$ rpki-client -vvf repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a393938303a3a2f34342d3434203d3e20313333373938.roa File: 323430323a353638303a393938303a3a2f34342d3434203d3e20313333373938.roa (raw, json) Hash identifier: 42MrX2FooCvf+YpQ3VkzPGIcIO2RWlf9axoHoVcSUCE= Subject key identifier: 6B:31:D9:23:51:59:DE:CE:E3:91:C2:B0:AC:77:C3:4F:74:A1:2A:79 Certificate issuer: /CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Certificate serial: 60F09C261F08FD87DA0CCD80CB0438C96C947264 Authority key identifier: 34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a393938303a3a2f34342d3434203d3e20313333373938.roa Signing time: Tue 27 May 2025 16:59:18 +0000 ROA not before: Tue 27 May 2025 16:54:18 +0000 ROA not after: Tue 26 May 2026 16:59:18 +0000 asID: 133798 IP address blocks: 2402:5680:9980::/44 maxlen: 44 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 02:27:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:f0:9c:26:1f:08:fd:87:da:0c:cd:80:cb:04:38:c9:6c:94:72:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Validity Not Before: May 27 16:54:18 2025 GMT Not After : May 26 16:59:18 2026 GMT Subject: CN=6B31D9235159DECEE391C2B0AC77C34F74A12A79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:04:e9:cc:fb:3d:ae:17:ac:a6:a0:66:75:51: 14:05:ea:c5:9d:f9:bd:88:9c:e9:2e:cd:45:40:8d: 4f:b0:66:c5:93:97:53:11:a1:ac:05:8e:65:f6:fd: 1b:15:df:68:5d:79:ec:ed:a8:eb:0c:93:65:cd:e3: 37:00:64:87:26:06:4e:62:1d:03:ba:c4:5c:dd:36: a7:c1:50:a0:3b:60:5f:13:fb:f2:b7:5e:a1:c4:99: e3:ed:38:21:9e:13:c8:a6:cb:f4:8e:e0:86:a8:21: 58:cd:3d:56:97:76:c5:9f:a9:b2:cf:17:b6:f1:1f: 82:c7:ec:e0:a5:3f:b2:b6:4e:4c:28:7b:cc:7a:6a: e5:df:24:01:fc:d8:d1:31:e5:c1:c9:a9:bc:9d:ad: ef:d0:85:1c:f5:b9:59:1b:87:c8:2f:11:88:1d:0e: 45:76:ab:d3:79:15:aa:f8:b9:63:6c:55:c9:91:3c: 29:65:e9:3d:a0:d6:26:e2:0b:88:31:b0:a2:95:29: 36:47:5c:46:7f:c4:a0:1d:6b:e4:7e:e3:08:5f:54: df:6b:fc:d4:5f:c8:f4:ed:6a:f9:3a:82:d0:b4:d9: c6:d8:64:09:38:a2:c0:5b:4a:7f:2d:90:52:8a:15: b6:7b:33:63:30:c2:a3:86:60:97:29:7f:2c:60:9e: 00:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:31:D9:23:51:59:DE:CE:E3:91:C2:B0:AC:77:C3:4F:74:A1:2A:79 X509v3 Authority Key Identifier: keyid:34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a393938303a3a2f34342d3434203d3e20313333373938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:5680:9980::/44 Signature Algorithm: sha256WithRSAEncryption b9:52:4c:b3:b0:d5:fc:f6:94:08:8e:f2:5e:c2:dc:23:3f:6b: 6e:a2:80:b5:0c:5c:53:db:fe:28:07:9b:aa:bc:e1:05:0b:2c: 3f:6d:da:9e:35:53:19:09:ad:0c:d4:2b:2b:0a:40:b4:34:fc: 18:fe:de:e2:aa:cc:36:27:d8:56:af:22:9f:09:85:cf:9b:a0: cc:0b:4b:49:fe:06:7e:67:91:1a:59:3f:f8:d7:f1:ef:ae:86: 7e:ab:ac:bc:cc:e6:14:52:dc:f9:fa:ec:d4:5d:6c:e1:c3:63: dd:ca:08:1f:2f:3a:12:ca:c4:2c:94:c7:f4:4a:f0:c1:9e:61: 1a:09:16:b4:c3:12:71:8d:36:a3:b5:84:d4:6a:e4:db:ae:40: 0b:d7:ab:8c:b7:35:f0:6e:5c:41:5b:c7:1b:b9:b3:e6:94:2d: dd:66:d5:d4:c8:51:8a:4c:3c:90:20:c3:ee:f0:49:4c:d8:0d: 6e:2b:c3:2e:b8:96:de:7e:fb:93:35:5f:42:23:be:70:1f:56: 6b:2f:87:7a:fd:80:d4:93:af:7d:b8:28:a2:40:a3:d8:fa:79: 53:5a:b8:6c:79:a3:39:9f:90:d6:26:ab:25:19:6e:99:40:f1: c7:2f:bf:f9:04:2f:02:d4:d9:4b:13:8d:0c:fc:0f:a1:59:3b: 70:3e:dd:72 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUYPCcJh8I/YfaDM2AywQ4yWyUcmQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4 NEMxNkIzOTAeFw0yNTA1MjcxNjU0MThaFw0yNjA1MjYxNjU5MThaMDMxMTAvBgNV BAMTKDZCMzFEOTIzNTE1OURFQ0VFMzkxQzJCMEFDNzdDMzRGNzRBMTJBNzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQBOnM+z2uF6ymoGZ1URQF6sWd +b2InOkuzUVAjU+wZsWTl1MRoawFjmX2/RsV32hdeeztqOsMk2XN4zcAZIcmBk5i HQO6xFzdNqfBUKA7YF8T+/K3XqHEmePtOCGeE8imy/SO4IaoIVjNPVaXdsWfqbLP F7bxH4LH7OClP7K2Tkwoe8x6auXfJAH82NEx5cHJqbydre/QhRz1uVkbh8gvEYgd DkV2q9N5Far4uWNsVcmRPCll6T2g1ibiC4gxsKKVKTZHXEZ/xKAda+R+4whfVN9r /NRfyPTtavk6gtC02cbYZAk4osBbSn8tkFKKFbZ7M2MwwqOGYJcpfyxgngAPAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUazHZI1FZ3s7jkcKwrHfDT3ShKnkwHwYDVR0j BBgwFoAUNHonWYXq5bybpsXLkpwG+oTBazkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MzAzZTZiYi03MzQ5LTQ3YWEtYTRjZC01MWQ4YTBlMjIyZjYvMC8zNDdBMjc1OTg1 RUFFNUJDOUJBNkM1Q0I5MjlDMDZGQTg0QzE2QjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4NEMx NkIzOS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MzMDNlNmJiLTczNDktNDdhYS1h NGNkLTUxZDhhMGUyMjJmNi8wLzMyMzQzMDMyM2EzNTM2MzgzMDNhMzkzOTM4MzAz YTNhMmYzNDM0MmQzNDM0MjAzZDNlMjAzMTMzMzMzNzM5Mzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQk AlaAmYAwDQYJKoZIhvcNAQELBQADggEBALlSTLOw1fz2lAiO8l7C3CM/a26igLUM XFPb/igHm6q84QULLD9t2p41UxkJrQzUKysKQLQ0/Bj+3uKqzDYn2FavIp8Jhc+b oMwLS0n+Bn5nkRpZP/jX8e+uhn6rrLzM5hRS3Pn67NRdbOHDY93KCB8vOhLKxCyU x/RK8MGeYRoJFrTDEnGNNqO1hNRq5NuuQAvXq4y3NfBuXEFbxxu5s+aULd1m1dTI UYpMPJAgw+7wSUzYDW4rwy64lt5++5M1X0IjvnAfVmsvh3r9gNSTr324KKJAo9j6 eVNauGx5ozmfkNYmqyUZbplA8ccvv/kELwLU2UsTjQz8D6FZO3A+3XI= -----END CERTIFICATE-----Generated at Sun Jun 8 23:13:00 2025 by rpki-client