$ rpki-client -vvf repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a393963303a3a2f34342d3434203d3e20313333373938.roa File: 323430323a353638303a393963303a3a2f34342d3434203d3e20313333373938.roa (raw, json) Hash identifier: GrUe5XHJ2xjujTZRx33kQ4+0H1kZbRPhF7HIkUHPS3E= Subject key identifier: C5:D1:67:2A:1C:4C:78:9F:3E:BF:16:EF:21:92:F6:ED:E2:6D:EF:23 Certificate issuer: /CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Certificate serial: 04D5E3C10D4351A76B8AA46A1667A95E4EEFB7FB Authority key identifier: 34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a393963303a3a2f34342d3434203d3e20313333373938.roa Signing time: Tue 26 Aug 2025 10:32:11 +0000 ROA not before: Tue 26 Aug 2025 10:27:11 +0000 ROA not after: Tue 25 Aug 2026 10:32:11 +0000 asID: 133798 IP address blocks: 2402:5680:99c0::/44 maxlen: 44 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 04 Sep 2025 00:31:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:d5:e3:c1:0d:43:51:a7:6b:8a:a4:6a:16:67:a9:5e:4e:ef:b7:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Validity Not Before: Aug 26 10:27:11 2025 GMT Not After : Aug 25 10:32:11 2026 GMT Subject: CN=C5D1672A1C4C789F3EBF16EF2192F6EDE26DEF23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:08:27:90:3b:60:f3:dc:ae:82:0e:f1:0c:27: 2a:da:6e:b5:d2:fa:43:0f:b4:95:79:37:12:6d:d2: 1a:82:7a:ec:91:fc:ff:0f:d2:83:bb:99:ba:e7:c3: b8:0f:66:5f:67:6b:06:d4:3a:00:f3:13:bc:2a:16: df:4d:db:9e:83:4c:76:47:df:9d:53:c3:15:83:35: 47:93:68:0e:4e:48:a2:eb:a3:38:94:c9:4c:2b:af: 03:c7:5d:06:8e:5c:b7:6f:44:4f:50:42:07:18:2b: f6:c1:94:ab:fd:cb:98:75:15:89:bd:90:41:98:2d: 92:17:2c:a3:f2:00:d6:33:7a:b2:2b:52:4e:fc:e7: 48:b6:81:f4:da:3b:77:ec:45:e7:fc:0e:c8:df:2e: 08:57:de:a9:74:4b:23:09:ba:d8:45:bd:07:30:f6: a6:a4:99:08:c9:d4:46:1b:25:cc:66:56:40:1b:fd: ba:3a:00:12:01:82:a9:52:45:b9:63:9f:5b:0e:6c: 52:65:0b:1f:1b:f4:d9:35:2f:f9:e7:57:51:5e:38: 68:fb:39:98:ae:ff:a5:77:19:65:d5:92:e8:07:a0: 4b:55:cb:4d:d9:ca:1a:a8:9f:8a:10:fb:3f:ae:7c: e3:b8:f5:cf:91:e4:30:4d:fe:37:60:2b:d3:00:74: f1:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:D1:67:2A:1C:4C:78:9F:3E:BF:16:EF:21:92:F6:ED:E2:6D:EF:23 X509v3 Authority Key Identifier: keyid:34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a393963303a3a2f34342d3434203d3e20313333373938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:5680:99c0::/44 Signature Algorithm: sha256WithRSAEncryption 45:1e:9c:57:18:3a:fd:64:83:0b:48:d4:76:b3:93:bb:51:9a: 08:b3:9f:1d:8b:c6:1a:99:96:70:25:95:07:f0:13:5b:da:9d: 91:5e:64:39:f9:72:4a:0c:d5:04:23:e4:37:69:85:77:8b:0b: 8f:1c:73:4e:fd:d6:5d:80:0e:7f:3b:d5:e9:a9:42:c2:23:ed: d0:d5:e1:9c:2b:cc:b0:28:b6:b1:d7:89:34:57:80:f2:34:62: 75:3e:fa:26:e1:05:ee:49:1c:1a:26:3a:fe:1e:56:d5:6d:17: 5f:1d:82:bc:bf:ec:13:7d:ea:9b:8a:35:16:03:1b:d9:a9:9f: 84:36:07:73:2a:2d:cf:c7:27:f5:55:49:5a:0e:c2:66:8b:75: 34:5c:e6:2b:4a:a3:d4:85:5b:55:e3:7e:7a:9d:c3:ad:fd:ea: 72:98:fb:ae:13:14:1f:4f:87:3b:bd:4c:76:7c:21:3a:d1:5e: fb:af:fd:55:b7:a2:13:c0:7c:1e:40:b3:e3:bf:1f:66:72:ab: 30:5e:89:7a:81:c5:b8:8b:fb:91:1b:e1:87:f0:f4:3c:48:57: f4:20:8c:dc:ba:38:91:f0:96:4b:b2:2f:8f:42:48:b8:5a:f7: 12:63:6b:6b:00:ab:f8:17:ce:a8:b2:bc:2d:73:1b:c8:63:7a: 60:6a:16:1a -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUBNXjwQ1DUadriqRqFmepXk7vt/swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4 NEMxNkIzOTAeFw0yNTA4MjYxMDI3MTFaFw0yNjA4MjUxMDMyMTFaMDMxMTAvBgNV BAMTKEM1RDE2NzJBMUM0Qzc4OUYzRUJGMTZFRjIxOTJGNkVERTI2REVGMjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClCCeQO2Dz3K6CDvEMJyrabrXS +kMPtJV5NxJt0hqCeuyR/P8P0oO7mbrnw7gPZl9nawbUOgDzE7wqFt9N256DTHZH 351TwxWDNUeTaA5OSKLroziUyUwrrwPHXQaOXLdvRE9QQgcYK/bBlKv9y5h1FYm9 kEGYLZIXLKPyANYzerIrUk7850i2gfTaO3fsRef8DsjfLghX3ql0SyMJuthFvQcw 9qakmQjJ1EYbJcxmVkAb/bo6ABIBgqlSRbljn1sObFJlCx8b9Nk1L/nnV1FeOGj7 OZiu/6V3GWXVkugHoEtVy03Zyhqon4oQ+z+ufOO49c+R5DBN/jdgK9MAdPHTAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUxdFnKhxMeJ8+vxbvIZL27eJt7yMwHwYDVR0j BBgwFoAUNHonWYXq5bybpsXLkpwG+oTBazkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MzAzZTZiYi03MzQ5LTQ3YWEtYTRjZC01MWQ4YTBlMjIyZjYvMC8zNDdBMjc1OTg1 RUFFNUJDOUJBNkM1Q0I5MjlDMDZGQTg0QzE2QjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4NEMx NkIzOS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MzMDNlNmJiLTczNDktNDdhYS1h NGNkLTUxZDhhMGUyMjJmNi8wLzMyMzQzMDMyM2EzNTM2MzgzMDNhMzkzOTYzMzAz YTNhMmYzNDM0MmQzNDM0MjAzZDNlMjAzMTMzMzMzNzM5Mzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQk AlaAmcAwDQYJKoZIhvcNAQELBQADggEBAEUenFcYOv1kgwtI1Hazk7tRmgiznx2L xhqZlnAllQfwE1vanZFeZDn5ckoM1QQj5DdphXeLC48cc0791l2ADn871empQsIj 7dDV4ZwrzLAotrHXiTRXgPI0YnU++ibhBe5JHBomOv4eVtVtF18dgry/7BN96puK NRYDG9mpn4Q2B3MqLc/HJ/VVSVoOwmaLdTRc5itKo9SFW1Xjfnqdw6396nKY+64T FB9Phzu9THZ8ITrRXvuv/VW3ohPAfB5As+O/H2ZyqzBeiXqBxbiL+5Eb4Yfw9DxI V/QgjNy6OJHwlkuyL49CSLha9xJja2sAq/gXzqiyvC1zG8hjemBqFho= -----END CERTIFICATE-----Generated at Mon Sep 1 02:07:11 2025 by rpki-client