$ rpki-client -vvf repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/323430333a343334303a3a2f33322d3332203d3e20313337333738.roa File: 323430333a343334303a3a2f33322d3332203d3e20313337333738.roa (raw, json) Hash identifier: 33v24/+Rv2iOxGAU7l0du0lgoN/314/yiFhS7aj6fhE= Subject key identifier: 2B:BB:23:31:10:AB:7D:30:BD:00:93:78:04:7D:98:BE:CF:19:A2:FA Certificate issuer: /CN=00AC65E61E4913268C5D0B8AFE8C7D913B686D9F Certificate serial: 6B2289B35713907A66742F5689EC1E59D69E4190 Authority key identifier: 00:AC:65:E6:1E:49:13:26:8C:5D:0B:8A:FE:8C:7D:91:3B:68:6D:9F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/323430333a343334303a3a2f33322d3332203d3e20313337333738.roa Signing time: Mon 02 Jun 2025 02:01:43 +0000 ROA not before: Mon 02 Jun 2025 01:56:43 +0000 ROA not after: Mon 01 Jun 2026 02:01:43 +0000 asID: 137378 IP address blocks: 2403:4340::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.crl rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 09:37:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:22:89:b3:57:13:90:7a:66:74:2f:56:89:ec:1e:59:d6:9e:41:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00AC65E61E4913268C5D0B8AFE8C7D913B686D9F Validity Not Before: Jun 2 01:56:43 2025 GMT Not After : Jun 1 02:01:43 2026 GMT Subject: CN=2BBB233110AB7D30BD009378047D98BECF19A2FA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:4d:6e:2b:9a:e7:16:15:d6:3c:23:f7:4e:29: 63:12:c7:66:f0:16:0a:27:45:10:d2:d9:5b:71:07: 9c:0a:d9:33:74:79:1c:9c:5c:7a:34:bf:cf:c0:59: 8d:13:e0:53:62:aa:b0:43:b9:f9:19:fa:ad:67:1e: 3d:ee:5e:71:e5:4b:bc:be:d9:28:6e:ec:f7:5e:f0: 99:b9:42:2e:5b:9c:aa:20:e4:4f:42:66:b5:8d:5a: 1c:85:8f:a8:dd:7d:3e:64:6a:f0:c5:53:b1:eb:4e: 0c:75:d5:22:cb:aa:23:a4:a6:ed:4c:0c:12:5d:9e: e8:4e:df:d2:d4:8c:19:e0:8d:e7:71:46:3e:47:5d: 85:e3:4e:06:c7:b4:cd:ce:1a:3c:d3:f7:e1:37:9f: e8:4f:9d:c8:a0:12:f1:75:c5:04:44:3c:11:46:53: b5:bb:46:64:ef:07:eb:de:91:ca:50:a6:72:d1:02: 0c:11:f5:8b:33:ab:85:e6:e2:3c:49:6b:fa:c8:2b: 7a:23:e9:0a:ce:29:00:55:9e:8e:59:ad:8f:7b:07: c8:68:78:5e:42:37:44:fe:77:e3:11:8d:e5:ff:62: 50:1a:13:e4:c2:6a:38:55:86:e1:21:9b:f9:ca:1e: c1:67:ef:4c:c6:d6:c1:2f:07:20:82:e8:f2:e0:62: 64:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:BB:23:31:10:AB:7D:30:BD:00:93:78:04:7D:98:BE:CF:19:A2:FA X509v3 Authority Key Identifier: keyid:00:AC:65:E6:1E:49:13:26:8C:5D:0B:8A:FE:8C:7D:91:3B:68:6D:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/323430333a343334303a3a2f33322d3332203d3e20313337333738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:4340::/32 Signature Algorithm: sha256WithRSAEncryption bc:4d:0c:b3:6e:5c:a3:5c:e9:7e:76:52:f1:3c:82:3d:65:c2: 4a:72:fc:06:51:1d:b8:49:2b:63:75:08:39:2f:d7:ac:40:02: 53:74:0d:32:7b:11:61:7c:50:cc:b6:56:6e:75:25:fe:75:f5: c1:80:3b:6b:cd:75:ab:72:f5:72:5c:2a:fb:bc:9b:50:67:92: b8:08:a1:bf:1f:96:76:b8:15:ec:20:f0:be:1d:ef:24:a7:e7: a7:e9:bd:ab:e9:e0:d3:cf:e3:b1:9f:f8:e8:b2:c1:0e:5e:63: 2a:60:f9:91:3b:68:fb:04:27:2d:78:d8:36:b8:74:a1:ee:38: 9a:d7:af:77:53:1e:b3:8e:42:a3:37:95:57:f7:34:6f:2c:32: 23:c1:a9:1c:fb:4d:0a:5c:3f:9f:0d:81:8f:02:9e:0e:ee:3d: 68:7d:57:14:83:24:2f:16:61:1d:e0:a7:4c:5f:66:a0:e5:e2: 3b:fa:a2:e4:cb:10:67:58:ab:59:89:b2:cd:b2:fd:e2:be:4d: 2a:20:6e:e2:18:d2:8c:45:54:f7:86:00:b5:b7:7e:91:fb:bc: 8d:de:46:d0:70:f7:a7:32:21:a1:c4:08:fe:3c:97:71:bf:fd: ee:10:ca:03:f5:f2:6c:32:2e:2a:9e:e4:50:b7:3a:fc:60:8b: 28:86:eb:d2 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUayKJs1cTkHpmdC9WieweWdaeQZAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDBBQzY1RTYxRTQ5MTMyNjhDNUQwQjhBRkU4QzdEOTEz QjY4NkQ5RjAeFw0yNTA2MDIwMTU2NDNaFw0yNjA2MDEwMjAxNDNaMDMxMTAvBgNV BAMTKDJCQkIyMzMxMTBBQjdEMzBCRDAwOTM3ODA0N0Q5OEJFQ0YxOUEyRkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHTW4rmucWFdY8I/dOKWMSx2bw FgonRRDS2VtxB5wK2TN0eRycXHo0v8/AWY0T4FNiqrBDufkZ+q1nHj3uXnHlS7y+ 2Shu7Pde8Jm5Qi5bnKog5E9CZrWNWhyFj6jdfT5kavDFU7HrTgx11SLLqiOkpu1M DBJdnuhO39LUjBngjedxRj5HXYXjTgbHtM3OGjzT9+E3n+hPncigEvF1xQREPBFG U7W7RmTvB+vekcpQpnLRAgwR9Yszq4Xm4jxJa/rIK3oj6QrOKQBVno5ZrY97B8ho eF5CN0T+d+MRjeX/YlAaE+TCajhVhuEhm/nKHsFn70zG1sEvByCC6PLgYmSvAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUK7sjMRCrfTC9AJN4BH2Yvs8ZovowHwYDVR0j BBgwFoAUAKxl5h5JEyaMXQuK/ox9kTtobZ8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZTg5NTBmMC0zYjE0LTRhNmQtYjMwZi03NTM3OWNiMmViY2UvMC8wMEFDNjVFNjFF NDkxMzI2OEM1RDBCOEFGRThDN0Q5MTNCNjg2RDlGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDBBQzY1RTYxRTQ5MTMyNjhDNUQwQjhBRkU4QzdEOTEzQjY4 NkQ5Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNlODk1MGYwLTNiMTQtNGE2ZC1i MzBmLTc1Mzc5Y2IyZWJjZS8wLzMyMzQzMDMzM2EzNDMzMzQzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzNzMzMzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQDQ0AwDQYJKoZI hvcNAQELBQADggEBALxNDLNuXKNc6X52UvE8gj1lwkpy/AZRHbhJK2N1CDkv16xA AlN0DTJ7EWF8UMy2Vm51Jf519cGAO2vNdaty9XJcKvu8m1BnkrgIob8flna4Fewg 8L4d7ySn56fpvavp4NPP47Gf+OiywQ5eYypg+ZE7aPsEJy142Da4dKHuOJrXr3dT HrOOQqM3lVf3NG8sMiPBqRz7TQpcP58NgY8Cng7uPWh9VxSDJC8WYR3gp0xfZqDl 4jv6ouTLEGdYq1mJss2y/eK+TSogbuIY0oxFVPeGALW3fpH7vI3eRtBw96cyIaHE CP48l3G//e4QygP18mwyLiqe5FC3OvxgiyiG69I= -----END CERTIFICATE-----Generated at Tue Jun 17 10:01:01 2025 by rpki-client