$ rpki-client -vvf repo-rpki.idnic.net/repo/b35129e4-2328-43d2-a458-9d3829614815/0/323430323a646130303a3a2f33322d3438203d3e203234353236.roa File: 323430323a646130303a3a2f33322d3438203d3e203234353236.roa (raw, json) Hash identifier: KXkQEzDE7eAOGwkwjqYSUBJ2gO8yBncemPnpiy3ztzA= Subject key identifier: 10:6D:64:06:2D:A8:FA:09:55:E4:B1:04:6A:3B:65:5D:13:DF:FB:8D Certificate issuer: /CN=E42B0752D5FFAB254C3F0E221499F67420870FEB Certificate serial: 44A4D1ACDF1EB973F05C11AEE573925DC65E0F84 Authority key identifier: E4:2B:07:52:D5:FF:AB:25:4C:3F:0E:22:14:99:F6:74:20:87:0F:EB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E42B0752D5FFAB254C3F0E221499F67420870FEB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b35129e4-2328-43d2-a458-9d3829614815/0/323430323a646130303a3a2f33322d3438203d3e203234353236.roa Signing time: Wed 28 May 2025 09:00:00 +0000 ROA not before: Wed 28 May 2025 08:55:00 +0000 ROA not after: Wed 27 May 2026 09:00:00 +0000 asID: 24526 IP address blocks: 2402:da00::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b35129e4-2328-43d2-a458-9d3829614815/0/E42B0752D5FFAB254C3F0E221499F67420870FEB.crl rsync://repo-rpki.idnic.net/repo/b35129e4-2328-43d2-a458-9d3829614815/0/E42B0752D5FFAB254C3F0E221499F67420870FEB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E42B0752D5FFAB254C3F0E221499F67420870FEB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 21:12:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:a4:d1:ac:df:1e:b9:73:f0:5c:11:ae:e5:73:92:5d:c6:5e:0f:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E42B0752D5FFAB254C3F0E221499F67420870FEB Validity Not Before: May 28 08:55:00 2025 GMT Not After : May 27 09:00:00 2026 GMT Subject: CN=106D64062DA8FA0955E4B1046A3B655D13DFFB8D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:7d:7e:1f:54:d3:80:08:0a:9b:24:eb:cb:46: 8e:09:4a:ed:fa:9f:cf:d6:56:c0:85:9d:b1:9d:ed: 62:96:5f:40:e8:07:da:85:fb:dc:a6:22:bb:ad:b8: 51:f7:27:d7:73:c8:e6:6b:d6:19:4a:91:68:20:ba: 51:38:d3:0a:56:88:0c:76:7c:e3:f4:fb:c0:57:f5: af:d5:c2:48:8c:3e:15:c5:36:da:a0:3f:60:a4:c1: a6:c0:8b:d1:da:27:7e:67:8d:79:59:b7:a2:58:06: 19:e6:e7:3a:f1:6c:c1:25:5d:8d:60:32:7f:1c:91: 85:21:a8:46:0d:a7:9a:02:2f:a4:0c:0b:36:f2:c0: 91:08:03:de:25:00:e7:dd:55:60:c8:d5:f1:8d:81: b4:16:5f:60:1c:9a:fb:be:19:23:85:5c:1b:36:32: 87:f0:83:f9:63:49:34:bf:4f:f3:80:ea:12:64:54: 4e:14:e8:7b:ea:82:98:ed:c8:a8:80:25:2b:ee:1a: c8:e9:df:70:1b:bb:74:a1:b8:f7:24:c6:a5:c3:4a: 22:74:c2:09:62:f4:dd:3b:46:9b:b1:a3:f5:a0:c9: 0c:5e:a1:be:6b:d6:ae:04:38:82:4f:0c:85:25:62: fc:e1:2b:28:08:20:5d:2c:d5:08:29:28:ed:5f:8c: 89:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:6D:64:06:2D:A8:FA:09:55:E4:B1:04:6A:3B:65:5D:13:DF:FB:8D X509v3 Authority Key Identifier: keyid:E4:2B:07:52:D5:FF:AB:25:4C:3F:0E:22:14:99:F6:74:20:87:0F:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b35129e4-2328-43d2-a458-9d3829614815/0/E42B0752D5FFAB254C3F0E221499F67420870FEB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E42B0752D5FFAB254C3F0E221499F67420870FEB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b35129e4-2328-43d2-a458-9d3829614815/0/323430323a646130303a3a2f33322d3438203d3e203234353236.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:da00::/32 Signature Algorithm: sha256WithRSAEncryption c8:1b:c0:0b:c9:cc:f0:0d:23:0d:55:8d:38:7b:cd:8f:18:fa: ea:85:1e:18:cd:6e:66:ec:5d:65:1b:10:56:37:1c:8c:5a:87: 67:a2:36:01:2d:46:9c:d9:c9:a5:2d:b6:90:35:12:c3:db:04: 8c:91:f3:ea:43:2a:95:39:17:9a:39:79:11:7c:dc:0f:31:9f: 7c:2e:13:56:b4:51:12:7b:94:ac:eb:56:8a:33:93:e8:87:ba: aa:b7:38:bc:c6:78:6b:0c:44:60:62:fe:8b:9e:b4:a7:70:cd: 8b:9e:1c:26:4b:b4:5d:0d:4f:de:e9:fc:1c:f4:24:32:72:0a: f7:fc:bd:68:cb:f9:3e:50:a0:a8:20:66:59:dd:f9:85:ba:8e: 2f:c8:b7:f1:9f:53:21:62:20:fa:ce:5b:9d:75:e1:11:64:b6: 61:e0:23:40:79:c4:6d:8b:e6:66:f4:b0:7c:b7:80:60:aa:b0: 7f:80:29:2f:db:03:cc:15:93:0d:72:c3:2f:21:c2:ce:37:6d: 55:c0:4c:5d:4f:24:a1:93:60:5d:b4:cf:6d:3d:2a:dc:3d:7b: b3:a4:a1:6f:86:14:a1:44:55:4e:d4:98:b4:ad:c0:dc:9f:c5: 83:bb:c2:66:de:9c:a5:7b:0b:2c:0c:b4:2e:37:85:b5:e5:90: 10:b0:65:41 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIURKTRrN8euXPwXBGu5XOSXcZeD4QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTQyQjA3NTJENUZGQUIyNTRDM0YwRTIyMTQ5OUY2NzQy MDg3MEZFQjAeFw0yNTA1MjgwODU1MDBaFw0yNjA1MjcwOTAwMDBaMDMxMTAvBgNV BAMTKDEwNkQ2NDA2MkRBOEZBMDk1NUU0QjEwNDZBM0I2NTVEMTNERkZCOEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcfX4fVNOACAqbJOvLRo4JSu36 n8/WVsCFnbGd7WKWX0DoB9qF+9ymIrutuFH3J9dzyOZr1hlKkWggulE40wpWiAx2 fOP0+8BX9a/VwkiMPhXFNtqgP2CkwabAi9HaJ35njXlZt6JYBhnm5zrxbMElXY1g Mn8ckYUhqEYNp5oCL6QMCzbywJEIA94lAOfdVWDI1fGNgbQWX2Acmvu+GSOFXBs2 Mofwg/ljSTS/T/OA6hJkVE4U6HvqgpjtyKiAJSvuGsjp33Abu3ShuPckxqXDSiJ0 wgli9N07Rpuxo/WgyQxeob5r1q4EOIJPDIUlYvzhKygIIF0s1QgpKO1fjIktAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUEG1kBi2o+glV5LEEajtlXRPf+40wHwYDVR0j BBgwFoAU5CsHUtX/qyVMPw4iFJn2dCCHD+swDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MzUxMjllNC0yMzI4LTQzZDItYTQ1OC05ZDM4Mjk2MTQ4MTUvMC9FNDJCMDc1MkQ1 RkZBQjI1NEMzRjBFMjIxNDk5RjY3NDIwODcwRkVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTQyQjA3NTJENUZGQUIyNTRDM0YwRTIyMTQ5OUY2NzQyMDg3 MEZFQi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IzNTEyOWU0LTIzMjgtNDNkMi1h NDU4LTlkMzgyOTYxNDgxNS8wLzMyMzQzMDMyM2E2NDYxMzAzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMyMzQzNTMyMzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAtoAMA0GCSqGSIb3 DQEBCwUAA4IBAQDIG8ALyczwDSMNVY04e82PGPrqhR4YzW5m7F1lGxBWNxyMWodn ojYBLUac2cmlLbaQNRLD2wSMkfPqQyqVOReaOXkRfNwPMZ98LhNWtFESe5Ss61aK M5Poh7qqtzi8xnhrDERgYv6LnrSncM2LnhwmS7RdDU/e6fwc9CQycgr3/L1oy/k+ UKCoIGZZ3fmFuo4vyLfxn1MhYiD6zluddeERZLZh4CNAecRti+Zm9LB8t4BgqrB/ gCkv2wPMFZMNcsMvIcLON21VwExdTyShk2BdtM9tPSrcPXuzpKFvhhShRFVO1Ji0 rcDcn8WDu8Jm3pylewssDLQuN4W15ZAQsGVB -----END CERTIFICATE-----Generated at Sun Jun 8 06:33:50 2025 by rpki-client