$ rpki-client -vvf repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a383737303a3a2f34342d3434203d3e20313333373938.roa File: 323430323a353638303a383737303a3a2f34342d3434203d3e20313333373938.roa (raw, json) Hash identifier: 2yDOhc3zpMQ7G6/RkFv6QFIYMg1TGhSFlnAjXQ4r4Ho= Subject key identifier: FA:9D:D0:62:4C:B6:F7:9D:BA:15:D6:14:5E:D2:D5:4D:6C:02:83:48 Certificate issuer: /CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Certificate serial: 75757498E5078CBCBFAB429EB49C3D96CED39DE4 Authority key identifier: 34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a383737303a3a2f34342d3434203d3e20313333373938.roa Signing time: Tue 26 Aug 2025 11:16:39 +0000 ROA not before: Tue 26 Aug 2025 11:11:39 +0000 ROA not after: Tue 25 Aug 2026 11:16:39 +0000 asID: 133798 IP address blocks: 2402:5680:8770::/44 maxlen: 44 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 04 Sep 2025 00:31:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:75:74:98:e5:07:8c:bc:bf:ab:42:9e:b4:9c:3d:96:ce:d3:9d:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Validity Not Before: Aug 26 11:11:39 2025 GMT Not After : Aug 25 11:16:39 2026 GMT Subject: CN=FA9DD0624CB6F79DBA15D6145ED2D54D6C028348 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:d0:73:22:84:2e:84:5f:fc:c9:24:7b:b1:e3: c3:55:48:bd:a5:9b:df:a3:2c:c0:e1:c3:96:b8:78: 47:fc:c8:de:8e:18:ba:07:ec:9a:24:57:3c:ce:c0: 28:45:25:3f:fd:62:a4:3c:99:3d:6c:a5:2f:b0:4e: ae:30:2c:f9:2a:8d:c2:96:c7:7e:0e:6e:8f:e9:6e: be:7e:06:c8:37:bc:0d:f9:64:b8:c1:5c:a3:b8:05: e5:24:d5:3b:b5:9e:c5:70:f4:b4:a8:dd:ce:c3:e9: d5:af:fe:b6:80:f4:0a:20:6c:ec:85:ae:bf:4e:3d: 23:99:55:bd:4f:0c:8d:86:b8:be:5c:68:91:58:48: c7:a6:4e:77:07:a3:03:6f:de:a5:e8:12:eb:25:df: 7a:99:e8:c8:fc:c6:7d:30:39:53:14:d6:b8:89:16: d6:c4:b6:11:be:5c:d4:f7:d8:73:f3:0b:90:0a:8f: a2:9c:a6:00:c9:ad:28:fc:50:85:4e:0e:e1:81:fc: 35:36:05:24:db:36:c5:77:13:15:90:af:e3:1b:4a: 8e:7b:cf:58:d8:26:09:66:cf:6e:07:ba:d6:74:ba: 6b:60:7d:11:fb:81:52:0e:80:d5:b4:75:45:34:f0: 5c:2e:15:d0:a2:cd:bc:23:b1:bf:fb:8f:5e:42:44: fc:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:9D:D0:62:4C:B6:F7:9D:BA:15:D6:14:5E:D2:D5:4D:6C:02:83:48 X509v3 Authority Key Identifier: keyid:34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a383737303a3a2f34342d3434203d3e20313333373938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:5680:8770::/44 Signature Algorithm: sha256WithRSAEncryption b6:62:f8:12:bd:4d:63:3c:ce:02:3d:51:4f:0b:f0:2c:2a:cb: 03:5e:41:00:d5:58:96:13:d7:e2:b9:ac:bc:ff:9c:21:90:5c: 85:bf:d3:20:35:f5:2b:9b:be:15:41:2f:e9:91:2c:dd:b3:dc: 24:5f:1f:a9:48:a8:45:77:33:e3:08:c6:14:1f:27:d2:80:b9: 9c:a1:44:10:31:48:26:a7:8a:0d:26:8c:da:3b:61:a4:83:20: 06:62:ad:ea:62:aa:8c:8a:a7:17:e5:2a:c0:b9:aa:b1:04:8c: b6:06:5c:e0:c6:c8:75:2d:e2:65:b2:07:64:7f:ce:d9:a5:6e: b8:04:93:14:0a:72:a7:c3:58:97:1a:a8:59:22:0f:c3:b3:47: be:51:a0:cb:9f:54:01:19:5e:cf:ec:3d:08:73:b4:87:6a:37: b7:f1:87:68:57:a6:dc:e2:8f:7a:2b:1b:34:94:24:0c:ac:a8: df:09:10:04:1c:bc:bb:54:b8:11:5b:b2:f6:11:9b:f3:07:2a: 02:15:98:ba:29:c4:bb:b0:b2:ef:d1:05:aa:4c:cf:eb:19:3f: cc:59:a4:09:f6:52:70:14:52:e6:d6:85:e8:fd:70:3c:ab:80: 70:1c:ab:b8:b3:a0:5b:6a:23:65:bb:82:72:86:7e:0c:a2:8d: 5e:38:15:4a -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUdXV0mOUHjLy/q0KetJw9ls7TneQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4 NEMxNkIzOTAeFw0yNTA4MjYxMTExMzlaFw0yNjA4MjUxMTE2MzlaMDMxMTAvBgNV BAMTKEZBOUREMDYyNENCNkY3OURCQTE1RDYxNDVFRDJENTRENkMwMjgzNDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC60HMihC6EX/zJJHux48NVSL2l m9+jLMDhw5a4eEf8yN6OGLoH7JokVzzOwChFJT/9YqQ8mT1spS+wTq4wLPkqjcKW x34Obo/pbr5+Bsg3vA35ZLjBXKO4BeUk1Tu1nsVw9LSo3c7D6dWv/raA9AogbOyF rr9OPSOZVb1PDI2GuL5caJFYSMemTncHowNv3qXoEusl33qZ6Mj8xn0wOVMU1riJ FtbEthG+XNT32HPzC5AKj6KcpgDJrSj8UIVODuGB/DU2BSTbNsV3ExWQr+MbSo57 z1jYJglmz24HutZ0umtgfRH7gVIOgNW0dUU08FwuFdCizbwjsb/7j15CRPwDAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQU+p3QYky29526FdYUXtLVTWwCg0gwHwYDVR0j BBgwFoAUNHonWYXq5bybpsXLkpwG+oTBazkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MzAzZTZiYi03MzQ5LTQ3YWEtYTRjZC01MWQ4YTBlMjIyZjYvMC8zNDdBMjc1OTg1 RUFFNUJDOUJBNkM1Q0I5MjlDMDZGQTg0QzE2QjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4NEMx NkIzOS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MzMDNlNmJiLTczNDktNDdhYS1h NGNkLTUxZDhhMGUyMjJmNi8wLzMyMzQzMDMyM2EzNTM2MzgzMDNhMzgzNzM3MzAz YTNhMmYzNDM0MmQzNDM0MjAzZDNlMjAzMTMzMzMzNzM5Mzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQk AlaAh3AwDQYJKoZIhvcNAQELBQADggEBALZi+BK9TWM8zgI9UU8L8CwqywNeQQDV WJYT1+K5rLz/nCGQXIW/0yA19SubvhVBL+mRLN2z3CRfH6lIqEV3M+MIxhQfJ9KA uZyhRBAxSCanig0mjNo7YaSDIAZirepiqoyKpxflKsC5qrEEjLYGXODGyHUt4mWy B2R/ztmlbrgEkxQKcqfDWJcaqFkiD8OzR75RoMufVAEZXs/sPQhztIdqN7fxh2hX ptzij3orGzSUJAysqN8JEAQcvLtUuBFbsvYRm/MHKgIVmLopxLuwsu/RBapMz+sZ P8xZpAn2UnAUUubWhej9cDyrgHAcq7izoFtqI2W7gnKGfgyijV44FUo= -----END CERTIFICATE-----Generated at Mon Sep 1 02:09:23 2025 by rpki-client