$ rpki-client -vvf repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a383932303a3a2f34342d3434203d3e20313333373938.roa File: 323430323a353638303a383932303a3a2f34342d3434203d3e20313333373938.roa (raw, json) Hash identifier: VzvXB+eWFaXijku5k4jFJsov6em31K8E0nzJEEklEGg= Subject key identifier: 42:E7:60:55:6D:EE:BD:5E:3E:88:E4:40:EA:E5:F4:D5:B3:E0:79:60 Certificate issuer: /CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Certificate serial: 5E397C4D3643B638E6F1609B4FD058E20F71DB3C Authority key identifier: 34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a383932303a3a2f34342d3434203d3e20313333373938.roa Signing time: Wed 27 Aug 2025 07:29:19 +0000 ROA not before: Wed 27 Aug 2025 07:24:19 +0000 ROA not after: Wed 26 Aug 2026 07:29:19 +0000 asID: 133798 IP address blocks: 2402:5680:8920::/44 maxlen: 44 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 04 Sep 2025 00:31:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:39:7c:4d:36:43:b6:38:e6:f1:60:9b:4f:d0:58:e2:0f:71:db:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Validity Not Before: Aug 27 07:24:19 2025 GMT Not After : Aug 26 07:29:19 2026 GMT Subject: CN=42E760556DEEBD5E3E88E440EAE5F4D5B3E07960 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:49:a9:83:29:49:fa:d4:91:b1:4a:f4:a7:fa: 98:64:7d:48:4f:7a:d1:25:29:46:dd:73:46:75:69: 17:5f:1e:b2:e6:b3:8a:0e:fa:5c:f2:5a:28:dc:c2: 61:6c:fa:73:5b:e3:03:f0:a8:9f:0d:20:f1:5a:35: 82:6b:eb:ff:4d:68:0b:2f:83:4b:bd:69:c1:05:3f: f6:0f:3f:6d:50:6a:51:62:19:89:9f:de:d9:c3:ee: b3:ca:d1:9c:bd:0e:96:25:96:61:d9:5f:8d:72:42: 97:5b:02:18:63:af:18:82:29:7b:08:69:19:ac:c2: 43:4b:9f:d9:b9:bf:43:ba:38:30:a3:69:5d:6f:76: 60:05:77:d8:54:28:2c:db:9c:6c:32:bf:9a:c5:6e: 50:97:a3:7c:ff:89:ff:0c:a3:f7:48:54:8f:a6:33: ed:55:9a:f3:50:5b:02:7d:4d:12:74:a1:18:4b:3f: 75:8d:4a:4f:cb:00:99:63:db:1e:fa:f3:90:11:16: 0d:48:c7:b7:1f:b5:74:23:ea:a7:75:fd:39:92:2e: c1:d8:24:45:b7:8d:89:4c:78:2a:78:4a:05:fc:13: 26:17:8a:56:da:22:ef:02:5a:6d:54:3b:02:dd:da: f3:d6:7a:45:1b:11:c7:40:5e:b7:57:e2:dd:c2:cc: 96:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:E7:60:55:6D:EE:BD:5E:3E:88:E4:40:EA:E5:F4:D5:B3:E0:79:60 X509v3 Authority Key Identifier: keyid:34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a383932303a3a2f34342d3434203d3e20313333373938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:5680:8920::/44 Signature Algorithm: sha256WithRSAEncryption 64:58:c2:e7:83:38:39:01:2e:31:81:43:86:aa:4b:2a:1f:63: b8:bd:7e:79:02:9c:11:1d:7b:ee:de:79:b5:97:5c:6a:59:0a: 08:00:a3:ed:71:ae:1d:63:4a:d8:f1:5c:f1:34:c0:4a:f5:4e: 5f:a2:ef:73:cf:67:d4:f5:46:0c:bf:1a:89:3b:83:92:7e:a0: bd:cf:dc:97:ea:bf:c8:9a:98:2a:4d:38:ce:00:9f:a1:19:5d: 70:47:ad:5d:93:2b:73:f1:35:26:52:4f:68:5d:8e:77:7c:8f: cc:8d:45:e5:f9:e6:9f:e1:89:bf:1c:e6:45:80:7f:d2:54:b6: ee:29:5a:1c:dd:98:de:c9:33:25:56:4d:80:07:e9:21:70:5a: 01:a7:8f:d1:97:15:6c:3f:a5:5d:66:cb:a8:81:6b:a6:53:ec: 2e:b7:93:1c:f8:a1:ce:66:0a:2f:23:d3:c2:5e:64:89:10:4c: f1:e7:41:c2:89:87:62:2c:f4:05:a6:a3:57:a2:77:16:09:b8: 1c:f1:30:22:d0:1a:46:e8:70:ad:eb:77:60:cd:74:80:c8:9f: a0:86:78:5a:97:73:43:36:17:33:e7:47:c8:a8:dc:94:dd:b8: 96:88:cd:c6:1d:d0:bc:97:47:91:3f:a1:af:83:96:4f:f7:c5: 0e:f7:ae:47 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUXjl8TTZDtjjm8WCbT9BY4g9x2zwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4 NEMxNkIzOTAeFw0yNTA4MjcwNzI0MTlaFw0yNjA4MjYwNzI5MTlaMDMxMTAvBgNV BAMTKDQyRTc2MDU1NkRFRUJENUUzRTg4RTQ0MEVBRTVGNEQ1QjNFMDc5NjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCaSamDKUn61JGxSvSn+phkfUhP etElKUbdc0Z1aRdfHrLms4oO+lzyWijcwmFs+nNb4wPwqJ8NIPFaNYJr6/9NaAsv g0u9acEFP/YPP21QalFiGYmf3tnD7rPK0Zy9DpYllmHZX41yQpdbAhhjrxiCKXsI aRmswkNLn9m5v0O6ODCjaV1vdmAFd9hUKCzbnGwyv5rFblCXo3z/if8Mo/dIVI+m M+1VmvNQWwJ9TRJ0oRhLP3WNSk/LAJlj2x7685ARFg1Ix7cftXQj6qd1/TmSLsHY JEW3jYlMeCp4SgX8EyYXilbaIu8CWm1UOwLd2vPWekUbEcdAXrdX4t3CzJblAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUQudgVW3uvV4+iORA6uX01bPgeWAwHwYDVR0j BBgwFoAUNHonWYXq5bybpsXLkpwG+oTBazkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MzAzZTZiYi03MzQ5LTQ3YWEtYTRjZC01MWQ4YTBlMjIyZjYvMC8zNDdBMjc1OTg1 RUFFNUJDOUJBNkM1Q0I5MjlDMDZGQTg0QzE2QjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4NEMx NkIzOS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MzMDNlNmJiLTczNDktNDdhYS1h NGNkLTUxZDhhMGUyMjJmNi8wLzMyMzQzMDMyM2EzNTM2MzgzMDNhMzgzOTMyMzAz YTNhMmYzNDM0MmQzNDM0MjAzZDNlMjAzMTMzMzMzNzM5Mzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQk AlaAiSAwDQYJKoZIhvcNAQELBQADggEBAGRYwueDODkBLjGBQ4aqSyofY7i9fnkC nBEde+7eebWXXGpZCggAo+1xrh1jStjxXPE0wEr1Tl+i73PPZ9T1Rgy/Gok7g5J+ oL3P3Jfqv8iamCpNOM4An6EZXXBHrV2TK3PxNSZST2hdjnd8j8yNReX55p/hib8c 5kWAf9JUtu4pWhzdmN7JMyVWTYAH6SFwWgGnj9GXFWw/pV1my6iBa6ZT7C63kxz4 oc5mCi8j08JeZIkQTPHnQcKJh2Is9AWmo1eidxYJuBzxMCLQGkbocK3rd2DNdIDI n6CGeFqXc0M2FzPnR8io3JTduJaIzcYd0LyXR5E/oa+Dlk/3xQ73rkc= -----END CERTIFICATE-----Generated at Mon Sep 1 02:09:14 2025 by rpki-client