$ rpki-client -vvf repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343030383a3a2f34382d3438203d3e203338353030.roa File: 323430333a323730303a343030383a3a2f34382d3438203d3e203338353030.roa (raw, json) Hash identifier: lU+XzrpXlPGqlVGdSD9IV3Pgign0OrucSJ9ueYpQFA4= Subject key identifier: 5B:A0:C9:40:73:A8:30:F0:0D:B0:9C:2B:C4:E5:A1:5B:BD:4E:98:11 Certificate issuer: /CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Certificate serial: 7D4C4A7CBEA17A0CD21AC358E583DA805941D9D5 Authority key identifier: BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343030383a3a2f34382d3438203d3e203338353030.roa Signing time: Mon 02 Jun 2025 02:03:52 +0000 ROA not before: Mon 02 Jun 2025 01:58:52 +0000 ROA not after: Mon 01 Jun 2026 02:03:52 +0000 asID: 38500 IP address blocks: 2403:2700:4008::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 16:54:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:4c:4a:7c:be:a1:7a:0c:d2:1a:c3:58:e5:83:da:80:59:41:d9:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Validity Not Before: Jun 2 01:58:52 2025 GMT Not After : Jun 1 02:03:52 2026 GMT Subject: CN=5BA0C94073A830F00DB09C2BC4E5A15BBD4E9811 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:72:4b:74:aa:33:ad:3d:df:86:a9:96:af:8a: fb:37:e0:97:53:fa:c9:8c:e8:5a:f4:b2:e0:11:be: 16:55:06:a7:b0:b4:3f:77:74:e3:10:2c:22:f9:b4: 11:12:0d:37:72:35:67:c5:22:9f:75:cb:93:91:4a: 1f:a9:a7:7a:13:fc:6e:8a:5c:4a:60:72:54:f6:b0: 7d:8c:2e:4e:b9:fe:3f:92:4c:a8:ef:1e:03:be:39: 6b:9f:d5:35:d1:04:88:9f:6f:02:b6:9d:a8:05:99: fc:16:4b:e9:4b:b8:a5:25:3f:0f:5e:83:08:cb:93: a2:d4:ad:75:6a:3b:d5:73:16:7f:1d:aa:4f:c6:f6: 37:59:bd:d9:6c:58:eb:e8:ee:73:82:e6:d7:b5:a9: 0a:88:e5:fb:ca:15:1b:e2:58:16:c5:a3:e0:22:51: 48:8a:ee:86:e7:0b:e0:57:1e:0b:7e:a5:dd:3f:55: bb:98:c5:f0:8c:94:82:6d:34:c8:7b:8f:44:95:92: a4:3e:04:df:6d:62:92:10:66:e3:2c:10:1c:7f:28: df:ac:a7:7a:82:d7:12:b0:6f:ca:b6:fd:b1:b6:43: 29:b5:54:2d:70:30:d7:4d:ae:fe:cc:bc:88:b6:6c: 9f:de:8f:57:4a:b2:69:cb:4f:7c:86:99:7d:3d:67: 72:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:A0:C9:40:73:A8:30:F0:0D:B0:9C:2B:C4:E5:A1:5B:BD:4E:98:11 X509v3 Authority Key Identifier: keyid:BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343030383a3a2f34382d3438203d3e203338353030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2700:4008::/48 Signature Algorithm: sha256WithRSAEncryption 95:12:e2:8d:b5:50:18:0b:32:06:7e:05:8b:0e:8d:fb:7c:61: 39:d6:c8:ba:f6:38:ad:3f:30:e5:12:f5:97:01:ee:9e:30:54: a1:b1:48:67:57:3e:51:e1:a7:b1:72:d6:7c:b5:62:ab:78:bc: de:76:7d:20:ec:02:50:6c:37:b5:aa:5f:2a:d7:61:5d:c4:a6: 9f:83:41:72:e8:85:2b:93:16:df:66:9b:88:91:6d:28:2d:3e: 73:9e:1b:59:ea:3b:35:eb:2a:69:26:a2:3c:f5:7e:74:f4:dd: d9:ee:94:6d:25:d1:9b:8d:75:b7:6b:7a:43:96:76:7c:77:da: c3:b8:c1:4b:55:94:6e:62:53:67:53:34:c3:18:c1:6b:01:93: 68:ef:4b:66:5a:a3:85:32:de:c5:89:a2:1f:76:ca:a9:0e:27: 7a:b9:ab:94:a7:30:e2:1e:a3:97:0d:8c:67:07:04:4c:8a:2d: 77:1d:4d:41:77:da:d4:9b:2b:33:13:b5:b2:25:ed:19:9f:33: e6:5c:70:5e:ba:cd:e7:04:77:e0:66:a5:c8:3d:43:44:d5:d0: 86:7f:57:4d:6d:6d:c2:95:b2:0b:49:80:d5:39:d0:31:fc:7e: 81:3c:a2:e8:2a:89:83:64:b0:14:5a:5f:7e:97:cf:b5:76:0b: 1d:25:1e:69 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUfUxKfL6hegzSGsNY5YPagFlB2dUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVD RTFEQjFEMDAeFw0yNTA2MDIwMTU4NTJaFw0yNjA2MDEwMjAzNTJaMDMxMTAvBgNV BAMTKDVCQTBDOTQwNzNBODMwRjAwREIwOUMyQkM0RTVBMTVCQkQ0RTk4MTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxckt0qjOtPd+GqZavivs34JdT +smM6Fr0suARvhZVBqewtD93dOMQLCL5tBESDTdyNWfFIp91y5ORSh+pp3oT/G6K XEpgclT2sH2MLk65/j+STKjvHgO+OWuf1TXRBIifbwK2nagFmfwWS+lLuKUlPw9e gwjLk6LUrXVqO9VzFn8dqk/G9jdZvdlsWOvo7nOC5te1qQqI5fvKFRviWBbFo+Ai UUiK7obnC+BXHgt+pd0/VbuYxfCMlIJtNMh7j0SVkqQ+BN9tYpIQZuMsEBx/KN+s p3qC1xKwb8q2/bG2Qym1VC1wMNdNrv7MvIi2bJ/ej1dKsmnLT3yGmX09Z3KbAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUW6DJQHOoMPANsJwrxOWhW71OmBEwHwYDVR0j BBgwFoAUuwUpPT6dzQ9K2SYQDBkYhc4dsdAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MDQwNjhmMy1hNzViLTQ3NjQtOWU4MC0xZmE1NzI5MjA3ZmMvMC9CQjA1MjkzRDNF OURDRDBGNEFEOTI2MTAwQzE5MTg4NUNFMURCMUQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVDRTFE QjFEMC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IwNDA2OGYzLWE3NWItNDc2NC05 ZTgwLTFmYTU3MjkyMDdmYy8wLzMyMzQzMDMzM2EzMjM3MzAzMDNhMzQzMDMwMzgz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMDMwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAMn AEAIMA0GCSqGSIb3DQEBCwUAA4IBAQCVEuKNtVAYCzIGfgWLDo37fGE51si69jit PzDlEvWXAe6eMFShsUhnVz5R4aexctZ8tWKreLzedn0g7AJQbDe1ql8q12FdxKaf g0Fy6IUrkxbfZpuIkW0oLT5znhtZ6js16yppJqI89X509N3Z7pRtJdGbjXW3a3pD lnZ8d9rDuMFLVZRuYlNnUzTDGMFrAZNo70tmWqOFMt7FiaIfdsqpDid6uauUpzDi HqOXDYxnBwRMii13HU1Bd9rUmyszE7WyJe0ZnzPmXHBeus3nBHfgZqXIPUNE1dCG f1dNbW3ClbILSYDVOdAx/H6BPKLoKomDZLAUWl9+l8+1dgsdJR5p -----END CERTIFICATE-----Generated at Sat Jun 7 14:08:50 2025 by rpki-client