$ rpki-client -vvf repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/323430313a313063303a383030303a3a2f33342d3334203d3e20313331373137.roa File: 323430313a313063303a383030303a3a2f33342d3334203d3e20313331373137.roa (raw, json) Hash identifier: s/GWk0rnx1fQe+9N5/NiE2vZ64ixoUOqYZCvVVS5fa4= Subject key identifier: F8:F4:CA:63:76:76:32:26:0D:DF:33:AC:9B:7C:10:31:54:F4:99:65 Certificate issuer: /CN=882209E37356E0512FBE4E81B00E4F2481865087 Certificate serial: 54903C9F6B89528F5CC4C8231A8FDF8B8ADCD4C3 Authority key identifier: 88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/323430313a313063303a383030303a3a2f33342d3334203d3e20313331373137.roa Signing time: Mon 02 Jun 2025 01:02:53 +0000 ROA not before: Mon 02 Jun 2025 00:57:53 +0000 ROA not after: Mon 01 Jun 2026 01:02:53 +0000 asID: 131717 IP address blocks: 2401:10c0:8000::/34 maxlen: 34 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.crl rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 18:29:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:90:3c:9f:6b:89:52:8f:5c:c4:c8:23:1a:8f:df:8b:8a:dc:d4:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=882209E37356E0512FBE4E81B00E4F2481865087 Validity Not Before: Jun 2 00:57:53 2025 GMT Not After : Jun 1 01:02:53 2026 GMT Subject: CN=F8F4CA63767632260DDF33AC9B7C103154F49965 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:42:58:3e:7d:50:f3:ab:b8:0b:94:49:51:cb: 3f:8c:57:8f:c2:9c:a8:cf:ef:d3:b6:d5:2f:a9:20: 50:8e:56:73:42:47:1b:ac:da:cc:48:be:47:ab:d8: 5a:3b:0e:61:30:60:a7:5f:33:d7:3c:0c:d5:b8:ce: 57:80:75:a3:f3:e7:71:41:88:8b:dc:38:8e:1b:d1: 42:b4:03:d9:65:47:0b:e4:18:00:77:28:ff:da:31: 7f:75:b9:65:29:ea:8f:12:c6:67:04:48:38:9a:6f: c6:af:ab:a1:a7:6b:73:27:a0:27:7b:3c:a8:51:77: 73:23:7c:b8:87:6b:45:02:b0:f8:df:c7:b2:6d:d8: f5:1e:7e:d6:89:19:4a:c7:b9:fc:9b:54:54:2b:68: 6c:42:a4:b0:b6:ca:82:af:c0:ac:0c:4b:cf:39:d1: 19:6e:1c:db:e7:f5:f3:f1:81:66:c7:b2:f8:12:9b: 27:e1:1e:63:12:33:0e:0f:78:91:b0:20:36:11:f9: d2:a4:34:4e:6a:ca:03:5e:14:2e:75:0f:f1:5e:4b: 77:35:36:ce:de:d6:4a:e8:48:b8:9f:e6:c4:fb:fb: 33:88:4b:aa:8c:39:be:f7:03:b4:4d:cd:7c:64:78: 5e:32:6f:0e:04:3b:d5:6a:dc:84:a3:ad:0a:b6:84: 87:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:F4:CA:63:76:76:32:26:0D:DF:33:AC:9B:7C:10:31:54:F4:99:65 X509v3 Authority Key Identifier: keyid:88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/323430313a313063303a383030303a3a2f33342d3334203d3e20313331373137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:10c0:8000::/34 Signature Algorithm: sha256WithRSAEncryption b0:98:6c:8c:6a:d4:04:0c:4c:2f:f8:2a:3d:bb:e1:32:8c:71: 04:c7:4a:3e:fe:3a:7b:e8:f5:30:3e:0f:99:5b:dc:62:b4:f7: 12:76:93:69:a3:6f:77:d4:3b:8e:c7:0d:da:d4:61:b7:a0:b8: 01:17:fb:19:4a:33:14:fa:e6:f2:71:a4:56:20:71:73:ed:ea: d2:49:c3:6e:2e:69:22:13:0c:84:52:f0:72:21:94:c1:d5:f2: b0:a3:e2:71:ed:f6:96:e2:8e:eb:65:9b:2a:b2:c5:68:fd:55: 00:0c:33:08:4c:d3:a4:fc:b1:bf:1f:64:74:9b:70:db:40:ff: 1a:f7:15:33:53:e7:1a:6f:2a:41:42:25:74:30:dd:ac:78:8f: 03:08:f0:89:b6:43:c6:0f:80:71:b0:8c:59:18:d2:39:a4:51: 23:d3:06:3a:fa:71:53:30:31:17:8b:1d:45:d0:25:35:2a:7e: 76:d0:01:7d:ec:b0:a2:4c:77:c4:40:13:a4:f5:a3:46:3f:41: e6:8c:8c:f4:3a:1b:f3:db:bf:1b:2f:7a:39:ec:ee:cf:2a:d8: cc:51:09:a5:0d:d3:06:0a:30:67:b3:58:8c:2c:27:09:50:fe: 32:68:ad:c0:04:e2:d3:d4:f2:1d:b9:48:c8:ae:20:ca:9a:2c: d8:76:bb:d4 -----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgIUVJA8n2uJUo9cxMgjGo/fi4rc1MMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODgyMjA5RTM3MzU2RTA1MTJGQkU0RTgxQjAwRTRGMjQ4 MTg2NTA4NzAeFw0yNTA2MDIwMDU3NTNaFw0yNjA2MDEwMTAyNTNaMDMxMTAvBgNV BAMTKEY4RjRDQTYzNzY3NjMyMjYwRERGMzNBQzlCN0MxMDMxNTRGNDk5NjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOQlg+fVDzq7gLlElRyz+MV4/C nKjP79O21S+pIFCOVnNCRxus2sxIvker2Fo7DmEwYKdfM9c8DNW4zleAdaPz53FB iIvcOI4b0UK0A9llRwvkGAB3KP/aMX91uWUp6o8SxmcESDiab8avq6Gna3MnoCd7 PKhRd3MjfLiHa0UCsPjfx7Jt2PUeftaJGUrHufybVFQraGxCpLC2yoKvwKwMS885 0RluHNvn9fPxgWbHsvgSmyfhHmMSMw4PeJGwIDYR+dKkNE5qygNeFC51D/FeS3c1 Ns7e1kroSLif5sT7+zOIS6qMOb73A7RNzXxkeF4ybw4EO9Vq3ISjrQq2hIclAgMB AAGjggI+MIICOjAdBgNVHQ4EFgQU+PTKY3Z2MiYN3zOsm3wQMVT0mWUwHwYDVR0j BBgwFoAUiCIJ43NW4FEvvk6BsA5PJIGGUIcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MDc0NzFhMy1lZTUzLTQ5OWMtOWYyZC1jZjE2YjFlNGEzNTMvMC84ODIyMDlFMzcz NTZFMDUxMkZCRTRFODFCMDBFNEYyNDgxODY1MDg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODgyMjA5RTM3MzU2RTA1MTJGQkU0RTgxQjAwRTRGMjQ4MTg2 NTA4Ny5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QwNzQ3MWEzLWVlNTMtNDk5Yy05 ZjJkLWNmMTZiMWU0YTM1My8wLzMyMzQzMDMxM2EzMTMwNjMzMDNhMzgzMDMwMzAz YTNhMmYzMzM0MmQzMzM0MjAzZDNlMjAzMTMzMzEzNzMxMzcucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgYk ARDAgDANBgkqhkiG9w0BAQsFAAOCAQEAsJhsjGrUBAxML/gqPbvhMoxxBMdKPv46 e+j1MD4PmVvcYrT3EnaTaaNvd9Q7jscN2tRht6C4ARf7GUozFPrm8nGkViBxc+3q 0knDbi5pIhMMhFLwciGUwdXysKPice32luKO62WbKrLFaP1VAAwzCEzTpPyxvx9k dJtw20D/GvcVM1PnGm8qQUIldDDdrHiPAwjwibZDxg+AcbCMWRjSOaRRI9MGOvpx UzAxF4sdRdAlNSp+dtABfeywokx3xEATpPWjRj9B5oyM9Dob89u/Gy96OezuzyrY zFEJpQ3TBgowZ7NYjCwnCVD+MmitwATi09TyHblIyK4gypos2Ha71A== -----END CERTIFICATE-----Generated at Sat Jun 7 13:56:30 2025 by rpki-client