$ rpki-client -vvf repo-rpki.idnic.net/repo/c8f6beb8-e4e8-4e39-8275-1c6d77c3eef8/0/323430333a393530303a3a2f33322d3336203d3e2039363537.roa File: 323430333a393530303a3a2f33322d3336203d3e2039363537.roa (raw, json) Hash identifier: m9TQ4kbiWJ7wAU6DJc4l1m4yIYMItzDNgLT+tillKjs= Subject key identifier: 42:23:85:E2:25:49:01:C9:72:26:F3:52:5A:4A:4A:26:CC:2A:F5:A8 Certificate issuer: /CN=A79FD307C37E8C559F65A58EC9CE95BE266F8A6D Certificate serial: 346209BD2E00D3E5F5D8CD2AF62F242264248C07 Authority key identifier: A7:9F:D3:07:C3:7E:8C:55:9F:65:A5:8E:C9:CE:95:BE:26:6F:8A:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A79FD307C37E8C559F65A58EC9CE95BE266F8A6D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c8f6beb8-e4e8-4e39-8275-1c6d77c3eef8/0/323430333a393530303a3a2f33322d3336203d3e2039363537.roa Signing time: Mon 02 Jun 2025 02:02:43 +0000 ROA not before: Mon 02 Jun 2025 01:57:43 +0000 ROA not after: Mon 01 Jun 2026 02:02:43 +0000 asID: 9657 IP address blocks: 2403:9500::/32 maxlen: 36 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c8f6beb8-e4e8-4e39-8275-1c6d77c3eef8/0/A79FD307C37E8C559F65A58EC9CE95BE266F8A6D.crl rsync://repo-rpki.idnic.net/repo/c8f6beb8-e4e8-4e39-8275-1c6d77c3eef8/0/A79FD307C37E8C559F65A58EC9CE95BE266F8A6D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A79FD307C37E8C559F65A58EC9CE95BE266F8A6D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 18:26:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:62:09:bd:2e:00:d3:e5:f5:d8:cd:2a:f6:2f:24:22:64:24:8c:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A79FD307C37E8C559F65A58EC9CE95BE266F8A6D Validity Not Before: Jun 2 01:57:43 2025 GMT Not After : Jun 1 02:02:43 2026 GMT Subject: CN=422385E2254901C97226F3525A4A4A26CC2AF5A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:fc:0d:46:58:3a:64:f0:74:96:05:61:0d:b4: c1:2e:cd:e2:7d:c6:93:9d:ce:58:b3:2f:b6:3c:8b: 86:20:3a:df:f5:df:97:87:49:2f:68:c7:73:ed:1e: 89:86:b4:c1:53:21:aa:2a:86:35:df:e6:b5:59:90: f6:fb:75:0b:25:e2:d8:5b:31:be:4e:85:53:bc:26: 1a:94:09:c9:7b:f1:d7:d0:93:ee:d2:98:3b:6c:e9: 46:e0:fd:c7:be:69:1c:b8:18:0c:f4:04:d9:42:d9: 4d:f3:5a:c4:3a:8a:c1:b0:ad:fa:06:2e:c0:9e:67: 97:52:ef:08:72:4f:da:81:94:71:ec:57:d0:44:2e: 8b:95:bf:67:ae:67:75:9f:53:3a:b8:c4:6f:85:00: f9:a2:b2:92:2e:70:6a:39:7a:f0:f4:fc:1a:e5:2f: d1:42:7d:71:e2:28:93:35:60:a2:e5:c7:03:86:54: 37:ac:3e:60:46:d6:fa:43:32:ce:ac:b0:68:3e:20: cb:8a:5a:30:c7:0b:f5:01:b5:5d:96:2a:d0:28:ab: 14:d6:56:69:3f:5e:ac:4c:d8:c9:8e:91:14:95:03: c4:0d:4e:9b:07:f5:2a:ce:fe:cf:ab:01:cd:1d:ce: ff:5b:6c:22:e4:94:a1:b7:29:e6:c2:0f:9c:05:0c: f5:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:23:85:E2:25:49:01:C9:72:26:F3:52:5A:4A:4A:26:CC:2A:F5:A8 X509v3 Authority Key Identifier: keyid:A7:9F:D3:07:C3:7E:8C:55:9F:65:A5:8E:C9:CE:95:BE:26:6F:8A:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c8f6beb8-e4e8-4e39-8275-1c6d77c3eef8/0/A79FD307C37E8C559F65A58EC9CE95BE266F8A6D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A79FD307C37E8C559F65A58EC9CE95BE266F8A6D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c8f6beb8-e4e8-4e39-8275-1c6d77c3eef8/0/323430333a393530303a3a2f33322d3336203d3e2039363537.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:9500::/32 Signature Algorithm: sha256WithRSAEncryption 92:fd:dd:32:de:c3:78:87:1a:7c:47:62:b5:b2:a8:73:af:55: de:15:35:83:8b:89:9c:9c:86:01:c7:2f:a9:3f:62:f8:6e:7b: a8:04:b4:61:a6:b4:54:28:0b:ad:a5:54:d6:fb:24:1f:06:61: 0f:24:d2:60:d0:39:97:ee:31:57:1f:bc:5c:2a:3c:78:a0:ca: d7:a8:00:9b:ee:58:e0:e7:7e:63:95:82:35:da:c1:6d:34:92: 28:97:64:9b:89:f6:f3:3f:5f:4a:40:d2:70:d1:33:b7:b4:a9: 71:97:71:f5:7d:38:7f:0e:25:d2:22:e9:ec:81:e0:c0:41:70: 61:1f:ad:23:0f:0f:b3:b0:57:59:57:35:47:74:66:85:58:e1: e4:cf:f7:0f:1f:cd:2c:08:53:1e:03:50:20:80:ce:46:fc:1c: 5c:42:1d:df:93:5d:e8:48:af:dd:d4:8d:a6:82:91:40:bb:2d: 83:5a:6d:6b:6f:07:26:29:2f:1d:c9:5d:18:ba:7a:53:76:d0: 92:96:87:d7:2c:c4:2e:ad:54:38:ea:0c:53:72:e2:3a:45:e3: 8d:20:ae:a7:d4:7e:9c:8a:e8:1a:a7:63:28:81:55:bf:8b:1f: 6d:c4:7c:b6:38:1c:2e:87:99:af:a0:a6:b8:60:bc:7c:b6:3a: a3:50:69:17 -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUNGIJvS4A0+X12M0q9i8kImQkjAcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTc5RkQzMDdDMzdFOEM1NTlGNjVBNThFQzlDRTk1QkUy NjZGOEE2RDAeFw0yNTA2MDIwMTU3NDNaFw0yNjA2MDEwMjAyNDNaMDMxMTAvBgNV BAMTKDQyMjM4NUUyMjU0OTAxQzk3MjI2RjM1MjVBNEE0QTI2Q0MyQUY1QTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDD/A1GWDpk8HSWBWENtMEuzeJ9 xpOdzlizL7Y8i4YgOt/135eHSS9ox3PtHomGtMFTIaoqhjXf5rVZkPb7dQsl4thb Mb5OhVO8JhqUCcl78dfQk+7SmDts6Ubg/ce+aRy4GAz0BNlC2U3zWsQ6isGwrfoG LsCeZ5dS7whyT9qBlHHsV9BELouVv2euZ3WfUzq4xG+FAPmispIucGo5evD0/Brl L9FCfXHiKJM1YKLlxwOGVDesPmBG1vpDMs6ssGg+IMuKWjDHC/UBtV2WKtAoqxTW Vmk/XqxM2MmOkRSVA8QNTpsH9SrO/s+rAc0dzv9bbCLklKG3KebCD5wFDPUjAgMB AAGjggIuMIICKjAdBgNVHQ4EFgQUQiOF4iVJAclyJvNSWkpKJswq9agwHwYDVR0j BBgwFoAUp5/TB8N+jFWfZaWOyc6VviZvim0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j OGY2YmViOC1lNGU4LTRlMzktODI3NS0xYzZkNzdjM2VlZjgvMC9BNzlGRDMwN0Mz N0U4QzU1OUY2NUE1OEVDOUNFOTVCRTI2NkY4QTZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTc5RkQzMDdDMzdFOEM1NTlGNjVBNThFQzlDRTk1QkUyNjZG OEE2RC5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYzhmNmJlYjgtZTRlOC00ZTM5LTgy NzUtMWM2ZDc3YzNlZWY4LzAvMzIzNDMwMzMzYTM5MzUzMDMwM2EzYTJmMzMzMjJk MzMzNjIwM2QzZTIwMzkzNjM1Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkA5UAMA0GCSqGSIb3DQEB CwUAA4IBAQCS/d0y3sN4hxp8R2K1sqhzr1XeFTWDi4mcnIYBxy+pP2L4bnuoBLRh prRUKAutpVTW+yQfBmEPJNJg0DmX7jFXH7xcKjx4oMrXqACb7ljg535jlYI12sFt NJIol2SbifbzP19KQNJw0TO3tKlxl3H1fTh/DiXSIunsgeDAQXBhH60jDw+zsFdZ VzVHdGaFWOHkz/cPH80sCFMeA1AggM5G/BxcQh3fk13oSK/d1I2mgpFAuy2DWm1r bwcmKS8dyV0YunpTdtCSlofXLMQurVQ46gxTcuI6ReONIK6n1H6ciugap2MogVW/ ix9txHy2OBwuh5mvoKa4YLx8tjqjUGkX -----END CERTIFICATE-----Generated at Sat Jun 7 18:36:25 2025 by rpki-client