$ rpki-client -vvf repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a396231303a3a2f34342d3434203d3e20313333373938.roa File: 323430323a353638303a396231303a3a2f34342d3434203d3e20313333373938.roa (raw, json) Hash identifier: JFZDZEKqYEO0KO6CGMIp2Hf4EPuHRCNaO6gWEiVRQ5k= Subject key identifier: 63:A3:2F:BE:D2:13:A5:AF:83:90:78:AA:C5:B8:DF:7D:E1:17:D0:E7 Certificate issuer: /CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Certificate serial: 7021BE53E0CEFEE818A073488066DB853D63524A Authority key identifier: 34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a396231303a3a2f34342d3434203d3e20313333373938.roa Signing time: Fri 23 May 2025 04:02:50 +0000 ROA not before: Fri 23 May 2025 03:57:50 +0000 ROA not after: Fri 22 May 2026 04:02:50 +0000 asID: 133798 IP address blocks: 2402:5680:9b10::/44 maxlen: 44 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 02:27:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:21:be:53:e0:ce:fe:e8:18:a0:73:48:80:66:db:85:3d:63:52:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Validity Not Before: May 23 03:57:50 2025 GMT Not After : May 22 04:02:50 2026 GMT Subject: CN=63A32FBED213A5AF839078AAC5B8DF7DE117D0E7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:96:53:f8:62:25:27:3c:4e:f2:5a:0e:1e:42: a6:34:cb:47:4f:bf:c9:34:20:cc:bd:24:4c:12:ff: 00:a4:ea:81:a4:42:3e:d9:72:4c:59:ca:df:6c:f0: e4:76:1b:1c:38:97:67:a3:c3:6f:91:c5:55:16:a4: 4a:42:0a:b0:3a:10:c9:f5:97:a1:d7:6e:53:5a:62: 26:e9:ec:3f:15:d6:ae:a7:11:d1:10:06:65:57:c3: b9:dd:1f:56:c6:41:c8:f4:3d:c3:41:23:e4:a2:82: b6:0e:0d:d0:7b:a3:e0:6c:3e:6d:7e:7d:9a:f8:b9: 2a:39:22:a5:21:34:af:db:06:40:4c:24:bd:db:56: ec:d0:5f:99:c4:cc:94:78:a3:6b:47:61:c9:33:79: fc:d9:c6:26:e2:57:03:b9:54:79:bd:e3:dc:38:2c: 88:4a:a0:5d:cf:68:c3:7d:37:d6:61:4a:14:4b:7d: f6:d2:eb:30:3a:60:29:fd:1c:a0:cd:b4:55:d7:4b: c9:1f:9c:28:45:80:96:e8:04:2e:5a:e0:22:48:1d: 78:9f:4e:c2:7e:8e:b0:1a:7c:ae:03:f8:c5:65:2a: 6d:64:bc:8b:16:ac:a9:b3:c7:e8:17:8f:f3:6a:d2: 81:27:19:07:0b:c5:dc:c7:da:5f:82:d7:ea:c8:9f: 65:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:A3:2F:BE:D2:13:A5:AF:83:90:78:AA:C5:B8:DF:7D:E1:17:D0:E7 X509v3 Authority Key Identifier: keyid:34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a396231303a3a2f34342d3434203d3e20313333373938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:5680:9b10::/44 Signature Algorithm: sha256WithRSAEncryption 02:17:19:f3:23:d6:0f:c5:b0:ab:56:a1:51:60:32:b6:54:5d: e2:c8:de:a0:4d:a3:4d:41:1e:b4:9e:77:e4:fa:e6:5f:c4:b0: 18:94:8e:0f:ed:8c:7e:71:5d:ff:e5:35:d1:8f:9b:ce:62:d1: f8:27:4f:c0:ac:cd:e4:ef:04:f3:f8:45:7a:6d:e8:1e:07:2b: 36:27:9f:14:37:bf:b1:59:07:fc:f9:f0:73:16:03:2e:ca:4e: 52:c5:80:90:d6:92:f4:dd:ed:08:dd:86:0b:8a:80:93:27:1f: fa:d6:4e:7c:f3:4f:c3:7b:93:04:56:3e:36:77:3c:8a:27:47: 19:21:16:1c:76:3d:dc:51:62:04:32:17:ea:2d:87:94:d8:6c: bc:47:98:8f:e2:13:8a:fc:63:5f:99:d8:b0:b0:61:e4:a4:51: 75:23:12:f9:6e:6f:ab:2a:f1:5c:47:85:e5:49:5e:ab:ad:3c: 20:95:d8:7a:ef:30:95:2c:27:94:f8:ea:49:44:f3:ba:88:e9: a0:b2:f7:30:6a:5d:b5:3d:26:ed:c6:a9:cf:e5:48:63:03:6c: 9b:95:21:bf:14:d2:b2:d8:40:0e:58:db:fb:f6:8c:c8:8a:7e: cb:9e:fc:5f:cf:37:ed:5c:a4:91:b5:f5:48:47:75:2c:37:44: c3:9c:16:bc -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUcCG+U+DO/ugYoHNIgGbbhT1jUkowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4 NEMxNkIzOTAeFw0yNTA1MjMwMzU3NTBaFw0yNjA1MjIwNDAyNTBaMDMxMTAvBgNV BAMTKDYzQTMyRkJFRDIxM0E1QUY4MzkwNzhBQUM1QjhERjdERTExN0QwRTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYllP4YiUnPE7yWg4eQqY0y0dP v8k0IMy9JEwS/wCk6oGkQj7ZckxZyt9s8OR2Gxw4l2ejw2+RxVUWpEpCCrA6EMn1 l6HXblNaYibp7D8V1q6nEdEQBmVXw7ndH1bGQcj0PcNBI+SigrYODdB7o+BsPm1+ fZr4uSo5IqUhNK/bBkBMJL3bVuzQX5nEzJR4o2tHYckzefzZxibiVwO5VHm949w4 LIhKoF3PaMN9N9ZhShRLffbS6zA6YCn9HKDNtFXXS8kfnChFgJboBC5a4CJIHXif TsJ+jrAafK4D+MVlKm1kvIsWrKmzx+gXj/Nq0oEnGQcLxdzH2l+C1+rIn2VNAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUY6MvvtITpa+DkHiqxbjffeEX0OcwHwYDVR0j BBgwFoAUNHonWYXq5bybpsXLkpwG+oTBazkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MzAzZTZiYi03MzQ5LTQ3YWEtYTRjZC01MWQ4YTBlMjIyZjYvMC8zNDdBMjc1OTg1 RUFFNUJDOUJBNkM1Q0I5MjlDMDZGQTg0QzE2QjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4NEMx NkIzOS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MzMDNlNmJiLTczNDktNDdhYS1h NGNkLTUxZDhhMGUyMjJmNi8wLzMyMzQzMDMyM2EzNTM2MzgzMDNhMzk2MjMxMzAz YTNhMmYzNDM0MmQzNDM0MjAzZDNlMjAzMTMzMzMzNzM5Mzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQk AlaAmxAwDQYJKoZIhvcNAQELBQADggEBAAIXGfMj1g/FsKtWoVFgMrZUXeLI3qBN o01BHrSed+T65l/EsBiUjg/tjH5xXf/lNdGPm85i0fgnT8CszeTvBPP4RXpt6B4H KzYnnxQ3v7FZB/z58HMWAy7KTlLFgJDWkvTd7QjdhguKgJMnH/rWTnzzT8N7kwRW PjZ3PIonRxkhFhx2PdxRYgQyF+oth5TYbLxHmI/iE4r8Y1+Z2LCwYeSkUXUjEvlu b6sq8VxHheVJXqutPCCV2HrvMJUsJ5T46klE87qI6aCy9zBqXbU9Ju3Gqc/lSGMD bJuVIb8U0rLYQA5Y2/v2jMiKfsue/F/PN+1cpJG19UhHdSw3RMOcFrw= -----END CERTIFICATE-----Generated at Sun Jun 8 12:08:49 2025 by rpki-client