$ rpki-client -vvf repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/323430313a313063303a343030303a3a2f33342d3334203d3e20313331373137.roa File: 323430313a313063303a343030303a3a2f33342d3334203d3e20313331373137.roa (raw, json) Hash identifier: sH9AL8idt6oa1DBw1y1K2NRJOkrnep4hXxdB09oly/A= Subject key identifier: 17:A7:57:3B:44:22:54:DF:7E:DA:BA:AE:A5:B7:EF:93:B0:63:92:63 Certificate issuer: /CN=882209E37356E0512FBE4E81B00E4F2481865087 Certificate serial: 16BA1EFD0799FC2DC11035F087A00B98D6528025 Authority key identifier: 88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/323430313a313063303a343030303a3a2f33342d3334203d3e20313331373137.roa Signing time: Mon 02 Jun 2025 01:02:52 +0000 ROA not before: Mon 02 Jun 2025 00:57:52 +0000 ROA not after: Mon 01 Jun 2026 01:02:52 +0000 asID: 131717 IP address blocks: 2401:10c0:4000::/34 maxlen: 34 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.crl rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 18:29:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:ba:1e:fd:07:99:fc:2d:c1:10:35:f0:87:a0:0b:98:d6:52:80:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=882209E37356E0512FBE4E81B00E4F2481865087 Validity Not Before: Jun 2 00:57:52 2025 GMT Not After : Jun 1 01:02:52 2026 GMT Subject: CN=17A7573B442254DF7EDABAAEA5B7EF93B0639263 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:a1:db:76:68:5e:9a:02:18:b7:e5:14:60:23: cb:5a:80:c3:03:a6:e3:26:13:51:57:ef:6a:a1:59: 40:93:44:fa:08:ab:7a:d1:59:22:8e:c7:68:f2:cd: dc:6f:25:2f:81:4f:41:5b:2f:73:49:39:ba:06:c4: 4f:c1:b3:f7:3a:ae:55:ed:54:25:63:62:b3:28:1a: 3d:48:5e:8a:8b:45:74:d2:05:53:61:38:9a:a5:b0: c4:f8:cc:35:35:4c:fe:36:c1:0e:c4:97:60:c6:2c: 09:a7:f4:28:12:5c:d1:6e:df:2e:9e:5a:2c:65:5d: 6b:67:ad:18:22:9b:2d:7c:32:cd:b5:9d:56:e3:b4: 8c:6c:3a:95:e0:8a:09:ce:78:13:1a:91:17:95:ff: e9:8e:86:ed:98:f4:ca:29:75:42:6f:9f:93:98:a3: 97:60:22:43:6a:8f:b3:d6:ec:f8:ea:d9:05:3e:cd: fd:ac:f3:a3:87:ad:84:25:d9:b9:99:72:14:22:61: 37:3e:a4:c6:1f:d2:43:60:c2:38:89:f2:88:38:54: ab:3d:f7:31:60:8c:54:ef:bb:99:72:b5:6d:a2:8a: be:4a:59:f4:32:30:d7:9b:54:48:ed:ff:35:c3:69: 0a:a1:bf:5e:39:08:b3:d1:95:5e:9b:92:cb:37:9a: 25:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:A7:57:3B:44:22:54:DF:7E:DA:BA:AE:A5:B7:EF:93:B0:63:92:63 X509v3 Authority Key Identifier: keyid:88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/323430313a313063303a343030303a3a2f33342d3334203d3e20313331373137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:10c0:4000::/34 Signature Algorithm: sha256WithRSAEncryption 2f:e7:a9:a7:3e:b6:bf:a8:a3:09:5d:56:0c:a3:00:35:b2:78: 4b:ea:d6:33:5b:a2:4a:c3:f6:a6:c3:4b:30:d3:88:76:2b:ef: 41:c0:65:10:15:c0:1d:9d:88:d2:68:f4:97:2c:94:33:f9:91: 39:ae:ba:d3:44:60:09:0b:d6:27:8a:91:bd:f2:7d:e8:9e:5c: ce:1b:68:fa:9a:98:2d:f1:67:20:c1:d0:1f:d2:90:5b:35:48: 07:13:c1:df:78:90:82:f6:cc:0b:3e:e3:8c:8e:b6:e3:ec:47: 69:8e:41:9d:7e:0a:76:de:f2:98:8f:a0:fc:ac:ec:b1:87:eb: 18:2e:9f:34:67:91:0a:f9:83:94:84:93:09:46:d5:7c:8c:66: 0a:37:88:ef:f0:f4:7a:45:8e:df:d9:58:a0:0a:b6:ca:a7:a1: be:cb:e1:60:03:2e:71:92:87:83:c6:5d:6a:5e:d5:d7:29:e4: 25:dd:30:50:59:2f:87:cd:7e:6f:17:47:43:e4:e1:de:00:22: 54:8b:0c:a2:21:b2:96:77:3c:5f:ad:3b:b5:5d:e4:db:0b:1b: 68:4f:6c:a8:dd:67:f4:79:60:fd:3a:89:65:62:50:24:a6:b2: b5:27:57:b8:6a:d3:86:93:5f:4e:89:dd:ba:9c:5c:f7:31:49: df:d5:a1:d0 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUFroe/QeZ/C3BEDXwh6ALmNZSgCUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODgyMjA5RTM3MzU2RTA1MTJGQkU0RTgxQjAwRTRGMjQ4 MTg2NTA4NzAeFw0yNTA2MDIwMDU3NTJaFw0yNjA2MDEwMTAyNTJaMDMxMTAvBgNV BAMTKDE3QTc1NzNCNDQyMjU0REY3RURBQkFBRUE1QjdFRjkzQjA2MzkyNjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0odt2aF6aAhi35RRgI8tagMMD puMmE1FX72qhWUCTRPoIq3rRWSKOx2jyzdxvJS+BT0FbL3NJOboGxE/Bs/c6rlXt VCVjYrMoGj1IXoqLRXTSBVNhOJqlsMT4zDU1TP42wQ7El2DGLAmn9CgSXNFu3y6e WixlXWtnrRgimy18Ms21nVbjtIxsOpXgignOeBMakReV/+mOhu2Y9MopdUJvn5OY o5dgIkNqj7PW7Pjq2QU+zf2s86OHrYQl2bmZchQiYTc+pMYf0kNgwjiJ8og4VKs9 9zFgjFTvu5lytW2iir5KWfQyMNebVEjt/zXDaQqhv145CLPRlV6bkss3miV5AgMB AAGjggI+MIICOjAdBgNVHQ4EFgQUF6dXO0QiVN9+2rqupbfvk7BjkmMwHwYDVR0j BBgwFoAUiCIJ43NW4FEvvk6BsA5PJIGGUIcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MDc0NzFhMy1lZTUzLTQ5OWMtOWYyZC1jZjE2YjFlNGEzNTMvMC84ODIyMDlFMzcz NTZFMDUxMkZCRTRFODFCMDBFNEYyNDgxODY1MDg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODgyMjA5RTM3MzU2RTA1MTJGQkU0RTgxQjAwRTRGMjQ4MTg2 NTA4Ny5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QwNzQ3MWEzLWVlNTMtNDk5Yy05 ZjJkLWNmMTZiMWU0YTM1My8wLzMyMzQzMDMxM2EzMTMwNjMzMDNhMzQzMDMwMzAz YTNhMmYzMzM0MmQzMzM0MjAzZDNlMjAzMTMzMzEzNzMxMzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgYk ARDAQDANBgkqhkiG9w0BAQsFAAOCAQEAL+eppz62v6ijCV1WDKMANbJ4S+rWM1ui SsP2psNLMNOIdivvQcBlEBXAHZ2I0mj0lyyUM/mROa6600RgCQvWJ4qRvfJ96J5c zhto+pqYLfFnIMHQH9KQWzVIBxPB33iQgvbMCz7jjI624+xHaY5BnX4Kdt7ymI+g /KzssYfrGC6fNGeRCvmDlISTCUbVfIxmCjeI7/D0ekWO39lYoAq2yqehvsvhYAMu cZKHg8Zdal7V1ynkJd0wUFkvh81+bxdHQ+Th3gAiVIsMoiGylnc8X607tV3k2wsb aE9sqN1n9Hlg/TqJZWJQJKaytSdXuGrThpNfTondupxc9zFJ39Wh0A== -----END CERTIFICATE-----Generated at Sat Jun 7 13:45:21 2025 by rpki-client