$ rpki-client -vvf repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a383964303a3a2f34342d3434203d3e20313333373938.roa File: 323430323a353638303a383964303a3a2f34342d3434203d3e20313333373938.roa (raw, json) Hash identifier: UWHvczGcqbtu/ZRk1oHQTUqg0jCiIHDf2+kgr6J5uEo= Subject key identifier: 78:86:38:40:11:83:ED:60:12:04:02:03:5B:56:AC:4F:3A:A2:E5:53 Certificate issuer: /CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Certificate serial: 74E73B6A004954F5DB161CCA02188CA352E1179E Authority key identifier: 34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a383964303a3a2f34342d3434203d3e20313333373938.roa Signing time: Wed 27 Aug 2025 03:29:52 +0000 ROA not before: Wed 27 Aug 2025 03:24:52 +0000 ROA not after: Wed 26 Aug 2026 03:29:52 +0000 asID: 133798 IP address blocks: 2402:5680:89d0::/44 maxlen: 44 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 04 Sep 2025 00:31:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:e7:3b:6a:00:49:54:f5:db:16:1c:ca:02:18:8c:a3:52:e1:17:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Validity Not Before: Aug 27 03:24:52 2025 GMT Not After : Aug 26 03:29:52 2026 GMT Subject: CN=788638401183ED60120402035B56AC4F3AA2E553 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:b2:6b:79:d1:44:1d:68:f2:0f:ef:02:c5:ea: c4:2f:e2:d7:1d:04:f7:2e:4d:76:c5:e7:d3:2c:d9: f7:28:5e:4d:f4:9d:7a:da:90:c7:72:22:be:b1:ce: b5:ec:d2:62:72:2d:49:cb:19:80:bd:33:25:28:a6: cc:d8:f1:8b:47:70:5a:24:c0:94:72:d4:a2:6b:70: 60:db:f2:68:b3:ec:53:1d:38:0e:ce:08:7d:1c:92: f1:b1:e7:e9:6c:e6:49:d5:9e:56:ef:0f:f4:20:72: 5f:41:90:de:0c:7c:2c:78:0b:a1:5d:78:27:62:da: 06:03:58:c3:b2:c3:bc:a1:59:ac:85:ae:4a:d7:15: d5:eb:51:9d:aa:23:b0:b2:2b:44:23:d3:01:1a:a1: aa:be:7a:05:d3:56:86:a6:4b:43:61:9a:c2:46:cf: e5:cd:a2:3b:6d:95:f4:6d:a3:01:d8:ea:7b:b5:d3: 15:f6:2e:39:f9:e5:84:87:87:8e:98:ad:79:47:c6: 01:73:08:27:5a:93:ca:62:2f:d5:9b:7f:db:83:13: c1:5e:50:f0:e4:80:0e:0c:e6:5e:cf:28:11:76:e6: 96:66:93:8b:fe:38:80:af:d7:0b:2c:9a:db:04:4e: a1:9d:f1:69:95:79:ff:e2:4c:3b:8b:a2:cb:82:32: 1c:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:86:38:40:11:83:ED:60:12:04:02:03:5B:56:AC:4F:3A:A2:E5:53 X509v3 Authority Key Identifier: keyid:34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a383964303a3a2f34342d3434203d3e20313333373938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:5680:89d0::/44 Signature Algorithm: sha256WithRSAEncryption a1:02:a6:ed:66:ad:47:92:3b:3b:98:5b:b9:fd:f2:84:da:6c: 63:1c:60:b3:3f:a7:ae:9e:da:27:19:0f:73:12:0f:72:fc:e7: 58:29:01:74:60:96:a2:16:9a:fd:65:45:98:55:45:55:b9:46: ad:f3:7f:dc:bf:d2:86:71:26:a3:a9:4c:ae:4a:1a:db:34:be: 42:ad:1e:6c:b3:dd:f0:32:d4:ea:76:98:84:3d:ed:52:1b:5b: 26:6c:02:9e:67:41:cc:26:2a:a2:de:3e:ed:92:75:96:b5:5b: 31:6f:14:f4:11:bb:44:ef:f5:7d:8d:d7:6b:c0:28:a9:74:30: 30:8b:3f:25:12:55:6d:9c:45:8c:26:fa:83:11:a4:66:fb:69: 19:d1:f5:a9:17:52:eb:2c:f4:db:df:7d:78:3a:65:39:ef:f9: d4:dc:e0:79:ac:fe:c2:b7:6c:78:ee:99:64:16:ad:2d:63:76: 4c:81:d6:9d:91:1b:7f:5d:9d:03:9a:a4:7a:0b:21:2f:83:7f: d8:2b:53:1e:3e:d1:e6:7e:84:95:97:59:b7:f7:e4:ed:7c:cb: 1d:96:ca:ed:ab:64:d0:dd:3a:f5:25:c3:df:0f:96:e8:c9:e0: a6:79:09:e9:e9:22:e7:0a:f2:60:3a:13:09:06:f2:84:e5:13: ac:bf:83:c8 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUdOc7agBJVPXbFhzKAhiMo1LhF54wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4 NEMxNkIzOTAeFw0yNTA4MjcwMzI0NTJaFw0yNjA4MjYwMzI5NTJaMDMxMTAvBgNV BAMTKDc4ODYzODQwMTE4M0VENjAxMjA0MDIwMzVCNTZBQzRGM0FBMkU1NTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClsmt50UQdaPIP7wLF6sQv4tcd BPcuTXbF59Ms2fcoXk30nXrakMdyIr6xzrXs0mJyLUnLGYC9MyUopszY8YtHcFok wJRy1KJrcGDb8miz7FMdOA7OCH0ckvGx5+ls5knVnlbvD/Qgcl9BkN4MfCx4C6Fd eCdi2gYDWMOyw7yhWayFrkrXFdXrUZ2qI7CyK0Qj0wEaoaq+egXTVoamS0NhmsJG z+XNojttlfRtowHY6nu10xX2Ljn55YSHh46YrXlHxgFzCCdak8piL9Wbf9uDE8Fe UPDkgA4M5l7PKBF25pZmk4v+OICv1wssmtsETqGd8WmVef/iTDuLosuCMhzXAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUeIY4QBGD7WASBAIDW1asTzqi5VMwHwYDVR0j BBgwFoAUNHonWYXq5bybpsXLkpwG+oTBazkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MzAzZTZiYi03MzQ5LTQ3YWEtYTRjZC01MWQ4YTBlMjIyZjYvMC8zNDdBMjc1OTg1 RUFFNUJDOUJBNkM1Q0I5MjlDMDZGQTg0QzE2QjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4NEMx NkIzOS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MzMDNlNmJiLTczNDktNDdhYS1h NGNkLTUxZDhhMGUyMjJmNi8wLzMyMzQzMDMyM2EzNTM2MzgzMDNhMzgzOTY0MzAz YTNhMmYzNDM0MmQzNDM0MjAzZDNlMjAzMTMzMzMzNzM5Mzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQk AlaAidAwDQYJKoZIhvcNAQELBQADggEBAKECpu1mrUeSOzuYW7n98oTabGMcYLM/ p66e2icZD3MSD3L851gpAXRglqIWmv1lRZhVRVW5Rq3zf9y/0oZxJqOpTK5KGts0 vkKtHmyz3fAy1Op2mIQ97VIbWyZsAp5nQcwmKqLePu2SdZa1WzFvFPQRu0Tv9X2N 12vAKKl0MDCLPyUSVW2cRYwm+oMRpGb7aRnR9akXUuss9NvffXg6ZTnv+dTc4Hms /sK3bHjumWQWrS1jdkyB1p2RG39dnQOapHoLIS+Df9grUx4+0eZ+hJWXWbf35O18 yx2Wyu2rZNDdOvUlw98PlujJ4KZ5CenpIucK8mA6EwkG8oTlE6y/g8g= -----END CERTIFICATE-----Generated at Mon Sep 1 02:09:25 2025 by rpki-client