$ rpki-client -vvf repo-rpki.idnic.net/repo/c3d2f2f8-3512-43e5-be17-b11b58f96083/0/323430323a613630303a3a2f33322d3332203d3e203137393936.roa File: 323430323a613630303a3a2f33322d3332203d3e203137393936.roa (raw, json) Hash identifier: mhHbC7IIWFFORZdV/WAdZvBGn0b08EabDQByz7GAvr4= Subject key identifier: F5:F2:2A:D5:35:B7:49:73:11:22:67:78:D8:56:B5:B8:04:CE:A7:54 Certificate issuer: /CN=E530A7B43C0C79FD8707007080E2F7AEA478FD1C Certificate serial: 7C8501D3D358C23008E117CCBDB7548A34D8B2CF Authority key identifier: E5:30:A7:B4:3C:0C:79:FD:87:07:00:70:80:E2:F7:AE:A4:78:FD:1C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E530A7B43C0C79FD8707007080E2F7AEA478FD1C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c3d2f2f8-3512-43e5-be17-b11b58f96083/0/323430323a613630303a3a2f33322d3332203d3e203137393936.roa Signing time: Mon 02 Jun 2025 02:04:08 +0000 ROA not before: Mon 02 Jun 2025 01:59:08 +0000 ROA not after: Mon 01 Jun 2026 02:04:08 +0000 asID: 17996 IP address blocks: 2402:a600::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c3d2f2f8-3512-43e5-be17-b11b58f96083/0/E530A7B43C0C79FD8707007080E2F7AEA478FD1C.crl rsync://repo-rpki.idnic.net/repo/c3d2f2f8-3512-43e5-be17-b11b58f96083/0/E530A7B43C0C79FD8707007080E2F7AEA478FD1C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E530A7B43C0C79FD8707007080E2F7AEA478FD1C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 04:37:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:85:01:d3:d3:58:c2:30:08:e1:17:cc:bd:b7:54:8a:34:d8:b2:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E530A7B43C0C79FD8707007080E2F7AEA478FD1C Validity Not Before: Jun 2 01:59:08 2025 GMT Not After : Jun 1 02:04:08 2026 GMT Subject: CN=F5F22AD535B7497311226778D856B5B804CEA754 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:fc:59:79:e4:e8:ab:0b:1f:64:2b:29:52:9c: ad:30:5b:d8:fe:59:5f:d1:dd:73:d3:9d:ab:e3:28: 7d:10:0f:bf:73:86:84:a5:7e:a8:85:63:f3:60:c5: 9a:6d:b2:03:bd:f8:18:c9:6f:64:cc:16:73:a2:5b: ac:15:0b:e7:54:60:de:b8:75:2f:74:a1:fe:26:e6: f2:d6:9b:8a:3b:06:51:57:f0:d8:66:df:67:fc:34: 4c:3c:12:13:77:68:8a:f3:b8:cb:ad:36:66:3d:55: da:a3:78:41:46:06:eb:7e:9a:82:d7:a9:b7:61:53: 21:02:42:cf:0b:0b:bb:98:1a:cc:a4:d3:8b:af:15: 04:7e:9d:29:8e:2e:36:44:ee:fe:e1:76:6e:ee:82: 46:34:e4:35:4d:67:74:5d:94:65:d9:f8:a1:6b:7a: 09:f8:5e:3e:cc:db:85:74:d8:a9:45:ae:19:74:04: 67:79:76:7a:cb:5d:16:0e:81:c6:f2:29:26:8f:fc: fa:b6:52:ac:98:a0:18:39:25:aa:2f:48:12:4e:76: 02:25:7f:33:63:23:58:65:1a:2f:fe:f2:e7:4d:f9: e9:c4:1e:5c:13:ff:50:2e:19:61:c8:e7:51:67:11: 2c:df:0d:ac:68:46:b6:80:c4:9a:23:5a:04:5f:75: 05:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:F2:2A:D5:35:B7:49:73:11:22:67:78:D8:56:B5:B8:04:CE:A7:54 X509v3 Authority Key Identifier: keyid:E5:30:A7:B4:3C:0C:79:FD:87:07:00:70:80:E2:F7:AE:A4:78:FD:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c3d2f2f8-3512-43e5-be17-b11b58f96083/0/E530A7B43C0C79FD8707007080E2F7AEA478FD1C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E530A7B43C0C79FD8707007080E2F7AEA478FD1C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c3d2f2f8-3512-43e5-be17-b11b58f96083/0/323430323a613630303a3a2f33322d3332203d3e203137393936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:a600::/32 Signature Algorithm: sha256WithRSAEncryption 9f:fb:47:ef:8e:21:1b:52:54:9d:92:d9:80:91:04:6a:0b:9c: db:b0:f2:bc:07:9c:83:ae:57:03:2b:20:5f:f0:3d:6d:67:68: cb:08:f4:db:33:a8:27:06:95:a1:5e:1d:13:e9:ba:6d:b3:25: e7:c7:78:37:25:00:7c:dd:d6:01:ce:78:e0:01:be:21:37:6c: 01:9e:6b:5d:de:cc:44:7c:5c:7b:1c:67:99:f2:0c:b6:c3:c0: cd:b2:6c:83:e4:81:f8:61:3d:d0:f4:2f:5f:c2:93:9b:0e:3b: 01:76:be:b5:c0:03:8a:f0:b6:ff:e7:d7:a6:a1:79:83:b5:b1: 1d:60:e9:83:ec:fc:5e:c0:e6:7e:bd:0d:e4:43:34:bd:c0:db: 25:2a:08:ff:c9:30:fd:52:82:cf:f8:50:13:de:20:5c:52:74: 75:aa:f8:a1:48:e5:09:11:60:c3:d1:23:48:e1:04:66:6c:bd: d7:7f:a5:84:ad:d1:90:f2:ca:85:a6:d0:29:56:90:33:6e:82: 73:13:86:5e:42:66:55:8b:f8:bb:9d:da:d8:50:8f:76:c9:8b: fb:17:44:1e:25:c4:fa:c5:69:88:af:cb:75:6d:ae:2f:69:c6: 0b:c7:e6:63:e3:3d:fe:7b:ff:ee:61:8c:ce:24:10:9f:70:a4: 4b:f1:0c:2b -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUfIUB09NYwjAI4RfMvbdUijTYss8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTUzMEE3QjQzQzBDNzlGRDg3MDcwMDcwODBFMkY3QUVB NDc4RkQxQzAeFw0yNTA2MDIwMTU5MDhaFw0yNjA2MDEwMjA0MDhaMDMxMTAvBgNV BAMTKEY1RjIyQUQ1MzVCNzQ5NzMxMTIyNjc3OEQ4NTZCNUI4MDRDRUE3NTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDT/Fl55OirCx9kKylSnK0wW9j+ WV/R3XPTnavjKH0QD79zhoSlfqiFY/NgxZptsgO9+BjJb2TMFnOiW6wVC+dUYN64 dS90of4m5vLWm4o7BlFX8Nhm32f8NEw8EhN3aIrzuMutNmY9VdqjeEFGBut+moLX qbdhUyECQs8LC7uYGsyk04uvFQR+nSmOLjZE7v7hdm7ugkY05DVNZ3RdlGXZ+KFr egn4Xj7M24V02KlFrhl0BGd5dnrLXRYOgcbyKSaP/Pq2UqyYoBg5JaovSBJOdgIl fzNjI1hlGi/+8udN+enEHlwT/1AuGWHI51FnESzfDaxoRraAxJojWgRfdQWVAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQU9fIq1TW3SXMRImd42Fa1uATOp1QwHwYDVR0j BBgwFoAU5TCntDwMef2HBwBwgOL3rqR4/RwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j M2QyZjJmOC0zNTEyLTQzZTUtYmUxNy1iMTFiNThmOTYwODMvMC9FNTMwQTdCNDND MEM3OUZEODcwNzAwNzA4MEUyRjdBRUE0NzhGRDFDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTUzMEE3QjQzQzBDNzlGRDg3MDcwMDcwODBFMkY3QUVBNDc4 RkQxQy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MzZDJmMmY4LTM1MTItNDNlNS1i ZTE3LWIxMWI1OGY5NjA4My8wLzMyMzQzMDMyM2E2MTM2MzAzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzczOTM5MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAqYAMA0GCSqGSIb3 DQEBCwUAA4IBAQCf+0fvjiEbUlSdktmAkQRqC5zbsPK8B5yDrlcDKyBf8D1tZ2jL CPTbM6gnBpWhXh0T6bptsyXnx3g3JQB83dYBznjgAb4hN2wBnmtd3sxEfFx7HGeZ 8gy2w8DNsmyD5IH4YT3Q9C9fwpObDjsBdr61wAOK8Lb/59emoXmDtbEdYOmD7Pxe wOZ+vQ3kQzS9wNslKgj/yTD9UoLP+FAT3iBcUnR1qvihSOUJEWDD0SNI4QRmbL3X f6WErdGQ8sqFptApVpAzboJzE4ZeQmZVi/i7ndrYUI92yYv7F0QeJcT6xWmIr8t1 ba4vacYLx+Zj4z3+e//uYYzOJBCfcKRL8Qwr -----END CERTIFICATE-----Generated at Sat Jun 7 13:56:54 2025 by rpki-client