$ rpki-client -vvf repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a383862303a3a2f34342d3434203d3e20313333373938.roa File: 323430323a353638303a383862303a3a2f34342d3434203d3e20313333373938.roa (raw, json) Hash identifier: AAtnr06YukAh7HtSWc91p/FkzmN5EP3+M1balEGVUoE= Subject key identifier: E8:B5:8C:8E:09:9D:17:3C:E5:17:E0:A1:F5:90:29:E3:23:DE:D5:A9 Certificate issuer: /CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Certificate serial: 65379B3B512D5B1881E315A674850C60D1284342 Authority key identifier: 34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a383862303a3a2f34342d3434203d3e20313333373938.roa Signing time: Wed 27 Aug 2025 04:37:05 +0000 ROA not before: Wed 27 Aug 2025 04:32:05 +0000 ROA not after: Wed 26 Aug 2026 04:37:05 +0000 asID: 133798 IP address blocks: 2402:5680:88b0::/44 maxlen: 44 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 04 Sep 2025 00:31:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:37:9b:3b:51:2d:5b:18:81:e3:15:a6:74:85:0c:60:d1:28:43:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Validity Not Before: Aug 27 04:32:05 2025 GMT Not After : Aug 26 04:37:05 2026 GMT Subject: CN=E8B58C8E099D173CE517E0A1F59029E323DED5A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:8b:b0:06:1c:4c:77:d0:32:e6:50:c3:7e:90: 67:96:e8:f3:ff:29:4f:33:8c:d5:91:aa:bd:be:4a: 39:f2:30:b5:77:54:15:e2:7b:4e:62:2c:1d:93:74: 28:6d:a8:2c:c1:ef:80:35:a4:06:51:36:48:e3:bb: 10:5d:72:3a:c6:fc:89:06:a4:da:4f:78:07:fd:ae: 1a:ed:78:4b:9d:54:09:38:17:b5:dd:e5:b7:d5:87: 58:ed:32:37:ff:1e:c7:85:06:0d:10:1d:7d:7a:a3: ce:de:8a:62:6f:5c:aa:c0:23:f9:45:ff:0f:2f:0c: 76:a9:ee:96:c7:b2:77:3f:df:c2:22:96:f9:2c:b6: 8f:39:ac:2a:31:81:55:fe:d6:01:47:64:a6:12:04: ce:48:d7:4d:17:5b:5c:82:f3:3e:73:20:1e:72:67: c9:0c:a6:12:4e:99:33:19:00:66:19:39:0f:80:9a: fa:d4:dc:15:25:36:8d:9e:45:93:11:fa:92:78:50: e6:1c:85:a7:51:3f:f7:83:b0:09:3e:fb:99:81:4a: c4:aa:23:fe:4a:93:09:66:20:8c:8a:da:48:e5:91: ee:df:fd:67:ea:73:d2:5f:4f:5d:fd:49:03:5e:ed: 8a:04:37:ef:d7:a7:b9:a0:84:37:5b:99:53:22:f5: 9d:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:B5:8C:8E:09:9D:17:3C:E5:17:E0:A1:F5:90:29:E3:23:DE:D5:A9 X509v3 Authority Key Identifier: keyid:34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a383862303a3a2f34342d3434203d3e20313333373938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:5680:88b0::/44 Signature Algorithm: sha256WithRSAEncryption 73:6d:6d:7a:10:b1:f8:e8:67:08:e3:5b:8d:de:55:e7:7b:d0: 90:67:df:99:af:64:60:33:67:18:41:f4:71:23:05:94:6a:7a: 89:b4:b9:be:5a:12:e2:b7:15:ed:67:ae:33:33:d6:d2:38:04: 6b:36:f3:f1:e2:b4:b0:01:ab:8c:45:58:d5:ba:5f:26:0e:51: ea:b7:6a:00:72:e6:bb:4b:b8:90:7c:7c:42:36:a1:67:de:14: 22:68:40:7a:f7:b7:74:74:7b:57:19:a2:59:0f:74:f3:e9:84: 87:50:98:80:c7:8d:02:81:ac:54:81:1d:8e:fe:30:80:7f:7f: 28:1e:93:11:73:05:a3:d5:c0:5a:d9:60:9f:36:7b:c5:cd:b9: 9e:9e:7c:f7:4f:ff:81:a5:e9:70:a8:63:48:d9:2a:33:a7:3a: 39:33:0e:64:bf:1f:6a:f6:85:41:e2:72:49:ca:45:b1:20:6c: 7d:8e:18:17:1a:46:2a:ff:2e:35:f3:30:5e:9f:d5:31:df:16: 0e:29:92:18:fb:3d:92:98:30:8c:fc:59:9c:54:c8:fd:aa:8e: dd:e0:06:e3:4a:a7:3f:69:ad:a4:b9:82:08:64:8e:b8:23:64: 0f:18:35:3c:95:22:19:34:3b:d5:0a:72:78:66:3e:7f:1a:24: 5c:e5:6e:50 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUZTebO1EtWxiB4xWmdIUMYNEoQ0IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4 NEMxNkIzOTAeFw0yNTA4MjcwNDMyMDVaFw0yNjA4MjYwNDM3MDVaMDMxMTAvBgNV BAMTKEU4QjU4QzhFMDk5RDE3M0NFNTE3RTBBMUY1OTAyOUUzMjNERUQ1QTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJi7AGHEx30DLmUMN+kGeW6PP/ KU8zjNWRqr2+SjnyMLV3VBXie05iLB2TdChtqCzB74A1pAZRNkjjuxBdcjrG/IkG pNpPeAf9rhrteEudVAk4F7Xd5bfVh1jtMjf/HseFBg0QHX16o87eimJvXKrAI/lF /w8vDHap7pbHsnc/38Iilvksto85rCoxgVX+1gFHZKYSBM5I100XW1yC8z5zIB5y Z8kMphJOmTMZAGYZOQ+AmvrU3BUlNo2eRZMR+pJ4UOYchadRP/eDsAk++5mBSsSq I/5KkwlmIIyK2kjlke7f/Wfqc9JfT139SQNe7YoEN+/Xp7mghDdbmVMi9Z1VAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQU6LWMjgmdFzzlF+Ch9ZAp4yPe1akwHwYDVR0j BBgwFoAUNHonWYXq5bybpsXLkpwG+oTBazkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MzAzZTZiYi03MzQ5LTQ3YWEtYTRjZC01MWQ4YTBlMjIyZjYvMC8zNDdBMjc1OTg1 RUFFNUJDOUJBNkM1Q0I5MjlDMDZGQTg0QzE2QjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4NEMx NkIzOS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MzMDNlNmJiLTczNDktNDdhYS1h NGNkLTUxZDhhMGUyMjJmNi8wLzMyMzQzMDMyM2EzNTM2MzgzMDNhMzgzODYyMzAz YTNhMmYzNDM0MmQzNDM0MjAzZDNlMjAzMTMzMzMzNzM5Mzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQk AlaAiLAwDQYJKoZIhvcNAQELBQADggEBAHNtbXoQsfjoZwjjW43eVed70JBn35mv ZGAzZxhB9HEjBZRqeom0ub5aEuK3Fe1nrjMz1tI4BGs28/HitLABq4xFWNW6XyYO Ueq3agBy5rtLuJB8fEI2oWfeFCJoQHr3t3R0e1cZolkPdPPphIdQmIDHjQKBrFSB HY7+MIB/fygekxFzBaPVwFrZYJ82e8XNuZ6efPdP/4Gl6XCoY0jZKjOnOjkzDmS/ H2r2hUHicknKRbEgbH2OGBcaRir/LjXzMF6f1THfFg4pkhj7PZKYMIz8WZxUyP2q jt3gBuNKpz9praS5gghkjrgjZA8YNTyVIhk0O9UKcnhmPn8aJFzlblA= -----END CERTIFICATE-----Generated at Mon Sep 1 02:09:17 2025 by rpki-client