$ rpki-client -vvf repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a383962303a3a2f34342d3434203d3e20313333373938.roa File: 323430323a353638303a383962303a3a2f34342d3434203d3e20313333373938.roa (raw, json) Hash identifier: pYD8RqnIOE0WK0cWbgGguk3RGGS60bbT8YHHmm2qP+s= Subject key identifier: 7B:04:5D:B1:56:DF:74:D1:E0:9A:AC:53:81:3C:A9:0C:10:11:85:EE Certificate issuer: /CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Certificate serial: 10E77D7C67CBCF4A35F60523EA3A804D0F37C363 Authority key identifier: 34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a383962303a3a2f34342d3434203d3e20313333373938.roa Signing time: Wed 27 Aug 2025 03:29:21 +0000 ROA not before: Wed 27 Aug 2025 03:24:21 +0000 ROA not after: Wed 26 Aug 2026 03:29:21 +0000 asID: 133798 IP address blocks: 2402:5680:89b0::/44 maxlen: 44 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 04 Sep 2025 00:31:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:e7:7d:7c:67:cb:cf:4a:35:f6:05:23:ea:3a:80:4d:0f:37:c3:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Validity Not Before: Aug 27 03:24:21 2025 GMT Not After : Aug 26 03:29:21 2026 GMT Subject: CN=7B045DB156DF74D1E09AAC53813CA90C101185EE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:72:82:e8:fd:f5:6e:21:f4:61:93:3a:9f:98: 69:da:75:04:98:a3:18:89:e8:ec:68:97:e0:27:df: 0c:ae:87:5a:b5:72:06:2d:10:ac:3d:01:dd:b5:fe: 3c:60:53:01:ab:06:93:4d:62:1c:6d:1c:77:90:87: f7:d1:68:c3:44:8c:f5:b2:ad:af:62:c7:00:b3:7f: 65:f2:71:70:53:41:cd:c8:df:ff:87:5f:54:c5:47: a6:fe:6d:93:9e:4c:13:0d:eb:b8:6e:66:c3:40:71: 5e:ea:e5:8f:d4:0d:de:66:c8:69:b0:01:91:79:5d: 68:27:b5:07:e6:67:cb:3f:39:0a:03:4b:d4:ab:1c: 4b:35:db:65:d4:f3:9e:5b:48:34:ca:ff:06:67:3f: 22:83:82:2f:ae:81:7f:82:2c:10:a1:04:ec:2b:27: 5d:9f:0e:22:b3:22:04:7e:45:83:2c:db:a3:e3:98: 3b:42:2d:a2:2b:b5:cf:2f:3b:52:ff:87:53:b7:a8: c2:35:11:72:25:39:65:a0:55:19:bd:60:fe:8c:78: da:69:6a:53:0e:d8:ba:8d:a1:cd:de:6e:d0:1e:bd: c0:6b:5e:59:4a:7f:7d:4b:af:c6:76:b0:a2:5d:77: f5:f0:6a:de:34:8f:15:5c:25:9a:8e:1a:29:59:34: 32:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:04:5D:B1:56:DF:74:D1:E0:9A:AC:53:81:3C:A9:0C:10:11:85:EE X509v3 Authority Key Identifier: keyid:34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a383962303a3a2f34342d3434203d3e20313333373938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:5680:89b0::/44 Signature Algorithm: sha256WithRSAEncryption 75:5a:2e:17:4f:ad:86:a2:22:5d:35:c7:e9:f8:0f:c6:42:bd: 69:45:c2:2f:bb:43:cf:85:c9:ad:8c:bf:af:e1:25:43:7a:5c: f2:9b:17:80:b2:93:d7:80:f5:5e:47:45:34:42:0a:38:9c:17: c3:fb:e4:35:65:5d:47:90:3e:ad:d4:70:6b:6a:86:46:56:b9: a7:1d:71:2b:ef:2a:d0:53:7d:18:c9:7e:7c:2b:0d:0d:5d:2d: 8e:18:7c:81:fb:d1:d5:a3:65:d6:45:95:69:fe:65:9c:dc:7a: a7:12:fb:6c:29:f8:f0:d6:60:d8:16:96:3a:2e:01:7e:2f:a0: b1:d4:0a:00:e3:49:e7:6a:d5:62:ae:aa:d0:00:05:81:e0:e2: 1d:98:de:1e:52:d4:bb:3e:bf:da:31:a8:4f:e2:cb:22:90:a9: 8d:86:84:3e:e9:54:e5:ef:df:07:30:5a:9f:1e:fb:77:74:ae: 83:ad:61:c3:3d:9e:29:14:9e:0d:4c:81:aa:7d:84:6c:72:66: f5:66:8f:bc:d4:2c:d8:11:7d:b2:c8:d2:bb:f0:59:c4:db:40: e3:61:17:5a:a1:c7:2d:57:f8:99:a3:0d:20:05:ba:43:d4:98: 07:5c:f9:bd:b9:0c:8e:18:58:2b:ac:fb:2d:f1:f6:0d:46:40: e1:c8:39:b5 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUEOd9fGfLz0o19gUj6jqATQ83w2MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4 NEMxNkIzOTAeFw0yNTA4MjcwMzI0MjFaFw0yNjA4MjYwMzI5MjFaMDMxMTAvBgNV BAMTKDdCMDQ1REIxNTZERjc0RDFFMDlBQUM1MzgxM0NBOTBDMTAxMTg1RUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8coLo/fVuIfRhkzqfmGnadQSY oxiJ6Oxol+An3wyuh1q1cgYtEKw9Ad21/jxgUwGrBpNNYhxtHHeQh/fRaMNEjPWy ra9ixwCzf2XycXBTQc3I3/+HX1TFR6b+bZOeTBMN67huZsNAcV7q5Y/UDd5myGmw AZF5XWgntQfmZ8s/OQoDS9SrHEs122XU855bSDTK/wZnPyKDgi+ugX+CLBChBOwr J12fDiKzIgR+RYMs26PjmDtCLaIrtc8vO1L/h1O3qMI1EXIlOWWgVRm9YP6MeNpp alMO2LqNoc3ebtAevcBrXllKf31Lr8Z2sKJdd/Xwat40jxVcJZqOGilZNDJFAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUewRdsVbfdNHgmqxTgTypDBARhe4wHwYDVR0j BBgwFoAUNHonWYXq5bybpsXLkpwG+oTBazkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MzAzZTZiYi03MzQ5LTQ3YWEtYTRjZC01MWQ4YTBlMjIyZjYvMC8zNDdBMjc1OTg1 RUFFNUJDOUJBNkM1Q0I5MjlDMDZGQTg0QzE2QjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4NEMx NkIzOS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MzMDNlNmJiLTczNDktNDdhYS1h NGNkLTUxZDhhMGUyMjJmNi8wLzMyMzQzMDMyM2EzNTM2MzgzMDNhMzgzOTYyMzAz YTNhMmYzNDM0MmQzNDM0MjAzZDNlMjAzMTMzMzMzNzM5Mzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQk AlaAibAwDQYJKoZIhvcNAQELBQADggEBAHVaLhdPrYaiIl01x+n4D8ZCvWlFwi+7 Q8+Fya2Mv6/hJUN6XPKbF4Cyk9eA9V5HRTRCCjicF8P75DVlXUeQPq3UcGtqhkZW uacdcSvvKtBTfRjJfnwrDQ1dLY4YfIH70dWjZdZFlWn+ZZzceqcS+2wp+PDWYNgW ljouAX4voLHUCgDjSedq1WKuqtAABYHg4h2Y3h5S1Ls+v9oxqE/iyyKQqY2GhD7p VOXv3wcwWp8e+3d0roOtYcM9nikUng1Mgap9hGxyZvVmj7zULNgRfbLI0rvwWcTb QONhF1qhxy1X+JmjDSAFukPUmAdc+b25DI4YWCus+y3x9g1GQOHIObU= -----END CERTIFICATE-----Generated at Mon Sep 1 02:09:24 2025 by rpki-client