4:20:7b:4e:8d:71:dd:aa:5b: 3f:4c:37:41:c4:0c:80:ac:1f:fe:f2:59:1b:1d:56:90:31:05: c6:b9:71:28:c4:be:19:bf:d8:07:8a:d7:8c:ee:b4:95:6f:41: dd:18:6e:1a:9c:9a:53:24:22:ba:65:ac:de:d4:04:6b:12:0b: 28:77:c3:28 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUM36Z3/hRIKZ1R9BvzSbz1ZmHtnYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVD RTFEQjFEMDAeFw0yNTA2MDIwMTU4NDlaFw0yNjA2MDEwMjAzNDlaMDMxMTAvBgNV BAMTKDc3QjdGMTZDRjBCQTJCNzNBMzc3M0I5MEI0OERGQkQxRUU3QUI5QTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6PpL/5cEPiFsKLPcz/tnloK3X 3CPYBF89HJoYKREGkgR9EPgx0+ncx4KfSCPF0gvSeZyBTyEEPQWC8DjAsoUVG3aQ YHP3Gg75Zgd+x64JJGlslPlef4SNRAZrssd1ZtPnRZuGx+OuwdHxmnAN4eXmHkF7 m5GpqRVCVEwutGPtcWOvnz3LtSs9ZMlTxFgW1kU1fm6Q2dDx7//B0Bg72we7dzyQ a6KozVPqiA+O+x0CDnXc3y+Zr/kyFPoBr8fyHt6SkpMGo/zRo1IoSO671PliLN0g IYHT5EERsE0Ea9OYaFwOuAtSa4skQ6ZsUL1OADCsN5YcQsbL9VxhvsNY4DejAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUd7fxbPC6K3OjdzuQtI370e56uaIwHwYDVR0j BBgwFoAUuwUpPT6dzQ9K2SYQDBkYhc4dsdAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MDQwNjhmMy1hNzViLTQ3NjQtOWU4MC0xZmE1NzI5MjA3ZmMvMC9CQjA1MjkzRDNF OURDRDBGNEFEOTI2MTAwQzE5MTg4NUNFMURCMUQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVDRTFE QjFEMC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IwNDA2OGYzLWE3NWItNDc2NC05 ZTgwLTFmYTU3MjkyMDdmYy8wLzMyMzQzMDMzM2EzMjM3MzAzMDNhMzQzMDMwMzEz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMDMwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAMn AEABMA0GCSqGSIb3DQEBCwUAA4IBAQAmZiw1dJlMc40hYzeiLTspz12Z1hQfEUH7 ojL95OvftTWFo02LX0Gr9Oam0cAQVLaxbOYoAeEBa81v8JSfiaHS168gPdih/knG 234v8YYaRdJGvSZQlBon/8dR5do2uOFsp/+rD/24YhHT5k/b81AgLBuoxCu/27JX LLTMjo7w+lr8TdmukHjaMkownAo7BYIo5YR48fI8OV4BaG/w0M5Q97scOT8sPLa5 xsggfPPKAiiVFeoSJerKmelAk1b0IHtOjXHdqls/TDdBxAyArB/+8lkbHVaQMQXG uXEoxL4Zv9gHiteM7rSVb0HdGG4anJpTJCK6Zaze1ARrEgsod8Mo -----END CERTIFICATE-----Generated at Sat Jun 7 13:58:38 2025 by rpki-client