$ rpki-client -vvf repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343030393a3a2f34382d3438203d3e203338353030.roa File: 323430333a323730303a343030393a3a2f34382d3438203d3e203338353030.roa (raw, json) Hash identifier: QNOvqxPhnejQxGTKHiQXSiXfIuY1m87nHG2q2XmKahg= Subject key identifier: 55:34:27:09:B9:CC:E5:F0:65:0D:F5:D4:03:B8:81:70:A5:02:68:3A Certificate issuer: /CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Certificate serial: 3D76E10C3480659FDAAB7411091414788BAC06C2 Authority key identifier: BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343030393a3a2f34382d3438203d3e203338353030.roa Signing time: Mon 02 Jun 2025 02:03:47 +0000 ROA not before: Mon 02 Jun 2025 01:58:47 +0000 ROA not after: Mon 01 Jun 2026 02:03:47 +0000 asID: 38500 IP address blocks: 2403:2700:4009::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 16:54:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:76:e1:0c:34:80:65:9f:da:ab:74:11:09:14:14:78:8b:ac:06:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Validity Not Before: Jun 2 01:58:47 2025 GMT Not After : Jun 1 02:03:47 2026 GMT Subject: CN=55342709B9CCE5F0650DF5D403B88170A502683A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:e2:3f:c8:88:69:da:73:1a:63:37:eb:be:06: 57:e2:c9:4b:f9:4b:f3:74:6f:19:d0:83:ed:28:7f: d8:89:10:6a:ec:e4:5d:f1:b1:0d:08:c9:d3:c2:b7: 05:99:10:c9:df:28:14:82:e3:70:11:b3:f7:98:0b: 71:b7:03:6c:c2:5b:ab:3e:7c:3f:64:f5:db:f6:00: fa:ab:4e:0a:78:67:00:bc:3d:3a:9c:4e:66:46:a2: e8:4c:36:8a:f1:3f:df:cc:34:2b:2b:60:08:86:18: be:e7:a6:31:26:f6:26:d8:a3:a0:ed:f7:b7:6b:59: 99:c2:3f:13:90:c4:63:83:63:02:cb:79:c6:74:c6: 37:9c:54:50:a1:36:89:4b:e2:2b:29:e9:61:f9:f3: 0a:26:18:9e:d8:9c:8a:96:5d:0f:c1:53:f1:e3:85: fb:a5:0e:25:be:a8:f8:c8:a4:c1:37:41:7f:6d:9b: 55:e5:24:4d:e4:2c:95:af:9e:f3:1a:87:23:cb:89: f3:02:1f:88:f0:69:fa:38:3b:fc:13:ac:c5:b6:96: 95:d8:80:8a:99:79:67:8f:3d:46:f1:a9:5e:4f:df: 95:26:86:e6:61:0f:88:4a:0c:e4:c8:80:b9:ca:7e: 38:79:0d:c3:eb:a5:2b:d0:3a:17:b4:fb:82:ae:3f: b0:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:34:27:09:B9:CC:E5:F0:65:0D:F5:D4:03:B8:81:70:A5:02:68:3A X509v3 Authority Key Identifier: keyid:BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343030393a3a2f34382d3438203d3e203338353030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2700:4009::/48 Signature Algorithm: sha256WithRSAEncryption 4e:db:db:09:52:9e:df:7f:be:62:df:44:40:a4:33:6f:75:18: ce:40:0f:ee:47:30:a6:d8:a4:73:d2:55:cf:e7:a4:72:a8:28: 8d:d3:29:26:2d:6c:5e:04:22:93:3a:fb:5c:fd:ce:2e:6a:56: 51:01:af:9c:31:bf:cf:6e:9d:2d:51:cd:76:fb:01:03:ce:47: ab:a5:23:23:98:e6:bd:43:f6:ea:a9:65:b1:cf:20:ab:62:4f: f5:df:b6:8d:c1:ff:06:63:fc:f8:06:b2:62:e6:4c:9e:4a:90: 34:e6:0b:79:56:6a:7a:ca:7f:42:72:7e:28:68:85:86:21:b7: 58:62:99:ce:0a:be:61:55:61:18:3f:89:dc:89:21:3d:3a:7d: 22:55:37:65:f1:60:58:06:76:29:4d:f8:f7:35:71:d9:87:2d: 7c:7e:6d:62:ab:d6:85:92:b8:89:9e:1a:75:ee:9c:6d:67:1f: 0f:c5:05:c3:43:ef:69:30:66:b5:54:21:4e:cf:03:f6:b3:d9: 45:45:1e:f8:22:c8:f7:f0:39:75:0c:90:cd:17:78:40:2a:ca: 33:a6:0c:c6:19:fc:c7:ee:04:a8:97:25:7b:f1:7d:80:64:7f: 05:07:03:58:a8:39:d3:4b:26:da:91:45:10:8a:5a:63:56:d8: c2:48:c6:65 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUPXbhDDSAZZ/aq3QRCRQUeIusBsIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVD RTFEQjFEMDAeFw0yNTA2MDIwMTU4NDdaFw0yNjA2MDEwMjAzNDdaMDMxMTAvBgNV BAMTKDU1MzQyNzA5QjlDQ0U1RjA2NTBERjVENDAzQjg4MTcwQTUwMjY4M0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDC4j/IiGnacxpjN+u+BlfiyUv5 S/N0bxnQg+0of9iJEGrs5F3xsQ0IydPCtwWZEMnfKBSC43ARs/eYC3G3A2zCW6s+ fD9k9dv2APqrTgp4ZwC8PTqcTmZGouhMNorxP9/MNCsrYAiGGL7npjEm9ibYo6Dt 97drWZnCPxOQxGODYwLLecZ0xjecVFChNolL4isp6WH58womGJ7YnIqWXQ/BU/Hj hfulDiW+qPjIpME3QX9tm1XlJE3kLJWvnvMahyPLifMCH4jwafo4O/wTrMW2lpXY gIqZeWePPUbxqV5P35UmhuZhD4hKDOTIgLnKfjh5DcPrpSvQOhe0+4KuP7CnAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUVTQnCbnM5fBlDfXUA7iBcKUCaDowHwYDVR0j BBgwFoAUuwUpPT6dzQ9K2SYQDBkYhc4dsdAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MDQwNjhmMy1hNzViLTQ3NjQtOWU4MC0xZmE1NzI5MjA3ZmMvMC9CQjA1MjkzRDNF OURDRDBGNEFEOTI2MTAwQzE5MTg4NUNFMURCMUQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVDRTFE QjFEMC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IwNDA2OGYzLWE3NWItNDc2NC05 ZTgwLTFmYTU3MjkyMDdmYy8wLzMyMzQzMDMzM2EzMjM3MzAzMDNhMzQzMDMwMzkz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMDMwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAMn AEAJMA0GCSqGSIb3DQEBCwUAA4IBAQBO29sJUp7ff75i30RApDNvdRjOQA/uRzCm 2KRz0lXP56RyqCiN0ykmLWxeBCKTOvtc/c4ualZRAa+cMb/Pbp0tUc12+wEDzker pSMjmOa9Q/bqqWWxzyCrYk/137aNwf8GY/z4BrJi5kyeSpA05gt5Vmp6yn9Ccn4o aIWGIbdYYpnOCr5hVWEYP4nciSE9On0iVTdl8WBYBnYpTfj3NXHZhy18fm1iq9aF kriJnhp17pxtZx8PxQXDQ+9pMGa1VCFOzwP2s9lFRR74Isj38Dl1DJDNF3hAKsoz pgzGGfzH7gSolyV78X2AZH8FBwNYqDnTSybakUUQilpjVtjCSMZl -----END CERTIFICATE-----Generated at Sat Jun 7 14:09:24 2025 by rpki-client