$ rpki-client -vvf repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a383832303a3a2f34342d3434203d3e20313333373938.roa File: 323430323a353638303a383832303a3a2f34342d3434203d3e20313333373938.roa (raw, json) Hash identifier: mqD3ZVSa4PzHdpxBkKuziVdAQFtMJJEeNSVIkEqOUAM= Subject key identifier: 87:79:E5:60:20:9D:C6:E2:EC:85:C9:B2:C5:FF:B8:E2:E9:CC:BA:36 Certificate issuer: /CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Certificate serial: 54830B1AFDD69370F3925B2CB3CF9DD26A2C45DC Authority key identifier: 34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a383832303a3a2f34342d3434203d3e20313333373938.roa Signing time: Fri 29 Aug 2025 03:16:30 +0000 ROA not before: Fri 29 Aug 2025 03:11:30 +0000 ROA not after: Fri 28 Aug 2026 03:16:30 +0000 asID: 133798 IP address blocks: 2402:5680:8820::/44 maxlen: 44 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 04 Sep 2025 00:31:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:83:0b:1a:fd:d6:93:70:f3:92:5b:2c:b3:cf:9d:d2:6a:2c:45:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Validity Not Before: Aug 29 03:11:30 2025 GMT Not After : Aug 28 03:16:30 2026 GMT Subject: CN=8779E560209DC6E2EC85C9B2C5FFB8E2E9CCBA36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:57:58:3b:a8:a9:b9:88:da:c7:59:db:11:e0: 01:fe:c0:4e:68:4c:35:46:06:b2:31:b0:6e:95:4f: f2:9d:e4:b7:ea:61:c8:45:d2:50:12:22:f5:7b:69: 3b:d9:1e:27:20:fd:b9:f6:e7:6f:8a:69:77:36:1e: d2:53:bc:2c:d6:fe:4e:6c:b1:7e:df:12:16:48:9c: 3f:4d:14:53:f9:46:d9:7d:43:5b:46:d7:42:c5:bf: bc:cd:e3:18:5b:cf:d9:90:54:99:fa:ca:d7:f7:41: d2:79:95:21:4e:e6:2e:84:d1:00:eb:ec:78:11:b5: 4c:33:7d:bf:12:78:ba:9a:c8:8b:e3:cb:b8:4f:0f: fd:c9:e8:7c:2f:f0:ca:27:a5:9e:de:92:72:b8:e6: 2d:67:32:2e:51:e3:f4:ff:b9:50:69:58:37:6f:b0: c9:44:11:7e:c2:42:6f:74:d3:51:a7:20:90:29:aa: e2:a9:cd:c7:37:a1:fc:8d:2d:69:e7:2a:c4:ff:17: d5:56:86:16:5f:27:81:94:b3:b9:01:87:4f:39:bb: 1c:93:8a:55:9c:30:4e:dc:e2:61:a8:e4:07:28:e8: 62:84:ef:24:02:e8:4e:c0:f1:ca:86:bf:af:6e:78: 9b:51:28:c8:75:c1:0c:15:d0:36:41:d9:9f:91:e5: d1:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:79:E5:60:20:9D:C6:E2:EC:85:C9:B2:C5:FF:B8:E2:E9:CC:BA:36 X509v3 Authority Key Identifier: keyid:34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a383832303a3a2f34342d3434203d3e20313333373938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:5680:8820::/44 Signature Algorithm: sha256WithRSAEncryption 5a:54:c9:89:ed:22:6a:55:3f:b6:73:76:e6:89:80:29:e4:b2: d7:59:18:d1:c8:31:3f:49:09:77:d7:b4:bf:9b:1c:58:33:3c: e9:37:ba:5e:88:ff:c0:df:1c:dc:c6:c6:ae:ce:df:9d:a2:4f: 80:96:af:a1:4b:1e:b8:0a:d1:c1:99:42:e5:4a:92:58:dd:30: 50:4f:24:c2:33:c1:d3:01:6e:d0:dc:ee:8a:49:7e:2e:40:64: 00:4c:c0:c6:6d:69:16:fb:f6:1c:49:87:db:51:41:6f:36:ac: 61:b8:18:c3:51:dd:d7:80:2e:a5:5b:a0:41:60:bc:a1:ba:20: fa:28:dc:1f:84:ff:07:6b:0d:0c:64:e7:f3:ad:6a:de:1d:f0: ee:bc:63:7e:8a:55:26:39:53:6d:9c:42:d1:8f:25:81:d3:ef: 30:05:9b:2e:07:77:2c:0a:f4:a5:30:d8:b4:d3:ea:97:62:e0: c7:87:af:74:9c:ed:c8:53:aa:17:2d:6b:7b:7c:fa:74:23:f7: 4d:79:3e:c1:c6:b2:77:e8:d3:37:e8:42:7f:e9:48:c1:da:01: b7:9d:a7:86:01:18:fa:61:c1:03:c0:f0:13:43:cf:22:62:e5: d5:48:95:e0:6b:ae:7e:89:54:af:5b:ad:52:b7:b8:77:60:98: 14:cb:2e:c3 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUVIMLGv3Wk3Dzklsss8+d0mosRdwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4 NEMxNkIzOTAeFw0yNTA4MjkwMzExMzBaFw0yNjA4MjgwMzE2MzBaMDMxMTAvBgNV BAMTKDg3NzlFNTYwMjA5REM2RTJFQzg1QzlCMkM1RkZCOEUyRTlDQ0JBMzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4V1g7qKm5iNrHWdsR4AH+wE5o TDVGBrIxsG6VT/Kd5LfqYchF0lASIvV7aTvZHicg/bn252+KaXc2HtJTvCzW/k5s sX7fEhZInD9NFFP5Rtl9Q1tG10LFv7zN4xhbz9mQVJn6ytf3QdJ5lSFO5i6E0QDr 7HgRtUwzfb8SeLqayIvjy7hPD/3J6Hwv8MonpZ7eknK45i1nMi5R4/T/uVBpWDdv sMlEEX7CQm9001GnIJApquKpzcc3ofyNLWnnKsT/F9VWhhZfJ4GUs7kBh085uxyT ilWcME7c4mGo5Aco6GKE7yQC6E7A8cqGv69ueJtRKMh1wQwV0DZB2Z+R5dENAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUh3nlYCCdxuLshcmyxf+44unMujYwHwYDVR0j BBgwFoAUNHonWYXq5bybpsXLkpwG+oTBazkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MzAzZTZiYi03MzQ5LTQ3YWEtYTRjZC01MWQ4YTBlMjIyZjYvMC8zNDdBMjc1OTg1 RUFFNUJDOUJBNkM1Q0I5MjlDMDZGQTg0QzE2QjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4NEMx NkIzOS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MzMDNlNmJiLTczNDktNDdhYS1h NGNkLTUxZDhhMGUyMjJmNi8wLzMyMzQzMDMyM2EzNTM2MzgzMDNhMzgzODMyMzAz YTNhMmYzNDM0MmQzNDM0MjAzZDNlMjAzMTMzMzMzNzM5Mzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQk AlaAiCAwDQYJKoZIhvcNAQELBQADggEBAFpUyYntImpVP7ZzduaJgCnkstdZGNHI MT9JCXfXtL+bHFgzPOk3ul6I/8DfHNzGxq7O352iT4CWr6FLHrgK0cGZQuVKkljd MFBPJMIzwdMBbtDc7opJfi5AZABMwMZtaRb79hxJh9tRQW82rGG4GMNR3deALqVb oEFgvKG6IPoo3B+E/wdrDQxk5/Otat4d8O68Y36KVSY5U22cQtGPJYHT7zAFmy4H dywK9KUw2LTT6pdi4MeHr3Sc7chTqhcta3t8+nQj9015PsHGsnfo0zfoQn/pSMHa Abedp4YBGPphwQPA8BNDzyJi5dVIleBrrn6JVK9brVK3uHdgmBTLLsM= -----END CERTIFICATE-----Generated at Mon Sep 1 02:07:11 2025 by rpki-client