$ rpki-client -vvf repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/323430313a656530303a3a2f33322d3438203d3e203233393531.roa File: 323430313a656530303a3a2f33322d3438203d3e203233393531.roa (raw, json) Hash identifier: NzMEm3c3sVacQZSWsj7eCdzP+65DR1/M0h04y+5YJYE= Subject key identifier: 02:BC:5B:85:96:08:3A:82:CA:AD:6A:08:63:AB:4D:26:AA:1D:7A:EE Certificate issuer: /CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Certificate serial: 4FED0A7416816E5E72883C767E315FD8A1641E9D Authority key identifier: CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/323430313a656530303a3a2f33322d3438203d3e203233393531.roa Signing time: Tue 22 Jul 2025 05:00:00 +0000 ROA not before: Tue 22 Jul 2025 04:55:00 +0000 ROA not after: Tue 21 Jul 2026 05:00:00 +0000 asID: 23951 IP address blocks: 2401:ee00::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 02:21:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:ed:0a:74:16:81:6e:5e:72:88:3c:76:7e:31:5f:d8:a1:64:1e:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Validity Not Before: Jul 22 04:55:00 2025 GMT Not After : Jul 21 05:00:00 2026 GMT Subject: CN=02BC5B8596083A82CAAD6A0863AB4D26AA1D7AEE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:e0:99:fc:0a:2d:30:d2:fa:43:cf:2c:9b:69: 58:74:0c:d6:6d:43:4d:bc:d4:ce:66:f1:dd:54:a5: cd:b2:fa:fa:f6:9e:cc:8a:4c:9f:b5:3b:3a:a0:50: 60:4d:24:8c:f3:01:02:ca:b7:25:13:e5:4e:a7:9c: 76:3e:b5:5c:0a:c3:6b:97:21:c8:88:30:36:52:7e: 80:2f:e5:64:70:92:50:8f:25:c8:ea:0a:cf:59:2b: c0:82:b5:a3:dd:fa:4e:01:82:3e:fa:58:b9:ce:df: 22:a4:89:55:8c:bf:34:b7:b0:8f:96:05:ba:e0:ef: 32:2e:fb:ee:a3:b3:65:2a:6a:73:f7:39:5f:f6:ab: 8c:c4:73:a8:0e:56:b9:ea:0a:4a:5f:92:24:82:84: b3:58:4d:6f:e9:2c:4f:77:0b:5f:f3:ab:0b:4f:5b: f6:ec:89:0e:77:80:91:ef:45:ee:9f:fe:47:b4:e6: 30:94:8f:e1:61:74:86:37:d4:2b:56:9c:03:52:56: 56:5d:da:62:14:27:12:3a:c9:ac:31:10:54:37:54: 05:72:74:35:1b:ca:90:f3:22:aa:96:1e:57:c3:fe: 84:a6:89:95:d6:03:1d:46:da:ce:9e:6e:ba:8f:23: 03:89:64:73:ad:95:fb:c8:28:96:67:6f:9d:0c:31: bf:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:BC:5B:85:96:08:3A:82:CA:AD:6A:08:63:AB:4D:26:AA:1D:7A:EE X509v3 Authority Key Identifier: keyid:CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/323430313a656530303a3a2f33322d3438203d3e203233393531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:ee00::/32 Signature Algorithm: sha256WithRSAEncryption 0d:8c:82:2c:ec:a7:2f:0e:2a:5d:67:b5:c0:48:d6:2b:9d:e7: 66:1c:7d:6e:ef:f9:99:41:00:76:75:71:ae:a3:44:21:00:ff: 7e:53:7d:c4:3a:9e:39:d5:dd:72:f9:ae:f5:33:e7:5f:16:3d: 70:78:c3:52:5b:c4:cd:b7:02:28:07:41:cb:87:a0:27:8a:06: 13:c8:ce:62:b6:c3:84:d9:37:83:5b:1b:85:04:2e:1d:c7:e8: ae:99:3b:32:ba:8e:07:b8:d4:6b:21:5e:26:52:1e:dc:c7:35: 20:45:f7:d9:67:23:86:11:fb:89:83:44:01:ba:17:ab:e7:cb: 3e:e6:0d:be:6e:2f:d9:1c:20:4c:99:88:95:01:c4:fe:d5:ed: 72:14:ac:1c:1d:a5:19:14:b1:cc:3d:06:de:1a:f3:c6:b6:6e: 61:49:c2:f8:15:fa:b5:fa:0b:17:ae:b6:b4:fa:3e:05:b7:fa: f9:3d:31:bb:c7:66:d4:2f:ca:40:e2:20:4b:5a:7c:fa:13:0e: 7f:72:19:62:73:4a:b0:f6:54:c7:f2:97:e0:e5:f0:11:e2:ab: f0:d5:7d:38:1e:7f:1a:f5:93:a2:36:7c:0a:d7:1a:7e:bb:fd: 71:63:c6:0e:c7:28:03:71:b8:c0:5d:dd:a5:28:25:7c:3e:ca: 85:77:25:d1 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUT+0KdBaBbl5yiDx2fjFf2KFkHp0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUx NDNDOEU4RjAeFw0yNTA3MjIwNDU1MDBaFw0yNjA3MjEwNTAwMDBaMDMxMTAvBgNV BAMTKDAyQkM1Qjg1OTYwODNBODJDQUFENkEwODYzQUI0RDI2QUExRDdBRUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC84Jn8Ci0w0vpDzyybaVh0DNZt Q0281M5m8d1Upc2y+vr2nsyKTJ+1OzqgUGBNJIzzAQLKtyUT5U6nnHY+tVwKw2uX IciIMDZSfoAv5WRwklCPJcjqCs9ZK8CCtaPd+k4Bgj76WLnO3yKkiVWMvzS3sI+W Bbrg7zIu++6js2UqanP3OV/2q4zEc6gOVrnqCkpfkiSChLNYTW/pLE93C1/zqwtP W/bsiQ53gJHvRe6f/ke05jCUj+FhdIY31CtWnANSVlZd2mIUJxI6yawxEFQ3VAVy dDUbypDzIqqWHlfD/oSmiZXWAx1G2s6ebrqPIwOJZHOtlfvIKJZnb50MMb/xAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUArxbhZYIOoLKrWoIY6tNJqodeu4wHwYDVR0j BBgwFoAUyjW6x6QF3x7Z7WLwnS9PLhQ8jo8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZTZhN2U0Ni1iNmFkLTRhN2QtYjkzMC0xYWIwYmYwMmRkNWQvMC9DQTM1QkFDN0E0 MDVERjFFRDlFRDYyRjA5RDJGNEYyRTE0M0M4RThGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUxNDND OEU4Ri5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFlNmE3ZTQ2LWI2YWQtNGE3ZC1i OTMwLTFhYjBiZjAyZGQ1ZC8wLzMyMzQzMDMxM2E2NTY1MzAzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMyMzMzOTM1MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAe4AMA0GCSqGSIb3 DQEBCwUAA4IBAQANjIIs7KcvDipdZ7XASNYrnedmHH1u7/mZQQB2dXGuo0QhAP9+ U33EOp451d1y+a71M+dfFj1weMNSW8TNtwIoB0HLh6AnigYTyM5itsOE2TeDWxuF BC4dx+iumTsyuo4HuNRrIV4mUh7cxzUgRffZZyOGEfuJg0QBuher58s+5g2+bi/Z HCBMmYiVAcT+1e1yFKwcHaUZFLHMPQbeGvPGtm5hScL4Ffq1+gsXrra0+j4Ft/r5 PTG7x2bUL8pA4iBLWnz6Ew5/chlic0qw9lTH8pfg5fAR4qvw1X04Hn8a9ZOiNnwK 1xp+u/1xY8YOxygDcbjAXd2lKCV8PsqFdyXR -----END CERTIFICATE-----Generated at Thu Aug 7 20:10:15 2025 by rpki-client