$ rpki-client -vvf repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343030353a3a2f34382d3438203d3e203338353030.roa File: 323430333a323730303a343030353a3a2f34382d3438203d3e203338353030.roa (raw, json) Hash identifier: ScL2Ml9V0JxrkWOtUekcUkbGo5E4qCUz801UmzIBxWo= Subject key identifier: 93:AB:99:11:1D:DD:C8:AC:13:CA:BA:9C:2F:AC:BC:BB:84:62:F1:91 Certificate issuer: /CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Certificate serial: 792A1FD66D01A18E20C5D49485D65772FBA9B303 Authority key identifier: BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343030353a3a2f34382d3438203d3e203338353030.roa Signing time: Mon 02 Jun 2025 02:03:48 +0000 ROA not before: Mon 02 Jun 2025 01:58:48 +0000 ROA not after: Mon 01 Jun 2026 02:03:48 +0000 asID: 38500 IP address blocks: 2403:2700:4005::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 16:54:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:2a:1f:d6:6d:01:a1:8e:20:c5:d4:94:85:d6:57:72:fb:a9:b3:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Validity Not Before: Jun 2 01:58:48 2025 GMT Not After : Jun 1 02:03:48 2026 GMT Subject: CN=93AB99111DDDC8AC13CABA9C2FACBCBB8462F191 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:08:30:db:e6:0b:bc:72:14:cb:05:58:2a:c1: 53:0b:65:7a:42:7f:f1:aa:84:36:f4:ef:d3:38:3e: 17:cf:91:74:44:25:e4:ee:9c:67:d9:25:bb:18:72: 94:4c:67:e3:b0:13:90:28:aa:30:83:54:28:bb:6f: fd:98:70:a9:9d:59:26:aa:de:f3:28:7a:1c:da:02: 72:d6:58:e7:24:4c:2c:09:9e:7f:f2:c6:d5:da:94: ca:84:36:de:2d:e4:1e:0f:18:e8:de:7a:53:a0:e9: 0f:ad:af:27:09:47:35:4e:98:72:86:56:af:4b:19: 71:47:1a:b9:5f:5a:3e:4e:36:62:71:b5:bc:71:80: 04:04:b2:89:8e:58:bf:48:71:9f:9b:00:d9:74:9e: b8:89:3a:fe:4c:a3:e5:5d:ee:3f:0b:52:20:fe:37: fc:b0:b7:16:8a:f4:1a:dd:80:14:14:ae:cc:bd:2b: 17:d3:e3:0c:f0:28:31:5f:dd:70:8f:35:b3:fc:4c: 4b:ce:3c:58:6a:c8:45:5e:e5:a3:9e:f0:fe:d5:aa: 96:35:26:ed:b9:50:a0:fa:a4:98:59:54:a9:0f:28: 0f:48:ed:34:cc:fe:cb:34:bd:27:8f:c4:c9:0c:9f: a7:78:6c:20:80:00:86:99:e2:2a:42:4c:cd:a1:ac: 56:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:AB:99:11:1D:DD:C8:AC:13:CA:BA:9C:2F:AC:BC:BB:84:62:F1:91 X509v3 Authority Key Identifier: keyid:BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343030353a3a2f34382d3438203d3e203338353030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2700:4005::/48 Signature Algorithm: sha256WithRSAEncryption b2:f4:bc:7e:4b:9f:75:40:7c:39:f4:8c:54:6b:bf:0f:88:b7: 14:52:50:44:cf:59:da:58:77:b4:a0:fa:df:a1:6c:34:b3:a9: a4:1f:30:47:93:f0:7f:2b:b9:3d:dd:12:c9:6a:f4:e2:d1:9d: 63:12:e5:bb:be:29:bc:83:d0:8b:bf:f8:c0:70:e1:ca:23:75: 96:0a:75:ba:68:1f:ef:fe:65:07:56:7a:12:74:fc:ac:1a:84: 3b:af:cf:56:2d:34:81:4a:f6:62:33:cb:76:11:c9:9c:65:a7: 11:30:7c:d0:b4:b2:21:b4:42:77:cd:56:9a:5e:23:0e:73:0a: 5e:90:fb:c8:40:3b:35:6d:c7:ca:f6:20:96:03:2b:d1:f8:73: e3:b6:37:d7:34:80:38:57:3e:31:4a:5b:b2:75:37:0b:54:b1: 71:dd:ca:80:5f:46:ab:22:5f:c0:04:d5:3d:06:cb:f7:47:d1: 57:53:f3:0c:cd:f3:9d:7f:87:d0:03:f0:f6:7c:93:1e:23:cb: f6:0f:3d:a7:af:82:f4:5d:80:08:a8:79:d6:82:29:47:d3:29: 57:1a:79:64:44:67:c6:89:0a:ab:a7:b9:28:8c:54:8d:13:88: 3a:42:f4:11:33:84:53:c2:17:f9:64:98:82:b0:4c:3d:91:a9: 3f:0e:5d:bb -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUeSof1m0BoY4gxdSUhdZXcvupswMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVD RTFEQjFEMDAeFw0yNTA2MDIwMTU4NDhaFw0yNjA2MDEwMjAzNDhaMDMxMTAvBgNV BAMTKDkzQUI5OTExMUREREM4QUMxM0NBQkE5QzJGQUNCQ0JCODQ2MkYxOTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDICDDb5gu8chTLBVgqwVMLZXpC f/GqhDb079M4PhfPkXREJeTunGfZJbsYcpRMZ+OwE5AoqjCDVCi7b/2YcKmdWSaq 3vMoehzaAnLWWOckTCwJnn/yxtXalMqENt4t5B4PGOjeelOg6Q+trycJRzVOmHKG Vq9LGXFHGrlfWj5ONmJxtbxxgAQEsomOWL9IcZ+bANl0nriJOv5Mo+Vd7j8LUiD+ N/ywtxaK9BrdgBQUrsy9KxfT4wzwKDFf3XCPNbP8TEvOPFhqyEVe5aOe8P7VqpY1 Ju25UKD6pJhZVKkPKA9I7TTM/ss0vSePxMkMn6d4bCCAAIaZ4ipCTM2hrFYVAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUk6uZER3dyKwTyrqcL6y8u4Ri8ZEwHwYDVR0j BBgwFoAUuwUpPT6dzQ9K2SYQDBkYhc4dsdAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MDQwNjhmMy1hNzViLTQ3NjQtOWU4MC0xZmE1NzI5MjA3ZmMvMC9CQjA1MjkzRDNF OURDRDBGNEFEOTI2MTAwQzE5MTg4NUNFMURCMUQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVDRTFE QjFEMC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IwNDA2OGYzLWE3NWItNDc2NC05 ZTgwLTFmYTU3MjkyMDdmYy8wLzMyMzQzMDMzM2EzMjM3MzAzMDNhMzQzMDMwMzUz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMDMwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAMn AEAFMA0GCSqGSIb3DQEBCwUAA4IBAQCy9Lx+S591QHw59IxUa78PiLcUUlBEz1na WHe0oPrfoWw0s6mkHzBHk/B/K7k93RLJavTi0Z1jEuW7vim8g9CLv/jAcOHKI3WW CnW6aB/v/mUHVnoSdPysGoQ7r89WLTSBSvZiM8t2EcmcZacRMHzQtLIhtEJ3zVaa XiMOcwpekPvIQDs1bcfK9iCWAyvR+HPjtjfXNIA4Vz4xSluydTcLVLFx3cqAX0ar Il/ABNU9Bsv3R9FXU/MMzfOdf4fQA/D2fJMeI8v2Dz2nr4L0XYAIqHnWgilH0ylX GnlkRGfGiQqrp7kojFSNE4g6QvQRM4RTwhf5ZJiCsEw9kak/Dl27 -----END CERTIFICATE-----Generated at Sat Jun 7 14:05:07 2025 by rpki-client