$ rpki-client -vvf repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/323430333a623230303a613939633a3a2f34382d3438203d3e203338353036.roa File: 323430333a623230303a613939633a3a2f34382d3438203d3e203338353036.roa (raw, json) Hash identifier: hJFdnnFqf4q4VdOkKOAgrkVtfC9wQ0ni99baqMKqYMY= Subject key identifier: 59:C2:41:50:43:36:F2:34:57:8A:8D:EC:55:84:40:F1:22:5F:66:6F Certificate issuer: /CN=47661DC42A2BCC5BCEEE73AC8ABA71B12188866F Certificate serial: 598CFFBFB8AE63B30BAC5AEDB0D3596C04D158D1 Authority key identifier: 47:66:1D:C4:2A:2B:CC:5B:CE:EE:73:AC:8A:BA:71:B1:21:88:86:6F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/323430333a623230303a613939633a3a2f34382d3438203d3e203338353036.roa Signing time: Mon 02 Jun 2025 01:03:23 +0000 ROA not before: Mon 02 Jun 2025 00:58:23 +0000 ROA not after: Mon 01 Jun 2026 01:03:23 +0000 asID: 38506 IP address blocks: 2403:b200:a99c::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.crl rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 22:53:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:8c:ff:bf:b8:ae:63:b3:0b:ac:5a:ed:b0:d3:59:6c:04:d1:58:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=47661DC42A2BCC5BCEEE73AC8ABA71B12188866F Validity Not Before: Jun 2 00:58:23 2025 GMT Not After : Jun 1 01:03:23 2026 GMT Subject: CN=59C241504336F234578A8DEC558440F1225F666F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:c6:cc:3d:02:57:80:56:e9:60:32:9d:cc:3a: 73:05:81:23:c9:55:85:0f:9a:3a:94:68:bc:97:db: 75:3b:56:c2:00:b2:7b:f5:23:2b:a7:c4:a0:a6:2f: 4e:44:1b:98:9b:7d:a5:17:4e:d4:e9:48:56:77:b9: cb:ee:d7:20:47:7f:3d:66:ab:aa:9b:0b:dc:45:cf: 4d:28:a5:1d:60:2d:05:c1:a4:cf:ae:7f:77:f4:59: f0:a0:29:9c:09:d4:17:c6:22:c2:b1:81:3d:5a:4c: 32:72:5d:9a:65:96:e1:a4:1b:db:25:d9:1a:00:43: 70:65:0a:e0:08:8f:48:78:f3:14:3d:35:43:30:fd: 76:be:5a:4e:78:c7:e0:36:ae:b7:bf:23:09:19:c9: 76:ee:c5:1f:30:e6:2e:01:e1:92:ed:6f:3b:68:46: 91:3e:42:5f:51:0e:88:92:85:a9:ac:f2:39:ac:b6: f0:37:28:c2:95:77:8f:7b:f6:ca:75:ce:a2:30:9b: fa:bb:21:3a:54:43:51:b6:d8:a0:61:c1:ca:50:c2: 13:21:2f:12:09:a2:69:9e:2b:0f:88:c3:a5:fd:6b: 14:a6:0b:a9:32:11:9f:79:27:25:99:67:af:28:d8: 10:df:3e:a9:3e:8a:c4:30:ea:59:4d:85:20:20:87: 2d:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:C2:41:50:43:36:F2:34:57:8A:8D:EC:55:84:40:F1:22:5F:66:6F X509v3 Authority Key Identifier: keyid:47:66:1D:C4:2A:2B:CC:5B:CE:EE:73:AC:8A:BA:71:B1:21:88:86:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47661DC42A2BCC5BCEEE73AC8ABA71B12188866F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ed9ba953-8489-450e-bbdf-764571fbace7/0/323430333a623230303a613939633a3a2f34382d3438203d3e203338353036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:b200:a99c::/48 Signature Algorithm: sha256WithRSAEncryption 9c:97:c6:38:d6:c0:7f:4b:91:85:8a:6e:4e:11:0c:ce:b8:f1: 75:d1:b1:3b:f7:71:da:4d:91:09:91:09:90:e5:10:ae:73:22: c0:c9:f0:8d:c2:73:5f:24:32:cb:78:94:28:0c:d2:e2:f2:80: dd:21:cd:55:94:d0:93:c0:b1:a9:af:11:b7:fe:b9:01:22:a3: 90:18:c2:f8:49:90:af:e8:29:ba:a0:f6:2d:80:d3:92:2d:f5: dd:5f:57:87:30:b4:e5:09:e9:0b:8c:3a:e1:82:91:03:84:6c: 16:42:b3:52:07:07:72:36:88:cc:6b:85:d3:13:c6:63:41:1f: 8c:54:9a:da:c2:46:2f:b6:bd:da:08:57:67:0d:e6:5b:49:87: da:ad:7a:af:ec:5b:76:14:58:1a:d8:40:89:b2:3c:43:ba:72: 42:d1:5f:8e:34:43:91:f2:04:c5:99:c7:72:32:7d:01:5f:54: 7e:53:1c:88:62:1f:fd:4f:d3:10:0c:e5:27:aa:33:7f:0b:99: 70:a0:19:d7:f8:67:41:05:70:87:9a:ca:46:d5:b2:08:d5:3c: e4:d9:ef:f8:62:1e:6c:45:d0:e9:83:a5:72:4b:ab:b7:fc:ba: ae:f8:3d:ee:7b:dc:15:44:9a:c9:7f:ed:fa:51:72:78:81:77: a1:d5:b2:e6 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUWYz/v7iuY7MLrFrtsNNZbATRWNEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDc2NjFEQzQyQTJCQ0M1QkNFRUU3M0FDOEFCQTcxQjEy MTg4ODY2RjAeFw0yNTA2MDIwMDU4MjNaFw0yNjA2MDEwMTAzMjNaMDMxMTAvBgNV BAMTKDU5QzI0MTUwNDMzNkYyMzQ1NzhBOERFQzU1ODQ0MEYxMjI1RjY2NkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsxsw9AleAVulgMp3MOnMFgSPJ VYUPmjqUaLyX23U7VsIAsnv1IyunxKCmL05EG5ibfaUXTtTpSFZ3ucvu1yBHfz1m q6qbC9xFz00opR1gLQXBpM+uf3f0WfCgKZwJ1BfGIsKxgT1aTDJyXZplluGkG9sl 2RoAQ3BlCuAIj0h48xQ9NUMw/Xa+Wk54x+A2rre/IwkZyXbuxR8w5i4B4ZLtbzto RpE+Ql9RDoiShams8jmstvA3KMKVd4979sp1zqIwm/q7ITpUQ1G22KBhwcpQwhMh LxIJommeKw+Iw6X9axSmC6kyEZ95JyWZZ68o2BDfPqk+isQw6llNhSAghy2fAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUWcJBUEM28jRXio3sVYRA8SJfZm8wHwYDVR0j BBgwFoAUR2YdxCorzFvO7nOsirpxsSGIhm8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZDliYTk1My04NDg5LTQ1MGUtYmJkZi03NjQ1NzFmYmFjZTcvMC80NzY2MURDNDJB MkJDQzVCQ0VFRTczQUM4QUJBNzFCMTIxODg4NjZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDc2NjFEQzQyQTJCQ0M1QkNFRUU3M0FDOEFCQTcxQjEyMTg4 ODY2Ri5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VkOWJhOTUzLTg0ODktNDUwZS1i YmRmLTc2NDU3MWZiYWNlNy8wLzMyMzQzMDMzM2E2MjMyMzAzMDNhNjEzOTM5NjMz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMDM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAOy AKmcMA0GCSqGSIb3DQEBCwUAA4IBAQCcl8Y41sB/S5GFim5OEQzOuPF10bE793Ha TZEJkQmQ5RCucyLAyfCNwnNfJDLLeJQoDNLi8oDdIc1VlNCTwLGprxG3/rkBIqOQ GML4SZCv6Cm6oPYtgNOSLfXdX1eHMLTlCekLjDrhgpEDhGwWQrNSBwdyNojMa4XT E8ZjQR+MVJrawkYvtr3aCFdnDeZbSYfarXqv7Ft2FFga2ECJsjxDunJC0V+ONEOR 8gTFmcdyMn0BX1R+UxyIYh/9T9MQDOUnqjN/C5lwoBnX+GdBBXCHmspG1bII1Tzk 2e/4Yh5sRdDpg6VyS6u3/Lqu+D3ue9wVRJrJf+36UXJ4gXeh1bLm -----END CERTIFICATE-----Generated at Sun Jun 8 06:08:08 2025 by rpki-client