$ rpki-client -vvf repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a383833303a3a2f34342d3434203d3e20313333373938.roa File: 323430323a353638303a383833303a3a2f34342d3434203d3e20313333373938.roa (raw, json) Hash identifier: 5wxX6FofxzXS9mh7YFS5rlQN3jr33nQdOFmDY/zGt14= Subject key identifier: 40:E0:EB:19:8A:51:23:D2:BC:2A:9D:F5:37:65:BC:1C:DE:DC:3C:84 Certificate issuer: /CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Certificate serial: 368F8EEF9AE5DC841809EAF0028DF0632866CDE4 Authority key identifier: 34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a383833303a3a2f34342d3434203d3e20313333373938.roa Signing time: Fri 29 Aug 2025 03:16:47 +0000 ROA not before: Fri 29 Aug 2025 03:11:47 +0000 ROA not after: Fri 28 Aug 2026 03:16:47 +0000 asID: 133798 IP address blocks: 2402:5680:8830::/44 maxlen: 44 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 04 Sep 2025 00:31:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:8f:8e:ef:9a:e5:dc:84:18:09:ea:f0:02:8d:f0:63:28:66:cd:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Validity Not Before: Aug 29 03:11:47 2025 GMT Not After : Aug 28 03:16:47 2026 GMT Subject: CN=40E0EB198A5123D2BC2A9DF53765BC1CDEDC3C84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:c4:1e:ad:51:88:14:ad:71:72:18:6f:e2:80: 35:29:dc:bb:65:ad:20:41:86:e8:a2:17:73:f5:4e: 5c:e5:00:64:73:0a:10:48:aa:2f:66:9f:a3:59:db: 34:84:89:9e:47:e0:7a:e0:de:a6:55:59:74:f7:61: 34:54:13:99:4a:4c:1e:c1:3d:e9:fc:aa:25:7b:3d: 18:a1:f7:51:a8:6d:a6:ec:5c:80:3c:9f:be:aa:11: b8:c1:b5:a4:9b:b0:32:f5:52:b5:00:52:72:8b:db: 6c:ab:0b:81:c1:ad:3c:fc:af:ea:d0:0b:bb:2c:3d: fa:9c:5b:bf:72:c2:cd:de:59:39:51:90:e5:8d:a7: 04:14:f5:d4:4c:93:65:d3:bc:10:ea:57:4e:30:f8: 94:0b:80:d0:83:8b:78:5b:50:51:7a:4f:f3:72:e1: be:b1:42:8c:b4:da:1f:61:97:89:8c:56:ac:ee:a8: 7e:78:fe:11:34:cf:6f:4a:ad:fa:4f:c7:9a:c3:5b: 88:3f:3e:c6:0c:05:4e:9e:20:7a:08:08:39:56:46: f8:aa:f3:af:52:bf:14:d5:bd:ff:44:96:5f:cb:e2: 1a:2c:9a:94:c5:ee:df:08:74:2d:f8:c2:92:ed:22: ab:82:32:7a:be:47:47:be:f1:78:a4:8e:b7:91:ea: c6:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:E0:EB:19:8A:51:23:D2:BC:2A:9D:F5:37:65:BC:1C:DE:DC:3C:84 X509v3 Authority Key Identifier: keyid:34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a383833303a3a2f34342d3434203d3e20313333373938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:5680:8830::/44 Signature Algorithm: sha256WithRSAEncryption ae:e3:7f:70:59:de:fe:7c:5c:5e:0a:52:55:ec:65:42:85:91: a2:40:11:35:c6:53:c4:77:03:69:56:c6:73:9f:0a:d0:97:83: 8a:93:89:50:99:ba:69:a7:44:47:0b:94:cd:65:66:46:bc:67: 46:b1:1f:8c:fc:9e:07:2f:20:7b:34:61:02:75:cb:c7:ff:2d: 0d:32:9b:e8:fd:9a:fe:27:34:fa:85:e6:dc:d2:5b:a7:42:b2: b6:63:6d:9a:53:02:f8:e6:a8:10:88:42:66:ac:0e:5a:69:44: 02:fe:27:0e:4c:28:75:74:23:2d:e5:4e:c9:62:7f:05:36:b5: d0:4a:9b:11:33:da:bd:5a:65:bf:80:53:f1:8c:13:02:8c:ce: 6d:07:8b:c1:c3:5a:e7:27:27:59:22:dc:bf:5d:1d:bf:4b:c1: ef:6a:8d:18:75:1a:25:56:bc:60:cc:63:53:c8:6b:c2:ff:79: 0b:65:0e:fc:64:53:ea:3f:d8:04:a0:cd:c0:f9:33:18:18:2a: 5c:a7:3f:d4:f3:f7:1b:a0:53:f0:25:b5:7e:e6:7c:ba:45:52: 2f:c6:8f:f5:67:94:51:ee:6a:60:ba:92:6c:6d:e8:ac:5b:cf: ce:6c:5b:28:5d:c3:89:3c:30:9b:2f:7a:33:6b:aa:5a:a8:a8: bb:66:8d:3d -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUNo+O75rl3IQYCerwAo3wYyhmzeQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4 NEMxNkIzOTAeFw0yNTA4MjkwMzExNDdaFw0yNjA4MjgwMzE2NDdaMDMxMTAvBgNV BAMTKDQwRTBFQjE5OEE1MTIzRDJCQzJBOURGNTM3NjVCQzFDREVEQzNDODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoxB6tUYgUrXFyGG/igDUp3Ltl rSBBhuiiF3P1TlzlAGRzChBIqi9mn6NZ2zSEiZ5H4Hrg3qZVWXT3YTRUE5lKTB7B Pen8qiV7PRih91GobabsXIA8n76qEbjBtaSbsDL1UrUAUnKL22yrC4HBrTz8r+rQ C7ssPfqcW79yws3eWTlRkOWNpwQU9dRMk2XTvBDqV04w+JQLgNCDi3hbUFF6T/Ny 4b6xQoy02h9hl4mMVqzuqH54/hE0z29KrfpPx5rDW4g/PsYMBU6eIHoICDlWRviq 869SvxTVvf9Ell/L4hosmpTF7t8IdC34wpLtIquCMnq+R0e+8XikjreR6sa9AgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUQODrGYpRI9K8Kp31N2W8HN7cPIQwHwYDVR0j BBgwFoAUNHonWYXq5bybpsXLkpwG+oTBazkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MzAzZTZiYi03MzQ5LTQ3YWEtYTRjZC01MWQ4YTBlMjIyZjYvMC8zNDdBMjc1OTg1 RUFFNUJDOUJBNkM1Q0I5MjlDMDZGQTg0QzE2QjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4NEMx NkIzOS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MzMDNlNmJiLTczNDktNDdhYS1h NGNkLTUxZDhhMGUyMjJmNi8wLzMyMzQzMDMyM2EzNTM2MzgzMDNhMzgzODMzMzAz YTNhMmYzNDM0MmQzNDM0MjAzZDNlMjAzMTMzMzMzNzM5Mzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQk AlaAiDAwDQYJKoZIhvcNAQELBQADggEBAK7jf3BZ3v58XF4KUlXsZUKFkaJAETXG U8R3A2lWxnOfCtCXg4qTiVCZummnREcLlM1lZka8Z0axH4z8ngcvIHs0YQJ1y8f/ LQ0ym+j9mv4nNPqF5tzSW6dCsrZjbZpTAvjmqBCIQmasDlppRAL+Jw5MKHV0Iy3l TslifwU2tdBKmxEz2r1aZb+AU/GMEwKMzm0Hi8HDWucnJ1ki3L9dHb9Lwe9qjRh1 GiVWvGDMY1PIa8L/eQtlDvxkU+o/2ASgzcD5MxgYKlynP9Tz9xugU/AltX7mfLpF Ui/Gj/VnlFHuamC6kmxt6Kxbz85sWyhdw4k8MJsvejNrqlqoqLtmjT0= -----END CERTIFICATE-----Generated at Mon Sep 1 02:07:12 2025 by rpki-client