$ rpki-client -vvf repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a393139303a3a2f34342d3434203d3e20313333373938.roa File: 323430323a353638303a393139303a3a2f34342d3434203d3e20313333373938.roa (raw, json) Hash identifier: WCRVDy1HObpW7mUR5AtKYmEedcg4a3QoyFuFRrL6J5g= Subject key identifier: 37:BE:68:C6:48:AD:7E:1C:E7:0E:20:F0:C4:E3:EF:E0:4B:83:45:57 Certificate issuer: /CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Certificate serial: 342D156A1A5CB871840F49A82BFEED2F860784A4 Authority key identifier: 34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a393139303a3a2f34342d3434203d3e20313333373938.roa Signing time: Tue 27 May 2025 16:57:17 +0000 ROA not before: Tue 27 May 2025 16:52:17 +0000 ROA not after: Tue 26 May 2026 16:57:17 +0000 asID: 133798 IP address blocks: 2402:5680:9190::/44 maxlen: 44 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 02:27:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:2d:15:6a:1a:5c:b8:71:84:0f:49:a8:2b:fe:ed:2f:86:07:84:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Validity Not Before: May 27 16:52:17 2025 GMT Not After : May 26 16:57:17 2026 GMT Subject: CN=37BE68C648AD7E1CE70E20F0C4E3EFE04B834557 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:d4:ae:5b:28:7a:76:14:ac:5a:65:72:99:fe: 3c:98:3d:97:bb:22:3c:6d:ff:02:f6:bf:96:7d:26: 93:7b:83:84:ad:e5:11:85:cc:bc:f6:4d:64:6e:09: 35:e9:9c:da:b7:95:5f:d7:01:56:9f:c4:64:e1:fc: 05:32:c0:1c:fd:38:ad:8b:ba:c8:12:48:21:6a:7f: 22:e1:ff:6d:25:dd:da:37:fa:a1:02:f9:a4:15:96: 92:21:9d:94:57:fa:76:13:b5:d1:10:36:a8:0c:09: 38:66:4f:eb:5c:b4:ce:83:62:f0:6a:f2:3f:bc:b3: 10:a9:34:ad:7a:64:e9:47:e7:ef:9b:6a:cf:ec:ff: f8:d4:2e:2e:da:5a:02:94:b3:0c:74:9e:a0:2f:3d: 6a:01:2a:81:17:ad:b3:d0:83:5b:db:3b:f6:52:5a: a0:ea:9b:4c:e3:72:ee:5a:ce:cf:7b:e6:e0:f8:41: d6:0b:3e:be:f5:a7:2b:d1:84:54:95:5f:74:8f:c7: 16:fb:be:6b:7d:43:d0:8c:29:df:9f:30:38:4c:fb: 2f:7d:8c:10:7b:b2:f5:6d:56:0e:8a:0c:91:e8:44: 51:2c:b2:bf:2d:58:f6:13:1b:ca:60:7c:b8:f6:10: fe:79:20:7a:67:00:a7:2b:a4:18:a4:11:47:a5:7f: 59:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:BE:68:C6:48:AD:7E:1C:E7:0E:20:F0:C4:E3:EF:E0:4B:83:45:57 X509v3 Authority Key Identifier: keyid:34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a393139303a3a2f34342d3434203d3e20313333373938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:5680:9190::/44 Signature Algorithm: sha256WithRSAEncryption 02:49:24:2d:3c:3f:5c:c4:a2:43:07:1a:c6:61:79:3a:b2:52: 15:40:3e:72:3f:2c:4c:82:a4:63:b4:ed:f8:3b:3a:f4:47:34: dc:48:f6:89:4a:83:f1:f1:03:03:98:8c:6a:7f:b8:15:b3:d5: 0c:d7:fc:eb:b2:78:69:d8:2f:67:60:b1:b1:40:f1:ca:a3:08: cd:f2:be:2f:6b:ab:fb:cf:56:87:fb:79:ba:49:ab:b0:f9:58: dd:b3:ea:19:00:fc:11:03:2f:39:1f:ab:0d:a3:91:fa:11:b3: fa:1b:3d:b9:69:16:27:32:c6:7c:dd:55:ad:68:8e:95:00:40: e2:6b:5e:70:7f:35:32:5f:fb:27:1f:0d:4f:36:3f:35:73:04: dd:8c:c8:67:81:a0:06:40:74:ca:69:5b:b4:63:19:e4:ee:f1: 93:1d:17:6f:ac:16:88:36:70:2b:99:e4:72:aa:a1:a4:de:76: 74:63:bd:0a:e8:ba:a3:4a:07:ad:11:dc:91:61:4c:c6:c3:ce: 4a:d2:e4:fb:1c:50:fa:e3:fe:82:67:6e:aa:fc:a0:02:a7:5e: 9b:9d:37:e5:3c:9f:b4:5e:ff:80:6a:f6:da:ec:78:be:7c:d3: 1c:7c:4b:6e:44:60:8f:16:f7:fb:d5:24:a8:72:d1:99:0d:6f: 32:f0:e7:ef -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUNC0VahpcuHGED0moK/7tL4YHhKQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4 NEMxNkIzOTAeFw0yNTA1MjcxNjUyMTdaFw0yNjA1MjYxNjU3MTdaMDMxMTAvBgNV BAMTKDM3QkU2OEM2NDhBRDdFMUNFNzBFMjBGMEM0RTNFRkUwNEI4MzQ1NTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCh1K5bKHp2FKxaZXKZ/jyYPZe7 Ijxt/wL2v5Z9JpN7g4St5RGFzLz2TWRuCTXpnNq3lV/XAVafxGTh/AUywBz9OK2L usgSSCFqfyLh/20l3do3+qEC+aQVlpIhnZRX+nYTtdEQNqgMCThmT+tctM6DYvBq 8j+8sxCpNK16ZOlH5++bas/s//jULi7aWgKUswx0nqAvPWoBKoEXrbPQg1vbO/ZS WqDqm0zjcu5azs975uD4QdYLPr71pyvRhFSVX3SPxxb7vmt9Q9CMKd+fMDhM+y99 jBB7svVtVg6KDJHoRFEssr8tWPYTG8pgfLj2EP55IHpnAKcrpBikEUelf1mrAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUN75oxkitfhznDiDwxOPv4EuDRVcwHwYDVR0j BBgwFoAUNHonWYXq5bybpsXLkpwG+oTBazkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MzAzZTZiYi03MzQ5LTQ3YWEtYTRjZC01MWQ4YTBlMjIyZjYvMC8zNDdBMjc1OTg1 RUFFNUJDOUJBNkM1Q0I5MjlDMDZGQTg0QzE2QjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4NEMx NkIzOS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MzMDNlNmJiLTczNDktNDdhYS1h NGNkLTUxZDhhMGUyMjJmNi8wLzMyMzQzMDMyM2EzNTM2MzgzMDNhMzkzMTM5MzAz YTNhMmYzNDM0MmQzNDM0MjAzZDNlMjAzMTMzMzMzNzM5Mzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQk AlaAkZAwDQYJKoZIhvcNAQELBQADggEBAAJJJC08P1zEokMHGsZheTqyUhVAPnI/ LEyCpGO07fg7OvRHNNxI9olKg/HxAwOYjGp/uBWz1QzX/OuyeGnYL2dgsbFA8cqj CM3yvi9rq/vPVof7ebpJq7D5WN2z6hkA/BEDLzkfqw2jkfoRs/obPblpFicyxnzd Va1ojpUAQOJrXnB/NTJf+ycfDU82PzVzBN2MyGeBoAZAdMppW7RjGeTu8ZMdF2+s Fog2cCuZ5HKqoaTednRjvQrouqNKB60R3JFhTMbDzkrS5PscUPrj/oJnbqr8oAKn XpudN+U8n7Re/4Bq9trseL580xx8S25EYI8W9/vVJKhy0ZkNbzLw5+8= -----END CERTIFICATE-----Generated at Mon Jun 9 02:36:16 2025 by rpki-client