$ rpki-client -vvf repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a393a3a2f34382d3438203d3e203338353030.roa File: 323430333a323730303a393a3a2f34382d3438203d3e203338353030.roa (raw, json) Hash identifier: YrLtsOYvp+DPw1cXnGNExzyx3eWKJFFV1BLJsck7tXI= Subject key identifier: 18:E0:67:1F:6F:A6:23:39:03:66:9D:0D:67:F1:87:97:25:5A:40:33 Certificate issuer: /CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Certificate serial: 4FC9ABEDC0B998E5482305F50894D0809054D273 Authority key identifier: BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a393a3a2f34382d3438203d3e203338353030.roa Signing time: Mon 02 Jun 2025 02:03:46 +0000 ROA not before: Mon 02 Jun 2025 01:58:46 +0000 ROA not after: Mon 01 Jun 2026 02:03:46 +0000 asID: 38500 IP address blocks: 2403:2700:9::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 16:54:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:c9:ab:ed:c0:b9:98:e5:48:23:05:f5:08:94:d0:80:90:54:d2:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Validity Not Before: Jun 2 01:58:46 2025 GMT Not After : Jun 1 02:03:46 2026 GMT Subject: CN=18E0671F6FA6233903669D0D67F18797255A4033 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:92:17:14:49:cc:db:1f:55:a2:4c:d7:41:8d: 38:a6:7f:5e:da:75:d4:bb:46:82:e1:10:3f:64:52: ba:aa:43:16:40:b5:ee:5f:90:4e:e4:cc:03:e9:04: 10:e9:a8:33:5c:eb:dd:d0:76:c6:39:b0:1e:a5:61: 78:19:13:44:dd:31:d4:72:06:ff:37:18:97:ca:fa: 6c:09:01:0d:c0:bc:6a:20:30:a5:cb:cc:bb:77:d6: 53:81:7e:93:69:dc:ea:22:03:40:47:e4:13:11:7d: 31:e4:17:50:98:27:c6:77:75:08:96:59:40:6d:58: 60:ac:a9:cd:df:83:44:28:1b:3b:74:aa:f9:cd:e5: bd:aa:9e:36:71:79:0e:47:5f:be:0b:f1:3c:37:30: 7c:27:48:41:e6:4d:d8:46:fc:b4:8b:10:4f:f1:f5: 52:00:d8:7b:ba:72:ad:99:ba:e1:9f:b2:c4:08:87: 24:e3:b2:11:9a:56:f6:f1:77:e1:00:4e:0f:71:5f: b3:2b:45:de:d5:1b:14:7f:d7:dc:57:fd:5c:a9:f8: f4:f1:8b:ea:29:b6:27:eb:e6:6f:b7:1b:f7:b3:4a: 23:ff:c2:78:84:a6:2d:e9:3e:3a:4c:1c:59:e0:41: ea:7d:2b:ab:1c:2d:63:42:46:4e:19:a3:95:29:8b: 80:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:E0:67:1F:6F:A6:23:39:03:66:9D:0D:67:F1:87:97:25:5A:40:33 X509v3 Authority Key Identifier: keyid:BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a393a3a2f34382d3438203d3e203338353030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2700:9::/48 Signature Algorithm: sha256WithRSAEncryption 7b:11:17:25:b1:cf:a6:00:85:ea:15:3f:39:22:d5:6b:7c:45: af:b8:8b:12:49:60:a0:ba:19:10:e0:ca:eb:44:6d:46:c1:5c: f7:fc:85:ca:01:ce:e1:6b:a3:4f:a9:74:8c:63:5f:08:84:c7: cd:4a:d8:7d:78:f0:25:20:45:dc:6e:8a:00:d8:d8:e5:0e:fd: f9:5b:b0:bd:17:5b:d7:52:c2:53:08:e3:bf:8b:60:ee:7a:65: 95:f8:1d:98:17:de:10:01:3b:d8:90:40:dc:3c:9c:96:e5:f8: e1:55:00:21:00:f1:fe:81:06:d4:5b:ca:09:09:ce:a2:48:58: 12:52:27:db:84:0d:b0:10:08:e8:5c:6f:15:6b:51:37:43:d8: b8:92:24:d3:c2:ae:9a:7b:3d:45:d8:21:be:96:f1:3a:33:d0: 88:a7:b1:ea:75:5f:6e:f5:ce:4e:49:8a:10:b4:91:3f:c1:5a: fd:6f:2c:dd:e9:15:6a:08:5c:b5:1b:5c:e9:b6:5a:6f:3d:00: 35:4e:2f:b0:4d:8f:b9:d0:5b:3f:25:e6:c8:75:c9:0c:0b:fb: 27:97:9b:ab:fa:4f:92:b7:f7:a2:19:2f:ae:cc:3e:e2:9f:1e: 6e:77:de:6f:e6:66:93:5b:b9:9a:e7:76:71:69:66:73:bf:da: f5:0b:6d:28 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUT8mr7cC5mOVIIwX1CJTQgJBU0nMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVD RTFEQjFEMDAeFw0yNTA2MDIwMTU4NDZaFw0yNjA2MDEwMjAzNDZaMDMxMTAvBgNV BAMTKDE4RTA2NzFGNkZBNjIzMzkwMzY2OUQwRDY3RjE4Nzk3MjU1QTQwMzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDskhcUSczbH1WiTNdBjTimf17a ddS7RoLhED9kUrqqQxZAte5fkE7kzAPpBBDpqDNc693QdsY5sB6lYXgZE0TdMdRy Bv83GJfK+mwJAQ3AvGogMKXLzLt31lOBfpNp3OoiA0BH5BMRfTHkF1CYJ8Z3dQiW WUBtWGCsqc3fg0QoGzt0qvnN5b2qnjZxeQ5HX74L8Tw3MHwnSEHmTdhG/LSLEE/x 9VIA2Hu6cq2ZuuGfssQIhyTjshGaVvbxd+EATg9xX7MrRd7VGxR/19xX/Vyp+PTx i+optifr5m+3G/ezSiP/wniEpi3pPjpMHFngQep9K6scLWNCRk4Zo5Upi4B5AgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUGOBnH2+mIzkDZp0NZ/GHlyVaQDMwHwYDVR0j BBgwFoAUuwUpPT6dzQ9K2SYQDBkYhc4dsdAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MDQwNjhmMy1hNzViLTQ3NjQtOWU4MC0xZmE1NzI5MjA3ZmMvMC9CQjA1MjkzRDNF OURDRDBGNEFEOTI2MTAwQzE5MTg4NUNFMURCMUQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVDRTFE QjFEMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IwNDA2OGYzLWE3NWItNDc2NC05 ZTgwLTFmYTU3MjkyMDdmYy8wLzMyMzQzMDMzM2EzMjM3MzAzMDNhMzkzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAMnAAAJMA0G CSqGSIb3DQEBCwUAA4IBAQB7ERclsc+mAIXqFT85ItVrfEWvuIsSSWCguhkQ4Mrr RG1GwVz3/IXKAc7ha6NPqXSMY18IhMfNSth9ePAlIEXcbooA2NjlDv35W7C9F1vX UsJTCOO/i2DuemWV+B2YF94QATvYkEDcPJyW5fjhVQAhAPH+gQbUW8oJCc6iSFgS UifbhA2wEAjoXG8Va1E3Q9i4kiTTwq6aez1F2CG+lvE6M9CIp7HqdV9u9c5OSYoQ tJE/wVr9byzd6RVqCFy1G1zptlpvPQA1Ti+wTY+50Fs/JebIdckMC/snl5ur+k+S t/eiGS+uzD7inx5ud95v5maTW7ma53ZxaWZzv9r1C20o -----END CERTIFICATE-----Generated at Sat Jun 7 14:01:59 2025 by rpki-client