$ rpki-client -vvf repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a383734303a3a2f34342d3434203d3e20313333373938.roa File: 323430323a353638303a383734303a3a2f34342d3434203d3e20313333373938.roa (raw, json) Hash identifier: I43uZxnLjaZEwhm64SyzRn6FG7nfcBBpT/2ntGATSG8= Subject key identifier: 0D:BF:03:1F:FB:45:AA:ED:BD:AB:D5:F3:23:FD:14:5A:02:25:CB:8C Certificate issuer: /CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Certificate serial: 3B60693034D2D6F04E48AD75C8B47D1E4D4AD294 Authority key identifier: 34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a383734303a3a2f34342d3434203d3e20313333373938.roa Signing time: Tue 26 Aug 2025 11:15:54 +0000 ROA not before: Tue 26 Aug 2025 11:10:54 +0000 ROA not after: Tue 25 Aug 2026 11:15:54 +0000 asID: 133798 IP address blocks: 2402:5680:8740::/44 maxlen: 44 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 04 Sep 2025 00:31:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:60:69:30:34:d2:d6:f0:4e:48:ad:75:c8:b4:7d:1e:4d:4a:d2:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Validity Not Before: Aug 26 11:10:54 2025 GMT Not After : Aug 25 11:15:54 2026 GMT Subject: CN=0DBF031FFB45AAEDBDABD5F323FD145A0225CB8C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:83:be:d7:65:cc:7f:08:5d:6d:4c:b7:d4:95: 78:5e:db:20:8f:2c:e0:90:02:84:33:bb:59:1c:89: b7:6c:f3:f3:5e:04:2d:04:ff:bb:37:a6:93:9c:35: 24:c9:65:00:9e:85:d2:32:85:0a:48:ca:d8:97:ae: db:d8:f3:98:d4:40:84:c4:24:da:63:6a:5b:7d:dd: ba:47:67:75:77:db:c6:e2:c0:b1:eb:11:47:e0:b8: 28:e1:1a:23:89:28:0e:f3:4d:97:85:6d:82:55:61: 67:d4:16:5e:c8:f8:a8:44:3b:50:86:bd:41:7b:b1: 78:6b:35:fe:83:ea:f4:7c:a3:00:a8:8d:4d:dc:f7: e8:d8:2a:2d:d6:ac:b8:65:20:81:af:8f:8f:22:a1: 4a:90:53:bd:78:4f:21:ca:88:d6:64:f2:5b:4b:5c: 35:e6:2a:42:59:dd:24:f6:6e:89:db:10:f7:25:db: 87:ba:fd:8f:1d:66:85:2d:94:3c:04:9b:ac:82:80: ef:af:3e:5e:c6:e1:ee:c7:23:d0:d0:9d:ea:65:e5: c7:99:86:24:13:e3:be:24:ab:6f:21:a1:ab:80:5e: 21:e2:7a:a0:a0:d8:eb:65:22:3c:4c:ef:b7:0e:7f: 4d:40:cd:3f:1b:0e:18:98:a3:8c:8d:cd:95:36:3e: f7:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:BF:03:1F:FB:45:AA:ED:BD:AB:D5:F3:23:FD:14:5A:02:25:CB:8C X509v3 Authority Key Identifier: keyid:34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a383734303a3a2f34342d3434203d3e20313333373938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:5680:8740::/44 Signature Algorithm: sha256WithRSAEncryption 44:30:ba:37:fe:37:78:a8:1b:45:dc:01:d8:ab:e1:09:d2:90: c9:8f:d1:dc:c5:e5:71:8e:33:d0:57:c3:3a:b3:04:ed:b1:a5: 41:43:46:68:66:ee:24:5d:80:c0:54:06:f7:1b:11:78:69:22: 29:66:04:a6:35:a6:4c:1c:25:b1:d1:d4:2f:f0:3e:eb:5d:26: 47:c8:b7:28:91:3b:9b:0a:ee:44:98:63:9a:1a:bd:6e:a5:f2: 4a:8f:4c:03:cd:55:55:a9:77:18:20:19:99:d6:53:71:4e:e0: a1:d3:4f:86:64:12:81:99:69:b6:2e:43:d6:85:a2:d3:14:26: 45:82:93:c0:33:ff:78:f3:f9:3b:50:cf:37:a8:96:a3:27:76: 61:d8:7c:3a:02:63:b5:65:8d:99:fa:68:70:47:53:49:b0:ba: d9:1d:cd:4f:59:65:7a:ad:fb:e6:8b:7f:1d:4a:1c:49:fa:da: ce:85:bc:31:7e:88:77:e7:f4:ca:7d:27:4f:79:3f:ef:3b:9c: 67:26:05:2b:74:02:b8:c2:1d:a3:a3:22:35:6a:7b:4f:00:6c: 7d:ec:a8:13:45:ac:a2:f0:3a:d0:c9:0b:44:1f:2f:7f:11:3d: 83:71:50:4e:f6:ab:fa:bb:61:96:ef:77:39:2d:4a:2d:e5:52: a0:f0:9e:2d -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUO2BpMDTS1vBOSK11yLR9Hk1K0pQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4 NEMxNkIzOTAeFw0yNTA4MjYxMTEwNTRaFw0yNjA4MjUxMTE1NTRaMDMxMTAvBgNV BAMTKDBEQkYwMzFGRkI0NUFBRURCREFCRDVGMzIzRkQxNDVBMDIyNUNCOEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAg77XZcx/CF1tTLfUlXhe2yCP LOCQAoQzu1kcibds8/NeBC0E/7s3ppOcNSTJZQCehdIyhQpIytiXrtvY85jUQITE JNpjalt93bpHZ3V328biwLHrEUfguCjhGiOJKA7zTZeFbYJVYWfUFl7I+KhEO1CG vUF7sXhrNf6D6vR8owCojU3c9+jYKi3WrLhlIIGvj48ioUqQU714TyHKiNZk8ltL XDXmKkJZ3ST2bonbEPcl24e6/Y8dZoUtlDwEm6yCgO+vPl7G4e7HI9DQnepl5ceZ hiQT474kq28hoauAXiHieqCg2OtlIjxM77cOf01AzT8bDhiYo4yNzZU2PvfpAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUDb8DH/tFqu29q9XzI/0UWgIly4wwHwYDVR0j BBgwFoAUNHonWYXq5bybpsXLkpwG+oTBazkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MzAzZTZiYi03MzQ5LTQ3YWEtYTRjZC01MWQ4YTBlMjIyZjYvMC8zNDdBMjc1OTg1 RUFFNUJDOUJBNkM1Q0I5MjlDMDZGQTg0QzE2QjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4NEMx NkIzOS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MzMDNlNmJiLTczNDktNDdhYS1h NGNkLTUxZDhhMGUyMjJmNi8wLzMyMzQzMDMyM2EzNTM2MzgzMDNhMzgzNzM0MzAz YTNhMmYzNDM0MmQzNDM0MjAzZDNlMjAzMTMzMzMzNzM5Mzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQk AlaAh0AwDQYJKoZIhvcNAQELBQADggEBAEQwujf+N3ioG0XcAdir4QnSkMmP0dzF 5XGOM9BXwzqzBO2xpUFDRmhm7iRdgMBUBvcbEXhpIilmBKY1pkwcJbHR1C/wPutd JkfItyiRO5sK7kSYY5oavW6l8kqPTAPNVVWpdxggGZnWU3FO4KHTT4ZkEoGZabYu Q9aFotMUJkWCk8Az/3jz+TtQzzeolqMndmHYfDoCY7VljZn6aHBHU0mwutkdzU9Z ZXqt++aLfx1KHEn62s6FvDF+iHfn9Mp9J095P+87nGcmBSt0ArjCHaOjIjVqe08A bH3sqBNFrKLwOtDJC0QfL38RPYNxUE72q/q7YZbvdzktSi3lUqDwni0= -----END CERTIFICATE-----Generated at Mon Sep 1 02:07:28 2025 by rpki-client