$ rpki-client -vvf repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a383837303a3a2f34342d3434203d3e20313333373938.roa File: 323430323a353638303a383837303a3a2f34342d3434203d3e20313333373938.roa (raw, json) Hash identifier: 2Z8hvczyECks16H4LIRoeIiJ8AfQQ+3xyk/spkoORss= Subject key identifier: BE:FF:88:5C:B3:BF:56:A3:D4:8F:6F:47:43:58:68:E8:24:F8:C6:20 Certificate issuer: /CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Certificate serial: 26F5D5D5BC115BE6725C45F98BCFBB7611AB60B6 Authority key identifier: 34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a383837303a3a2f34342d3434203d3e20313333373938.roa Signing time: Fri 29 Aug 2025 03:17:33 +0000 ROA not before: Fri 29 Aug 2025 03:12:33 +0000 ROA not after: Fri 28 Aug 2026 03:17:33 +0000 asID: 133798 IP address blocks: 2402:5680:8870::/44 maxlen: 44 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 04 Sep 2025 00:31:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:f5:d5:d5:bc:11:5b:e6:72:5c:45:f9:8b:cf:bb:76:11:ab:60:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Validity Not Before: Aug 29 03:12:33 2025 GMT Not After : Aug 28 03:17:33 2026 GMT Subject: CN=BEFF885CB3BF56A3D48F6F47435868E824F8C620 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:a3:3f:db:58:1d:49:cc:b6:15:ab:36:07:3d: 7a:1e:8f:9f:9d:00:b4:55:5b:9d:06:99:c6:31:5c: b7:93:27:6b:ad:cd:cd:73:95:50:36:88:32:ff:fa: 6a:29:32:13:fd:39:3a:95:41:da:f2:f0:d0:fd:9f: ff:96:39:0d:f7:3b:fe:ff:a3:02:e6:d4:d7:62:97: d5:72:c7:69:3e:e6:93:82:32:87:88:36:bd:12:b2: 2f:b2:1e:9c:cc:62:17:16:b7:e1:5e:0b:56:0b:ff: 38:73:86:63:ea:59:38:82:0b:35:9a:03:37:fd:ed: 6b:94:62:f7:82:3d:5a:a8:66:ea:0e:2e:48:73:f2: 4f:02:91:52:a9:23:d1:08:0a:2b:89:49:b2:04:55: ff:0f:24:ac:b0:af:0f:f8:82:6e:e3:db:1d:6c:99: d4:02:68:5f:72:c5:7c:55:52:70:d7:fa:6c:fa:64: 4b:51:5c:2b:24:94:69:85:e6:00:3f:92:05:79:7e: b5:d8:c0:76:a2:d5:27:58:2b:7a:79:20:65:5b:0e: e0:57:a8:fb:b7:3a:3c:dd:cc:e2:0b:1a:0e:ca:6a: ff:c5:2c:cb:d5:89:1b:01:ff:a5:76:19:03:14:d0: 9e:95:e0:75:dc:97:be:7e:0d:a5:d3:27:6d:00:87: 97:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:FF:88:5C:B3:BF:56:A3:D4:8F:6F:47:43:58:68:E8:24:F8:C6:20 X509v3 Authority Key Identifier: keyid:34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a383837303a3a2f34342d3434203d3e20313333373938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:5680:8870::/44 Signature Algorithm: sha256WithRSAEncryption 64:12:2d:b4:28:f5:77:64:b8:0a:33:6b:0d:02:03:4d:0e:7a: 68:67:db:f7:0f:82:99:3c:2f:18:f3:f8:b6:6d:1e:bb:f8:94: 57:cf:27:13:e6:c6:4a:71:40:8a:47:be:ad:f4:82:f5:c7:ac: 0a:b6:3f:18:ee:c8:78:3d:65:0e:a3:27:f9:08:91:0e:25:cd: 25:45:5d:98:a9:fa:fd:2b:5f:c5:e3:06:e6:74:8a:a2:dc:fc: 2c:a6:cd:55:82:a8:96:10:ea:41:f1:e3:1c:83:e8:cc:69:08: c1:66:77:05:50:a6:21:49:ad:ac:2c:95:34:06:3c:74:5e:64: e3:42:32:c6:38:74:dc:42:20:c1:cd:6c:84:27:d8:f6:5b:ce: 18:d6:b5:b3:48:40:b4:82:85:66:9d:f3:87:37:e8:3a:e0:6c: b3:bb:01:71:ad:4f:b2:1f:3d:8f:0c:16:df:b5:7d:f3:b7:cf: 41:5b:31:80:1c:7a:dd:88:1c:80:c6:ff:39:c3:c5:13:23:35: 24:1c:4c:72:d8:3d:71:86:6a:1f:dc:54:18:ae:d8:86:3a:86: 5c:0c:c4:01:4a:1c:ac:95:79:18:a6:34:81:6f:be:60:a9:0f: 3d:4a:5f:b6:d0:5d:50:d2:81:6e:c9:20:2e:e1:37:75:14:f7: e9:4f:9e:19 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUJvXV1bwRW+ZyXEX5i8+7dhGrYLYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4 NEMxNkIzOTAeFw0yNTA4MjkwMzEyMzNaFw0yNjA4MjgwMzE3MzNaMDMxMTAvBgNV BAMTKEJFRkY4ODVDQjNCRjU2QTNENDhGNkY0NzQzNTg2OEU4MjRGOEM2MjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDoz/bWB1JzLYVqzYHPXoej5+d ALRVW50GmcYxXLeTJ2utzc1zlVA2iDL/+mopMhP9OTqVQdry8ND9n/+WOQ33O/7/ owLm1Ndil9Vyx2k+5pOCMoeINr0Ssi+yHpzMYhcWt+FeC1YL/zhzhmPqWTiCCzWa Azf97WuUYveCPVqoZuoOLkhz8k8CkVKpI9EICiuJSbIEVf8PJKywrw/4gm7j2x1s mdQCaF9yxXxVUnDX+mz6ZEtRXCsklGmF5gA/kgV5frXYwHai1SdYK3p5IGVbDuBX qPu3OjzdzOILGg7Kav/FLMvViRsB/6V2GQMU0J6V4HXcl75+DaXTJ20Ah5d3AgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUvv+IXLO/VqPUj29HQ1ho6CT4xiAwHwYDVR0j BBgwFoAUNHonWYXq5bybpsXLkpwG+oTBazkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MzAzZTZiYi03MzQ5LTQ3YWEtYTRjZC01MWQ4YTBlMjIyZjYvMC8zNDdBMjc1OTg1 RUFFNUJDOUJBNkM1Q0I5MjlDMDZGQTg0QzE2QjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4NEMx NkIzOS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MzMDNlNmJiLTczNDktNDdhYS1h NGNkLTUxZDhhMGUyMjJmNi8wLzMyMzQzMDMyM2EzNTM2MzgzMDNhMzgzODM3MzAz YTNhMmYzNDM0MmQzNDM0MjAzZDNlMjAzMTMzMzMzNzM5Mzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQk AlaAiHAwDQYJKoZIhvcNAQELBQADggEBAGQSLbQo9XdkuAozaw0CA00Oemhn2/cP gpk8Lxjz+LZtHrv4lFfPJxPmxkpxQIpHvq30gvXHrAq2PxjuyHg9ZQ6jJ/kIkQ4l zSVFXZip+v0rX8XjBuZ0iqLc/CymzVWCqJYQ6kHx4xyD6MxpCMFmdwVQpiFJraws lTQGPHReZONCMsY4dNxCIMHNbIQn2PZbzhjWtbNIQLSChWad84c36DrgbLO7AXGt T7IfPY8MFt+1ffO3z0FbMYAcet2IHIDG/znDxRMjNSQcTHLYPXGGah/cVBiu2IY6 hlwMxAFKHKyVeRimNIFvvmCpDz1KX7bQXVDSgW7JIC7hN3UU9+lPnhk= -----END CERTIFICATE-----Generated at Mon Sep 1 02:05:40 2025 by rpki-client