$ rpki-client -vvf repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a383935303a3a2f34342d3434203d3e20313333373938.roa File: 323430323a353638303a383935303a3a2f34342d3434203d3e20313333373938.roa (raw, json) Hash identifier: 6Z2mRB+3sxLSB/+Qz9P+nuVyXvtQrSmLtGOMpmvNtLs= Subject key identifier: 6F:D5:9C:CD:6B:8D:14:90:2F:CA:8F:DF:5B:50:4B:5C:99:93:06:AF Certificate issuer: /CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Certificate serial: 75AA657E1FC7812CCA348F3EBD05E4134EC4099C Authority key identifier: 34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a383935303a3a2f34342d3434203d3e20313333373938.roa Signing time: Wed 27 Aug 2025 07:29:56 +0000 ROA not before: Wed 27 Aug 2025 07:24:56 +0000 ROA not after: Wed 26 Aug 2026 07:29:56 +0000 asID: 133798 IP address blocks: 2402:5680:8950::/44 maxlen: 44 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 04 Sep 2025 00:31:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:aa:65:7e:1f:c7:81:2c:ca:34:8f:3e:bd:05:e4:13:4e:c4:09:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Validity Not Before: Aug 27 07:24:56 2025 GMT Not After : Aug 26 07:29:56 2026 GMT Subject: CN=6FD59CCD6B8D14902FCA8FDF5B504B5C999306AF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ee:af:77:92:5d:79:87:fd:f9:c1:0f:b5:80: 5b:5b:de:f0:bb:2e:d8:58:52:8b:bf:aa:57:78:7b: 56:ed:19:a5:0d:0b:40:4a:01:90:01:c5:75:bf:af: 0e:d4:83:ea:82:d8:47:84:3f:9e:c9:9d:04:9d:b5: 05:4f:6a:8e:e6:22:29:44:90:6f:be:0f:f5:4a:34: 74:9d:36:6b:72:15:d5:55:3d:2f:d1:db:18:69:9d: 9e:b7:54:40:e2:a6:fd:a9:d9:5c:9a:02:a5:7e:29: b9:79:11:d1:c3:5f:ef:0c:8a:37:eb:39:17:13:f1: 63:93:6e:12:24:62:2f:87:6e:8f:aa:69:f6:d5:f6: cb:8a:43:f0:56:49:6e:1c:37:f7:b3:8c:e2:af:f6: ad:fc:41:1f:ee:e0:14:48:d2:04:31:dc:09:28:28: 53:60:a5:95:7f:ef:68:f2:aa:ad:fa:93:2f:43:21: c8:af:c9:8f:a5:81:20:d3:47:6b:9a:43:1f:31:e0: 2a:99:3d:53:de:99:7c:2b:d5:8d:b7:81:4e:11:64: 70:b8:2f:48:55:d0:c2:15:c5:b8:f4:b0:35:ab:0b: 74:54:95:9b:16:6c:09:14:d9:f1:1a:42:ef:1f:83: 50:36:40:d1:b9:83:2a:26:21:bd:2c:e9:90:35:a5: 9e:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:D5:9C:CD:6B:8D:14:90:2F:CA:8F:DF:5B:50:4B:5C:99:93:06:AF X509v3 Authority Key Identifier: keyid:34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a383935303a3a2f34342d3434203d3e20313333373938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:5680:8950::/44 Signature Algorithm: sha256WithRSAEncryption 26:ae:d1:c2:58:f3:95:49:e1:f1:41:67:55:b0:c7:75:07:f3: b6:c4:0a:21:f9:2c:c1:22:bd:a4:52:79:60:55:1f:cc:59:7e: 5f:92:52:ee:33:ba:66:1d:ec:7c:81:e2:0b:6d:6f:4e:6a:5a: 71:d1:c2:d1:21:a0:7b:f2:10:68:3a:25:fd:20:33:dc:7d:fa: 79:c2:c7:79:9a:8a:6a:7d:3b:50:75:bc:5a:fd:dd:55:1b:99: b5:7e:f9:b2:2f:5d:a8:ad:a9:af:ff:35:9e:67:18:77:41:e9: 3c:f1:18:21:d2:b7:75:2a:3e:92:ad:49:6c:9c:04:1b:c7:bf: c2:b4:63:77:fc:fb:c1:73:5e:9b:cd:2f:35:7f:0d:7a:c0:15: f4:fa:6c:a7:be:33:6e:2b:c9:a2:bc:d9:3a:7e:88:c9:6d:78: 2c:62:63:7a:a4:46:a9:a3:a6:52:24:d5:4d:4c:a2:ae:bc:43: f7:03:8b:99:85:cd:5b:2a:7f:52:d8:19:1c:14:4f:6f:20:db: af:32:8e:0e:5a:b9:0e:1f:b8:32:77:bf:49:9f:23:57:95:43: 60:45:84:9a:eb:f5:ab:a3:d0:e9:55:ba:f3:6f:8e:fa:99:c7: 04:a7:e9:dd:5a:a5:c3:05:61:f3:c1:ae:32:df:83:ba:e0:f0: 8f:41:21:22 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUdaplfh/HgSzKNI8+vQXkE07ECZwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4 NEMxNkIzOTAeFw0yNTA4MjcwNzI0NTZaFw0yNjA4MjYwNzI5NTZaMDMxMTAvBgNV BAMTKDZGRDU5Q0NENkI4RDE0OTAyRkNBOEZERjVCNTA0QjVDOTk5MzA2QUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDK7q93kl15h/35wQ+1gFtb3vC7 LthYUou/qld4e1btGaUNC0BKAZABxXW/rw7Ug+qC2EeEP57JnQSdtQVPao7mIilE kG++D/VKNHSdNmtyFdVVPS/R2xhpnZ63VEDipv2p2VyaAqV+Kbl5EdHDX+8Mijfr ORcT8WOTbhIkYi+Hbo+qafbV9suKQ/BWSW4cN/ezjOKv9q38QR/u4BRI0gQx3Ako KFNgpZV/72jyqq36ky9DIcivyY+lgSDTR2uaQx8x4CqZPVPemXwr1Y23gU4RZHC4 L0hV0MIVxbj0sDWrC3RUlZsWbAkU2fEaQu8fg1A2QNG5gyomIb0s6ZA1pZ5nAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUb9WczWuNFJAvyo/fW1BLXJmTBq8wHwYDVR0j BBgwFoAUNHonWYXq5bybpsXLkpwG+oTBazkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MzAzZTZiYi03MzQ5LTQ3YWEtYTRjZC01MWQ4YTBlMjIyZjYvMC8zNDdBMjc1OTg1 RUFFNUJDOUJBNkM1Q0I5MjlDMDZGQTg0QzE2QjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4NEMx NkIzOS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MzMDNlNmJiLTczNDktNDdhYS1h NGNkLTUxZDhhMGUyMjJmNi8wLzMyMzQzMDMyM2EzNTM2MzgzMDNhMzgzOTM1MzAz YTNhMmYzNDM0MmQzNDM0MjAzZDNlMjAzMTMzMzMzNzM5Mzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQk AlaAiVAwDQYJKoZIhvcNAQELBQADggEBACau0cJY85VJ4fFBZ1Wwx3UH87bECiH5 LMEivaRSeWBVH8xZfl+SUu4zumYd7HyB4gttb05qWnHRwtEhoHvyEGg6Jf0gM9x9 +nnCx3maimp9O1B1vFr93VUbmbV++bIvXaitqa//NZ5nGHdB6TzxGCHSt3UqPpKt SWycBBvHv8K0Y3f8+8FzXpvNLzV/DXrAFfT6bKe+M24ryaK82Tp+iMlteCxiY3qk RqmjplIk1U1Moq68Q/cDi5mFzVsqf1LYGRwUT28g268yjg5auQ4fuDJ3v0mfI1eV Q2BFhJrr9auj0OlVuvNvjvqZxwSn6d1apcMFYfPBrjLfg7rg8I9BISI= -----END CERTIFICATE-----Generated at Mon Sep 1 02:07:26 2025 by rpki-client