$ rpki-client -vvf repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a396134303a3a2f34342d3434203d3e20313333373938.roa File: 323430323a353638303a396134303a3a2f34342d3434203d3e20313333373938.roa (raw, json) Hash identifier: qIgoZoQxoxpQmREl/iJLbn41/YceYRFWYuxxADxj5Fc= Subject key identifier: 34:92:0C:3C:F5:91:49:35:56:8C:88:95:9E:42:8C:81:17:E0:BD:B8 Certificate issuer: /CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Certificate serial: 7CACA784B222B8103A6C2AF24EDFF1A98C4BC2E8 Authority key identifier: 34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a396134303a3a2f34342d3434203d3e20313333373938.roa Signing time: Tue 26 Aug 2025 11:13:58 +0000 ROA not before: Tue 26 Aug 2025 11:08:58 +0000 ROA not after: Tue 25 Aug 2026 11:13:58 +0000 asID: 133798 IP address blocks: 2402:5680:9a40::/44 maxlen: 44 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 04 Sep 2025 00:31:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:ac:a7:84:b2:22:b8:10:3a:6c:2a:f2:4e:df:f1:a9:8c:4b:c2:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Validity Not Before: Aug 26 11:08:58 2025 GMT Not After : Aug 25 11:13:58 2026 GMT Subject: CN=34920C3CF5914935568C88959E428C8117E0BDB8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:09:15:09:b4:42:e9:ff:f8:91:58:60:24:ff: 27:bb:ee:45:8a:43:35:26:d8:f9:2c:fc:fa:66:d3: 74:67:35:04:98:96:7c:2c:5a:57:4c:93:9f:ee:6a: 2f:e1:fd:46:be:53:1a:d6:06:74:a0:94:b0:bd:26: ad:cd:c9:01:a8:b8:7c:61:97:1f:b8:33:01:ec:0c: 29:f4:ce:64:fc:cb:1e:c8:9e:9d:80:45:63:c6:fa: e8:44:65:9f:df:ed:d9:49:2f:98:e1:dc:c8:e5:c1: 76:ac:ce:b2:33:e1:16:00:33:c3:af:19:33:af:56: e2:ad:60:9b:64:d6:e2:7c:76:8c:f9:76:d1:87:a5: 2a:41:28:e1:12:d4:47:97:e0:0c:86:27:2f:83:e3: 89:31:1f:1b:60:ac:b2:8e:82:58:a7:f0:d6:9e:12: 4f:52:bf:88:35:9e:b4:8e:8d:46:2b:07:91:29:e4: a1:f5:a6:c0:38:38:16:ba:51:60:c2:2b:f2:b4:76: bc:b5:7e:a9:a2:72:36:f8:61:d4:f8:b5:40:6f:23: b8:44:5a:15:9a:55:29:1e:29:ce:55:ff:0d:f2:de: 33:99:a7:f9:ad:db:72:e6:33:42:ef:8f:70:b4:78: 3b:f3:76:37:c0:c1:3a:89:87:b3:30:f7:a6:c9:91: f9:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:92:0C:3C:F5:91:49:35:56:8C:88:95:9E:42:8C:81:17:E0:BD:B8 X509v3 Authority Key Identifier: keyid:34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a396134303a3a2f34342d3434203d3e20313333373938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:5680:9a40::/44 Signature Algorithm: sha256WithRSAEncryption 37:15:c9:e3:1e:c7:fb:7b:f3:c5:68:0b:68:86:18:bf:bc:00: 38:42:3c:13:d8:4f:3b:f1:82:75:f2:fe:ce:f9:09:62:ef:fe: 92:24:0b:4c:0c:73:f9:08:c2:92:f0:6c:23:9d:28:f5:f0:80: d2:4d:c7:23:cd:01:08:56:85:87:a3:da:cf:9f:16:dd:b1:66: 23:b0:94:44:54:82:cd:33:c0:b4:fc:b3:c9:b5:62:a8:45:05: 70:88:8e:e7:48:f2:b0:21:cf:f8:5e:a1:f7:84:7f:b8:c0:c5: 01:f7:b1:5e:13:f7:1b:51:b4:69:1c:d0:5a:c6:a1:a6:f0:32: 9f:eb:32:d1:cc:9e:0d:fe:d3:d1:8c:1f:25:41:11:1b:1d:d9: c3:7a:3d:43:10:3c:23:ed:58:5e:2d:c1:ad:06:c3:a1:f8:f5: a6:ce:5d:0e:53:fb:7a:24:ff:5c:74:40:6b:f8:19:39:39:a4: a5:70:02:90:9b:c9:b2:7c:37:1a:92:be:0a:9c:66:05:d8:41: 23:ce:e4:a1:a5:06:76:19:5f:bb:44:53:76:ca:98:d9:e2:47: 5c:c7:c3:c6:d1:90:8e:ff:09:ef:7b:c6:15:70:ae:42:7b:bd: f5:93:27:45:5a:28:ae:39:e7:5a:07:7c:5f:b1:84:fd:bc:3a: 86:ec:a5:24 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUfKynhLIiuBA6bCryTt/xqYxLwugwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4 NEMxNkIzOTAeFw0yNTA4MjYxMTA4NThaFw0yNjA4MjUxMTEzNThaMDMxMTAvBgNV BAMTKDM0OTIwQzNDRjU5MTQ5MzU1NjhDODg5NTlFNDI4QzgxMTdFMEJEQjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSCRUJtELp//iRWGAk/ye77kWK QzUm2Pks/Ppm03RnNQSYlnwsWldMk5/uai/h/Ua+UxrWBnSglLC9Jq3NyQGouHxh lx+4MwHsDCn0zmT8yx7Inp2ARWPG+uhEZZ/f7dlJL5jh3MjlwXaszrIz4RYAM8Ov GTOvVuKtYJtk1uJ8doz5dtGHpSpBKOES1EeX4AyGJy+D44kxHxtgrLKOglin8Nae Ek9Sv4g1nrSOjUYrB5Ep5KH1psA4OBa6UWDCK/K0dry1fqmicjb4YdT4tUBvI7hE WhWaVSkeKc5V/w3y3jOZp/mt23LmM0Lvj3C0eDvzdjfAwTqJh7Mw96bJkflTAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUNJIMPPWRSTVWjIiVnkKMgRfgvbgwHwYDVR0j BBgwFoAUNHonWYXq5bybpsXLkpwG+oTBazkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MzAzZTZiYi03MzQ5LTQ3YWEtYTRjZC01MWQ4YTBlMjIyZjYvMC8zNDdBMjc1OTg1 RUFFNUJDOUJBNkM1Q0I5MjlDMDZGQTg0QzE2QjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4NEMx NkIzOS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MzMDNlNmJiLTczNDktNDdhYS1h NGNkLTUxZDhhMGUyMjJmNi8wLzMyMzQzMDMyM2EzNTM2MzgzMDNhMzk2MTM0MzAz YTNhMmYzNDM0MmQzNDM0MjAzZDNlMjAzMTMzMzMzNzM5Mzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQk AlaAmkAwDQYJKoZIhvcNAQELBQADggEBADcVyeMex/t788VoC2iGGL+8ADhCPBPY TzvxgnXy/s75CWLv/pIkC0wMc/kIwpLwbCOdKPXwgNJNxyPNAQhWhYej2s+fFt2x ZiOwlERUgs0zwLT8s8m1YqhFBXCIjudI8rAhz/heofeEf7jAxQH3sV4T9xtRtGkc 0FrGoabwMp/rMtHMng3+09GMHyVBERsd2cN6PUMQPCPtWF4twa0Gw6H49abOXQ5T +3ok/1x0QGv4GTk5pKVwApCbybJ8NxqSvgqcZgXYQSPO5KGlBnYZX7tEU3bKmNni R1zHw8bRkI7/Ce97xhVwrkJ7vfWTJ0VaKK4551oHfF+xhP28OobspSQ= -----END CERTIFICATE-----Generated at Mon Sep 1 02:11:59 2025 by rpki-client