$ rpki-client -vvf repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/323430333a623230303a3a2f33322d3438203d3e203233363731.roa File: 323430333a623230303a3a2f33322d3438203d3e203233363731.roa (raw, json) Hash identifier: Q7K6vxdURqUVSTL2QfOJv0VWNAbfREV5qlrBrpZeG6I= Subject key identifier: 27:88:7C:B9:C3:D0:A9:80:82:E3:44:BF:95:B3:B6:C1:44:8A:72:4A Certificate issuer: /CN=47661DC42A2BCC5BCEEE73AC8ABA71B12188866F Certificate serial: 51FF65D8E58EA4FFF90069D25E4C5C6733AA2B73 Authority key identifier: 47:66:1D:C4:2A:2B:CC:5B:CE:EE:73:AC:8A:BA:71:B1:21:88:86:6F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/323430333a623230303a3a2f33322d3438203d3e203233363731.roa Signing time: Mon 02 Jun 2025 01:03:23 +0000 ROA not before: Mon 02 Jun 2025 00:58:23 +0000 ROA not after: Mon 01 Jun 2026 01:03:23 +0000 asID: 23671 IP address blocks: 2403:b200::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.crl rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 22:53:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:ff:65:d8:e5:8e:a4:ff:f9:00:69:d2:5e:4c:5c:67:33:aa:2b:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=47661DC42A2BCC5BCEEE73AC8ABA71B12188866F Validity Not Before: Jun 2 00:58:23 2025 GMT Not After : Jun 1 01:03:23 2026 GMT Subject: CN=27887CB9C3D0A98082E344BF95B3B6C1448A724A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:e5:81:cd:7a:1a:c4:26:77:22:48:93:2f:c0: 14:ae:25:8a:b7:51:1f:02:a0:10:85:01:0e:d4:7a: d8:72:9e:1b:24:fc:b2:28:9a:c2:8b:61:af:64:8e: 35:fe:12:2b:86:5e:f2:1e:e9:76:e2:e6:3e:1e:db: 89:3f:08:00:48:e7:9b:b3:ab:c6:b3:89:c3:a9:79: 4b:a3:be:80:0a:85:0b:32:d7:51:a5:36:32:cd:47: 94:61:e0:e5:23:37:6d:02:88:21:05:a4:d9:f5:97: cc:99:a2:b4:17:6e:44:57:0b:31:40:60:b1:f2:1d: 84:d1:5b:c3:27:ad:a1:9a:e0:bd:af:92:65:1f:4c: f9:74:20:b4:8b:ce:d5:23:71:d2:b2:bb:8e:bc:1f: f5:07:b7:b9:ab:c2:b9:49:a0:30:dd:e8:e1:4f:bb: 35:db:2e:72:5e:a0:8d:2d:8b:95:77:1c:18:b2:94: 49:74:ac:6d:95:e9:75:dd:2b:66:72:71:7b:7e:e5: 3a:ed:76:cd:42:b9:7d:ec:40:b7:0f:7b:89:3c:5f: 16:fb:1b:4d:32:d4:b2:4c:22:23:6e:e5:32:3f:de: 3b:58:99:02:4e:c1:af:48:49:f9:9c:76:08:2e:34: 46:c1:8c:45:26:13:92:9e:09:9f:23:b3:b7:47:d6: 77:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:88:7C:B9:C3:D0:A9:80:82:E3:44:BF:95:B3:B6:C1:44:8A:72:4A X509v3 Authority Key Identifier: keyid:47:66:1D:C4:2A:2B:CC:5B:CE:EE:73:AC:8A:BA:71:B1:21:88:86:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/323430333a623230303a3a2f33322d3438203d3e203233363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:b200::/32 Signature Algorithm: sha256WithRSAEncryption 54:18:eb:15:43:9d:d3:5a:cc:89:d1:dd:9a:a0:3e:64:78:30: 33:3d:8e:0e:70:e1:50:62:85:54:b6:f1:83:34:eb:e4:8c:d8: 7d:af:b2:08:bf:5a:a5:1c:5d:2c:62:c9:f8:84:3e:5e:a4:24: a9:1c:e8:68:50:f8:84:d7:e1:d3:30:d4:47:9f:11:a9:73:45: 2d:0f:db:92:5e:e5:46:6b:c1:6b:97:dc:c2:fa:6f:9f:8a:66: 1b:e2:77:4f:08:b1:3d:e3:d6:3b:f0:29:f6:71:31:3e:6e:5d: 61:f6:94:23:d0:0c:90:48:22:ac:09:23:d6:4c:e8:09:73:22: b6:7a:75:83:e4:11:a3:2a:91:fa:5f:be:71:1f:41:d3:15:55: 65:a5:1b:11:8e:c2:52:59:2d:b6:f4:35:eb:e7:0d:f7:68:49: e2:e1:e5:ff:fe:1e:ed:07:f8:99:4d:f9:13:4f:cd:0f:97:fe: c1:11:56:53:12:a9:d2:9b:49:db:1d:d3:f8:da:c2:e0:b6:16: 6f:c9:7d:7f:1e:6d:1f:8b:0f:04:e6:f8:bc:1c:4b:a7:c7:c5: 74:ab:e4:c2:6d:4e:22:6a:b0:0c:df:5d:58:79:e8:06:29:fe: 84:ee:bb:d9:28:62:01:14:1a:6e:bf:a0:c9:f0:83:98:bb:a0: 6f:09:33:55 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUUf9l2OWOpP/5AGnSXkxcZzOqK3MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDc2NjFEQzQyQTJCQ0M1QkNFRUU3M0FDOEFCQTcxQjEy MTg4ODY2RjAeFw0yNTA2MDIwMDU4MjNaFw0yNjA2MDEwMTAzMjNaMDMxMTAvBgNV BAMTKDI3ODg3Q0I5QzNEMEE5ODA4MkUzNDRCRjk1QjNCNkMxNDQ4QTcyNEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDu5YHNehrEJnciSJMvwBSuJYq3 UR8CoBCFAQ7Uethynhsk/LIomsKLYa9kjjX+EiuGXvIe6Xbi5j4e24k/CABI55uz q8azicOpeUujvoAKhQsy11GlNjLNR5Rh4OUjN20CiCEFpNn1l8yZorQXbkRXCzFA YLHyHYTRW8MnraGa4L2vkmUfTPl0ILSLztUjcdKyu468H/UHt7mrwrlJoDDd6OFP uzXbLnJeoI0ti5V3HBiylEl0rG2V6XXdK2ZycXt+5Trtds1CuX3sQLcPe4k8Xxb7 G00y1LJMIiNu5TI/3jtYmQJOwa9ISfmcdgguNEbBjEUmE5KeCZ8js7dH1nfBAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUJ4h8ucPQqYCC40S/lbO2wUSKckowHwYDVR0j BBgwFoAUR2YdxCorzFvO7nOsirpxsSGIhm8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZDliYTk1My04NDg5LTQ1MGUtYmJkZi03NjQ1NzFmYmFjZTcvMC80NzY2MURDNDJB MkJDQzVCQ0VFRTczQUM4QUJBNzFCMTIxODg4NjZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDc2NjFEQzQyQTJCQ0M1QkNFRUU3M0FDOEFCQTcxQjEyMTg4 ODY2Ri5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VkOWJhOTUzLTg0ODktNDUwZS1i YmRmLTc2NDU3MWZiYWNlNy8wLzMyMzQzMDMzM2E2MjMyMzAzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMyMzMzNjM3MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkA7IAMA0GCSqGSIb3 DQEBCwUAA4IBAQBUGOsVQ53TWsyJ0d2aoD5keDAzPY4OcOFQYoVUtvGDNOvkjNh9 r7IIv1qlHF0sYsn4hD5epCSpHOhoUPiE1+HTMNRHnxGpc0UtD9uSXuVGa8Frl9zC +m+fimYb4ndPCLE949Y78Cn2cTE+bl1h9pQj0AyQSCKsCSPWTOgJcyK2enWD5BGj KpH6X75xH0HTFVVlpRsRjsJSWS229DXr5w33aEni4eX//h7tB/iZTfkTT80Pl/7B EVZTEqnSm0nbHdP42sLgthZvyX1/Hm0fiw8E5vi8HEunx8V0q+TCbU4iarAM311Y eegGKf6E7rvZKGIBFBpuv6DJ8IOYu6BvCTNV -----END CERTIFICATE-----Generated at Sun Jun 8 11:00:32 2025 by rpki-client