$ rpki-client -vvf repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a383963303a3a2f34342d3434203d3e20313333373938.roa File: 323430323a353638303a383963303a3a2f34342d3434203d3e20313333373938.roa (raw, json) Hash identifier: JG48Ywi5ePnYXkS8fVV35lZVpSNcdiB6O/q5sj227XI= Subject key identifier: 72:18:05:46:EB:09:95:0C:67:85:B8:01:5B:28:35:78:69:50:42:C0 Certificate issuer: /CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Certificate serial: 106928F6DA39B7A4243E08316B5A3D2BE292BD3B Authority key identifier: 34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a383963303a3a2f34342d3434203d3e20313333373938.roa Signing time: Wed 27 Aug 2025 03:29:39 +0000 ROA not before: Wed 27 Aug 2025 03:24:39 +0000 ROA not after: Wed 26 Aug 2026 03:29:39 +0000 asID: 133798 IP address blocks: 2402:5680:89c0::/44 maxlen: 44 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 04 Sep 2025 00:31:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:69:28:f6:da:39:b7:a4:24:3e:08:31:6b:5a:3d:2b:e2:92:bd:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Validity Not Before: Aug 27 03:24:39 2025 GMT Not After : Aug 26 03:29:39 2026 GMT Subject: CN=72180546EB09950C6785B8015B283578695042C0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:62:80:11:6f:01:7b:57:a9:9e:e4:90:6a:16: 89:e8:de:e3:52:7c:8f:70:8c:87:91:34:fc:08:70: d6:6d:1c:bf:18:26:59:c3:77:5a:bd:eb:64:13:f2: 09:3c:d3:8e:23:9b:dd:54:44:c4:9a:f7:e6:57:69: a6:a6:5b:dc:4d:c9:2e:c1:5f:ed:dd:a9:96:1b:b3: 71:66:07:0f:af:d4:9d:0b:0c:d5:93:33:5a:34:44: 69:7b:9d:e1:2a:54:be:3a:b5:98:0b:96:8c:f2:9b: 38:4c:ef:e3:41:ff:7f:7d:fe:9e:bd:22:3f:34:60: 47:d4:0c:5b:be:e2:5c:8d:f9:c1:30:ab:59:86:55: 21:11:14:22:ca:52:fb:29:7b:ff:26:44:2d:d9:a0: 1f:af:b7:2f:15:8f:65:9b:91:b5:7e:56:d3:3b:6b: 2b:51:ad:a5:e7:38:d4:8a:df:7c:c5:f0:fa:2d:f2: b4:ab:94:d6:5d:be:1d:e7:79:a0:8f:9e:1f:18:29: 5b:c6:11:88:0f:9f:ed:cc:ef:04:69:b3:13:19:eb: 04:ed:e4:af:ff:08:9a:55:ee:0e:91:0a:97:b5:a4: 8f:7e:b1:0b:8f:37:16:f6:78:33:d8:54:82:04:0f: 24:e9:a3:df:86:3b:fc:89:2a:21:ee:5c:07:99:74: b0:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:18:05:46:EB:09:95:0C:67:85:B8:01:5B:28:35:78:69:50:42:C0 X509v3 Authority Key Identifier: keyid:34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a383963303a3a2f34342d3434203d3e20313333373938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:5680:89c0::/44 Signature Algorithm: sha256WithRSAEncryption 83:da:f6:dc:39:9e:7c:53:88:6f:38:65:fc:9c:aa:ee:2c:d2: 27:c8:ad:bd:cd:24:b7:7c:a9:80:82:a6:c4:3e:52:41:ac:b5: 13:b8:ff:df:79:5c:4e:a7:fa:f8:e5:db:c0:fb:8b:7c:21:a5: 8f:17:91:d2:8c:00:87:15:e6:ba:86:b4:a8:68:30:3c:35:1d: 0b:69:19:97:ea:0e:01:8f:c3:b2:2d:76:40:4d:3f:d0:21:48: 13:99:36:da:f5:18:50:47:aa:ed:fe:ce:15:cb:d5:80:de:83: 6a:4a:de:fd:2d:23:22:a4:09:05:60:46:39:1f:e9:12:20:0e: b3:f3:00:2f:c5:cf:d3:2b:21:2d:1f:d8:09:ed:04:24:ec:42: cc:08:cc:d2:d8:92:c2:4e:07:70:37:d4:86:31:38:a8:bf:96: cf:68:60:ed:19:24:82:29:1b:4e:da:a5:56:39:15:7d:94:26: d3:67:ac:42:61:41:6f:27:47:72:4e:39:5a:62:9a:10:7b:32: 0d:c2:68:57:82:ad:21:45:bc:5d:31:ad:71:48:c3:de:35:37: c3:76:c6:1d:ff:03:16:96:bf:76:6a:df:71:ec:87:94:a2:fc: 8c:e3:13:79:28:7b:84:a7:39:ff:c2:0b:e8:11:47:8c:fe:8f: 13:38:1a:eb -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUEGko9to5t6QkPggxa1o9K+KSvTswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4 NEMxNkIzOTAeFw0yNTA4MjcwMzI0MzlaFw0yNjA4MjYwMzI5MzlaMDMxMTAvBgNV BAMTKDcyMTgwNTQ2RUIwOTk1MEM2Nzg1QjgwMTVCMjgzNTc4Njk1MDQyQzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcYoARbwF7V6me5JBqFono3uNS fI9wjIeRNPwIcNZtHL8YJlnDd1q962QT8gk8044jm91URMSa9+ZXaaamW9xNyS7B X+3dqZYbs3FmBw+v1J0LDNWTM1o0RGl7neEqVL46tZgLlozymzhM7+NB/399/p69 Ij80YEfUDFu+4lyN+cEwq1mGVSERFCLKUvspe/8mRC3ZoB+vty8Vj2WbkbV+VtM7 aytRraXnONSK33zF8Pot8rSrlNZdvh3neaCPnh8YKVvGEYgPn+3M7wRpsxMZ6wTt 5K//CJpV7g6RCpe1pI9+sQuPNxb2eDPYVIIEDyTpo9+GO/yJKiHuXAeZdLAFAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUchgFRusJlQxnhbgBWyg1eGlQQsAwHwYDVR0j BBgwFoAUNHonWYXq5bybpsXLkpwG+oTBazkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MzAzZTZiYi03MzQ5LTQ3YWEtYTRjZC01MWQ4YTBlMjIyZjYvMC8zNDdBMjc1OTg1 RUFFNUJDOUJBNkM1Q0I5MjlDMDZGQTg0QzE2QjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4NEMx NkIzOS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MzMDNlNmJiLTczNDktNDdhYS1h NGNkLTUxZDhhMGUyMjJmNi8wLzMyMzQzMDMyM2EzNTM2MzgzMDNhMzgzOTYzMzAz YTNhMmYzNDM0MmQzNDM0MjAzZDNlMjAzMTMzMzMzNzM5Mzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQk AlaAicAwDQYJKoZIhvcNAQELBQADggEBAIPa9tw5nnxTiG84Zfycqu4s0ifIrb3N JLd8qYCCpsQ+UkGstRO4/995XE6n+vjl28D7i3whpY8XkdKMAIcV5rqGtKhoMDw1 HQtpGZfqDgGPw7ItdkBNP9AhSBOZNtr1GFBHqu3+zhXL1YDeg2pK3v0tIyKkCQVg Rjkf6RIgDrPzAC/Fz9MrIS0f2AntBCTsQswIzNLYksJOB3A31IYxOKi/ls9oYO0Z JIIpG07apVY5FX2UJtNnrEJhQW8nR3JOOVpimhB7Mg3CaFeCrSFFvF0xrXFIw941 N8N2xh3/AxaWv3Zq33Hsh5Si/IzjE3koe4SnOf/CC+gRR4z+jxM4Gus= -----END CERTIFICATE-----Generated at Mon Sep 1 02:05:41 2025 by rpki-client