$ rpki-client -vvf repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a383836303a3a2f34342d3434203d3e20313333373938.roa File: 323430323a353638303a383836303a3a2f34342d3434203d3e20313333373938.roa (raw, json) Hash identifier: WlnV/p2mNwh/SsLzTjJX8U/iLtPHyfoHsODwiNS1GTo= Subject key identifier: FE:0D:BC:AC:05:79:7B:FB:F7:6A:E9:F1:75:BC:25:15:7A:B4:81:D2 Certificate issuer: /CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Certificate serial: 3BCB5B1DD63E5DF724ED1906658DE4BA848C4F32 Authority key identifier: 34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a383836303a3a2f34342d3434203d3e20313333373938.roa Signing time: Fri 29 Aug 2025 03:17:22 +0000 ROA not before: Fri 29 Aug 2025 03:12:22 +0000 ROA not after: Fri 28 Aug 2026 03:17:22 +0000 asID: 133798 IP address blocks: 2402:5680:8860::/44 maxlen: 44 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 04 Sep 2025 00:31:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:cb:5b:1d:d6:3e:5d:f7:24:ed:19:06:65:8d:e4:ba:84:8c:4f:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Validity Not Before: Aug 29 03:12:22 2025 GMT Not After : Aug 28 03:17:22 2026 GMT Subject: CN=FE0DBCAC05797BFBF76AE9F175BC25157AB481D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:66:c2:f4:1a:f3:1c:17:0d:ea:0f:e5:af:21: af:d9:af:94:d4:37:4b:3c:d5:e3:11:27:01:c5:61: 99:fe:1b:a0:8a:d3:9b:f1:45:cb:ee:5d:7d:25:8e: 06:65:67:3e:d9:44:7d:56:71:e9:93:15:f6:f9:5b: 5a:59:1e:5f:ce:4a:fc:e1:a3:a9:30:56:b6:f5:6e: 97:c7:94:af:52:04:35:a3:35:59:67:3a:99:b0:2e: 97:33:eb:49:6c:2b:b3:a6:dd:d1:9e:1e:a5:bd:7d: 38:98:2e:74:e7:9e:69:de:07:45:bf:b6:73:e6:13: 43:f7:26:8f:e5:b5:c4:05:00:6a:71:ae:b7:57:b9: a9:47:a0:2f:e4:36:25:27:72:9c:47:11:90:a0:2a: 1a:e2:b1:c3:93:a4:da:56:06:ec:85:39:05:36:e0: c5:ae:9d:89:ba:03:c2:28:b5:57:ba:c9:d3:c7:c1: df:fd:c3:4e:de:b6:e9:d6:e6:b4:42:7a:0e:65:aa: 1e:33:97:35:e1:31:85:0b:41:4f:be:8e:3c:46:fe: e8:13:7f:61:fb:67:c8:dd:e3:33:f6:7c:9f:3b:6e: 18:1e:38:17:dc:70:95:a6:94:f5:1b:bd:8e:4f:e3: 3f:90:c8:14:84:ae:c1:54:c2:8a:00:9f:a4:3e:13: da:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:0D:BC:AC:05:79:7B:FB:F7:6A:E9:F1:75:BC:25:15:7A:B4:81:D2 X509v3 Authority Key Identifier: keyid:34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a383836303a3a2f34342d3434203d3e20313333373938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:5680:8860::/44 Signature Algorithm: sha256WithRSAEncryption 55:b4:fc:d4:e4:90:c3:dd:c8:ab:7a:96:ab:50:9e:9a:2b:36: e0:02:06:2f:b1:14:43:d0:b7:6b:90:4c:96:45:cb:ca:f9:f1: 90:76:5d:aa:aa:ea:a1:46:72:4b:28:5c:5a:ec:3a:ab:64:a9: fc:b2:6e:78:23:e0:b3:1b:e4:10:2f:d0:19:61:63:f4:87:57: a9:3c:a0:56:a0:0c:e7:33:66:ec:2e:23:a2:ff:db:be:4a:1d: 3b:06:4b:78:77:da:31:7c:b9:cc:b8:bc:0f:cf:f1:e2:84:87: dd:27:32:d4:64:54:7d:1c:66:fc:5d:71:1b:6b:c7:55:a0:e3: 54:aa:ac:95:8a:8f:9b:65:23:3f:8a:e1:17:fc:2c:6f:dc:87: 9a:8c:12:4b:9e:34:4e:34:ad:96:15:a4:3d:aa:20:d7:e9:83: d3:3e:5e:8d:51:a1:f2:60:f5:17:5f:a4:86:cf:a3:49:82:5b: bb:97:c1:f8:8d:e4:f9:3b:54:62:51:53:ce:83:c8:12:0d:01: 7a:5b:ad:46:18:be:14:4e:4b:1f:28:e6:6b:1a:b2:1a:f8:a8: d0:62:4f:33:cf:38:9a:45:ce:42:fa:b5:ab:e7:44:74:4d:57: a4:82:6e:67:a2:07:b8:54:00:d7:6d:93:86:5d:d6:f6:35:48: 63:49:8f:61 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUO8tbHdY+Xfck7RkGZY3kuoSMTzIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4 NEMxNkIzOTAeFw0yNTA4MjkwMzEyMjJaFw0yNjA4MjgwMzE3MjJaMDMxMTAvBgNV BAMTKEZFMERCQ0FDMDU3OTdCRkJGNzZBRTlGMTc1QkMyNTE1N0FCNDgxRDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeZsL0GvMcFw3qD+WvIa/Zr5TU N0s81eMRJwHFYZn+G6CK05vxRcvuXX0ljgZlZz7ZRH1WcemTFfb5W1pZHl/OSvzh o6kwVrb1bpfHlK9SBDWjNVlnOpmwLpcz60lsK7Om3dGeHqW9fTiYLnTnnmneB0W/ tnPmE0P3Jo/ltcQFAGpxrrdXualHoC/kNiUncpxHEZCgKhriscOTpNpWBuyFOQU2 4MWunYm6A8IotVe6ydPHwd/9w07etunW5rRCeg5lqh4zlzXhMYULQU++jjxG/ugT f2H7Z8jd4zP2fJ87bhgeOBfccJWmlPUbvY5P4z+QyBSErsFUwooAn6Q+E9rhAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQU/g28rAV5e/v3aunxdbwlFXq0gdIwHwYDVR0j BBgwFoAUNHonWYXq5bybpsXLkpwG+oTBazkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MzAzZTZiYi03MzQ5LTQ3YWEtYTRjZC01MWQ4YTBlMjIyZjYvMC8zNDdBMjc1OTg1 RUFFNUJDOUJBNkM1Q0I5MjlDMDZGQTg0QzE2QjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4NEMx NkIzOS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MzMDNlNmJiLTczNDktNDdhYS1h NGNkLTUxZDhhMGUyMjJmNi8wLzMyMzQzMDMyM2EzNTM2MzgzMDNhMzgzODM2MzAz YTNhMmYzNDM0MmQzNDM0MjAzZDNlMjAzMTMzMzMzNzM5Mzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQk AlaAiGAwDQYJKoZIhvcNAQELBQADggEBAFW0/NTkkMPdyKt6lqtQnporNuACBi+x FEPQt2uQTJZFy8r58ZB2Xaqq6qFGcksoXFrsOqtkqfyybngj4LMb5BAv0BlhY/SH V6k8oFagDOczZuwuI6L/275KHTsGS3h32jF8ucy4vA/P8eKEh90nMtRkVH0cZvxd cRtrx1Wg41SqrJWKj5tlIz+K4Rf8LG/ch5qMEkueNE40rZYVpD2qINfpg9M+Xo1R ofJg9RdfpIbPo0mCW7uXwfiN5Pk7VGJRU86DyBINAXpbrUYYvhROSx8o5msashr4 qNBiTzPPOJpFzkL6tavnRHRNV6SCbmeiB7hUANdtk4Zd1vY1SGNJj2E= -----END CERTIFICATE-----Generated at Mon Sep 1 02:05:49 2025 by rpki-client