$ rpki-client -vvf repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a386563303a3a2f34342d3434203d3e20313333373938.roa File: 323430323a353638303a386563303a3a2f34342d3434203d3e20313333373938.roa (raw, json) Hash identifier: 87QzmN4t67wItWaqtyFn7eqjYBsk0LBMuNkp8FaJK68= Subject key identifier: B5:49:7A:4B:00:9A:F9:C7:87:18:49:5B:3F:DD:A7:EF:3C:5C:53:02 Certificate issuer: /CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Certificate serial: 79278544AADCFEF2D589AB2EA3857395335CD1EA Authority key identifier: 34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a386563303a3a2f34342d3434203d3e20313333373938.roa Signing time: Wed 27 Aug 2025 04:35:50 +0000 ROA not before: Wed 27 Aug 2025 04:30:50 +0000 ROA not after: Wed 26 Aug 2026 04:35:50 +0000 asID: 133798 IP address blocks: 2402:5680:8ec0::/44 maxlen: 44 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 04 Sep 2025 00:31:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:27:85:44:aa:dc:fe:f2:d5:89:ab:2e:a3:85:73:95:33:5c:d1:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Validity Not Before: Aug 27 04:30:50 2025 GMT Not After : Aug 26 04:35:50 2026 GMT Subject: CN=B5497A4B009AF9C78718495B3FDDA7EF3C5C5302 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:da:03:f2:3e:f7:1b:45:97:98:99:a4:8e:e8: 32:dd:eb:ad:91:2e:70:8a:4b:a7:99:66:2d:84:c5: 3d:9e:c1:c8:3f:aa:3f:70:c8:0a:88:a1:17:4f:72: 44:10:fd:3c:2d:f4:60:ae:3d:b0:a4:5c:2a:d7:3d: cb:5d:4f:bf:5a:0a:fd:54:a0:62:5a:2c:61:df:b0: 1d:7f:22:3b:27:65:7f:ba:be:00:98:b1:1e:c2:f1: e9:b8:2e:26:3d:69:38:df:b3:da:aa:30:c5:4e:82: 6a:ba:bd:7b:85:1e:94:d2:d0:ad:ab:a8:7f:2f:5c: 20:d7:2e:dd:de:ee:4b:3d:ae:a2:9a:b3:dc:19:e3: 9a:37:1d:7b:3b:d5:f2:2b:d1:c8:b9:38:85:21:78: e8:91:68:a0:5f:93:0c:d7:5e:e5:e9:27:f8:cf:f0: b5:1c:05:c3:0f:3d:f8:e7:e9:ea:a5:b3:ab:5f:49: 90:e3:96:80:8b:a2:28:97:98:de:38:44:85:5e:b7: bc:40:26:b6:f0:bf:11:02:af:6e:d4:b2:ba:e4:74: e1:17:eb:38:c8:87:2d:c2:fc:19:2b:dc:59:38:8b: 59:3e:fe:e3:3f:38:9a:63:e7:50:c0:eb:06:6f:a3: 16:a7:5e:0e:66:4c:5c:07:58:a1:03:d5:8b:0d:7e: 54:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:49:7A:4B:00:9A:F9:C7:87:18:49:5B:3F:DD:A7:EF:3C:5C:53:02 X509v3 Authority Key Identifier: keyid:34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a386563303a3a2f34342d3434203d3e20313333373938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:5680:8ec0::/44 Signature Algorithm: sha256WithRSAEncryption 7a:a6:6e:e8:d6:fd:eb:af:d2:aa:e9:45:ac:94:96:6b:9b:08: f8:be:2a:6c:60:71:19:a1:66:e0:63:3d:6a:32:24:77:8c:7d: 94:6b:c7:66:0f:42:4b:b5:5d:93:ed:77:e1:89:3b:61:25:2a: 7b:6b:da:f9:9b:13:3e:e3:20:c4:45:bc:ef:7c:f8:db:29:c4: b8:a8:e5:07:93:b2:03:ff:cd:97:2d:5f:da:6f:0a:8a:5f:42: 83:d5:57:14:6b:ca:cf:27:77:66:1f:ab:ce:d5:ec:4c:08:bb: 1d:11:b2:00:ab:b6:23:8d:7d:0b:e3:c8:9d:65:32:1d:a6:3d: 44:b3:99:0b:dd:dd:db:43:e2:d8:71:5f:2d:e6:04:51:0f:cd: bd:f6:bc:19:f7:30:c3:33:38:2c:35:52:48:be:d1:37:a3:af: f4:28:ec:36:29:f0:1c:be:8e:c3:b0:76:1f:79:16:8f:6b:9a: 62:d9:86:91:1d:c9:4d:77:64:af:2d:0b:65:2b:2c:20:8f:d5: 81:b1:77:6d:95:0e:67:11:f2:b1:16:1e:02:c4:ac:8b:de:3c: 29:9b:fb:89:e1:d5:3e:86:9d:fa:4d:ee:ee:44:76:c5:ec:c3: 3c:77:bf:7b:ae:4d:45:4f:7f:9d:3b:c4:87:e7:f2:1f:d4:a1: e3:9b:13:b2 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUeSeFRKrc/vLViasuo4VzlTNc0eowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4 NEMxNkIzOTAeFw0yNTA4MjcwNDMwNTBaFw0yNjA4MjYwNDM1NTBaMDMxMTAvBgNV BAMTKEI1NDk3QTRCMDA5QUY5Qzc4NzE4NDk1QjNGRERBN0VGM0M1QzUzMDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDF2gPyPvcbRZeYmaSO6DLd662R LnCKS6eZZi2ExT2ewcg/qj9wyAqIoRdPckQQ/Twt9GCuPbCkXCrXPctdT79aCv1U oGJaLGHfsB1/IjsnZX+6vgCYsR7C8em4LiY9aTjfs9qqMMVOgmq6vXuFHpTS0K2r qH8vXCDXLt3e7ks9rqKas9wZ45o3HXs71fIr0ci5OIUheOiRaKBfkwzXXuXpJ/jP 8LUcBcMPPfjn6eqls6tfSZDjloCLoiiXmN44RIVet7xAJrbwvxECr27UsrrkdOEX 6zjIhy3C/Bkr3Fk4i1k+/uM/OJpj51DA6wZvoxanXg5mTFwHWKED1YsNflRDAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUtUl6SwCa+ceHGElbP92n7zxcUwIwHwYDVR0j BBgwFoAUNHonWYXq5bybpsXLkpwG+oTBazkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MzAzZTZiYi03MzQ5LTQ3YWEtYTRjZC01MWQ4YTBlMjIyZjYvMC8zNDdBMjc1OTg1 RUFFNUJDOUJBNkM1Q0I5MjlDMDZGQTg0QzE2QjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4NEMx NkIzOS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MzMDNlNmJiLTczNDktNDdhYS1h NGNkLTUxZDhhMGUyMjJmNi8wLzMyMzQzMDMyM2EzNTM2MzgzMDNhMzg2NTYzMzAz YTNhMmYzNDM0MmQzNDM0MjAzZDNlMjAzMTMzMzMzNzM5Mzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQk AlaAjsAwDQYJKoZIhvcNAQELBQADggEBAHqmbujW/euv0qrpRayUlmubCPi+Kmxg cRmhZuBjPWoyJHeMfZRrx2YPQku1XZPtd+GJO2ElKntr2vmbEz7jIMRFvO98+Nsp xLio5QeTsgP/zZctX9pvCopfQoPVVxRrys8nd2Yfq87V7EwIux0RsgCrtiONfQvj yJ1lMh2mPUSzmQvd3dtD4thxXy3mBFEPzb32vBn3MMMzOCw1Uki+0Tejr/Qo7DYp 8By+jsOwdh95Fo9rmmLZhpEdyU13ZK8tC2UrLCCP1YGxd22VDmcR8rEWHgLErIve PCmb+4nh1T6GnfpN7u5EdsXswzx3v3uuTUVPf507xIfn8h/UoeObE7I= -----END CERTIFICATE-----Generated at Mon Sep 1 02:09:13 2025 by rpki-client