$ rpki-client -vvf repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a393138303a3a2f34342d3434203d3e20313333373938.roa File: 323430323a353638303a393138303a3a2f34342d3434203d3e20313333373938.roa (raw, json) Hash identifier: 1RiuqITvvqSJyKndPq+XF0XcFKeChD7UYKgdvtaY3AA= Subject key identifier: FD:40:47:13:38:48:1F:EA:7C:03:7B:EF:B6:4D:8C:39:0E:15:20:40 Certificate issuer: /CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Certificate serial: 148B506B5D6BE0E9E3F99DAA69DA63DD240F68CA Authority key identifier: 34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a393138303a3a2f34342d3434203d3e20313333373938.roa Signing time: Tue 27 May 2025 16:57:04 +0000 ROA not before: Tue 27 May 2025 16:52:04 +0000 ROA not after: Tue 26 May 2026 16:57:04 +0000 asID: 133798 IP address blocks: 2402:5680:9180::/44 maxlen: 44 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 02:27:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:8b:50:6b:5d:6b:e0:e9:e3:f9:9d:aa:69:da:63:dd:24:0f:68:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Validity Not Before: May 27 16:52:04 2025 GMT Not After : May 26 16:57:04 2026 GMT Subject: CN=FD40471338481FEA7C037BEFB64D8C390E152040 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:dc:24:cd:08:28:d1:f2:83:a2:d1:c9:71:aa: 5e:7a:95:85:84:16:89:5d:2f:a9:c2:49:08:65:78: 47:d4:d7:9a:81:81:cc:ca:58:9e:86:89:7f:5c:91: f9:c1:85:a4:40:ce:22:5e:df:76:4e:6c:85:1e:79: d7:f2:4a:d1:43:f9:b9:f9:63:6f:91:e3:7e:da:a8: f5:e1:e3:ee:4d:9e:c7:cd:cc:e8:36:fc:e8:1b:df: 41:54:de:53:c9:12:46:12:bc:43:aa:e3:f2:0f:e4: 20:52:b1:ed:a9:f6:b6:fd:7a:b1:e2:b6:52:5c:70: f3:8c:29:9f:2e:a5:cb:55:44:1a:a7:8b:4c:8d:b9: 70:0f:63:0c:36:e5:ec:b4:15:d1:ba:be:c9:0f:8d: e9:9b:ac:90:dc:ad:18:b0:ea:01:84:84:52:d6:9e: 3c:96:4c:48:22:70:64:c9:6f:97:63:27:30:df:fd: e8:fd:a8:22:b4:4c:a3:90:46:4e:f7:5d:6b:de:39: fc:cd:b4:95:46:1d:05:c9:ce:05:30:6a:4f:4a:bf: f9:81:ef:33:3d:66:6e:7e:91:a3:70:9b:af:63:d1: 42:13:ac:df:3c:41:cf:07:a0:0e:41:7c:6d:26:6e: 86:f0:53:ec:37:5d:94:80:99:b9:95:5f:ad:4d:d6: ae:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:40:47:13:38:48:1F:EA:7C:03:7B:EF:B6:4D:8C:39:0E:15:20:40 X509v3 Authority Key Identifier: keyid:34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a393138303a3a2f34342d3434203d3e20313333373938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:5680:9180::/44 Signature Algorithm: sha256WithRSAEncryption 88:08:9d:5b:dc:2a:83:81:69:56:a4:2e:bd:98:d1:bd:9a:95: 83:bb:ba:c9:c0:e0:bf:2b:a7:97:00:94:d5:a6:04:63:51:ff: 93:8f:fb:c0:7a:aa:a3:5f:2d:1a:9e:28:b7:e6:0a:0b:8d:87: d1:49:0f:b8:3d:85:a9:f4:61:0a:52:e0:9c:01:5c:38:a0:6e: 8f:49:f9:e8:8e:21:d0:70:09:ce:48:cf:40:c1:43:a3:1a:13: 24:46:06:0b:c6:2d:ae:bc:30:e2:16:63:88:f1:ec:64:74:de: 0d:b9:f5:26:9f:31:20:21:94:19:99:74:8a:9c:65:20:d6:eb: 11:b2:4a:8d:03:e6:39:f8:d2:ad:8c:5c:4d:d1:fd:b7:ef:53: 7f:7d:0c:52:86:56:68:b5:e1:8b:c1:fa:c8:96:e3:23:23:42: 6f:a6:59:2a:b9:32:2a:6c:e6:a0:a4:9f:94:af:f9:6d:65:04: 4b:0a:90:59:87:ac:46:3f:8f:0f:43:f8:04:38:79:2d:6f:f0: 46:b0:5e:e5:41:0b:ff:83:b9:e8:0e:01:b7:1d:04:80:09:9f: 03:c0:d4:18:cc:5e:97:35:55:4a:3d:fc:94:cd:ed:c5:13:77: 47:37:85:7b:92:fe:15:13:40:3e:85:7d:17:4d:b5:00:78:61: 01:a8:d3:2a -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUFItQa11r4Onj+Z2qadpj3SQPaMowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4 NEMxNkIzOTAeFw0yNTA1MjcxNjUyMDRaFw0yNjA1MjYxNjU3MDRaMDMxMTAvBgNV BAMTKEZENDA0NzEzMzg0ODFGRUE3QzAzN0JFRkI2NEQ4QzM5MEUxNTIwNDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDy3CTNCCjR8oOi0clxql56lYWE FoldL6nCSQhleEfU15qBgczKWJ6GiX9ckfnBhaRAziJe33ZObIUeedfyStFD+bn5 Y2+R437aqPXh4+5NnsfNzOg2/Ogb30FU3lPJEkYSvEOq4/IP5CBSse2p9rb9erHi tlJccPOMKZ8upctVRBqni0yNuXAPYww25ey0FdG6vskPjembrJDcrRiw6gGEhFLW njyWTEgicGTJb5djJzDf/ej9qCK0TKOQRk73XWveOfzNtJVGHQXJzgUwak9Kv/mB 7zM9Zm5+kaNwm69j0UITrN88Qc8HoA5BfG0mbobwU+w3XZSAmbmVX61N1q7xAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQU/UBHEzhIH+p8A3vvtk2MOQ4VIEAwHwYDVR0j BBgwFoAUNHonWYXq5bybpsXLkpwG+oTBazkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MzAzZTZiYi03MzQ5LTQ3YWEtYTRjZC01MWQ4YTBlMjIyZjYvMC8zNDdBMjc1OTg1 RUFFNUJDOUJBNkM1Q0I5MjlDMDZGQTg0QzE2QjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4NEMx NkIzOS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MzMDNlNmJiLTczNDktNDdhYS1h NGNkLTUxZDhhMGUyMjJmNi8wLzMyMzQzMDMyM2EzNTM2MzgzMDNhMzkzMTM4MzAz YTNhMmYzNDM0MmQzNDM0MjAzZDNlMjAzMTMzMzMzNzM5Mzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQk AlaAkYAwDQYJKoZIhvcNAQELBQADggEBAIgInVvcKoOBaVakLr2Y0b2alYO7usnA 4L8rp5cAlNWmBGNR/5OP+8B6qqNfLRqeKLfmCguNh9FJD7g9han0YQpS4JwBXDig bo9J+eiOIdBwCc5Iz0DBQ6MaEyRGBgvGLa68MOIWY4jx7GR03g259SafMSAhlBmZ dIqcZSDW6xGySo0D5jn40q2MXE3R/bfvU399DFKGVmi14YvB+siW4yMjQm+mWSq5 Mips5qCkn5Sv+W1lBEsKkFmHrEY/jw9D+AQ4eS1v8EawXuVBC/+DuegOAbcdBIAJ nwPA1BjMXpc1VUo9/JTN7cUTd0c3hXuS/hUTQD6FfRdNtQB4YQGo0yo= -----END CERTIFICATE-----Generated at Sun Jun 8 23:31:36 2025 by rpki-client