$ rpki-client -vvf repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a386630303a3a2f34342d3434203d3e20313333373938.roa File: 323430323a353638303a386630303a3a2f34342d3434203d3e20313333373938.roa (raw, json) Hash identifier: gnjEFoYDClRIAUzJJuWrqfRlNjrz6hykklUI/dJ8F7c= Subject key identifier: 55:3F:22:10:93:35:F2:90:7F:A8:1A:36:44:77:88:79:46:4D:EE:B0 Certificate issuer: /CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Certificate serial: 0EFA99EF997EF38743B0B1391F3D34011BEA8AC6 Authority key identifier: 34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a386630303a3a2f34342d3434203d3e20313333373938.roa Signing time: Sat 29 Mar 2025 16:19:56 +0000 ROA not before: Sat 29 Mar 2025 16:14:56 +0000 ROA not after: Sat 28 Mar 2026 16:19:56 +0000 asID: 133798 IP address blocks: 2402:5680:8f00::/44 maxlen: 44 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 10:37:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:fa:99:ef:99:7e:f3:87:43:b0:b1:39:1f:3d:34:01:1b:ea:8a:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Validity Not Before: Mar 29 16:14:56 2025 GMT Not After : Mar 28 16:19:56 2026 GMT Subject: CN=553F22109335F2907FA81A3644778879464DEEB0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:37:84:6a:21:13:f5:c0:97:17:01:7f:3a:cf: fa:92:3e:e3:10:56:da:47:7c:b7:1f:dc:de:5d:a5: 6b:95:25:30:c1:e8:31:4f:82:a3:82:70:8c:4d:dc: 91:9c:6f:57:4d:44:35:b9:77:39:fe:69:82:79:68: 12:3e:0c:75:88:26:fe:dd:e1:43:d7:95:cc:3c:fa: 54:f0:9c:f9:59:d8:4a:fb:36:11:06:d0:c8:31:eb: a8:27:84:15:3f:47:af:ae:86:5b:ee:5e:dd:74:fe: 41:a1:be:47:af:2e:64:c5:b0:dc:71:3e:28:3b:0b: 10:ce:77:64:f5:57:35:e6:0b:54:68:38:2a:33:d1: 15:69:de:29:67:34:14:b6:69:c5:fe:48:a6:be:fc: c3:ed:58:4b:3d:d7:cf:20:62:ff:c7:f8:1f:fe:a1: 20:9b:94:d7:6f:5c:04:d9:88:d3:19:4c:76:cc:88: 03:20:2d:42:91:f4:bf:0e:21:b3:e0:50:d9:92:59: 53:ad:69:41:4c:b3:7f:c3:66:22:00:f9:a5:b0:92: 48:d3:f2:45:14:ad:be:a1:84:5e:e7:93:1a:75:65: 38:37:af:54:82:62:75:a8:2b:86:79:de:4a:5c:f5: 03:cd:9a:d0:a4:ce:18:52:fa:b4:d3:57:e3:b4:75: b6:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:3F:22:10:93:35:F2:90:7F:A8:1A:36:44:77:88:79:46:4D:EE:B0 X509v3 Authority Key Identifier: keyid:34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a386630303a3a2f34342d3434203d3e20313333373938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:5680:8f00::/44 Signature Algorithm: sha256WithRSAEncryption a6:e7:c8:0d:30:24:93:86:ea:7c:20:da:8d:b4:ca:3a:a4:2c: e3:b5:3a:ad:39:c9:93:8f:89:58:c2:20:91:f3:04:81:19:2a: 41:16:d8:f6:45:f9:08:91:60:cf:5c:4a:8b:ec:92:36:fe:aa: 36:4c:9b:99:ae:5a:2a:48:55:c8:e6:ec:3c:5e:0e:58:91:a7: c8:52:5e:68:93:56:c7:be:17:d9:99:69:ad:8b:2b:e2:f3:f6: ea:d7:a2:78:b3:fa:c2:db:d5:5d:c4:9d:de:be:fa:26:66:f4: 83:86:4c:d0:cc:74:f2:72:6f:58:f4:b4:80:8d:6d:99:3d:53: 5a:33:d5:b4:85:5d:ca:fd:b1:3b:50:a0:78:ad:be:3c:91:19: 75:f7:51:a2:01:e5:35:d1:cc:73:51:61:cd:b2:45:61:10:ff: 84:84:78:78:c1:04:fa:0c:73:51:4b:60:9d:76:51:73:f0:36: 71:f5:57:10:66:33:c4:ae:0b:5f:91:2a:98:1b:49:40:cf:4a: 05:41:72:c1:69:e1:51:49:bf:ac:92:73:0d:f6:9d:06:23:e3: 0b:00:a6:5a:17:81:89:8e:03:f5:ea:0e:2a:52:6e:3e:11:ab: 9d:71:1a:51:2b:34:b9:26:1f:c8:9b:8a:84:ed:4b:f6:fa:b2: bf:82:30:f7 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUDvqZ75l+84dDsLE5Hz00ARvqisYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4 NEMxNkIzOTAeFw0yNTAzMjkxNjE0NTZaFw0yNjAzMjgxNjE5NTZaMDMxMTAvBgNV BAMTKDU1M0YyMjEwOTMzNUYyOTA3RkE4MUEzNjQ0Nzc4ODc5NDY0REVFQjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqN4RqIRP1wJcXAX86z/qSPuMQ VtpHfLcf3N5dpWuVJTDB6DFPgqOCcIxN3JGcb1dNRDW5dzn+aYJ5aBI+DHWIJv7d 4UPXlcw8+lTwnPlZ2Er7NhEG0Mgx66gnhBU/R6+uhlvuXt10/kGhvkevLmTFsNxx Pig7CxDOd2T1VzXmC1RoOCoz0RVp3ilnNBS2acX+SKa+/MPtWEs9188gYv/H+B/+ oSCblNdvXATZiNMZTHbMiAMgLUKR9L8OIbPgUNmSWVOtaUFMs3/DZiIA+aWwkkjT 8kUUrb6hhF7nkxp1ZTg3r1SCYnWoK4Z53kpc9QPNmtCkzhhS+rTTV+O0dbbdAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUVT8iEJM18pB/qBo2RHeIeUZN7rAwHwYDVR0j BBgwFoAUNHonWYXq5bybpsXLkpwG+oTBazkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MzAzZTZiYi03MzQ5LTQ3YWEtYTRjZC01MWQ4YTBlMjIyZjYvMC8zNDdBMjc1OTg1 RUFFNUJDOUJBNkM1Q0I5MjlDMDZGQTg0QzE2QjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4NEMx NkIzOS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MzMDNlNmJiLTczNDktNDdhYS1h NGNkLTUxZDhhMGUyMjJmNi8wLzMyMzQzMDMyM2EzNTM2MzgzMDNhMzg2NjMwMzAz YTNhMmYzNDM0MmQzNDM0MjAzZDNlMjAzMTMzMzMzNzM5Mzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQk AlaAjwAwDQYJKoZIhvcNAQELBQADggEBAKbnyA0wJJOG6nwg2o20yjqkLOO1Oq05 yZOPiVjCIJHzBIEZKkEW2PZF+QiRYM9cSovskjb+qjZMm5muWipIVcjm7DxeDliR p8hSXmiTVse+F9mZaa2LK+Lz9urXoniz+sLb1V3End6++iZm9IOGTNDMdPJyb1j0 tICNbZk9U1oz1bSFXcr9sTtQoHitvjyRGXX3UaIB5TXRzHNRYc2yRWEQ/4SEeHjB BPoMc1FLYJ12UXPwNnH1VxBmM8SuC1+RKpgbSUDPSgVBcsFp4VFJv6yScw32nQYj 4wsAploXgYmOA/XqDipSbj4Rq51xGlErNLkmH8ibioTtS/b6sr+CMPc= -----END CERTIFICATE-----Generated at Sun Apr 6 16:04:54 2025 by rpki-client