$ rpki-client -vvf repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a383a3a2f34382d3438203d3e203338353030.roa File: 323430333a323730303a383a3a2f34382d3438203d3e203338353030.roa (raw, json) Hash identifier: qURilkjtdA9tmzrVI6OrtqFXtdHl5I4HX6q7a9Ca7gg= Subject key identifier: 08:2D:E5:E0:D1:E8:49:F1:CB:B8:3F:0E:02:82:41:62:8A:ED:88:99 Certificate issuer: /CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Certificate serial: 5618FFB80091B1477253E82FE6A24A9BB7E311D9 Authority key identifier: BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a383a3a2f34382d3438203d3e203338353030.roa Signing time: Mon 02 Jun 2025 02:03:48 +0000 ROA not before: Mon 02 Jun 2025 01:58:48 +0000 ROA not after: Mon 01 Jun 2026 02:03:48 +0000 asID: 38500 IP address blocks: 2403:2700:8::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 16:54:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:18:ff:b8:00:91:b1:47:72:53:e8:2f:e6:a2:4a:9b:b7:e3:11:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Validity Not Before: Jun 2 01:58:48 2025 GMT Not After : Jun 1 02:03:48 2026 GMT Subject: CN=082DE5E0D1E849F1CBB83F0E028241628AED8899 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:1e:8f:84:1c:d1:24:27:c9:28:b9:23:11:72: 7f:84:ee:f8:86:a6:5d:6e:c1:61:0b:82:ea:41:2a: c6:18:91:bf:18:d3:03:c2:46:aa:ea:50:a8:64:01: 9f:00:8b:e3:09:04:46:08:8a:72:ba:d1:a1:c0:fe: 13:37:d8:c9:95:8e:84:66:00:80:81:25:87:c3:6c: 8e:d2:bf:d8:6c:e4:e9:ce:3f:8e:a7:da:30:11:7d: fc:a3:aa:dc:9b:d0:c0:3a:d3:b8:df:4f:6e:43:26: f1:86:56:71:7b:cf:25:89:6b:c5:c6:13:af:36:b6: f3:03:b2:8e:8a:26:50:5b:37:dd:48:46:7c:5e:c1: f6:c0:48:d1:1b:d6:21:d1:38:6f:98:6f:f5:84:cb: 0f:1d:1f:1e:5c:c8:25:d6:29:ec:89:b5:16:2f:98: 69:f1:7d:d1:f6:92:e0:eb:c3:7b:49:7d:df:20:11: 28:20:2c:5d:14:3e:90:8e:dd:a8:ed:ca:f0:cc:f4: 51:63:1b:f7:4b:d6:6a:62:08:3f:d6:00:aa:62:3a: ae:c2:57:8f:19:1c:fc:fb:59:c0:aa:12:04:9b:21: e9:9b:59:6f:b4:9d:4a:83:00:e6:01:7d:a4:84:b5: 26:20:78:12:bf:2f:ca:5f:3e:2c:39:c9:f4:d7:e2: 6a:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:2D:E5:E0:D1:E8:49:F1:CB:B8:3F:0E:02:82:41:62:8A:ED:88:99 X509v3 Authority Key Identifier: keyid:BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a383a3a2f34382d3438203d3e203338353030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2700:8::/48 Signature Algorithm: sha256WithRSAEncryption b6:1e:31:f6:73:3b:73:5e:20:9e:dd:68:dc:b9:15:1f:01:71: 6e:62:40:5f:ee:c6:e6:13:a4:d8:ed:7a:8a:cd:96:1c:75:87: 5c:09:4b:96:d9:dd:10:32:dc:20:6e:9b:3d:ad:56:d6:6e:5a: 66:41:52:30:05:3b:91:02:9b:51:cd:85:01:85:39:4e:8b:3e: a9:6e:f5:dc:b6:90:fc:ef:88:b7:3b:4f:1c:d1:a7:fd:9c:e0: 98:65:4b:18:ce:66:d1:c1:a6:8c:88:31:b3:15:c6:cf:31:19: 1f:2b:11:d6:71:93:37:e3:fe:f5:ae:79:4a:76:de:89:57:b0: 74:f1:20:da:be:57:89:46:50:8f:79:a5:8c:6b:0c:88:37:c5: b6:f3:f2:ff:40:97:64:8d:29:86:04:5e:1f:71:90:4c:7c:e8: aa:cc:ed:2f:89:f2:f4:d0:41:34:19:1a:ee:d2:e8:c6:f1:f1: 77:fa:29:78:ef:81:ae:bb:62:60:fc:24:4e:81:bb:1e:4e:89: ff:ea:ab:df:f2:41:4c:8a:8c:27:c2:29:92:58:cc:51:a1:dd: 69:24:93:ab:40:04:71:d7:46:6a:f8:06:39:c3:4c:bf:58:82: df:5c:45:d9:79:79:76:8f:98:b1:20:9e:a5:4f:9f:b5:f8:69: 9a:23:18:c9 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUVhj/uACRsUdyU+gv5qJKm7fjEdkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVD RTFEQjFEMDAeFw0yNTA2MDIwMTU4NDhaFw0yNjA2MDEwMjAzNDhaMDMxMTAvBgNV BAMTKDA4MkRFNUUwRDFFODQ5RjFDQkI4M0YwRTAyODI0MTYyOEFFRDg4OTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDyHo+EHNEkJ8kouSMRcn+E7viG pl1uwWELgupBKsYYkb8Y0wPCRqrqUKhkAZ8Ai+MJBEYIinK60aHA/hM32MmVjoRm AICBJYfDbI7Sv9hs5OnOP46n2jARffyjqtyb0MA607jfT25DJvGGVnF7zyWJa8XG E682tvMDso6KJlBbN91IRnxewfbASNEb1iHROG+Yb/WEyw8dHx5cyCXWKeyJtRYv mGnxfdH2kuDrw3tJfd8gESggLF0UPpCO3ajtyvDM9FFjG/dL1mpiCD/WAKpiOq7C V48ZHPz7WcCqEgSbIembWW+0nUqDAOYBfaSEtSYgeBK/L8pfPiw5yfTX4mobAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUCC3l4NHoSfHLuD8OAoJBYortiJkwHwYDVR0j BBgwFoAUuwUpPT6dzQ9K2SYQDBkYhc4dsdAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MDQwNjhmMy1hNzViLTQ3NjQtOWU4MC0xZmE1NzI5MjA3ZmMvMC9CQjA1MjkzRDNF OURDRDBGNEFEOTI2MTAwQzE5MTg4NUNFMURCMUQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVDRTFE QjFEMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IwNDA2OGYzLWE3NWItNDc2NC05 ZTgwLTFmYTU3MjkyMDdmYy8wLzMyMzQzMDMzM2EzMjM3MzAzMDNhMzgzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAMnAAAIMA0G CSqGSIb3DQEBCwUAA4IBAQC2HjH2cztzXiCe3WjcuRUfAXFuYkBf7sbmE6TY7XqK zZYcdYdcCUuW2d0QMtwgbps9rVbWblpmQVIwBTuRAptRzYUBhTlOiz6pbvXctpD8 74i3O08c0af9nOCYZUsYzmbRwaaMiDGzFcbPMRkfKxHWcZM34/71rnlKdt6JV7B0 8SDavleJRlCPeaWMawyIN8W28/L/QJdkjSmGBF4fcZBMfOiqzO0vifL00EE0GRru 0ujG8fF3+il474Guu2Jg/CROgbseTon/6qvf8kFMiownwimSWMxRod1pJJOrQARx 10Zq+AY5w0y/WILfXEXZeXl2j5ixIJ6lT5+1+GmaIxjJ -----END CERTIFICATE-----Generated at Sat Jun 7 13:56:09 2025 by rpki-client