$ rpki-client -vvf repo-rpki.idnic.net/repo/2dd47f56-ec53-42eb-9b8b-fa08f874d319/0/323430333a666630303a3a2f33322d3438203d3e203234353335.roa File: 323430333a666630303a3a2f33322d3438203d3e203234353335.roa (raw, json) Hash identifier: acX5TVrGelz7sikLTlbnR9gGsookgeyobaWlbIZGoJY= Subject key identifier: 75:A8:D2:A8:47:4C:7F:C0:19:20:BF:5D:0B:2C:15:F5:D0:50:94:2B Certificate issuer: /CN=47B3FBF39D8DFE5BC5CFD2BED39F0FA152619097 Certificate serial: 30E5AEE6FA1150D412324C468B7862D52CCFEBEB Authority key identifier: 47:B3:FB:F3:9D:8D:FE:5B:C5:CF:D2:BE:D3:9F:0F:A1:52:61:90:97 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47B3FBF39D8DFE5BC5CFD2BED39F0FA152619097.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2dd47f56-ec53-42eb-9b8b-fa08f874d319/0/323430333a666630303a3a2f33322d3438203d3e203234353335.roa Signing time: Mon 16 Jun 2025 09:48:14 +0000 ROA not before: Mon 16 Jun 2025 09:43:14 +0000 ROA not after: Mon 15 Jun 2026 09:48:14 +0000 asID: 24535 IP address blocks: 2403:ff00::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2dd47f56-ec53-42eb-9b8b-fa08f874d319/0/47B3FBF39D8DFE5BC5CFD2BED39F0FA152619097.crl rsync://repo-rpki.idnic.net/repo/2dd47f56-ec53-42eb-9b8b-fa08f874d319/0/47B3FBF39D8DFE5BC5CFD2BED39F0FA152619097.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47B3FBF39D8DFE5BC5CFD2BED39F0FA152619097.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 11:01:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:e5:ae:e6:fa:11:50:d4:12:32:4c:46:8b:78:62:d5:2c:cf:eb:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=47B3FBF39D8DFE5BC5CFD2BED39F0FA152619097 Validity Not Before: Jun 16 09:43:14 2025 GMT Not After : Jun 15 09:48:14 2026 GMT Subject: CN=75A8D2A8474C7FC01920BF5D0B2C15F5D050942B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:5d:b8:ac:52:9b:d6:03:2a:12:cf:87:0c:f9: a6:7e:13:e9:5e:66:51:98:66:46:f5:34:c1:60:49: 28:af:4c:68:8b:c0:e9:67:a1:7d:84:e7:d5:8c:88: 89:aa:81:ed:01:bf:dd:0b:e3:96:49:d0:74:d6:de: 29:3f:18:0b:e4:00:a0:b3:83:2e:aa:0c:76:a9:71: 96:54:44:3c:21:fd:44:18:e1:b5:83:87:3d:57:44: 2c:5b:66:24:da:46:15:0b:aa:09:0a:13:e6:bb:60: 40:1a:b7:cf:18:de:ef:dd:f0:c9:d0:59:f7:9f:38: a2:4d:9d:3d:fb:09:38:af:e3:cc:e9:bf:48:9a:4f: e3:ae:da:0d:63:a9:e1:de:39:91:dc:8d:4b:3d:7c: 46:de:4c:6e:1a:e1:07:b2:a5:b3:9d:64:37:93:80: c2:1a:07:05:44:01:ad:19:67:f4:07:5f:75:73:37: a6:88:4e:ef:2b:6a:b3:1c:f0:7e:2c:9d:78:4d:b9: 13:e0:66:b7:70:8d:b3:9b:77:42:12:ce:28:89:b1: f9:e1:53:8b:62:84:38:b1:ac:a4:94:97:83:c6:43: bd:f8:88:aa:f4:c6:cb:49:f1:1e:ee:1a:2b:ec:5a: 19:06:b1:20:07:27:dc:43:1b:a4:eb:23:49:83:ab: 51:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:A8:D2:A8:47:4C:7F:C0:19:20:BF:5D:0B:2C:15:F5:D0:50:94:2B X509v3 Authority Key Identifier: keyid:47:B3:FB:F3:9D:8D:FE:5B:C5:CF:D2:BE:D3:9F:0F:A1:52:61:90:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2dd47f56-ec53-42eb-9b8b-fa08f874d319/0/47B3FBF39D8DFE5BC5CFD2BED39F0FA152619097.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47B3FBF39D8DFE5BC5CFD2BED39F0FA152619097.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2dd47f56-ec53-42eb-9b8b-fa08f874d319/0/323430333a666630303a3a2f33322d3438203d3e203234353335.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:ff00::/32 Signature Algorithm: sha256WithRSAEncryption 86:f8:54:1a:22:79:1b:db:29:c8:9f:37:99:ab:34:c7:de:f1: 71:42:57:0f:a5:e0:d1:fa:25:57:87:1d:ea:26:a8:42:a7:9f: 7c:b7:58:2c:4c:d5:05:a9:61:b3:28:97:05:92:b8:61:b8:f1: 10:51:6a:6b:30:ba:73:03:c9:1f:0a:fb:91:bc:8f:41:69:b8: db:0a:81:93:94:17:23:52:76:2b:64:69:20:46:1b:3c:49:0d: c9:c8:69:d6:f0:9f:8c:c1:9f:43:0e:d2:3b:3f:0d:48:7e:f1: e8:9c:89:e4:0a:0d:ad:ea:18:4a:23:7e:cb:6a:a6:5f:f4:e2: fe:60:74:74:15:b7:7a:e6:04:cb:10:1a:3e:57:ab:e5:b0:e8: 48:34:2d:2e:2a:5c:b0:59:5d:98:6c:26:96:85:4d:3a:26:99: 42:37:28:b1:ec:da:d3:46:d9:11:ed:91:f2:4d:78:56:6f:b5: c9:72:19:1c:ca:63:a5:7f:aa:58:c1:42:67:60:e1:de:17:e5: e2:7d:11:e0:36:65:57:18:bb:76:fa:13:e2:fa:a6:74:b6:65: 38:b1:f3:ed:b3:f6:30:8e:1c:a6:68:df:e5:09:5f:de:af:93: 56:27:56:7b:8c:f0:94:39:ab:8f:63:4a:32:a5:5f:2f:6e:a4: 29:2a:5c:0e -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgIUMOWu5voRUNQSMkxGi3hi1SzP6+swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDdCM0ZCRjM5RDhERkU1QkM1Q0ZEMkJFRDM5RjBGQTE1 MjYxOTA5NzAeFw0yNTA2MTYwOTQzMTRaFw0yNjA2MTUwOTQ4MTRaMDMxMTAvBgNV BAMTKDc1QThEMkE4NDc0QzdGQzAxOTIwQkY1RDBCMkMxNUY1RDA1MDk0MkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDvXbisUpvWAyoSz4cM+aZ+E+le ZlGYZkb1NMFgSSivTGiLwOlnoX2E59WMiImqge0Bv90L45ZJ0HTW3ik/GAvkAKCz gy6qDHapcZZURDwh/UQY4bWDhz1XRCxbZiTaRhULqgkKE+a7YEAat88Y3u/d8MnQ WfefOKJNnT37CTiv48zpv0iaT+Ou2g1jqeHeOZHcjUs9fEbeTG4a4QeypbOdZDeT gMIaBwVEAa0ZZ/QHX3VzN6aITu8rarMc8H4snXhNuRPgZrdwjbObd0ISziiJsfnh U4tihDixrKSUl4PGQ734iKr0xstJ8R7uGivsWhkGsSAHJ9xDG6TrI0mDq1HRAgMB AAGjggIxMIICLTAdBgNVHQ4EFgQUdajSqEdMf8AZIL9dCywV9dBQlCswHwYDVR0j BBgwFoAUR7P7852N/lvFz9K+058PoVJhkJcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZGQ0N2Y1Ni1lYzUzLTQyZWItOWI4Yi1mYTA4Zjg3NGQzMTkvMC80N0IzRkJGMzlE OERGRTVCQzVDRkQyQkVEMzlGMEZBMTUyNjE5MDk3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDdCM0ZCRjM5RDhERkU1QkM1Q0ZEMkJFRDM5RjBGQTE1MjYx OTA5Ny5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkZDQ3ZjU2LWVjNTMtNDJlYi05 YjhiLWZhMDhmODc0ZDMxOS8wLzMyMzQzMDMzM2E2NjY2MzAzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMyMzQzNTMzMzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkA/8AMA0GCSqGSIb3 DQEBCwUAA4IBAQCG+FQaInkb2ynInzeZqzTH3vFxQlcPpeDR+iVXhx3qJqhCp598 t1gsTNUFqWGzKJcFkrhhuPEQUWprMLpzA8kfCvuRvI9BabjbCoGTlBcjUnYrZGkg Rhs8SQ3JyGnW8J+MwZ9DDtI7Pw1IfvHonInkCg2t6hhKI37LaqZf9OL+YHR0Fbd6 5gTLEBo+V6vlsOhINC0uKlywWV2YbCaWhU06JplCNyix7NrTRtkR7ZHyTXhWb7XJ chkcymOlf6pYwUJnYOHeF+XifRHgNmVXGLt2+hPi+qZ0tmU4sfPts/YwjhymaN/l CV/er5NWJ1Z7jPCUOauPY0oypV8vbqQpKlwO -----END CERTIFICATE-----Generated at Wed Jun 18 03:49:45 2025 by rpki-client