$ rpki-client -vvf repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/323430323a663038303a613a3a2f34382d3438203d3e203338313530.roa File: 323430323a663038303a613a3a2f34382d3438203d3e203338313530.roa (raw, json) Hash identifier: DnA9pVTlc5t5JUQmGO4bpvoQrAWbOAtoPuSdy5Z19iI= Subject key identifier: 2F:9D:8C:67:1A:9D:07:7B:EE:93:02:01:58:92:F1:81:1F:76:F7:81 Certificate issuer: /CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Certificate serial: 7C622873FE78EA7970AF37D59B926A29DC77F9D8 Authority key identifier: 2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/323430323a663038303a613a3a2f34382d3438203d3e203338313530.roa Signing time: Mon 02 Jun 2025 02:02:33 +0000 ROA not before: Mon 02 Jun 2025 01:57:33 +0000 ROA not after: Mon 01 Jun 2026 02:02:33 +0000 asID: 38150 IP address blocks: 2402:f080:a::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 21:01:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:62:28:73:fe:78:ea:79:70:af:37:d5:9b:92:6a:29:dc:77:f9:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CA47487F72781733330A38C95FF8A5DF68CDBB9 Validity Not Before: Jun 2 01:57:33 2025 GMT Not After : Jun 1 02:02:33 2026 GMT Subject: CN=2F9D8C671A9D077BEE9302015892F1811F76F781 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:5e:11:8a:fe:77:59:aa:59:ba:4c:f6:a1:58: bb:8b:0d:0b:0f:56:5f:32:fe:c2:fe:33:7e:7d:47: c1:a0:2c:17:1a:ae:62:7f:8d:3b:5d:16:94:22:10: a2:0f:4f:a3:fc:09:fe:cd:8d:1e:9c:17:f1:43:d9: e9:58:a8:64:b7:39:2a:0a:75:73:0f:60:54:13:4c: 4e:db:95:02:3d:b3:fe:65:46:06:9c:f0:e3:43:38: 5d:37:a7:3e:76:f0:e9:00:85:17:e0:70:32:de:b5: 6d:fe:03:13:44:fb:6c:d9:5a:df:17:cc:89:40:ca: 1c:8d:32:e6:e6:49:24:28:70:a2:7d:cf:2e:63:3b: 87:38:f2:99:3a:58:96:fd:d7:64:35:b8:1f:2b:cd: c3:e4:a2:b6:a1:be:d4:c5:80:e5:29:14:31:07:4c: 03:f4:8e:6e:79:4d:de:01:7c:7a:5d:9b:d3:9e:e6: ee:ee:2a:68:b9:01:09:da:d6:13:b3:88:d7:3e:d0: 74:44:80:fa:2e:11:76:70:69:b6:13:a9:8e:ca:bd: dc:83:c6:96:66:33:32:65:b1:c9:03:c8:f5:57:50: 55:10:00:0c:a6:94:9c:69:1f:ee:d6:dc:74:3b:8c: d4:56:a8:cc:1b:74:21:6b:63:65:4e:67:9c:82:a6: 8b:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:9D:8C:67:1A:9D:07:7B:EE:93:02:01:58:92:F1:81:1F:76:F7:81 X509v3 Authority Key Identifier: keyid:2C:A4:74:87:F7:27:81:73:33:30:A3:8C:95:FF:8A:5D:F6:8C:DB:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/2CA47487F72781733330A38C95FF8A5DF68CDBB9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CA47487F72781733330A38C95FF8A5DF68CDBB9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/17e65b67-905c-403c-8c79-2315659668aa/0/323430323a663038303a613a3a2f34382d3438203d3e203338313530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:f080:a::/48 Signature Algorithm: sha256WithRSAEncryption 8a:5a:8d:37:e9:39:8c:7e:54:43:40:17:48:67:c1:33:e2:72: 70:61:fb:f9:1c:b0:c3:ea:fc:6d:d6:52:ce:e4:df:fa:d8:ac: 99:d0:7a:f0:cb:61:9e:de:b6:e4:dc:c8:83:86:5c:97:b5:5a: 37:b5:2f:33:da:ab:73:3a:28:8e:23:56:aa:71:11:12:e1:eb: 90:ff:38:c5:17:7c:0e:16:4c:93:03:7a:08:35:b6:91:db:2e: 37:29:0d:36:4c:d8:4f:26:83:98:39:d8:8a:16:53:39:04:14: e3:61:5c:70:93:16:e8:9f:ae:9e:d2:da:86:d4:78:75:96:c0: 57:a1:f1:e3:68:62:11:bd:a8:5b:2c:88:5a:b3:b2:52:c2:f4: f0:2a:0a:3f:c7:60:20:cc:ea:a8:70:14:ae:a6:18:7f:fa:d3: 58:89:bb:d1:6f:46:b2:2a:ca:bd:a0:d3:c5:74:e5:d5:fd:93: df:c8:bf:db:0d:4f:46:dd:04:09:4f:5b:75:24:f2:8a:5e:ef: d0:3c:67:29:89:42:cb:3f:8c:67:86:bb:7d:1a:32:5f:a3:94: 66:58:5a:68:28:cc:4b:3e:aa:04:cf:61:81:41:46:d5:6b:25: d2:29:c8:67:4b:6f:c2:0d:0c:cc:e3:53:ee:af:46:9b:29:69: 76:cc:e9:67 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUfGIoc/546nlwrzfVm5JqKdx3+dgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURG NjhDREJCOTAeFw0yNTA2MDIwMTU3MzNaFw0yNjA2MDEwMjAyMzNaMDMxMTAvBgNV BAMTKDJGOUQ4QzY3MUE5RDA3N0JFRTkzMDIwMTU4OTJGMTgxMUY3NkY3ODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrXhGK/ndZqlm6TPahWLuLDQsP Vl8y/sL+M359R8GgLBcarmJ/jTtdFpQiEKIPT6P8Cf7NjR6cF/FD2elYqGS3OSoK dXMPYFQTTE7blQI9s/5lRgac8ONDOF03pz528OkAhRfgcDLetW3+AxNE+2zZWt8X zIlAyhyNMubmSSQocKJ9zy5jO4c48pk6WJb912Q1uB8rzcPkorahvtTFgOUpFDEH TAP0jm55Td4BfHpdm9Oe5u7uKmi5AQna1hOziNc+0HREgPouEXZwabYTqY7KvdyD xpZmMzJlsckDyPVXUFUQAAymlJxpH+7W3HQ7jNRWqMwbdCFrY2VOZ5yCpouhAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUL52MZxqdB3vukwIBWJLxgR9294EwHwYDVR0j BBgwFoAULKR0h/cngXMzMKOMlf+KXfaM27kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x N2U2NWI2Ny05MDVjLTQwM2MtOGM3OS0yMzE1NjU5NjY4YWEvMC8yQ0E0NzQ4N0Y3 Mjc4MTczMzMzMEEzOEM5NUZGOEE1REY2OENEQkI5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkNBNDc0ODdGNzI3ODE3MzMzMzBBMzhDOTVGRjhBNURGNjhD REJCOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE3ZTY1YjY3LTkwNWMtNDAzYy04 Yzc5LTIzMTU2NTk2NjhhYS8wLzMyMzQzMDMyM2E2NjMwMzgzMDNhNjEzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzEzNTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJALwgAAKMA0G CSqGSIb3DQEBCwUAA4IBAQCKWo036TmMflRDQBdIZ8Ez4nJwYfv5HLDD6vxt1lLO 5N/62KyZ0Hrwy2Ge3rbk3MiDhlyXtVo3tS8z2qtzOiiOI1aqcRES4euQ/zjFF3wO FkyTA3oINbaR2y43KQ02TNhPJoOYOdiKFlM5BBTjYVxwkxbon66e0tqG1Hh1lsBX ofHjaGIRvahbLIhas7JSwvTwKgo/x2AgzOqocBSuphh/+tNYibvRb0ayKsq9oNPF dOXV/ZPfyL/bDU9G3QQJT1t1JPKKXu/QPGcpiULLP4xnhrt9GjJfo5RmWFpoKMxL PqoEz2GBQUbVayXSKchnS2/CDQzM41Pur0abKWl2zOln -----END CERTIFICATE-----Generated at Tue Jun 17 19:08:38 2025 by rpki-client