$ rpki-client -vvf repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a393332303a3a2f34342d3434203d3e20313333373938.roa File: 323430323a353638303a393332303a3a2f34342d3434203d3e20313333373938.roa (raw, json) Hash identifier: rBNMR3lBgeOxcxej4o5v29pYOEcexvGBuhXqn89nT1w= Subject key identifier: 78:63:CA:BD:9E:F2:48:77:B7:BB:92:21:9D:22:9A:D6:A7:36:6B:E9 Certificate issuer: /CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Certificate serial: 59A9616145BDCB6F311D83F00483806ABDD0E0A4 Authority key identifier: 34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a393332303a3a2f34342d3434203d3e20313333373938.roa Signing time: Tue 27 May 2025 17:30:11 +0000 ROA not before: Tue 27 May 2025 17:25:11 +0000 ROA not after: Tue 26 May 2026 17:30:11 +0000 asID: 133798 IP address blocks: 2402:5680:9320::/44 maxlen: 44 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 02:27:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:a9:61:61:45:bd:cb:6f:31:1d:83:f0:04:83:80:6a:bd:d0:e0:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Validity Not Before: May 27 17:25:11 2025 GMT Not After : May 26 17:30:11 2026 GMT Subject: CN=7863CABD9EF24877B7BB92219D229AD6A7366BE9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:a5:7f:b0:fd:5b:26:72:d3:db:6c:8f:f0:30: 01:b7:b3:7a:08:11:89:f1:fe:5c:f6:90:97:ff:39: 4a:33:b8:69:46:81:6f:13:86:44:35:62:8d:70:93: 23:08:c8:f6:b1:c5:77:0c:1a:00:a6:cd:ef:45:c7: 48:d7:9a:ed:0c:37:da:50:b9:03:be:04:7d:96:e7: c1:5f:15:7d:a0:d5:b3:0b:c7:72:36:0c:e4:fd:b2: 04:f5:29:d9:64:59:a3:34:96:86:02:e2:6d:fb:ba: ee:3c:f2:d5:7f:35:31:31:07:e7:3c:c3:bf:60:e1: 9a:3a:7e:bc:e1:cb:ec:cb:47:b5:3b:b9:b1:a9:2e: be:a1:1d:7a:02:51:23:b5:23:f9:59:f1:a2:b5:ed: 09:17:ae:28:71:78:81:34:d2:cb:ca:10:fe:58:18: b0:f7:c2:2f:ed:fe:db:8e:07:8a:cf:78:18:58:03: 01:ef:d9:65:ab:fb:ca:a0:04:3e:7c:a7:99:73:18: 65:b0:b5:0b:da:f6:22:33:9b:d6:e7:e5:a5:53:2b: a7:f1:ea:75:24:93:e7:ea:6c:bc:59:8b:e4:54:3c: b9:da:a9:79:3f:91:ee:91:5a:96:e7:5f:d7:35:81: 49:f0:20:26:83:d4:3e:3f:e1:6b:3e:14:76:91:18: 1b:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:63:CA:BD:9E:F2:48:77:B7:BB:92:21:9D:22:9A:D6:A7:36:6B:E9 X509v3 Authority Key Identifier: keyid:34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a393332303a3a2f34342d3434203d3e20313333373938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:5680:9320::/44 Signature Algorithm: sha256WithRSAEncryption 90:47:fd:0f:88:44:32:18:f1:4c:89:3a:b5:02:ae:94:86:22: 10:4c:c2:03:e9:3b:b5:23:7b:18:52:a5:f5:8b:75:33:4a:de: 42:6b:7a:92:88:83:6b:6f:13:91:48:5a:ea:06:46:b9:64:c6: 8b:08:26:b8:39:64:eb:bd:15:73:5a:24:a7:e7:fc:a5:20:5c: 41:50:46:e3:3c:de:a0:51:07:82:74:a2:5b:5b:fe:fd:7b:6f: 78:d4:b3:98:c2:3f:b4:95:b3:b2:e6:c9:b3:e4:37:99:7c:c5: 12:60:62:4e:5c:2a:1e:0d:00:0f:f0:a5:06:7f:91:cd:82:fa: 6a:10:4b:23:c3:ed:d4:21:bb:d7:0f:b4:65:43:fe:ab:ca:77: db:d5:44:f5:71:34:8b:00:27:91:39:90:f9:f3:d5:cb:b0:a5: 73:19:8e:52:7c:52:20:3f:55:7c:e1:57:25:10:6b:73:91:93: cf:4c:a4:ec:63:42:82:0e:97:32:89:8a:60:fe:e6:07:ce:39: 69:2a:2d:e7:14:51:02:f1:f6:6d:e5:de:de:22:38:04:91:09: 70:d5:32:94:18:72:8e:e5:49:41:77:a1:20:0a:b5:f9:30:85: 0b:0b:03:d6:fe:44:f9:bd:df:f1:eb:89:32:ae:08:e7:83:c3: cc:54:fa:30 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUWalhYUW9y28xHYPwBIOAar3Q4KQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4 NEMxNkIzOTAeFw0yNTA1MjcxNzI1MTFaFw0yNjA1MjYxNzMwMTFaMDMxMTAvBgNV BAMTKDc4NjNDQUJEOUVGMjQ4NzdCN0JCOTIyMTlEMjI5QUQ2QTczNjZCRTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKpX+w/VsmctPbbI/wMAG3s3oI EYnx/lz2kJf/OUozuGlGgW8ThkQ1Yo1wkyMIyPaxxXcMGgCmze9Fx0jXmu0MN9pQ uQO+BH2W58FfFX2g1bMLx3I2DOT9sgT1KdlkWaM0loYC4m37uu488tV/NTExB+c8 w79g4Zo6frzhy+zLR7U7ubGpLr6hHXoCUSO1I/lZ8aK17QkXrihxeIE00svKEP5Y GLD3wi/t/tuOB4rPeBhYAwHv2WWr+8qgBD58p5lzGGWwtQva9iIzm9bn5aVTK6fx 6nUkk+fqbLxZi+RUPLnaqXk/ke6RWpbnX9c1gUnwICaD1D4/4Ws+FHaRGBtlAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUeGPKvZ7ySHe3u5IhnSKa1qc2a+kwHwYDVR0j BBgwFoAUNHonWYXq5bybpsXLkpwG+oTBazkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MzAzZTZiYi03MzQ5LTQ3YWEtYTRjZC01MWQ4YTBlMjIyZjYvMC8zNDdBMjc1OTg1 RUFFNUJDOUJBNkM1Q0I5MjlDMDZGQTg0QzE2QjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4NEMx NkIzOS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MzMDNlNmJiLTczNDktNDdhYS1h NGNkLTUxZDhhMGUyMjJmNi8wLzMyMzQzMDMyM2EzNTM2MzgzMDNhMzkzMzMyMzAz YTNhMmYzNDM0MmQzNDM0MjAzZDNlMjAzMTMzMzMzNzM5Mzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQk AlaAkyAwDQYJKoZIhvcNAQELBQADggEBAJBH/Q+IRDIY8UyJOrUCrpSGIhBMwgPp O7UjexhSpfWLdTNK3kJrepKIg2tvE5FIWuoGRrlkxosIJrg5ZOu9FXNaJKfn/KUg XEFQRuM83qBRB4J0oltb/v17b3jUs5jCP7SVs7LmybPkN5l8xRJgYk5cKh4NAA/w pQZ/kc2C+moQSyPD7dQhu9cPtGVD/qvKd9vVRPVxNIsAJ5E5kPnz1cuwpXMZjlJ8 UiA/VXzhVyUQa3ORk89MpOxjQoIOlzKJimD+5gfOOWkqLecUUQLx9m3l3t4iOASR CXDVMpQYco7lSUF3oSAKtfkwhQsLA9b+RPm93/HriTKuCOeDw8xU+jA= -----END CERTIFICATE-----Generated at Sun Jun 8 15:25:02 2025 by rpki-client