$ rpki-client -vvf repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/323430313a313063303a3a2f33342d3334203d3e20313331373137.roa File: 323430313a313063303a3a2f33342d3334203d3e20313331373137.roa (raw, json) Hash identifier: njg/qVMnSFnXNm23LFJOAC9Brxk9FM9096rC9yQ0CXk= Subject key identifier: 1C:81:D3:70:F3:1B:A5:18:41:7D:80:C4:97:AE:DE:92:CA:58:30:CD Certificate issuer: /CN=882209E37356E0512FBE4E81B00E4F2481865087 Certificate serial: 0AD51BC3540CC97F0D5C4795D556283C29B12C28 Authority key identifier: 88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/323430313a313063303a3a2f33342d3334203d3e20313331373137.roa Signing time: Mon 02 Jun 2025 01:02:51 +0000 ROA not before: Mon 02 Jun 2025 00:57:51 +0000 ROA not after: Mon 01 Jun 2026 01:02:51 +0000 asID: 131717 IP address blocks: 2401:10c0::/34 maxlen: 34 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.crl rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 18:29:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:d5:1b:c3:54:0c:c9:7f:0d:5c:47:95:d5:56:28:3c:29:b1:2c:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=882209E37356E0512FBE4E81B00E4F2481865087 Validity Not Before: Jun 2 00:57:51 2025 GMT Not After : Jun 1 01:02:51 2026 GMT Subject: CN=1C81D370F31BA518417D80C497AEDE92CA5830CD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:2a:cd:48:10:cc:6f:ea:a7:75:b2:18:8f:22: dc:c2:87:b4:7f:3d:0c:a2:ec:d2:09:f7:54:c6:33: 1f:4c:f7:90:80:f3:fb:17:2e:ac:d8:13:4c:e6:f0: de:0f:b3:02:ab:04:f3:90:2b:40:26:2e:d3:53:40: 09:f5:62:36:81:a9:cc:7d:cc:56:27:0a:6a:3d:f5: 6f:2c:f9:19:d8:f8:5d:52:f7:ab:07:3c:b8:7c:31: fc:8c:70:d1:84:8f:70:25:92:83:70:3d:ce:ad:8d: 04:9f:b3:59:16:73:66:84:20:a3:a9:ff:cc:53:4d: 2d:2a:ac:61:f3:f1:11:54:0e:15:02:7c:a2:b6:48: 4e:b2:84:ca:75:10:70:56:fc:8b:67:bf:46:0c:5b: 47:c4:46:e4:e5:a6:91:13:96:0f:1b:4f:6d:d3:77: ed:25:03:64:4d:87:90:db:3c:63:be:4f:96:9f:69: f3:e8:c1:f1:ae:38:69:a3:b1:68:24:21:ca:2a:6f: ff:c6:96:10:67:05:8d:e1:a7:53:0c:6d:c3:f9:47: 33:a9:5a:57:73:32:63:5c:af:cc:1c:29:63:61:01: 91:01:8d:fe:89:22:d2:96:80:ba:06:51:88:5a:e6: 51:7b:99:cd:33:a6:17:14:0d:c1:f6:71:6d:22:63: 04:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:81:D3:70:F3:1B:A5:18:41:7D:80:C4:97:AE:DE:92:CA:58:30:CD X509v3 Authority Key Identifier: keyid:88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/323430313a313063303a3a2f33342d3334203d3e20313331373137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:10c0::/34 Signature Algorithm: sha256WithRSAEncryption 1a:ac:85:5a:0f:2a:4d:53:0a:b3:d6:c5:df:8f:d6:95:4e:b2: b1:32:5f:b2:74:48:b4:75:14:d4:4f:05:98:d7:f8:75:6b:bd: 3c:87:34:fa:46:49:b5:fe:f6:8d:78:ff:b3:73:e8:ae:b9:3e: ec:76:f4:17:47:50:25:67:88:7b:92:d3:9a:2a:a2:05:39:7e: 9b:76:75:4c:f3:82:7e:ce:62:fd:78:72:86:7d:2a:88:34:7a: ce:28:cf:f8:ea:47:9e:5a:a6:d4:78:e3:7c:17:0e:5d:11:e3: e7:67:a2:24:d8:83:82:c6:0d:45:56:bd:05:80:b1:9c:16:ce: f6:de:51:41:15:1f:b1:76:35:71:36:e8:07:03:2e:bb:dc:4a: da:9c:4a:6b:98:c0:b0:a1:48:c9:7e:d5:73:24:cf:e7:7e:ad: d6:5c:3c:a7:90:bc:07:24:8b:73:72:6a:f8:ba:4a:99:ed:cd: 7f:24:31:17:84:26:84:81:89:74:08:e8:ae:47:3c:74:e2:b5: c9:35:b6:dc:fb:fc:a6:1a:28:60:07:fb:3f:1c:ec:e7:45:0a: f1:8a:68:97:74:4b:1d:7e:ef:5c:68:23:d6:77:a5:01:01:23: a3:23:48:d3:e6:14:ed:6d:36:af:83:c5:32:21:a9:06:a2:e4: 9d:74:ab:7c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUCtUbw1QMyX8NXEeV1VYoPCmxLCgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODgyMjA5RTM3MzU2RTA1MTJGQkU0RTgxQjAwRTRGMjQ4 MTg2NTA4NzAeFw0yNTA2MDIwMDU3NTFaFw0yNjA2MDEwMTAyNTFaMDMxMTAvBgNV BAMTKDFDODFEMzcwRjMxQkE1MTg0MTdEODBDNDk3QUVERTkyQ0E1ODMwQ0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6Ks1IEMxv6qd1shiPItzCh7R/ PQyi7NIJ91TGMx9M95CA8/sXLqzYE0zm8N4PswKrBPOQK0AmLtNTQAn1YjaBqcx9 zFYnCmo99W8s+RnY+F1S96sHPLh8MfyMcNGEj3AlkoNwPc6tjQSfs1kWc2aEIKOp /8xTTS0qrGHz8RFUDhUCfKK2SE6yhMp1EHBW/Itnv0YMW0fERuTlppETlg8bT23T d+0lA2RNh5DbPGO+T5afafPowfGuOGmjsWgkIcoqb//GlhBnBY3hp1MMbcP5RzOp WldzMmNcr8wcKWNhAZEBjf6JItKWgLoGUYha5lF7mc0zphcUDcH2cW0iYwQTAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUHIHTcPMbpRhBfYDEl67ekspYMM0wHwYDVR0j BBgwFoAUiCIJ43NW4FEvvk6BsA5PJIGGUIcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MDc0NzFhMy1lZTUzLTQ5OWMtOWYyZC1jZjE2YjFlNGEzNTMvMC84ODIyMDlFMzcz NTZFMDUxMkZCRTRFODFCMDBFNEYyNDgxODY1MDg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODgyMjA5RTM3MzU2RTA1MTJGQkU0RTgxQjAwRTRGMjQ4MTg2 NTA4Ny5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QwNzQ3MWEzLWVlNTMtNDk5Yy05 ZjJkLWNmMTZiMWU0YTM1My8wLzMyMzQzMDMxM2EzMTMwNjMzMDNhM2EyZjMzMzQy ZDMzMzQyMDNkM2UyMDMxMzMzMTM3MzEzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBiQBEMAAMA0GCSqG SIb3DQEBCwUAA4IBAQAarIVaDypNUwqz1sXfj9aVTrKxMl+ydEi0dRTUTwWY1/h1 a708hzT6Rkm1/vaNeP+zc+iuuT7sdvQXR1AlZ4h7ktOaKqIFOX6bdnVM84J+zmL9 eHKGfSqINHrOKM/46keeWqbUeON8Fw5dEePnZ6Ik2IOCxg1FVr0FgLGcFs723lFB FR+xdjVxNugHAy673EranEprmMCwoUjJftVzJM/nfq3WXDynkLwHJItzcmr4ukqZ 7c1/JDEXhCaEgYl0COiuRzx04rXJNbbc+/ymGihgB/s/HOznRQrximiXdEsdfu9c aCPWd6UBASOjI0jT5hTtbTavg8UyIakGouSddKt8 -----END CERTIFICATE-----Generated at Sat Jun 7 18:39:16 2025 by rpki-client