$ rpki-client -vvf repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a353a3a2f34382d3438203d3e203338353030.roa File: 323430333a323730303a353a3a2f34382d3438203d3e203338353030.roa (raw, json) Hash identifier: dkBm1uq0fOeNnS/XAl8fOwdP51OmJH2MKhTJVDaflPk= Subject key identifier: 92:7F:E8:CC:7D:16:64:D9:92:20:FC:66:13:0F:6F:9C:65:66:30:61 Certificate issuer: /CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Certificate serial: 045C0A810A443913A01147AA82AF29F21C83953C Authority key identifier: BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a353a3a2f34382d3438203d3e203338353030.roa Signing time: Mon 02 Jun 2025 02:03:47 +0000 ROA not before: Mon 02 Jun 2025 01:58:47 +0000 ROA not after: Mon 01 Jun 2026 02:03:47 +0000 asID: 38500 IP address blocks: 2403:2700:5::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 16:54:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:5c:0a:81:0a:44:39:13:a0:11:47:aa:82:af:29:f2:1c:83:95:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Validity Not Before: Jun 2 01:58:47 2025 GMT Not After : Jun 1 02:03:47 2026 GMT Subject: CN=927FE8CC7D1664D99220FC66130F6F9C65663061 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:42:e2:a9:27:a8:22:75:68:3c:75:d2:6a:26: ca:2f:cc:f1:e2:34:2e:f3:9e:c3:38:58:f6:03:9f: 85:0c:9c:16:f9:e8:0b:3d:63:16:05:0e:3d:91:9b: ce:7e:88:98:03:32:42:96:a4:b5:23:48:9e:9d:f2: f9:a5:fc:31:2c:a0:cf:e7:49:8b:d0:c1:85:2b:bb: 8a:b8:93:7c:e7:9d:45:f9:0a:4b:ce:08:bc:03:7f: 55:44:67:03:b9:78:de:47:5e:11:4b:03:ed:60:93: d4:29:25:a7:70:44:98:17:65:77:7b:dc:87:98:65: e8:d1:b4:bd:c0:b1:be:32:18:2f:86:68:8d:2d:a8: 13:2d:44:a7:a7:b1:de:96:c2:a8:f9:e7:2d:d8:57: b0:10:7a:dc:b5:39:06:71:56:bf:50:b2:62:df:87: 3b:8a:3c:cf:13:b2:31:85:1d:bc:84:e4:ba:41:7e: 63:98:fe:a9:22:60:a7:c2:fc:9c:75:0f:9c:10:5d: 29:12:56:c9:50:74:9e:06:6b:d5:59:d6:d7:9c:98: 9a:6e:dd:04:0b:45:d0:c8:24:54:8f:58:a1:f4:1b: 84:ae:08:d9:cf:b9:0f:ba:06:0e:f7:01:ee:f0:3a: 1e:f2:98:dc:41:b4:11:c3:2a:80:b2:e5:83:fa:c8: 76:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:7F:E8:CC:7D:16:64:D9:92:20:FC:66:13:0F:6F:9C:65:66:30:61 X509v3 Authority Key Identifier: keyid:BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a353a3a2f34382d3438203d3e203338353030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2700:5::/48 Signature Algorithm: sha256WithRSAEncryption 90:fe:7a:3e:8c:8d:f4:d6:94:f0:17:ca:2e:4f:fe:de:b0:39: 1f:c7:25:17:42:60:ae:22:1b:5b:cb:55:42:34:a0:b6:be:32: f6:93:85:68:a6:98:5f:23:72:39:29:d5:20:65:dc:5b:3f:b0: 9a:6c:a7:3d:0b:a6:8f:b4:98:3e:16:6f:01:f4:8b:83:4d:48: f7:08:f6:b7:3b:1e:be:a5:f1:b0:88:ef:6e:f2:ca:eb:27:21: 2b:93:d3:3b:89:de:7a:6e:80:ca:16:fa:23:86:09:00:64:7d: d2:c9:7c:84:91:2c:bf:ae:17:aa:f1:23:06:bc:72:0a:13:6e: 43:b1:0b:6b:e0:e7:59:21:8b:5c:2c:2d:7b:a2:4e:77:ef:3b: 45:4a:de:db:35:eb:72:68:f8:88:8c:ab:2d:33:60:b6:5b:80: d6:a7:02:d7:fc:3f:21:e1:98:97:8f:f5:9a:c9:31:53:3a:23: 5a:07:d2:9f:8b:9f:6e:16:e9:4a:df:45:28:51:ac:57:8e:ac: 35:b4:2c:b3:5c:f9:54:eb:30:dc:20:14:cf:a4:b9:25:e6:2e: 61:a5:19:9a:51:76:b5:7c:b2:1b:0d:9e:57:08:dc:c1:8f:a2: e4:0a:84:13:7a:52:ab:44:ec:97:19:d0:c0:c0:da:8d:b7:32: 7b:ca:e6:06 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUBFwKgQpEOROgEUeqgq8p8hyDlTwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVD RTFEQjFEMDAeFw0yNTA2MDIwMTU4NDdaFw0yNjA2MDEwMjAzNDdaMDMxMTAvBgNV BAMTKDkyN0ZFOENDN0QxNjY0RDk5MjIwRkM2NjEzMEY2RjlDNjU2NjMwNjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVQuKpJ6gidWg8ddJqJsovzPHi NC7znsM4WPYDn4UMnBb56As9YxYFDj2Rm85+iJgDMkKWpLUjSJ6d8vml/DEsoM/n SYvQwYUru4q4k3znnUX5CkvOCLwDf1VEZwO5eN5HXhFLA+1gk9QpJadwRJgXZXd7 3IeYZejRtL3Asb4yGC+GaI0tqBMtRKensd6Wwqj55y3YV7AQety1OQZxVr9QsmLf hzuKPM8TsjGFHbyE5LpBfmOY/qkiYKfC/Jx1D5wQXSkSVslQdJ4Ga9VZ1tecmJpu 3QQLRdDIJFSPWKH0G4SuCNnPuQ+6Bg73Ae7wOh7ymNxBtBHDKoCy5YP6yHbFAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUkn/ozH0WZNmSIPxmEw9vnGVmMGEwHwYDVR0j BBgwFoAUuwUpPT6dzQ9K2SYQDBkYhc4dsdAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MDQwNjhmMy1hNzViLTQ3NjQtOWU4MC0xZmE1NzI5MjA3ZmMvMC9CQjA1MjkzRDNF OURDRDBGNEFEOTI2MTAwQzE5MTg4NUNFMURCMUQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVDRTFE QjFEMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IwNDA2OGYzLWE3NWItNDc2NC05 ZTgwLTFmYTU3MjkyMDdmYy8wLzMyMzQzMDMzM2EzMjM3MzAzMDNhMzUzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAMnAAAFMA0G CSqGSIb3DQEBCwUAA4IBAQCQ/no+jI301pTwF8ouT/7esDkfxyUXQmCuIhtby1VC NKC2vjL2k4VopphfI3I5KdUgZdxbP7CabKc9C6aPtJg+Fm8B9IuDTUj3CPa3Ox6+ pfGwiO9u8srrJyErk9M7id56boDKFvojhgkAZH3SyXyEkSy/rheq8SMGvHIKE25D sQtr4OdZIYtcLC17ok537ztFSt7bNetyaPiIjKstM2C2W4DWpwLX/D8h4ZiXj/Wa yTFTOiNaB9Kfi59uFulK30UoUaxXjqw1tCyzXPlU6zDcIBTPpLkl5i5hpRmaUXa1 fLIbDZ5XCNzBj6LkCoQTelKrROyXGdDAwNqNtzJ7yuYG -----END CERTIFICATE-----Generated at Sat Jun 7 13:52:15 2025 by rpki-client