$ rpki-client -vvf repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a383834303a3a2f34342d3434203d3e20313333373938.roa File: 323430323a353638303a383834303a3a2f34342d3434203d3e20313333373938.roa (raw, json) Hash identifier: MN6Yuw598yr+F0KTrpMfCXJHsLtfI9VUqDr4K1A5o4I= Subject key identifier: 97:53:AA:2A:CB:28:EE:CB:EB:11:4E:F5:6D:1D:7F:01:6A:4F:44:68 Certificate issuer: /CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Certificate serial: 331B0947851BBC377F53BC2142A06677022EE3DC Authority key identifier: 34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a383834303a3a2f34342d3434203d3e20313333373938.roa Signing time: Fri 29 Aug 2025 03:17:01 +0000 ROA not before: Fri 29 Aug 2025 03:12:01 +0000 ROA not after: Fri 28 Aug 2026 03:17:01 +0000 asID: 133798 IP address blocks: 2402:5680:8840::/44 maxlen: 44 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 04 Sep 2025 00:31:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:1b:09:47:85:1b:bc:37:7f:53:bc:21:42:a0:66:77:02:2e:e3:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Validity Not Before: Aug 29 03:12:01 2025 GMT Not After : Aug 28 03:17:01 2026 GMT Subject: CN=9753AA2ACB28EECBEB114EF56D1D7F016A4F4468 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:d5:59:3c:90:ee:ee:0d:70:c5:75:6a:90:b7: d6:1a:8b:ae:c4:dc:32:ac:97:0c:c8:43:dd:cc:b4: b8:f5:9e:a5:03:f9:a9:c8:bc:10:54:c2:8f:20:61: 7b:bc:bc:25:ee:29:a1:d7:54:60:d7:ff:a3:f7:14: aa:c0:eb:a4:fd:aa:cc:8d:0b:dc:84:b5:c1:f4:87: 5b:29:b3:0d:60:e1:23:48:93:0c:f3:b0:bd:9e:57: 17:bd:ea:f2:37:7c:a8:0c:0d:47:f7:16:e4:7e:65: b6:34:7e:ae:a0:56:4f:81:3f:01:98:5c:42:88:bd: 67:b8:60:7a:4b:6d:65:46:70:e9:11:6c:1d:98:6b: 0b:09:d3:8b:d3:f9:cb:a8:24:16:78:97:17:34:84: 1b:ed:ac:f0:0f:55:d9:92:1d:da:a6:87:7f:3a:5c: 2c:49:ce:d9:fb:4f:75:11:d1:db:30:33:cc:ef:42: b3:89:d1:6d:2b:1b:1a:c8:39:ea:8a:33:be:3a:e7: 27:9e:2d:60:8a:29:30:a9:07:ce:41:6b:75:17:86: 00:02:c4:13:86:d3:9f:73:86:af:4f:6b:da:b5:1e: 76:ed:01:cf:b2:7b:e3:09:0a:aa:89:4f:c2:70:c4: 63:22:e6:8c:3d:ca:6b:0d:e9:4e:2a:57:ef:02:54: 26:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:53:AA:2A:CB:28:EE:CB:EB:11:4E:F5:6D:1D:7F:01:6A:4F:44:68 X509v3 Authority Key Identifier: keyid:34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a383834303a3a2f34342d3434203d3e20313333373938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:5680:8840::/44 Signature Algorithm: sha256WithRSAEncryption 17:af:a4:8b:e8:30:a0:bc:c4:59:fe:82:78:bc:91:84:bb:f5: 2f:be:58:cd:0c:59:a3:0a:e0:29:5a:29:0d:d8:9b:27:a4:e8: b3:38:6e:98:59:9e:49:da:83:ba:c8:37:96:3a:c9:d9:e0:b6: f0:c7:75:9d:69:17:04:68:86:85:05:1e:d5:2f:15:22:2c:44: 21:5c:37:8a:84:38:5e:e1:23:79:09:b8:68:b5:4c:16:70:f1: f4:94:db:27:2a:c1:60:95:d0:70:05:c9:f0:ef:53:5b:b1:b3: 32:83:dd:a8:a5:15:32:72:1c:5f:76:ab:fc:ba:77:01:e7:3c: db:46:26:41:ed:d9:c5:24:3a:df:18:fd:b4:cb:7c:30:06:33: 72:ad:5c:bb:d6:d5:b9:4a:a5:fa:6f:89:b0:60:af:38:ff:c3: ea:cf:2a:91:08:aa:70:f7:ac:53:de:78:ad:81:a6:41:b6:f2: 5d:82:f0:fd:a4:c0:57:6d:24:e4:af:05:18:24:13:cc:b3:36: a7:4d:c4:d2:12:d9:16:b2:e0:2f:e4:27:60:dc:ed:62:79:97: 52:85:97:3a:cf:f9:ca:e6:b4:ef:cc:b7:a1:b7:d5:ca:7f:aa: 90:fc:f3:1f:56:9d:a6:b1:f6:36:6e:67:72:ac:f8:df:e6:9c: b0:45:71:ce -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUMxsJR4UbvDd/U7whQqBmdwIu49wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4 NEMxNkIzOTAeFw0yNTA4MjkwMzEyMDFaFw0yNjA4MjgwMzE3MDFaMDMxMTAvBgNV BAMTKDk3NTNBQTJBQ0IyOEVFQ0JFQjExNEVGNTZEMUQ3RjAxNkE0RjQ0NjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC01Vk8kO7uDXDFdWqQt9Yai67E 3DKslwzIQ93MtLj1nqUD+anIvBBUwo8gYXu8vCXuKaHXVGDX/6P3FKrA66T9qsyN C9yEtcH0h1spsw1g4SNIkwzzsL2eVxe96vI3fKgMDUf3FuR+ZbY0fq6gVk+BPwGY XEKIvWe4YHpLbWVGcOkRbB2YawsJ04vT+cuoJBZ4lxc0hBvtrPAPVdmSHdqmh386 XCxJztn7T3UR0dswM8zvQrOJ0W0rGxrIOeqKM7465yeeLWCKKTCpB85Ba3UXhgAC xBOG059zhq9Pa9q1HnbtAc+ye+MJCqqJT8JwxGMi5ow9ymsN6U4qV+8CVCbZAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUl1OqKsso7svrEU71bR1/AWpPRGgwHwYDVR0j BBgwFoAUNHonWYXq5bybpsXLkpwG+oTBazkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MzAzZTZiYi03MzQ5LTQ3YWEtYTRjZC01MWQ4YTBlMjIyZjYvMC8zNDdBMjc1OTg1 RUFFNUJDOUJBNkM1Q0I5MjlDMDZGQTg0QzE2QjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4NEMx NkIzOS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MzMDNlNmJiLTczNDktNDdhYS1h NGNkLTUxZDhhMGUyMjJmNi8wLzMyMzQzMDMyM2EzNTM2MzgzMDNhMzgzODM0MzAz YTNhMmYzNDM0MmQzNDM0MjAzZDNlMjAzMTMzMzMzNzM5Mzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQk AlaAiEAwDQYJKoZIhvcNAQELBQADggEBABevpIvoMKC8xFn+gni8kYS79S++WM0M WaMK4ClaKQ3Ymyek6LM4bphZnknag7rIN5Y6ydngtvDHdZ1pFwRohoUFHtUvFSIs RCFcN4qEOF7hI3kJuGi1TBZw8fSU2ycqwWCV0HAFyfDvU1uxszKD3ailFTJyHF92 q/y6dwHnPNtGJkHt2cUkOt8Y/bTLfDAGM3KtXLvW1blKpfpvibBgrzj/w+rPKpEI qnD3rFPeeK2BpkG28l2C8P2kwFdtJOSvBRgkE8yzNqdNxNIS2Ray4C/kJ2Dc7WJ5 l1KFlzrP+crmtO/Mt6G31cp/qpD88x9Wnaax9jZuZ3Ks+N/mnLBFcc4= -----END CERTIFICATE-----Generated at Mon Sep 1 02:05:52 2025 by rpki-client