$ rpki-client -vvf repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/323430323a316134303a3a2f33322d3332203d3e20313336383639.roa File: 323430323a316134303a3a2f33322d3332203d3e20313336383639.roa (raw, json) Hash identifier: HI0hJJXTQDhzD7pTczCRmyIdw4yYJFsaIwjzSTbxsrY= Subject key identifier: BE:42:2E:43:E9:24:D1:76:8A:73:23:4B:C5:3A:DB:30:2F:B2:9D:28 Certificate issuer: /CN=D2EF21DBD545255BED30EEC34623F204A3E12D23 Certificate serial: 77F4D612803E1407862738366145EBB6CBEDBFC8 Authority key identifier: D2:EF:21:DB:D5:45:25:5B:ED:30:EE:C3:46:23:F2:04:A3:E1:2D:23 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2EF21DBD545255BED30EEC34623F204A3E12D23.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/323430323a316134303a3a2f33322d3332203d3e20313336383639.roa Signing time: Mon 02 Jun 2025 02:03:55 +0000 ROA not before: Mon 02 Jun 2025 01:58:55 +0000 ROA not after: Mon 01 Jun 2026 02:03:55 +0000 asID: 136869 IP address blocks: 2402:1a40::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/D2EF21DBD545255BED30EEC34623F204A3E12D23.crl rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/D2EF21DBD545255BED30EEC34623F204A3E12D23.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2EF21DBD545255BED30EEC34623F204A3E12D23.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 18:15:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:f4:d6:12:80:3e:14:07:86:27:38:36:61:45:eb:b6:cb:ed:bf:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D2EF21DBD545255BED30EEC34623F204A3E12D23 Validity Not Before: Jun 2 01:58:55 2025 GMT Not After : Jun 1 02:03:55 2026 GMT Subject: CN=BE422E43E924D1768A73234BC53ADB302FB29D28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:c4:5b:46:51:37:5e:ee:4e:d4:2e:b2:29:d7: bc:c6:df:8d:fe:31:bd:a9:16:cb:55:1f:6c:88:e8: 8c:9c:08:15:0d:af:f9:66:56:07:c1:f9:98:6b:9d: a8:80:bf:f3:a1:23:2d:d4:ae:fe:a8:54:58:02:e6: 90:54:5b:69:58:30:64:91:57:00:0d:fc:17:8e:a9: 5a:4c:80:21:e0:24:5f:43:17:14:5c:f4:9d:b8:2e: 67:5e:d7:01:d5:3c:38:e5:2f:49:24:82:ec:72:80: bc:88:fe:40:f0:e1:93:d1:8c:f9:25:1e:25:c5:23: a3:c2:65:41:37:ff:6c:e9:65:8d:77:3a:2c:2a:4b: c5:06:b9:3b:1c:e2:01:07:c3:13:67:52:77:ae:81: 9b:e0:8f:c1:8a:9a:6a:8b:bf:80:59:da:18:2c:2d: 6e:bb:b9:4f:67:00:91:fa:14:97:0c:60:11:99:3c: ea:ca:23:1a:be:76:8c:81:b5:b3:d9:33:95:55:ac: 7a:12:82:d3:2f:66:0b:f2:9d:f0:8e:25:9d:b8:b2: c2:c6:ab:91:a8:08:10:9c:f1:ff:27:9d:f0:a2:ff: e5:61:39:08:ca:3c:04:5c:21:47:c5:48:49:69:a5: 2b:ae:e7:b2:ec:da:8a:9d:56:25:d3:3e:b8:f5:1d: c8:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:42:2E:43:E9:24:D1:76:8A:73:23:4B:C5:3A:DB:30:2F:B2:9D:28 X509v3 Authority Key Identifier: keyid:D2:EF:21:DB:D5:45:25:5B:ED:30:EE:C3:46:23:F2:04:A3:E1:2D:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/D2EF21DBD545255BED30EEC34623F204A3E12D23.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2EF21DBD545255BED30EEC34623F204A3E12D23.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/323430323a316134303a3a2f33322d3332203d3e20313336383639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:1a40::/32 Signature Algorithm: sha256WithRSAEncryption 34:6b:56:e6:33:92:7f:f6:20:9b:6b:36:ac:f2:b3:47:c6:9d: 93:ff:cb:6f:4d:6d:57:db:e6:fa:89:f0:ac:46:da:de:aa:4c: 75:63:ab:7d:ae:63:35:f3:44:04:76:e1:0f:d5:da:7a:27:0b: 4c:c8:bd:b4:43:f4:79:aa:0a:af:51:44:db:b5:3d:6c:23:67: 2c:17:42:c0:a9:07:35:37:4e:4b:31:0c:b2:ae:81:6a:35:b2: 3a:f0:5f:79:c7:97:94:5e:12:3b:08:d4:c2:fc:0b:d8:e8:ab: f6:c1:7f:eb:c1:87:28:36:c1:e7:4c:34:49:53:2e:06:ad:71: 2d:90:ee:26:45:91:ad:7e:96:b8:f5:bf:df:c1:0c:66:60:de: 5f:8e:26:e3:66:ca:15:22:b3:9f:0c:92:0e:7c:98:14:0a:bd: 35:24:65:ac:d4:7d:a1:b1:54:38:e3:3d:be:a8:2d:18:a2:48: a2:6f:96:be:b0:24:53:99:00:96:23:60:fd:1a:66:9f:1e:44: 61:a9:44:6f:6b:9a:ab:fe:20:b2:81:6a:bc:13:d6:d7:9b:ec: 33:5c:8a:bf:62:d7:5c:51:a7:de:62:e8:4c:88:29:34:fd:60: 00:e9:7f:31:05:3b:ca:4b:10:b8:52:60:3e:10:1a:16:12:31: 3f:0c:02:94 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUd/TWEoA+FAeGJzg2YUXrtsvtv8gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDJFRjIxREJENTQ1MjU1QkVEMzBFRUMzNDYyM0YyMDRB M0UxMkQyMzAeFw0yNTA2MDIwMTU4NTVaFw0yNjA2MDEwMjAzNTVaMDMxMTAvBgNV BAMTKEJFNDIyRTQzRTkyNEQxNzY4QTczMjM0QkM1M0FEQjMwMkZCMjlEMjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsxFtGUTde7k7ULrIp17zG343+ Mb2pFstVH2yI6IycCBUNr/lmVgfB+ZhrnaiAv/OhIy3Urv6oVFgC5pBUW2lYMGSR VwAN/BeOqVpMgCHgJF9DFxRc9J24Lmde1wHVPDjlL0kkguxygLyI/kDw4ZPRjPkl HiXFI6PCZUE3/2zpZY13OiwqS8UGuTsc4gEHwxNnUneugZvgj8GKmmqLv4BZ2hgs LW67uU9nAJH6FJcMYBGZPOrKIxq+doyBtbPZM5VVrHoSgtMvZgvynfCOJZ24ssLG q5GoCBCc8f8nnfCi/+VhOQjKPARcIUfFSElppSuu57Ls2oqdViXTPrj1HchTAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUvkIuQ+kk0XaKcyNLxTrbMC+ynSgwHwYDVR0j BBgwFoAU0u8h29VFJVvtMO7DRiPyBKPhLSMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MjMxZTZiMS0xODQxLTQ3NmQtYjQ2Yi1iNDRiOWNiOTY4YjAvMC9EMkVGMjFEQkQ1 NDUyNTVCRUQzMEVFQzM0NjIzRjIwNEEzRTEyRDIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDJFRjIxREJENTQ1MjU1QkVEMzBFRUMzNDYyM0YyMDRBM0Ux MkQyMy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QyMzFlNmIxLTE4NDEtNDc2ZC1i NDZiLWI0NGI5Y2I5NjhiMC8wLzMyMzQzMDMyM2EzMTYxMzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzNjM4MzYzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQCGkAwDQYJKoZI hvcNAQELBQADggEBADRrVuYzkn/2IJtrNqzys0fGnZP/y29NbVfb5vqJ8KxG2t6q THVjq32uYzXzRAR24Q/V2nonC0zIvbRD9HmqCq9RRNu1PWwjZywXQsCpBzU3Tksx DLKugWo1sjrwX3nHl5ReEjsI1ML8C9joq/bBf+vBhyg2wedMNElTLgatcS2Q7iZF ka1+lrj1v9/BDGZg3l+OJuNmyhUis58Mkg58mBQKvTUkZazUfaGxVDjjPb6oLRii SKJvlr6wJFOZAJYjYP0aZp8eRGGpRG9rmqv+ILKBarwT1teb7DNcir9i11xRp95i 6EyIKTT9YADpfzEFO8pLELhSYD4QGhYSMT8MApQ= -----END CERTIFICATE-----Generated at Thu Jun 5 18:30:22 2025 by rpki-client