$ rpki-client -vvf repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343031303a3a2f34382d3438203d3e203338353030.roa File: 323430333a323730303a343031303a3a2f34382d3438203d3e203338353030.roa (raw, json) Hash identifier: 8uCEZaq+ErAkXmWnljIKQtRBspsZSJtLGFr9COygbXs= Subject key identifier: 70:E4:93:C6:24:BE:B5:2F:3D:70:C1:25:F1:4B:A5:90:D9:5B:DE:E8 Certificate issuer: /CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Certificate serial: 6CB31086EDB87AA75DFD26FD1628878F59F5C8AC Authority key identifier: BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343031303a3a2f34382d3438203d3e203338353030.roa Signing time: Mon 02 Jun 2025 02:03:50 +0000 ROA not before: Mon 02 Jun 2025 01:58:50 +0000 ROA not after: Mon 01 Jun 2026 02:03:50 +0000 asID: 38500 IP address blocks: 2403:2700:4010::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 16:54:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:b3:10:86:ed:b8:7a:a7:5d:fd:26:fd:16:28:87:8f:59:f5:c8:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Validity Not Before: Jun 2 01:58:50 2025 GMT Not After : Jun 1 02:03:50 2026 GMT Subject: CN=70E493C624BEB52F3D70C125F14BA590D95BDEE8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:f9:53:02:e7:b3:08:6c:cd:67:cb:df:5d:49: 15:96:fe:a8:38:7a:f5:77:4f:99:02:3e:3b:c8:9f: 25:2e:b5:59:06:85:e3:79:d2:3c:8e:0d:f0:d1:a0: 9a:e9:ac:2f:8e:b1:c1:d8:97:92:a5:34:80:b2:34: 54:c3:a8:45:b1:f5:45:c1:5b:30:5e:13:25:d7:80: 54:aa:c4:d7:d8:10:40:2f:fd:c3:eb:6a:dc:55:03: ff:eb:e2:b5:fb:83:3d:d1:6b:ef:bc:3b:f0:80:3c: 51:0a:ee:47:63:a6:39:59:82:fe:04:a0:1b:53:d4: 7a:ca:f5:fc:c4:3c:28:70:94:d8:e2:23:fa:e4:f3: eb:56:20:07:b6:1c:de:2e:44:f3:ed:06:84:01:6d: 19:5e:c7:91:61:75:09:34:6e:e1:9f:4b:6d:d3:b3: d7:31:9d:ba:f9:3d:77:07:69:2d:b9:d2:62:5f:b6: 31:d3:c2:9d:b2:72:6b:7a:15:54:fa:49:b2:2d:fd: 60:82:0d:e8:6d:00:a5:29:61:e7:53:a6:0a:a4:b5: 38:1e:06:93:7c:b5:5e:69:b6:b3:a5:21:7d:ae:1d: e8:78:86:40:19:c8:32:5c:e6:a3:a4:3e:c7:45:05: 35:a3:1b:31:12:6b:cd:ee:e4:37:aa:01:39:0b:11: 37:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:E4:93:C6:24:BE:B5:2F:3D:70:C1:25:F1:4B:A5:90:D9:5B:DE:E8 X509v3 Authority Key Identifier: keyid:BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343031303a3a2f34382d3438203d3e203338353030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2700:4010::/48 Signature Algorithm: sha256WithRSAEncryption 6e:51:eb:b2:fc:0e:5c:b9:58:91:19:44:15:65:d9:af:79:29: 93:da:a4:6b:d9:11:22:59:3c:c7:a3:4d:42:5d:4b:70:0f:c6: a4:7b:a5:49:d9:ef:57:19:91:1c:fa:66:33:7c:33:c7:87:2d: 43:9c:d9:69:ef:3a:19:04:8b:b3:b4:7c:8b:0b:32:ad:4b:e3: 64:7c:1d:48:f2:c0:fb:84:b8:13:7d:55:f2:0a:75:e1:b4:7d: 5e:08:1d:8c:01:0c:91:89:f1:5a:57:3b:89:59:06:cd:fd:dd: 2d:88:e5:06:11:74:bf:ca:d8:ef:fb:fa:3f:c7:ee:97:c4:3f: c2:b1:bf:88:2f:6e:40:03:2d:36:4e:77:3e:5f:3e:a3:31:1d: 9b:1e:89:9e:12:18:b8:d1:34:c0:c2:af:be:0b:63:68:67:64: b5:e6:ba:5d:ec:83:7d:da:68:ee:78:d7:da:d0:6b:a1:74:45: 6e:e4:7d:46:f7:60:a2:81:14:9b:cb:53:15:3c:72:81:52:37: e1:a2:9f:f2:4e:67:cf:0b:43:3b:cb:2d:28:c4:61:4d:cc:1d: cc:00:d9:ba:ff:d9:e8:bb:55:fe:73:41:ea:e7:43:36:11:fc: 69:2b:dc:d9:02:b3:ea:b1:12:03:db:9a:35:a7:1f:4e:e2:1b: d3:1a:db:b3 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUbLMQhu24eqdd/Sb9FiiHj1n1yKwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVD RTFEQjFEMDAeFw0yNTA2MDIwMTU4NTBaFw0yNjA2MDEwMjAzNTBaMDMxMTAvBgNV BAMTKDcwRTQ5M0M2MjRCRUI1MkYzRDcwQzEyNUYxNEJBNTkwRDk1QkRFRTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDK+VMC57MIbM1ny99dSRWW/qg4 evV3T5kCPjvInyUutVkGheN50jyODfDRoJrprC+OscHYl5KlNICyNFTDqEWx9UXB WzBeEyXXgFSqxNfYEEAv/cPratxVA//r4rX7gz3Ra++8O/CAPFEK7kdjpjlZgv4E oBtT1HrK9fzEPChwlNjiI/rk8+tWIAe2HN4uRPPtBoQBbRlex5FhdQk0buGfS23T s9cxnbr5PXcHaS250mJftjHTwp2ycmt6FVT6SbIt/WCCDehtAKUpYedTpgqktTge BpN8tV5ptrOlIX2uHeh4hkAZyDJc5qOkPsdFBTWjGzESa83u5DeqATkLETcPAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUcOSTxiS+tS89cMEl8UulkNlb3ugwHwYDVR0j BBgwFoAUuwUpPT6dzQ9K2SYQDBkYhc4dsdAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MDQwNjhmMy1hNzViLTQ3NjQtOWU4MC0xZmE1NzI5MjA3ZmMvMC9CQjA1MjkzRDNF OURDRDBGNEFEOTI2MTAwQzE5MTg4NUNFMURCMUQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVDRTFE QjFEMC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IwNDA2OGYzLWE3NWItNDc2NC05 ZTgwLTFmYTU3MjkyMDdmYy8wLzMyMzQzMDMzM2EzMjM3MzAzMDNhMzQzMDMxMzAz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMDMwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAMn AEAQMA0GCSqGSIb3DQEBCwUAA4IBAQBuUeuy/A5cuViRGUQVZdmveSmT2qRr2REi WTzHo01CXUtwD8ake6VJ2e9XGZEc+mYzfDPHhy1DnNlp7zoZBIuztHyLCzKtS+Nk fB1I8sD7hLgTfVXyCnXhtH1eCB2MAQyRifFaVzuJWQbN/d0tiOUGEXS/ytjv+/o/ x+6XxD/Csb+IL25AAy02Tnc+Xz6jMR2bHomeEhi40TTAwq++C2NoZ2S15rpd7IN9 2mjueNfa0GuhdEVu5H1G92CigRSby1MVPHKBUjfhop/yTmfPC0M7yy0oxGFNzB3M ANm6/9nou1X+c0Hq50M2EfxpK9zZArPqsRID25o1px9O4hvTGtuz -----END CERTIFICATE-----Generated at Sat Jun 7 18:51:55 2025 by rpki-client