$ rpki-client -vvf repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a383864303a3a2f34342d3434203d3e20313333373938.roa File: 323430323a353638303a383864303a3a2f34342d3434203d3e20313333373938.roa (raw, json) Hash identifier: p8gDQtCFVcnmc7aoZTb5BD+XrhN19qTqs3WGSnYE5IY= Subject key identifier: 47:94:21:8D:69:55:18:90:0A:B1:CA:50:08:55:86:6B:52:DD:A8:64 Certificate issuer: /CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Certificate serial: 6288024507DA0E1FBF2B1255997FD798232321CF Authority key identifier: 34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a383864303a3a2f34342d3434203d3e20313333373938.roa Signing time: Wed 27 Aug 2025 04:37:32 +0000 ROA not before: Wed 27 Aug 2025 04:32:32 +0000 ROA not after: Wed 26 Aug 2026 04:37:32 +0000 asID: 133798 IP address blocks: 2402:5680:88d0::/44 maxlen: 44 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 04 Sep 2025 00:31:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:88:02:45:07:da:0e:1f:bf:2b:12:55:99:7f:d7:98:23:23:21:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Validity Not Before: Aug 27 04:32:32 2025 GMT Not After : Aug 26 04:37:32 2026 GMT Subject: CN=4794218D695518900AB1CA500855866B52DDA864 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:1b:59:eb:39:ae:27:d6:7e:f1:76:9f:94:c2: 4d:ca:b3:a7:c0:bb:ee:0e:9f:9d:9c:47:c7:d4:6a: e4:de:d0:6a:b4:dc:a9:43:a3:ea:a0:62:c3:e6:4b: 15:f2:b0:b6:34:45:ae:7b:2f:16:15:22:bb:52:77: 73:21:66:e8:7e:8e:d7:c9:ec:0b:3c:72:31:d0:30: 25:9f:62:37:1f:07:9c:e2:41:77:df:0d:34:c8:f6: 6a:8e:04:fa:34:88:e7:a7:1a:ae:50:06:6e:3f:9d: 81:23:84:73:42:8f:9c:f7:5f:08:e4:36:66:4b:84: e9:25:ff:7f:1c:22:cc:c7:b5:9d:4e:60:0c:00:a7: de:89:71:a7:02:38:db:b2:e8:df:f0:92:cc:9d:0b: 3c:b6:98:bb:f1:6f:36:20:b4:2c:49:37:b8:0c:04: 07:40:6f:da:92:c1:76:87:bd:f2:af:d0:bc:55:67: 43:3a:1d:4b:3b:0b:43:f6:c5:ef:70:ff:f0:bb:a8: c9:83:c3:ba:66:e8:f3:bc:5e:63:9c:36:16:5b:41: a3:cf:86:85:70:bc:f4:1d:c1:80:00:bc:cb:01:e6: 06:f1:92:42:0d:33:da:a7:30:ec:d1:05:f3:f4:06: d0:83:9e:ed:87:55:2e:3b:6f:be:bf:ac:54:82:65: d5:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:94:21:8D:69:55:18:90:0A:B1:CA:50:08:55:86:6B:52:DD:A8:64 X509v3 Authority Key Identifier: keyid:34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a383864303a3a2f34342d3434203d3e20313333373938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:5680:88d0::/44 Signature Algorithm: sha256WithRSAEncryption 75:54:4a:fb:5c:5c:1c:41:ee:90:24:59:cd:33:69:40:07:29: 80:aa:39:62:95:04:87:d9:c8:c8:5e:01:2e:d9:f7:9a:0c:a8: 81:a4:b8:10:fa:1e:d5:45:64:df:3e:b5:16:f8:0c:f8:cc:8e: d7:3f:15:5b:01:e2:2f:0a:ee:05:2a:70:8b:3c:8f:0d:ea:cb: f2:30:c3:4f:4d:8a:00:77:19:e7:64:32:26:ea:ff:04:34:64: f8:b7:54:c3:1d:0b:c9:39:8f:62:d6:25:87:85:a7:22:66:7d: 21:af:bb:b8:12:d5:6c:9b:bc:6f:2e:5f:00:7e:0b:77:99:16: 8e:f8:50:6f:d6:fa:e8:a3:48:1b:9a:ba:d2:b3:37:e1:6a:b7: 4b:55:94:53:0a:c7:f5:c6:97:c6:9c:52:8b:5a:d1:24:94:b3: 38:c1:05:f9:88:fd:04:92:5a:cb:f7:d8:48:6f:fd:2d:02:e7: 32:56:d1:21:18:f1:c3:ee:67:e2:91:ae:78:7b:14:0b:8c:1a: 78:a0:53:6c:23:56:bb:bb:27:20:46:b7:f5:ea:51:27:53:2a: c8:ac:f5:4c:cc:cb:3a:ed:56:2c:10:6b:b4:60:7f:28:31:85: a1:9b:53:cb:db:fd:6e:d2:24:4a:48:55:d8:ec:31:1f:f3:db: f0:2b:30:1d -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUYogCRQfaDh+/KxJVmX/XmCMjIc8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4 NEMxNkIzOTAeFw0yNTA4MjcwNDMyMzJaFw0yNjA4MjYwNDM3MzJaMDMxMTAvBgNV BAMTKDQ3OTQyMThENjk1NTE4OTAwQUIxQ0E1MDA4NTU4NjZCNTJEREE4NjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTG1nrOa4n1n7xdp+Uwk3Ks6fA u+4On52cR8fUauTe0Gq03KlDo+qgYsPmSxXysLY0Ra57LxYVIrtSd3MhZuh+jtfJ 7As8cjHQMCWfYjcfB5ziQXffDTTI9mqOBPo0iOenGq5QBm4/nYEjhHNCj5z3Xwjk NmZLhOkl/38cIszHtZ1OYAwAp96JcacCONuy6N/wksydCzy2mLvxbzYgtCxJN7gM BAdAb9qSwXaHvfKv0LxVZ0M6HUs7C0P2xe9w//C7qMmDw7pm6PO8XmOcNhZbQaPP hoVwvPQdwYAAvMsB5gbxkkINM9qnMOzRBfP0BtCDnu2HVS47b76/rFSCZdVXAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUR5QhjWlVGJAKscpQCFWGa1LdqGQwHwYDVR0j BBgwFoAUNHonWYXq5bybpsXLkpwG+oTBazkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MzAzZTZiYi03MzQ5LTQ3YWEtYTRjZC01MWQ4YTBlMjIyZjYvMC8zNDdBMjc1OTg1 RUFFNUJDOUJBNkM1Q0I5MjlDMDZGQTg0QzE2QjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4NEMx NkIzOS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MzMDNlNmJiLTczNDktNDdhYS1h NGNkLTUxZDhhMGUyMjJmNi8wLzMyMzQzMDMyM2EzNTM2MzgzMDNhMzgzODY0MzAz YTNhMmYzNDM0MmQzNDM0MjAzZDNlMjAzMTMzMzMzNzM5Mzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQk AlaAiNAwDQYJKoZIhvcNAQELBQADggEBAHVUSvtcXBxB7pAkWc0zaUAHKYCqOWKV BIfZyMheAS7Z95oMqIGkuBD6HtVFZN8+tRb4DPjMjtc/FVsB4i8K7gUqcIs8jw3q y/Iww09NigB3GedkMibq/wQ0ZPi3VMMdC8k5j2LWJYeFpyJmfSGvu7gS1WybvG8u XwB+C3eZFo74UG/W+uijSBuautKzN+Fqt0tVlFMKx/XGl8acUota0SSUszjBBfmI /QSSWsv32Ehv/S0C5zJW0SEY8cPuZ+KRrnh7FAuMGnigU2wjVru7JyBGt/XqUSdT Ksis9UzMyzrtViwQa7RgfygxhaGbU8vb/W7SJEpIVdjsMR/z2/ArMB0= -----END CERTIFICATE-----Generated at Mon Sep 1 02:05:42 2025 by rpki-client