$ rpki-client -vvf repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a3a2f34382d3438203d3e203338353030.roa File: 323430333a323730303a3a2f34382d3438203d3e203338353030.roa (raw, json) Hash identifier: C7t3QQh/DTqZqDmxOH5Nzo0bVmfi2oIbzbzkt/a9NWE= Subject key identifier: E5:E0:37:E1:40:CA:FD:A6:40:EA:1F:C4:F5:9A:62:F3:27:18:7D:FE Certificate issuer: /CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Certificate serial: 1CFDEC71F78B4EDA12BB428B9A7E7308721B5DB7 Authority key identifier: BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a3a2f34382d3438203d3e203338353030.roa Signing time: Mon 02 Jun 2025 02:03:50 +0000 ROA not before: Mon 02 Jun 2025 01:58:50 +0000 ROA not after: Mon 01 Jun 2026 02:03:50 +0000 asID: 38500 IP address blocks: 2403:2700::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 16:54:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:fd:ec:71:f7:8b:4e:da:12:bb:42:8b:9a:7e:73:08:72:1b:5d:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Validity Not Before: Jun 2 01:58:50 2025 GMT Not After : Jun 1 02:03:50 2026 GMT Subject: CN=E5E037E140CAFDA640EA1FC4F59A62F327187DFE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:85:f9:42:c7:17:1e:b1:46:30:6d:64:d5:5f: f7:7c:82:e1:c9:81:7d:76:08:59:be:d4:c4:45:10: e7:b2:57:cb:3c:3a:14:17:a6:20:0f:de:4e:72:cd: 70:ca:e3:97:33:69:53:cf:56:ae:c4:51:15:fb:b1: da:bb:48:07:c8:ba:fe:4a:0f:15:13:00:d0:f5:2c: a6:94:9a:e6:80:1a:48:04:86:7d:7c:e0:72:19:7a: e2:fc:7c:12:52:7d:e0:26:94:f2:b7:26:4b:d5:6f: 71:f7:e0:35:8b:68:f7:86:5a:9f:0a:83:2f:25:16: f4:f3:ac:a7:4d:c0:2c:2b:c9:ba:04:ee:9a:0a:be: ea:59:5e:f8:00:2f:bc:9e:1f:61:a5:fa:70:3f:8f: ba:86:e2:30:61:72:f5:f6:1b:c5:29:36:c9:17:3e: ce:63:9f:1c:b5:ee:0a:4e:73:ac:72:69:d6:2a:d8: 2a:e5:21:11:c6:b1:24:c8:f9:04:89:53:e3:f2:77: 6b:c2:7e:36:b4:63:6d:71:48:61:2a:3e:d6:aa:9d: 6a:61:cb:9f:4b:4a:d5:11:1e:90:5c:03:f1:05:0c: 3c:36:d3:d0:e2:8e:b3:21:72:59:c2:76:19:a0:05: be:c7:cb:cf:15:44:8b:a2:78:3a:87:c9:b2:2f:75: 46:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:E0:37:E1:40:CA:FD:A6:40:EA:1F:C4:F5:9A:62:F3:27:18:7D:FE X509v3 Authority Key Identifier: keyid:BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a3a2f34382d3438203d3e203338353030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2700::/48 Signature Algorithm: sha256WithRSAEncryption a4:47:05:d3:42:a1:cb:c6:fc:b9:d2:4e:e2:ba:49:78:3d:23: 70:6c:57:cf:43:23:dd:58:c8:dd:9a:ef:df:f2:7f:f3:b3:aa: f5:57:54:ab:02:39:d1:1c:d3:53:90:e6:e8:6a:a9:c1:50:98: 43:5b:9f:0e:c9:28:e2:5d:5a:20:1d:f8:23:2c:fc:f7:a4:ad: e2:d0:20:a0:b1:52:81:fb:f8:96:66:5e:26:dc:70:eb:57:4f: b0:08:8b:4f:ad:7b:99:ad:86:23:6b:e3:27:bd:e4:b8:50:b0: 6e:c2:84:55:c1:d0:fc:2c:54:06:06:cd:e0:25:17:17:91:b1: 7c:00:ff:0f:79:03:69:6e:13:99:91:3e:cf:6f:f7:c9:b5:79: 71:41:c6:52:72:eb:86:57:5b:a5:68:c9:27:59:7b:59:f8:b8: 2d:8a:f7:31:bf:40:da:d0:66:fc:df:8f:45:9a:8c:6b:b1:f5: 4b:93:58:7e:a6:6c:87:e5:41:74:f1:2d:55:b1:5f:d6:19:df: ae:20:ee:09:83:44:9e:0a:32:21:82:77:76:4f:2d:af:81:a2: 36:a0:f5:dc:34:6e:5e:8c:7c:3e:12:03:fe:6c:22:6b:fa:55: 62:10:78:b3:ee:97:d4:e4:bf:c2:f3:a6:f9:15:1a:bd:f8:f0: 54:52:8a:64 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUHP3scfeLTtoSu0KLmn5zCHIbXbcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVD RTFEQjFEMDAeFw0yNTA2MDIwMTU4NTBaFw0yNjA2MDEwMjAzNTBaMDMxMTAvBgNV BAMTKEU1RTAzN0UxNDBDQUZEQTY0MEVBMUZDNEY1OUE2MkYzMjcxODdERkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFhflCxxcesUYwbWTVX/d8guHJ gX12CFm+1MRFEOeyV8s8OhQXpiAP3k5yzXDK45czaVPPVq7EURX7sdq7SAfIuv5K DxUTAND1LKaUmuaAGkgEhn184HIZeuL8fBJSfeAmlPK3JkvVb3H34DWLaPeGWp8K gy8lFvTzrKdNwCwryboE7poKvupZXvgAL7yeH2Gl+nA/j7qG4jBhcvX2G8UpNskX Ps5jnxy17gpOc6xyadYq2CrlIRHGsSTI+QSJU+Pyd2vCfja0Y21xSGEqPtaqnWph y59LStURHpBcA/EFDDw209DijrMhclnCdhmgBb7Hy88VRIuieDqHybIvdUaTAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQU5eA34UDK/aZA6h/E9Zpi8ycYff4wHwYDVR0j BBgwFoAUuwUpPT6dzQ9K2SYQDBkYhc4dsdAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MDQwNjhmMy1hNzViLTQ3NjQtOWU4MC0xZmE1NzI5MjA3ZmMvMC9CQjA1MjkzRDNF OURDRDBGNEFEOTI2MTAwQzE5MTg4NUNFMURCMUQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVDRTFE QjFEMC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IwNDA2OGYzLWE3NWItNDc2NC05 ZTgwLTFmYTU3MjkyMDdmYy8wLzMyMzQzMDMzM2EzMjM3MzAzMDNhM2EyZjM0Mzgy ZDM0MzgyMDNkM2UyMDMzMzgzNTMwMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkAycAAAAwDQYJKoZI hvcNAQELBQADggEBAKRHBdNCocvG/LnSTuK6SXg9I3BsV89DI91YyN2a79/yf/Oz qvVXVKsCOdEc01OQ5uhqqcFQmENbnw7JKOJdWiAd+CMs/PekreLQIKCxUoH7+JZm XibccOtXT7AIi0+te5mthiNr4ye95LhQsG7ChFXB0PwsVAYGzeAlFxeRsXwA/w95 A2luE5mRPs9v98m1eXFBxlJy64ZXW6VoySdZe1n4uC2K9zG/QNrQZvzfj0WajGux 9UuTWH6mbIflQXTxLVWxX9YZ364g7gmDRJ4KMiGCd3ZPLa+Bojag9dw0bl6MfD4S A/5sImv6VWIQeLPul9Tkv8LzpvkVGr348FRSimQ= -----END CERTIFICATE-----Generated at Sat Jun 7 13:53:31 2025 by rpki-client