$ rpki-client -vvf repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343030343a3a2f34382d3438203d3e203338353030.roa File: 323430333a323730303a343030343a3a2f34382d3438203d3e203338353030.roa (raw, json) Hash identifier: +GSzXEw9XVO9MZTg/3tsdoDls1yUaHYhurx3LSZ7ZG4= Subject key identifier: DA:3A:87:50:9C:7C:B2:84:0C:E7:6B:C4:A9:D0:3A:A3:BA:51:EE:A8 Certificate issuer: /CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Certificate serial: 6DE234451F01A4FC882DB217C118C35615FC6F18 Authority key identifier: BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343030343a3a2f34382d3438203d3e203338353030.roa Signing time: Mon 02 Jun 2025 02:03:48 +0000 ROA not before: Mon 02 Jun 2025 01:58:48 +0000 ROA not after: Mon 01 Jun 2026 02:03:48 +0000 asID: 38500 IP address blocks: 2403:2700:4004::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 16:54:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:e2:34:45:1f:01:a4:fc:88:2d:b2:17:c1:18:c3:56:15:fc:6f:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Validity Not Before: Jun 2 01:58:48 2025 GMT Not After : Jun 1 02:03:48 2026 GMT Subject: CN=DA3A87509C7CB2840CE76BC4A9D03AA3BA51EEA8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:7b:31:3c:ad:2d:6b:3d:5c:af:3b:67:ea:a1: 8e:9e:3a:6d:6c:ec:c8:4f:88:31:48:7e:c8:98:4f: 03:4d:03:90:2f:d9:5a:f9:1e:47:49:17:32:3f:98: b4:5d:9c:1b:c4:5a:d1:a4:c8:c6:c6:7f:3b:6e:66: 92:d4:b1:10:1c:c0:26:bb:40:58:13:b4:71:3c:d6: 10:a2:d8:36:78:f3:7f:df:07:46:41:6c:fa:eb:e6: 17:3d:08:f0:a1:ec:6a:83:70:5a:cc:c3:f4:26:fa: 78:d5:23:de:33:e1:b2:b1:9e:6f:f1:61:c6:09:77: 57:b4:5d:d7:e6:ba:b0:77:45:a1:4d:6c:ee:63:4c: 33:be:7a:a4:0b:0a:89:7b:b3:76:a9:c3:cb:4f:84: c6:b7:5a:57:40:aa:6a:57:bb:e0:f0:67:af:ee:5f: 28:e8:01:22:84:7a:1d:3e:5f:bb:7b:aa:1f:f4:ed: dc:61:b4:b1:f2:36:27:c6:21:09:74:5e:fe:54:9b: ab:56:dc:94:d8:a0:87:c3:d9:71:2e:ba:21:d8:1d: e7:4c:ed:d2:13:ed:5e:70:2d:c9:8e:04:a9:f9:c1: bb:92:fd:0e:34:e1:e7:a4:f4:aa:95:b2:50:a5:5c: dc:83:df:a6:6f:11:42:96:5b:cc:4b:9a:61:15:83: 24:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:3A:87:50:9C:7C:B2:84:0C:E7:6B:C4:A9:D0:3A:A3:BA:51:EE:A8 X509v3 Authority Key Identifier: keyid:BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343030343a3a2f34382d3438203d3e203338353030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2700:4004::/48 Signature Algorithm: sha256WithRSAEncryption 58:5b:bf:e5:90:88:ba:93:26:e6:fb:d6:aa:47:c5:c6:22:f1: 08:cf:0e:70:c9:b5:0d:de:a9:c2:7a:02:1b:92:ef:5f:e4:6d: e4:1b:a2:d4:32:0f:21:38:24:79:25:e2:5e:6c:e4:71:b4:41: a9:bf:6b:fd:59:37:ea:28:09:61:d0:cb:4f:2e:7b:bb:48:f2: e1:22:3a:fd:ba:74:10:ed:8f:de:43:21:68:3d:f3:c8:fa:4f: f0:d9:b0:c8:b9:c1:38:a1:cc:89:0e:1b:61:63:02:e9:18:81: e4:63:11:a3:2b:22:be:4d:09:5e:99:30:ee:f1:08:11:eb:d4: a4:df:46:f1:3a:c8:78:9b:c9:43:e8:d0:c6:7c:cc:d6:eb:9e: 3a:12:a1:e4:9f:d2:32:31:a9:45:b7:a1:e7:69:7e:ee:b6:37: b5:7b:0f:dd:9c:c6:01:8a:33:f0:13:21:e8:dd:0f:b5:2f:30: 9a:10:3e:5f:65:07:8b:63:41:38:bd:c2:6f:d8:ed:ae:e5:ee: 1f:09:2f:80:db:b3:cb:8d:a5:a9:b1:88:65:41:7e:09:c5:4b: 9b:f3:f8:b9:2a:3f:c6:58:36:8d:d4:5e:d2:1d:a5:11:d8:52: d8:4f:67:2c:ae:26:c3:cd:3c:ac:b8:79:ce:98:95:52:1f:0e: 77:d2:bc:00 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUbeI0RR8BpPyILbIXwRjDVhX8bxgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVD RTFEQjFEMDAeFw0yNTA2MDIwMTU4NDhaFw0yNjA2MDEwMjAzNDhaMDMxMTAvBgNV BAMTKERBM0E4NzUwOUM3Q0IyODQwQ0U3NkJDNEE5RDAzQUEzQkE1MUVFQTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwezE8rS1rPVyvO2fqoY6eOm1s 7MhPiDFIfsiYTwNNA5Av2Vr5HkdJFzI/mLRdnBvEWtGkyMbGfztuZpLUsRAcwCa7 QFgTtHE81hCi2DZ483/fB0ZBbPrr5hc9CPCh7GqDcFrMw/Qm+njVI94z4bKxnm/x YcYJd1e0XdfmurB3RaFNbO5jTDO+eqQLCol7s3apw8tPhMa3WldAqmpXu+DwZ6/u XyjoASKEeh0+X7t7qh/07dxhtLHyNifGIQl0Xv5Um6tW3JTYoIfD2XEuuiHYHedM 7dIT7V5wLcmOBKn5wbuS/Q404eek9KqVslClXNyD36ZvEUKWW8xLmmEVgyQtAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU2jqHUJx8soQM52vEqdA6o7pR7qgwHwYDVR0j BBgwFoAUuwUpPT6dzQ9K2SYQDBkYhc4dsdAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MDQwNjhmMy1hNzViLTQ3NjQtOWU4MC0xZmE1NzI5MjA3ZmMvMC9CQjA1MjkzRDNF OURDRDBGNEFEOTI2MTAwQzE5MTg4NUNFMURCMUQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVDRTFE QjFEMC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IwNDA2OGYzLWE3NWItNDc2NC05 ZTgwLTFmYTU3MjkyMDdmYy8wLzMyMzQzMDMzM2EzMjM3MzAzMDNhMzQzMDMwMzQz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMDMwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAMn AEAEMA0GCSqGSIb3DQEBCwUAA4IBAQBYW7/lkIi6kybm+9aqR8XGIvEIzw5wybUN 3qnCegIbku9f5G3kG6LUMg8hOCR5JeJebORxtEGpv2v9WTfqKAlh0MtPLnu7SPLh Ijr9unQQ7Y/eQyFoPfPI+k/w2bDIucE4ocyJDhthYwLpGIHkYxGjKyK+TQlemTDu 8QgR69Sk30bxOsh4m8lD6NDGfMzW6546EqHkn9IyMalFt6HnaX7utje1ew/dnMYB ijPwEyHo3Q+1LzCaED5fZQeLY0E4vcJv2O2u5e4fCS+A27PLjaWpsYhlQX4JxUub 8/i5Kj/GWDaN1F7SHaUR2FLYT2csribDzTysuHnOmJVSHw530rwA -----END CERTIFICATE-----Generated at Sat Jun 7 14:04:55 2025 by rpki-client