$ rpki-client -vvf repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343030373a3a2f34382d3438203d3e203338353030.roa File: 323430333a323730303a343030373a3a2f34382d3438203d3e203338353030.roa (raw, json) Hash identifier: GOMGqpabFLARAkTD3/79W716x+tCxTdb6049snwD2sY= Subject key identifier: 01:22:3B:67:AD:F4:2C:3A:53:18:26:71:5C:D3:AF:88:5D:9B:FA:B3 Certificate issuer: /CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Certificate serial: 2B19E6AEB04F028E00E025B010DC147DC222E595 Authority key identifier: BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343030373a3a2f34382d3438203d3e203338353030.roa Signing time: Mon 02 Jun 2025 02:03:49 +0000 ROA not before: Mon 02 Jun 2025 01:58:49 +0000 ROA not after: Mon 01 Jun 2026 02:03:49 +0000 asID: 38500 IP address blocks: 2403:2700:4007::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 16:54:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:19:e6:ae:b0:4f:02:8e:00:e0:25:b0:10:dc:14:7d:c2:22:e5:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Validity Not Before: Jun 2 01:58:49 2025 GMT Not After : Jun 1 02:03:49 2026 GMT Subject: CN=01223B67ADF42C3A531826715CD3AF885D9BFAB3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:4c:bf:c5:a5:3e:c9:88:d9:89:d1:7c:82:f0: 38:4d:3a:00:b8:e9:cb:5a:73:fa:72:50:85:86:d8: 9d:7b:6d:ed:12:a8:7a:31:43:ca:11:f9:d8:e7:5e: d6:90:98:95:c4:b7:55:6a:c4:f4:a8:ea:15:48:d3: 6a:5f:24:be:b5:6d:47:a5:69:4f:9c:0a:c3:2c:5a: f3:94:09:1f:d2:f0:57:16:40:a5:a9:4b:9e:1f:ec: c3:7c:c2:2b:58:87:db:fe:7e:64:45:b7:66:32:db: 04:5e:8a:48:95:9c:e4:37:65:1f:3b:8e:97:6e:05: bc:c5:ea:6f:d9:44:a8:d2:40:60:e6:33:2b:c6:58: b8:7d:2c:7a:2e:55:b0:05:04:c9:f3:27:68:97:6a: f4:52:f7:ad:cf:1e:7f:f5:6c:d0:3e:16:ce:fb:8c: 15:21:12:47:da:9d:1f:37:af:1d:12:2a:56:3b:cc: f9:3f:06:2e:f0:fe:4f:7e:29:69:27:a4:b6:d8:2f: 68:ba:48:6a:67:2c:ff:8d:ec:c4:3b:4d:ea:23:4d: fd:65:e0:87:0a:39:49:14:58:3b:81:e2:1a:78:8a: 0a:b5:a4:a3:aa:c1:03:57:d6:8b:15:75:56:9b:b3: 13:1c:a7:de:95:ee:88:07:54:15:54:a8:62:c5:b3: c6:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:22:3B:67:AD:F4:2C:3A:53:18:26:71:5C:D3:AF:88:5D:9B:FA:B3 X509v3 Authority Key Identifier: keyid:BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343030373a3a2f34382d3438203d3e203338353030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2700:4007::/48 Signature Algorithm: sha256WithRSAEncryption 82:35:92:c6:6a:3a:d7:60:99:77:17:b0:39:9c:ac:39:f1:27: 43:85:94:51:6c:55:22:f7:02:82:64:5c:04:02:76:79:09:f1: 1c:50:c0:90:8d:c1:10:15:e1:64:f0:68:f0:36:1d:af:8a:8f: 81:44:81:28:d3:1a:21:ea:80:51:9f:29:c1:c5:59:7c:1d:a0: 12:99:1d:94:9b:d7:6d:2a:70:db:f5:00:73:c5:fd:e1:17:0d: f7:e7:82:a3:c8:f1:dc:0e:10:e0:64:ec:bc:f8:50:b8:db:b5: 83:c8:26:1d:b7:67:d3:d2:78:b0:89:eb:bd:d8:b0:93:c9:3c: 55:ee:f4:c5:66:33:cf:37:68:ae:b7:98:b7:7b:3d:42:58:d4: db:29:73:bf:ea:b3:0e:70:85:a4:1a:8f:68:85:3b:70:a9:a7: 61:87:cb:7f:a1:61:83:9a:a9:b4:4a:8d:57:bc:0f:8e:a2:b4: 9f:8a:92:d1:e0:00:77:25:47:14:d1:da:0e:ce:a2:d1:88:a5: 6f:c3:7a:08:24:39:88:98:a1:3a:44:c9:37:fa:58:6e:35:42: 7e:2e:a4:85:15:47:e0:83:2f:71:a3:fd:ac:d4:8f:9a:b8:0f: dc:c4:ab:36:db:9f:df:af:be:58:20:7b:70:99:76:18:46:3a: 54:8c:66:a2 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUKxnmrrBPAo4A4CWwENwUfcIi5ZUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVD RTFEQjFEMDAeFw0yNTA2MDIwMTU4NDlaFw0yNjA2MDEwMjAzNDlaMDMxMTAvBgNV BAMTKDAxMjIzQjY3QURGNDJDM0E1MzE4MjY3MTVDRDNBRjg4NUQ5QkZBQjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTTL/FpT7JiNmJ0XyC8DhNOgC4 6ctac/pyUIWG2J17be0SqHoxQ8oR+djnXtaQmJXEt1VqxPSo6hVI02pfJL61bUel aU+cCsMsWvOUCR/S8FcWQKWpS54f7MN8witYh9v+fmRFt2Yy2wReikiVnOQ3ZR87 jpduBbzF6m/ZRKjSQGDmMyvGWLh9LHouVbAFBMnzJ2iXavRS963PHn/1bNA+Fs77 jBUhEkfanR83rx0SKlY7zPk/Bi7w/k9+KWknpLbYL2i6SGpnLP+N7MQ7TeojTf1l 4IcKOUkUWDuB4hp4igq1pKOqwQNX1osVdVabsxMcp96V7ogHVBVUqGLFs8ZrAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUASI7Z630LDpTGCZxXNOviF2b+rMwHwYDVR0j BBgwFoAUuwUpPT6dzQ9K2SYQDBkYhc4dsdAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MDQwNjhmMy1hNzViLTQ3NjQtOWU4MC0xZmE1NzI5MjA3ZmMvMC9CQjA1MjkzRDNF OURDRDBGNEFEOTI2MTAwQzE5MTg4NUNFMURCMUQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVDRTFE QjFEMC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IwNDA2OGYzLWE3NWItNDc2NC05 ZTgwLTFmYTU3MjkyMDdmYy8wLzMyMzQzMDMzM2EzMjM3MzAzMDNhMzQzMDMwMzcz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMDMwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAMn AEAHMA0GCSqGSIb3DQEBCwUAA4IBAQCCNZLGajrXYJl3F7A5nKw58SdDhZRRbFUi 9wKCZFwEAnZ5CfEcUMCQjcEQFeFk8GjwNh2vio+BRIEo0xoh6oBRnynBxVl8HaAS mR2Um9dtKnDb9QBzxf3hFw3354KjyPHcDhDgZOy8+FC427WDyCYdt2fT0niwieu9 2LCTyTxV7vTFZjPPN2iut5i3ez1CWNTbKXO/6rMOcIWkGo9ohTtwqadhh8t/oWGD mqm0So1XvA+OorSfipLR4AB3JUcU0doOzqLRiKVvw3oIJDmImKE6RMk3+lhuNUJ+ LqSFFUfggy9xo/2s1I+auA/cxKs225/fr75YIHtwmXYYRjpUjGai -----END CERTIFICATE-----Generated at Sat Jun 7 14:06:35 2025 by rpki-client