$ rpki-client -vvf repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a373a3a2f34382d3438203d3e203338353030.roa File: 323430333a323730303a373a3a2f34382d3438203d3e203338353030.roa (raw, json) Hash identifier: zom4OgHCT9yNR9s7PClSziJLNh/98AcRHADEEh70B44= Subject key identifier: 02:DE:0A:21:30:AE:9B:88:DD:40:8A:19:A3:B7:86:C5:1E:CE:10:68 Certificate issuer: /CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Certificate serial: 11740B595F7C5D452364946851561E23E1F8C210 Authority key identifier: BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a373a3a2f34382d3438203d3e203338353030.roa Signing time: Mon 02 Jun 2025 02:03:48 +0000 ROA not before: Mon 02 Jun 2025 01:58:48 +0000 ROA not after: Mon 01 Jun 2026 02:03:48 +0000 asID: 38500 IP address blocks: 2403:2700:7::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 16:54:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:74:0b:59:5f:7c:5d:45:23:64:94:68:51:56:1e:23:e1:f8:c2:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Validity Not Before: Jun 2 01:58:48 2025 GMT Not After : Jun 1 02:03:48 2026 GMT Subject: CN=02DE0A2130AE9B88DD408A19A3B786C51ECE1068 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:d8:ed:04:df:1c:a1:5d:91:0d:74:ad:2a:c5: b3:55:fd:df:21:37:53:a0:f8:ef:c0:98:6b:c0:15: c0:1e:55:c4:0b:9a:41:52:bb:01:2d:92:7a:04:85: 2d:56:8f:a0:c1:4c:d6:fa:25:17:1e:ba:35:fc:3e: 73:00:42:06:e3:a8:15:5c:d3:54:a5:64:ac:f9:51: 4c:ec:0c:59:5b:f4:26:fc:76:45:5f:a5:3c:86:79: 62:88:72:2a:19:6c:3f:51:92:5a:ab:f3:54:30:39: b9:d3:e7:64:3d:56:7e:74:c5:66:4b:fa:5e:1d:6b: 3e:fa:76:57:9a:87:77:87:e3:8f:a6:50:2d:99:64: 7b:27:e2:f3:8a:bc:d5:25:66:1c:b8:fc:0c:78:fb: bd:c2:f4:ec:d8:9d:74:4b:20:51:9c:c7:e9:f3:75: 04:6b:c4:11:2e:8b:86:2f:95:bb:61:b5:72:a9:af: 4f:7e:75:76:e6:ad:b6:9b:9d:f0:7d:1b:66:e1:f5: f1:54:4d:bb:cf:ea:6e:22:30:d6:33:c8:5d:26:ec: fa:ba:34:c6:17:a8:6c:04:b8:64:e4:0c:dc:23:2d: 2f:f2:57:e0:6c:2c:78:79:c7:ee:5b:5a:fd:1a:2e: 63:f9:e8:b9:c5:f1:21:c5:f5:92:bd:ea:da:dc:96: eb:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:DE:0A:21:30:AE:9B:88:DD:40:8A:19:A3:B7:86:C5:1E:CE:10:68 X509v3 Authority Key Identifier: keyid:BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a373a3a2f34382d3438203d3e203338353030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2700:7::/48 Signature Algorithm: sha256WithRSAEncryption 2b:27:19:6d:a8:ef:1f:2f:38:bf:33:7b:6a:6e:82:a2:8a:fd: 24:fa:04:3f:6f:9d:68:eb:b3:66:db:3b:69:83:0c:47:be:4b: 67:8c:4c:4d:1a:e8:95:33:15:e7:ba:8f:6e:65:28:4c:80:76: bd:97:e8:30:32:50:3a:78:e5:7b:a3:1d:ed:34:35:a2:c3:1e: df:3e:35:92:cb:74:60:0f:6c:95:e5:c9:c7:09:89:b3:8b:4c: 0f:fc:0e:04:f5:da:10:11:14:5c:d3:fa:ef:c5:e0:99:72:d1: c0:b1:98:e5:58:86:23:09:43:24:f1:64:41:07:80:49:ef:66: bf:ee:cd:e3:cc:9f:70:34:1b:11:22:54:ce:b2:7c:d4:35:39: 54:39:f1:38:17:a5:2b:62:56:1c:74:c7:b3:13:ed:04:b4:e8: b1:be:c4:ca:f9:7f:0c:f0:68:57:c6:83:2b:0d:91:c0:9c:45: 81:93:56:d4:7a:91:8d:da:8d:94:7d:86:d5:b2:94:8d:ce:02: 16:3b:8f:da:16:73:ca:28:fb:f9:2e:02:e2:7c:85:34:0d:4d: 8e:86:88:e2:c2:25:5e:ff:62:dc:df:6c:72:80:1c:7f:b9:16: 4f:5f:9e:0f:0b:ca:8b:7b:23:7d:aa:27:da:b9:bc:55:ea:6a: 25:d8:b8:cc -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUEXQLWV98XUUjZJRoUVYeI+H4whAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVD RTFEQjFEMDAeFw0yNTA2MDIwMTU4NDhaFw0yNjA2MDEwMjAzNDhaMDMxMTAvBgNV BAMTKDAyREUwQTIxMzBBRTlCODhERDQwOEExOUEzQjc4NkM1MUVDRTEwNjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDl2O0E3xyhXZENdK0qxbNV/d8h N1Og+O/AmGvAFcAeVcQLmkFSuwEtknoEhS1Wj6DBTNb6JRceujX8PnMAQgbjqBVc 01SlZKz5UUzsDFlb9Cb8dkVfpTyGeWKIcioZbD9Rklqr81QwObnT52Q9Vn50xWZL +l4daz76dleah3eH44+mUC2ZZHsn4vOKvNUlZhy4/Ax4+73C9OzYnXRLIFGcx+nz dQRrxBEui4YvlbthtXKpr09+dXbmrbabnfB9G2bh9fFUTbvP6m4iMNYzyF0m7Pq6 NMYXqGwEuGTkDNwjLS/yV+BsLHh5x+5bWv0aLmP56LnF8SHF9ZK96trclutdAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUAt4KITCum4jdQIoZo7eGxR7OEGgwHwYDVR0j BBgwFoAUuwUpPT6dzQ9K2SYQDBkYhc4dsdAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MDQwNjhmMy1hNzViLTQ3NjQtOWU4MC0xZmE1NzI5MjA3ZmMvMC9CQjA1MjkzRDNF OURDRDBGNEFEOTI2MTAwQzE5MTg4NUNFMURCMUQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVDRTFE QjFEMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IwNDA2OGYzLWE3NWItNDc2NC05 ZTgwLTFmYTU3MjkyMDdmYy8wLzMyMzQzMDMzM2EzMjM3MzAzMDNhMzczYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAMnAAAHMA0G CSqGSIb3DQEBCwUAA4IBAQArJxltqO8fLzi/M3tqboKiiv0k+gQ/b51o67Nm2ztp gwxHvktnjExNGuiVMxXnuo9uZShMgHa9l+gwMlA6eOV7ox3tNDWiwx7fPjWSy3Rg D2yV5cnHCYmzi0wP/A4E9doQERRc0/rvxeCZctHAsZjlWIYjCUMk8WRBB4BJ72a/ 7s3jzJ9wNBsRIlTOsnzUNTlUOfE4F6UrYlYcdMezE+0EtOixvsTK+X8M8GhXxoMr DZHAnEWBk1bUepGN2o2UfYbVspSNzgIWO4/aFnPKKPv5LgLifIU0DU2OhojiwiVe /2Lc32xygBx/uRZPX54PC8qLeyN9qifaubxV6mol2LjM -----END CERTIFICATE-----Generated at Sat Jun 7 13:57:12 2025 by rpki-client