$ rpki-client -vvf repo-rpki.idnic.net/repo/bb07b37c-0507-4913-8329-3f161b6aff56/0/323430323a343234303a3a2f33322d3332203d3e20313336383830.roa File: 323430323a343234303a3a2f33322d3332203d3e20313336383830.roa (raw, json) Hash identifier: LeIArO2ugyFzqhOfzyY49jG0OfnapAFQ/XpIZTbnEek= Subject key identifier: 87:E0:E9:13:C6:34:38:04:2D:B1:A4:6D:90:0A:97:90:84:BC:DE:C2 Certificate issuer: /CN=DC80860022A4D5D14DB78082BAC705E0C1B0F915 Certificate serial: 6EEDA542292EA0A26C14BDCB67549C0A4EBBA5E7 Authority key identifier: DC:80:86:00:22:A4:D5:D1:4D:B7:80:82:BA:C7:05:E0:C1:B0:F9:15 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC80860022A4D5D14DB78082BAC705E0C1B0F915.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bb07b37c-0507-4913-8329-3f161b6aff56/0/323430323a343234303a3a2f33322d3332203d3e20313336383830.roa Signing time: Mon 02 Jun 2025 02:04:07 +0000 ROA not before: Mon 02 Jun 2025 01:59:07 +0000 ROA not after: Mon 01 Jun 2026 02:04:07 +0000 asID: 136880 IP address blocks: 2402:4240::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bb07b37c-0507-4913-8329-3f161b6aff56/0/DC80860022A4D5D14DB78082BAC705E0C1B0F915.crl rsync://repo-rpki.idnic.net/repo/bb07b37c-0507-4913-8329-3f161b6aff56/0/DC80860022A4D5D14DB78082BAC705E0C1B0F915.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC80860022A4D5D14DB78082BAC705E0C1B0F915.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 22:56:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:ed:a5:42:29:2e:a0:a2:6c:14:bd:cb:67:54:9c:0a:4e:bb:a5:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DC80860022A4D5D14DB78082BAC705E0C1B0F915 Validity Not Before: Jun 2 01:59:07 2025 GMT Not After : Jun 1 02:04:07 2026 GMT Subject: CN=87E0E913C63438042DB1A46D900A979084BCDEC2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:e4:6d:1a:67:b7:d4:6b:5e:3e:ea:4e:54:b9: 5c:1d:9f:3b:1b:17:38:c2:cc:98:48:17:f7:66:88: a9:0c:98:94:11:3a:4b:9a:6e:2b:ee:67:02:e0:31: 5a:76:79:ea:11:80:4b:b4:5c:f9:88:25:93:13:a7: 64:d8:3d:de:a9:8f:05:0c:c6:43:bf:3b:55:f6:2c: 02:35:ef:0e:a0:4c:95:1c:9a:a8:b1:e4:c6:7f:72: f9:40:7d:b9:3c:f0:d9:06:0d:f0:14:02:ab:21:ba: 92:f5:a0:72:a9:f8:92:0c:19:59:8b:b7:7d:e1:cf: 55:dc:bf:d0:2a:81:19:bf:02:1f:1d:00:00:21:c0: db:94:4e:f2:e6:d7:18:c3:95:ed:dc:3d:21:9a:38: dc:2d:37:c5:12:58:8b:4b:89:ed:fe:ee:38:75:8d: 46:e8:1c:8a:09:e5:12:1a:ac:36:eb:d5:72:35:61: 19:71:07:f7:69:72:80:0f:57:03:8f:9c:6a:72:97: 6a:38:02:59:39:bb:2e:85:47:da:49:dc:d9:29:86: 38:0f:31:5e:0e:13:9b:27:ba:21:28:6d:1c:41:c7: 23:2b:3b:3c:85:b2:b2:85:d3:67:ae:f4:52:79:c0: 16:ba:d6:77:da:41:d5:0a:01:fe:f4:4a:13:73:e8: 29:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:E0:E9:13:C6:34:38:04:2D:B1:A4:6D:90:0A:97:90:84:BC:DE:C2 X509v3 Authority Key Identifier: keyid:DC:80:86:00:22:A4:D5:D1:4D:B7:80:82:BA:C7:05:E0:C1:B0:F9:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bb07b37c-0507-4913-8329-3f161b6aff56/0/DC80860022A4D5D14DB78082BAC705E0C1B0F915.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC80860022A4D5D14DB78082BAC705E0C1B0F915.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bb07b37c-0507-4913-8329-3f161b6aff56/0/323430323a343234303a3a2f33322d3332203d3e20313336383830.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:4240::/32 Signature Algorithm: sha256WithRSAEncryption 93:8c:93:d2:b2:51:ef:b4:2f:de:73:8b:a2:76:d4:80:b9:fc: 9c:71:99:60:5d:92:eb:e2:a3:ea:36:f0:2a:a9:f0:e2:a1:4b: b2:c6:b2:ed:c5:6c:de:f3:3e:a7:36:88:bf:2f:87:c3:fd:e4: d3:b3:b1:0d:0b:80:94:dc:43:e8:cd:0a:80:39:4c:c7:e7:fa: 5d:ed:66:9f:ea:ba:e5:b8:94:28:08:b6:d2:7a:a3:88:ad:e9: ab:4b:2f:28:18:be:f1:1c:43:d5:92:57:ce:8c:50:cc:56:a2: a5:5f:4e:58:bb:46:e6:38:8a:f2:ee:4a:7d:72:2d:aa:67:08: 7d:02:38:f0:54:9b:cd:64:a6:c3:5a:78:25:bb:ef:de:20:9c: bf:6c:18:ca:4f:0b:a0:14:54:0f:25:65:79:71:93:44:16:aa: dd:4f:66:03:bd:47:27:d3:df:23:03:c5:c7:34:26:ef:dc:60: 0d:fc:38:b8:a4:17:ce:30:16:12:2a:69:4e:6a:49:d0:29:38: e3:cb:5c:50:91:67:31:1a:f5:c4:ca:43:5e:15:1e:62:19:78: 51:1d:2d:d8:38:ee:0f:e6:78:06:a3:3b:87:45:c3:94:ab:3e: 5b:12:0e:11:e3:77:0f:82:e5:9f:1e:06:a3:3b:4c:43:4a:8a: b0:0a:9a:b7 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUbu2lQikuoKJsFL3LZ1ScCk67pecwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREM4MDg2MDAyMkE0RDVEMTREQjc4MDgyQkFDNzA1RTBD MUIwRjkxNTAeFw0yNTA2MDIwMTU5MDdaFw0yNjA2MDEwMjA0MDdaMDMxMTAvBgNV BAMTKDg3RTBFOTEzQzYzNDM4MDQyREIxQTQ2RDkwMEE5NzkwODRCQ0RFQzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDO5G0aZ7fUa14+6k5UuVwdnzsb FzjCzJhIF/dmiKkMmJQROkuabivuZwLgMVp2eeoRgEu0XPmIJZMTp2TYPd6pjwUM xkO/O1X2LAI17w6gTJUcmqix5MZ/cvlAfbk88NkGDfAUAqshupL1oHKp+JIMGVmL t33hz1Xcv9AqgRm/Ah8dAAAhwNuUTvLm1xjDle3cPSGaONwtN8USWItLie3+7jh1 jUboHIoJ5RIarDbr1XI1YRlxB/dpcoAPVwOPnGpyl2o4Alk5uy6FR9pJ3NkphjgP MV4OE5snuiEobRxBxyMrOzyFsrKF02eu9FJ5wBa61nfaQdUKAf70ShNz6ClRAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUh+DpE8Y0OAQtsaRtkAqXkIS83sIwHwYDVR0j BBgwFoAU3ICGACKk1dFNt4CCuscF4MGw+RUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i YjA3YjM3Yy0wNTA3LTQ5MTMtODMyOS0zZjE2MWI2YWZmNTYvMC9EQzgwODYwMDIy QTRENUQxNERCNzgwODJCQUM3MDVFMEMxQjBGOTE1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREM4MDg2MDAyMkE0RDVEMTREQjc4MDgyQkFDNzA1RTBDMUIw RjkxNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JiMDdiMzdjLTA1MDctNDkxMy04 MzI5LTNmMTYxYjZhZmY1Ni8wLzMyMzQzMDMyM2EzNDMyMzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzNjM4MzgzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQCQkAwDQYJKoZI hvcNAQELBQADggEBAJOMk9KyUe+0L95zi6J21IC5/JxxmWBdkuvio+o28Cqp8OKh S7LGsu3FbN7zPqc2iL8vh8P95NOzsQ0LgJTcQ+jNCoA5TMfn+l3tZp/quuW4lCgI ttJ6o4it6atLLygYvvEcQ9WSV86MUMxWoqVfTli7RuY4ivLuSn1yLapnCH0COPBU m81kpsNaeCW7794gnL9sGMpPC6AUVA8lZXlxk0QWqt1PZgO9RyfT3yMDxcc0Ju/c YA38OLikF84wFhIqaU5qSdApOOPLXFCRZzEa9cTKQ14VHmIZeFEdLdg47g/meAaj O4dFw5SrPlsSDhHjdw+C5Z8eBqM7TENKirAKmrc= -----END CERTIFICATE-----Generated at Sun Jun 8 17:15:15 2025 by rpki-client