$ rpki-client -vvf repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343a3a2f34382d3438203d3e203338353030.roa File: 323430333a323730303a343a3a2f34382d3438203d3e203338353030.roa (raw, json) Hash identifier: Has9KhYZW/xL+AZ5Y86DT/rX9uV6ZdOQ3QRaKxgL1+g= Subject key identifier: A6:7E:64:46:91:B2:37:99:EA:0C:1A:B2:B9:2F:D7:04:75:BE:24:2A Certificate issuer: /CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Certificate serial: 24EC14501524776DE339DF1A662A1FFFABE15935 Authority key identifier: BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343a3a2f34382d3438203d3e203338353030.roa Signing time: Mon 02 Jun 2025 02:03:51 +0000 ROA not before: Mon 02 Jun 2025 01:58:51 +0000 ROA not after: Mon 01 Jun 2026 02:03:51 +0000 asID: 38500 IP address blocks: 2403:2700:4::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 16:54:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:ec:14:50:15:24:77:6d:e3:39:df:1a:66:2a:1f:ff:ab:e1:59:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Validity Not Before: Jun 2 01:58:51 2025 GMT Not After : Jun 1 02:03:51 2026 GMT Subject: CN=A67E644691B23799EA0C1AB2B92FD70475BE242A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:b0:2d:b0:d9:06:a2:2c:5d:46:b2:26:4a:2c: 93:5f:c1:1a:25:0e:af:60:2d:ae:3c:66:18:f4:57: 12:19:27:63:86:8a:e7:7a:fc:3b:8a:04:23:55:17: 00:a0:5e:d0:9a:28:8a:2c:a1:ca:d2:55:b8:54:a4: a5:79:90:11:86:8a:e7:f3:31:93:e8:57:48:2f:5f: 5e:0b:dd:12:13:e3:8e:56:3d:1c:22:c1:59:cc:4d: b8:69:55:1b:ba:60:08:27:71:05:a6:63:35:d0:92: a0:bc:66:b9:12:f6:34:a1:f3:cc:38:53:39:e8:78: 45:9d:33:75:ef:2c:75:b2:3d:2c:74:90:52:f8:0c: 5d:a3:78:d1:7b:65:e8:08:b2:a8:99:f8:ea:b1:82: ad:f8:59:0f:50:c0:63:32:75:8d:d1:02:6a:19:6d: 50:21:b1:7e:b5:9f:4e:a0:13:6a:e6:af:8b:2b:f3: ba:a6:77:63:00:71:95:75:db:a3:60:e3:1d:34:66: 95:2a:be:06:9d:3c:21:9e:6c:04:06:1b:f5:2f:88: 81:71:7f:f5:41:da:69:7a:8b:1f:2c:0f:31:e0:ca: 95:b1:10:3b:15:03:ef:04:bf:82:87:fb:1c:89:6a: ee:68:1b:2e:1e:da:bf:8f:6f:6e:3e:de:35:b2:04: 2b:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:7E:64:46:91:B2:37:99:EA:0C:1A:B2:B9:2F:D7:04:75:BE:24:2A X509v3 Authority Key Identifier: keyid:BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343a3a2f34382d3438203d3e203338353030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2700:4::/48 Signature Algorithm: sha256WithRSAEncryption 83:e1:22:e4:17:8a:82:58:d4:19:64:be:25:e0:05:42:0c:e5: 40:30:34:f4:c4:b1:f9:8c:6c:05:a7:ae:4d:5a:bc:9d:f0:8a: c7:a2:22:4e:90:03:10:95:d7:9e:38:2b:fd:32:fc:cb:14:bc: cc:d3:ab:c1:9a:e3:56:59:e8:d1:2e:a9:b0:40:4a:3e:3d:77: e7:63:cb:64:a2:f7:80:97:f3:b8:b4:f6:10:e0:61:e1:cb:5d: 34:ac:4a:5c:5f:84:3a:04:5f:3f:96:e5:95:ad:cc:60:8d:12: 49:6a:16:49:c3:60:92:77:ac:cd:24:fa:19:d5:30:77:92:0d: af:f4:1e:c0:19:ca:43:ae:b2:c9:b5:ae:bd:2f:e1:fe:5b:51: 53:f8:ce:9c:e5:01:07:07:ad:88:f7:c1:8a:2f:ff:e5:2a:45: 6e:35:7e:04:16:74:b7:7e:f8:23:9c:36:27:cb:bf:97:2e:89: be:84:1e:f6:1e:b6:85:25:83:7a:0f:00:e2:00:66:95:8c:14: ca:96:d4:1f:0b:3b:82:c9:9d:63:99:a8:43:f3:df:44:eb:d1: 83:2c:ed:9e:c7:df:a3:34:cb:80:c9:d0:eb:54:81:4b:f6:f0: 09:0b:90:5b:94:ff:8b:ce:18:e3:35:17:4d:f9:a1:ba:e5:0a: 6c:6c:1a:53 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUJOwUUBUkd23jOd8aZiof/6vhWTUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVD RTFEQjFEMDAeFw0yNTA2MDIwMTU4NTFaFw0yNjA2MDEwMjAzNTFaMDMxMTAvBgNV BAMTKEE2N0U2NDQ2OTFCMjM3OTlFQTBDMUFCMkI5MkZENzA0NzVCRTI0MkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEsC2w2QaiLF1GsiZKLJNfwRol Dq9gLa48Zhj0VxIZJ2OGiud6/DuKBCNVFwCgXtCaKIosocrSVbhUpKV5kBGGiufz MZPoV0gvX14L3RIT445WPRwiwVnMTbhpVRu6YAgncQWmYzXQkqC8ZrkS9jSh88w4 UznoeEWdM3XvLHWyPSx0kFL4DF2jeNF7ZegIsqiZ+Oqxgq34WQ9QwGMydY3RAmoZ bVAhsX61n06gE2rmr4sr87qmd2MAcZV126Ng4x00ZpUqvgadPCGebAQGG/UviIFx f/VB2ml6ix8sDzHgypWxEDsVA+8Ev4KH+xyJau5oGy4e2r+Pb24+3jWyBCsbAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUpn5kRpGyN5nqDBqyuS/XBHW+JCowHwYDVR0j BBgwFoAUuwUpPT6dzQ9K2SYQDBkYhc4dsdAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MDQwNjhmMy1hNzViLTQ3NjQtOWU4MC0xZmE1NzI5MjA3ZmMvMC9CQjA1MjkzRDNF OURDRDBGNEFEOTI2MTAwQzE5MTg4NUNFMURCMUQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVDRTFE QjFEMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IwNDA2OGYzLWE3NWItNDc2NC05 ZTgwLTFmYTU3MjkyMDdmYy8wLzMyMzQzMDMzM2EzMjM3MzAzMDNhMzQzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAMnAAAEMA0G CSqGSIb3DQEBCwUAA4IBAQCD4SLkF4qCWNQZZL4l4AVCDOVAMDT0xLH5jGwFp65N Wryd8IrHoiJOkAMQldeeOCv9MvzLFLzM06vBmuNWWejRLqmwQEo+PXfnY8tkoveA l/O4tPYQ4GHhy100rEpcX4Q6BF8/luWVrcxgjRJJahZJw2CSd6zNJPoZ1TB3kg2v 9B7AGcpDrrLJta69L+H+W1FT+M6c5QEHB62I98GKL//lKkVuNX4EFnS3fvgjnDYn y7+XLom+hB72HraFJYN6DwDiAGaVjBTKltQfCzuCyZ1jmahD899E69GDLO2ex9+j NMuAydDrVIFL9vAJC5BblP+LzhjjNRdN+aG65QpsbBpT -----END CERTIFICATE-----Generated at Sat Jun 7 13:51:58 2025 by rpki-client