$ rpki-client -vvf repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/323430353a6334303a3a2f33322d3332203d3e20313338383837.roa File: 323430353a6334303a3a2f33322d3332203d3e20313338383837.roa (raw, json) Hash identifier: ruIZZO7QM8ImQmI2gqHbRwgzA5H9KzvEbmp6IKH6GiU= Subject key identifier: 99:8F:53:FE:4F:D7:FD:40:B0:ED:0C:37:BD:A8:13:4D:CA:41:14:92 Certificate issuer: /CN=80F9ED59290AD77DE2856ECFD8340E28FF858E3D Certificate serial: 7A29C010C55FF30270BFD11F59A2ABCF4706565C Authority key identifier: 80:F9:ED:59:29:0A:D7:7D:E2:85:6E:CF:D8:34:0E:28:FF:85:8E:3D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/323430353a6334303a3a2f33322d3332203d3e20313338383837.roa Signing time: Mon 02 Jun 2025 02:02:42 +0000 ROA not before: Mon 02 Jun 2025 01:57:42 +0000 ROA not after: Mon 01 Jun 2026 02:02:42 +0000 asID: 138887 IP address blocks: 2405:c40::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.crl rsync://repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 22:59:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:29:c0:10:c5:5f:f3:02:70:bf:d1:1f:59:a2:ab:cf:47:06:56:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=80F9ED59290AD77DE2856ECFD8340E28FF858E3D Validity Not Before: Jun 2 01:57:42 2025 GMT Not After : Jun 1 02:02:42 2026 GMT Subject: CN=998F53FE4FD7FD40B0ED0C37BDA8134DCA411492 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:60:1d:ba:d6:12:51:3f:d0:c0:41:fa:bf:ad: 18:09:1d:af:88:25:d0:d4:19:a4:30:fc:91:e6:a7: c9:2a:0c:41:44:45:37:9c:73:32:ae:21:3c:55:73: 9f:d7:aa:76:21:f2:c4:4a:4c:54:b5:dc:f7:4a:d4: c9:22:20:8e:66:44:1f:27:40:42:a2:68:be:59:58: 0a:07:d9:1c:01:8a:49:37:59:87:4b:29:67:b2:ff: 4c:7d:48:01:e1:b0:c5:de:7e:46:21:be:7b:52:9f: 68:ce:4a:08:fa:7e:fc:50:a2:7e:bc:70:5a:78:b7: 2d:b7:70:f2:8d:6e:58:c3:fa:88:38:d8:fd:22:85: b2:e0:55:cd:47:bd:52:a9:e7:59:e0:d8:77:2b:f8: b3:c8:66:4f:33:fa:22:02:47:13:93:02:4a:24:5d: 0f:18:92:56:c1:19:25:e8:2f:ea:72:bc:14:7e:2d: cf:62:4a:08:4a:b2:27:0a:63:09:32:9e:11:23:fc: 64:81:c3:b8:90:e3:75:f6:b3:3c:10:13:a7:ef:53: 8b:15:17:c1:84:1f:90:13:6f:54:5d:ad:66:3b:a4: 0c:fe:7a:06:9a:c9:3e:53:b5:e3:f8:2c:06:bb:90: 73:e6:5f:06:57:73:9e:5c:cc:75:d9:1c:a7:79:f3: 4b:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:8F:53:FE:4F:D7:FD:40:B0:ED:0C:37:BD:A8:13:4D:CA:41:14:92 X509v3 Authority Key Identifier: keyid:80:F9:ED:59:29:0A:D7:7D:E2:85:6E:CF:D8:34:0E:28:FF:85:8E:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/323430353a6334303a3a2f33322d3332203d3e20313338383837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:c40::/32 Signature Algorithm: sha256WithRSAEncryption 41:c6:d3:29:1b:11:56:fd:d5:ec:3f:65:d3:33:e1:7b:c5:08: 1b:29:9b:e6:06:cb:00:9a:f7:c2:b6:0e:90:8a:17:31:a0:6c: 55:dd:71:c7:80:c4:d8:5a:8b:d2:32:ad:68:72:35:c4:24:cb: fb:55:aa:c0:25:2f:03:40:1c:ee:6c:c6:99:59:e7:57:5d:f1: 72:15:0d:c7:a8:21:42:13:4b:be:11:96:2e:9e:d1:74:4b:37: 3f:ff:8a:60:bd:88:db:54:5d:c3:82:79:b1:53:8a:6b:e2:ab: 1c:a0:2f:08:0d:f4:a5:03:2f:90:dd:9a:d3:40:85:bb:94:0c: bc:51:b7:69:ad:3d:c0:0c:a6:17:57:5c:ef:6d:cc:ee:df:87: 38:58:59:3e:cb:db:4f:f3:11:3f:7e:33:30:ef:72:0c:f9:b4: 13:2f:7e:76:60:b5:3f:85:36:e1:50:99:c3:60:0e:1d:f5:00: 55:d5:b1:92:65:0b:f7:50:49:da:52:a9:cf:3d:be:96:57:fb: 96:64:1f:d9:f7:83:50:49:eb:d8:ff:ef:6e:3b:cc:9b:5d:e0: 16:ea:86:ee:62:50:7d:2f:29:02:db:60:7a:0e:7d:ca:2c:f6: f9:3d:56:3c:85:ed:85:54:68:b5:9b:ae:b8:e4:8f:be:2c:7a: 2d:cf:9c:2d -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUeinAEMVf8wJwv9EfWaKrz0cGVlwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODBGOUVENTkyOTBBRDc3REUyODU2RUNGRDgzNDBFMjhG Rjg1OEUzRDAeFw0yNTA2MDIwMTU3NDJaFw0yNjA2MDEwMjAyNDJaMDMxMTAvBgNV BAMTKDk5OEY1M0ZFNEZEN0ZENDBCMEVEMEMzN0JEQTgxMzREQ0E0MTE0OTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZYB261hJRP9DAQfq/rRgJHa+I JdDUGaQw/JHmp8kqDEFERTecczKuITxVc5/XqnYh8sRKTFS13PdK1MkiII5mRB8n QEKiaL5ZWAoH2RwBikk3WYdLKWey/0x9SAHhsMXefkYhvntSn2jOSgj6fvxQon68 cFp4ty23cPKNbljD+og42P0ihbLgVc1HvVKp51ng2Hcr+LPIZk8z+iICRxOTAkok XQ8YklbBGSXoL+pyvBR+Lc9iSghKsicKYwkynhEj/GSBw7iQ43X2szwQE6fvU4sV F8GEH5ATb1RdrWY7pAz+egaayT5TteP4LAa7kHPmXwZXc55czHXZHKd580tLAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUmY9T/k/X/UCw7Qw3vagTTcpBFJIwHwYDVR0j BBgwFoAUgPntWSkK133ihW7P2DQOKP+Fjj0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MDdjODhkYS0yYjU2LTQ4N2UtOWVmZS01NzExNzBiMTAyODYvMC84MEY5RUQ1OTI5 MEFENzdERTI4NTZFQ0ZEODM0MEUyOEZGODU4RTNELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODBGOUVENTkyOTBBRDc3REUyODU2RUNGRDgzNDBFMjhGRjg1 OEUzRC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MwN2M4OGRhLTJiNTYtNDg3ZS05 ZWZlLTU3MTE3MGIxMDI4Ni8wLzMyMzQzMDM1M2E2MzM0MzAzYTNhMmYzMzMyMmQz MzMyMjAzZDNlMjAzMTMzMzgzODM4Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBQxAMA0GCSqGSIb3 DQEBCwUAA4IBAQBBxtMpGxFW/dXsP2XTM+F7xQgbKZvmBssAmvfCtg6QihcxoGxV 3XHHgMTYWovSMq1ocjXEJMv7VarAJS8DQBzubMaZWedXXfFyFQ3HqCFCE0u+EZYu ntF0Szc//4pgvYjbVF3DgnmxU4pr4qscoC8IDfSlAy+Q3ZrTQIW7lAy8UbdprT3A DKYXV1zvbczu34c4WFk+y9tP8xE/fjMw73IM+bQTL352YLU/hTbhUJnDYA4d9QBV 1bGSZQv3UEnaUqnPPb6WV/uWZB/Z94NQSevY/+9uO8ybXeAW6obuYlB9LykC22B6 Dn3KLPb5PVY8he2FVGi1m6645I++LHotz5wt -----END CERTIFICATE-----Generated at Sat Jun 7 05:58:53 2025 by rpki-client