$ rpki-client -vvf repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a383965303a3a2f34342d3434203d3e20313333373938.roa File: 323430323a353638303a383965303a3a2f34342d3434203d3e20313333373938.roa (raw, json) Hash identifier: exiiy5hDySnIIBWbSKDMIXGNcyyZRb+yJktQbH3/Kew= Subject key identifier: 6B:17:80:FC:FC:C6:DF:5D:F9:FA:28:36:04:F6:91:D9:5B:83:E8:6D Certificate issuer: /CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Certificate serial: 118C457EEE7187BC709CDB964CDA3AC83EE49253 Authority key identifier: 34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a383965303a3a2f34342d3434203d3e20313333373938.roa Signing time: Wed 27 Aug 2025 03:30:03 +0000 ROA not before: Wed 27 Aug 2025 03:25:03 +0000 ROA not after: Wed 26 Aug 2026 03:30:03 +0000 asID: 133798 IP address blocks: 2402:5680:89e0::/44 maxlen: 44 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 04 Sep 2025 00:31:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:8c:45:7e:ee:71:87:bc:70:9c:db:96:4c:da:3a:c8:3e:e4:92:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Validity Not Before: Aug 27 03:25:03 2025 GMT Not After : Aug 26 03:30:03 2026 GMT Subject: CN=6B1780FCFCC6DF5DF9FA283604F691D95B83E86D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:98:b2:98:f0:e7:45:66:89:61:65:c5:1a:ee: 32:12:cf:1f:fa:1a:16:49:d1:43:81:45:df:57:c7: 22:da:3c:43:40:6d:03:5f:bd:b5:4b:33:e1:75:79: 4a:d9:19:f8:12:02:8d:dd:97:23:51:c8:e2:1c:9c: 4f:e8:a9:80:22:a7:46:30:c4:47:c5:b0:91:ca:77: 32:e8:c7:68:b3:3c:f3:72:ec:20:e7:bf:6d:1a:72: 3a:ed:1f:8d:7f:ca:c8:d2:73:07:c6:99:d6:7b:de: 2b:81:ef:f2:3e:3b:5c:01:2a:b7:90:f0:1e:59:13: 85:da:6c:59:9b:6e:9f:93:3f:b0:ad:40:03:2a:87: a9:b0:33:ca:00:2d:2f:fc:b1:18:2d:1a:17:0a:48: 44:74:82:0a:87:29:49:fa:e8:60:22:44:c8:2a:a0: 7d:6d:2c:a7:ed:8f:7f:67:2f:88:f5:c7:30:ca:8d: 6d:5f:8e:1a:72:de:a1:78:ab:fa:c5:29:e8:ee:e8: 74:4c:8f:56:bd:62:9a:4d:d0:f8:fb:48:67:62:ff: 55:7c:7f:a6:4b:2d:fb:3e:d1:9d:76:e4:37:f6:26: d4:fc:74:a7:04:71:af:95:7d:b9:47:4a:7f:bc:8f: 51:69:a3:72:a1:2a:6b:4f:b5:d8:ca:89:f4:55:6f: 90:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:17:80:FC:FC:C6:DF:5D:F9:FA:28:36:04:F6:91:D9:5B:83:E8:6D X509v3 Authority Key Identifier: keyid:34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a383965303a3a2f34342d3434203d3e20313333373938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:5680:89e0::/44 Signature Algorithm: sha256WithRSAEncryption 06:48:6f:f5:76:7a:9f:4b:6a:6f:c3:86:09:75:78:b9:eb:ea: e2:89:8f:18:7c:7b:d8:81:c9:b5:f9:51:d4:5f:07:05:af:37: 50:ef:ba:06:a4:8f:1d:f4:1e:23:65:e2:72:d2:d0:77:8e:ee: 97:61:62:7f:e9:76:7f:83:22:66:d5:a8:d0:c2:4c:18:5d:63: 06:20:7a:6f:0d:e3:8a:49:7c:0e:37:ec:b2:66:68:1e:1f:55: b7:43:28:90:e2:b2:c9:82:3f:89:0f:7f:07:ec:fe:0e:4c:ae: e2:a7:f0:f2:63:20:5d:46:e8:7b:a2:aa:fd:90:66:8c:c1:5c: cd:86:f9:70:7c:09:a7:0b:a9:ab:30:f1:46:52:f0:9c:ed:86: fb:df:50:64:45:34:c4:4f:1e:61:b7:64:68:3e:23:ee:51:e7: e9:76:a4:07:28:ad:39:f9:38:51:01:18:1b:57:fc:80:3b:b3: 0b:7b:83:f0:1c:a6:63:f0:07:94:22:e5:90:75:78:a4:e1:49: 93:02:4f:1c:0c:b3:d6:0e:9a:18:b3:4a:c8:ce:6d:08:49:54: ec:d5:72:6f:1a:fc:3e:01:67:c1:dd:8e:ed:dc:9f:b0:01:c3: b3:60:a9:31:47:79:6a:b3:08:68:19:0e:bd:0e:ee:5a:e0:e7: 3b:f2:a0:c2 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUEYxFfu5xh7xwnNuWTNo6yD7kklMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4 NEMxNkIzOTAeFw0yNTA4MjcwMzI1MDNaFw0yNjA4MjYwMzMwMDNaMDMxMTAvBgNV BAMTKDZCMTc4MEZDRkNDNkRGNURGOUZBMjgzNjA0RjY5MUQ5NUI4M0U4NkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUmLKY8OdFZolhZcUa7jISzx/6 GhZJ0UOBRd9XxyLaPENAbQNfvbVLM+F1eUrZGfgSAo3dlyNRyOIcnE/oqYAip0Yw xEfFsJHKdzLox2izPPNy7CDnv20acjrtH41/ysjScwfGmdZ73iuB7/I+O1wBKreQ 8B5ZE4XabFmbbp+TP7CtQAMqh6mwM8oALS/8sRgtGhcKSER0ggqHKUn66GAiRMgq oH1tLKftj39nL4j1xzDKjW1fjhpy3qF4q/rFKeju6HRMj1a9YppN0Pj7SGdi/1V8 f6ZLLfs+0Z125Df2JtT8dKcEca+VfblHSn+8j1Fpo3KhKmtPtdjKifRVb5AdAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUaxeA/PzG3135+ig2BPaR2VuD6G0wHwYDVR0j BBgwFoAUNHonWYXq5bybpsXLkpwG+oTBazkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MzAzZTZiYi03MzQ5LTQ3YWEtYTRjZC01MWQ4YTBlMjIyZjYvMC8zNDdBMjc1OTg1 RUFFNUJDOUJBNkM1Q0I5MjlDMDZGQTg0QzE2QjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4NEMx NkIzOS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MzMDNlNmJiLTczNDktNDdhYS1h NGNkLTUxZDhhMGUyMjJmNi8wLzMyMzQzMDMyM2EzNTM2MzgzMDNhMzgzOTY1MzAz YTNhMmYzNDM0MmQzNDM0MjAzZDNlMjAzMTMzMzMzNzM5Mzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQk AlaAieAwDQYJKoZIhvcNAQELBQADggEBAAZIb/V2ep9Lam/Dhgl1eLnr6uKJjxh8 e9iBybX5UdRfBwWvN1Dvugakjx30HiNl4nLS0HeO7pdhYn/pdn+DImbVqNDCTBhd YwYgem8N44pJfA437LJmaB4fVbdDKJDissmCP4kPfwfs/g5MruKn8PJjIF1G6Hui qv2QZozBXM2G+XB8CacLqasw8UZS8JzthvvfUGRFNMRPHmG3ZGg+I+5R5+l2pAco rTn5OFEBGBtX/IA7swt7g/AcpmPwB5Qi5ZB1eKThSZMCTxwMs9YOmhizSsjObQhJ VOzVcm8a/D4BZ8Hdju3cn7ABw7NgqTFHeWqzCGgZDr0O7lrg5zvyoMI= -----END CERTIFICATE-----Generated at Mon Sep 1 02:05:43 2025 by rpki-client