$ rpki-client -vvf repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343030363a3a2f34382d3438203d3e203338353030.roa File: 323430333a323730303a343030363a3a2f34382d3438203d3e203338353030.roa (raw, json) Hash identifier: mT5M0yPm3/dROrkx7EXtMvuuuiLJJBueeArGpe0kXEU= Subject key identifier: AA:28:A6:97:5D:8D:AA:3D:7A:18:4F:A4:C8:65:78:23:36:53:6E:00 Certificate issuer: /CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Certificate serial: 502D99D3BF9166A2C09994F7D6DCF5B792D32ADA Authority key identifier: BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343030363a3a2f34382d3438203d3e203338353030.roa Signing time: Mon 02 Jun 2025 02:03:49 +0000 ROA not before: Mon 02 Jun 2025 01:58:49 +0000 ROA not after: Mon 01 Jun 2026 02:03:49 +0000 asID: 38500 IP address blocks: 2403:2700:4006::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 18:56:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:2d:99:d3:bf:91:66:a2:c0:99:94:f7:d6:dc:f5:b7:92:d3:2a:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Validity Not Before: Jun 2 01:58:49 2025 GMT Not After : Jun 1 02:03:49 2026 GMT Subject: CN=AA28A6975D8DAA3D7A184FA4C865782336536E00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:d6:47:8c:23:07:18:55:b2:b0:5d:58:b4:3c: 63:11:91:f3:dc:75:be:e7:f9:7f:9e:8b:ef:53:9e: 7f:56:ae:5e:e3:2f:f4:39:45:07:9c:83:ae:08:f6: a5:ca:ee:ba:5f:8a:6e:e4:31:f6:15:f2:09:f5:9d: 51:36:c8:d9:2d:c2:e9:d5:e8:9f:08:56:c1:de:bd: 8e:bc:9d:53:8a:38:77:0a:0d:46:de:3e:dd:81:cd: 95:43:be:4a:7f:96:2a:e3:42:c3:41:84:53:6d:18: a4:52:a5:fb:1e:4d:de:f7:8b:ee:25:2e:17:16:70: 57:9b:6c:43:ef:ce:d1:44:56:7f:cf:cf:3e:af:45: 30:f1:b9:3c:b8:24:d5:21:a1:91:43:07:4a:bd:7f: 2d:40:ad:df:ad:fb:48:92:be:b7:b2:0b:e7:fe:98: e2:0d:10:d9:1c:bd:59:39:fd:f6:3e:0a:10:46:f4: 7b:7b:f7:d6:3c:3c:2a:03:40:2f:55:33:48:df:e3: 09:50:83:12:3b:39:ed:6d:fa:90:5d:2c:86:7c:0b: b1:05:71:6c:c5:b6:53:e3:8c:68:20:4e:fd:ff:1e: b9:6a:13:08:07:2d:a1:87:84:ec:b2:1d:08:c0:58: 51:61:47:da:2d:18:0e:97:47:cc:43:1d:cb:7d:dd: a2:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:28:A6:97:5D:8D:AA:3D:7A:18:4F:A4:C8:65:78:23:36:53:6E:00 X509v3 Authority Key Identifier: keyid:BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a343030363a3a2f34382d3438203d3e203338353030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2700:4006::/48 Signature Algorithm: sha256WithRSAEncryption b4:cb:ca:49:db:c2:dd:6e:4a:a4:88:4a:9c:56:8f:ac:26:e0: 76:a3:ea:19:14:f2:41:59:5a:47:92:99:47:b8:e7:a0:7f:0f: 6f:33:08:78:80:8f:e6:4e:af:b2:fd:0f:f4:d9:d3:33:02:18: b8:c4:15:16:9f:f8:91:f2:04:00:d8:a2:04:c8:ae:bf:5a:0f: da:27:45:74:59:34:05:11:7c:4a:0a:38:18:cc:20:db:73:78: 88:8a:ee:93:cf:e9:d0:6e:9e:d3:0f:ce:a3:f8:29:c5:21:37: d9:f8:d9:24:49:ff:3a:37:1d:a3:a9:16:98:a2:ad:38:a1:5a: c1:1f:4b:b9:69:b7:4d:43:bc:8b:d1:9e:0a:1b:47:77:1c:5b: f6:19:13:ae:52:cf:bc:a9:8b:b2:98:f0:9a:53:02:be:b3:f3: 7c:81:f0:63:46:38:f4:4b:58:96:ac:b5:9e:6f:19:22:3e:6a: e7:19:93:61:47:b7:1a:7a:89:d7:6b:03:ef:b5:2d:f9:43:9e: df:b5:d8:81:c7:c2:85:92:d3:7d:ab:69:9b:04:f8:f4:0f:ad: 7c:7e:09:fb:d5:6e:12:56:a8:52:b9:7e:24:39:60:60:bb:61: 43:51:b6:7e:c5:47:17:8c:60:37:03:9d:3b:65:f1:5b:56:67: 98:31:14:2d -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUUC2Z07+RZqLAmZT31tz1t5LTKtowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVD RTFEQjFEMDAeFw0yNTA2MDIwMTU4NDlaFw0yNjA2MDEwMjAzNDlaMDMxMTAvBgNV BAMTKEFBMjhBNjk3NUQ4REFBM0Q3QTE4NEZBNEM4NjU3ODIzMzY1MzZFMDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDz1keMIwcYVbKwXVi0PGMRkfPc db7n+X+ei+9Tnn9Wrl7jL/Q5RQecg64I9qXK7rpfim7kMfYV8gn1nVE2yNktwunV 6J8IVsHevY68nVOKOHcKDUbePt2BzZVDvkp/lirjQsNBhFNtGKRSpfseTd73i+4l LhcWcFebbEPvztFEVn/Pzz6vRTDxuTy4JNUhoZFDB0q9fy1Ard+t+0iSvreyC+f+ mOINENkcvVk5/fY+ChBG9Ht799Y8PCoDQC9VM0jf4wlQgxI7Oe1t+pBdLIZ8C7EF cWzFtlPjjGggTv3/HrlqEwgHLaGHhOyyHQjAWFFhR9otGA6XR8xDHct93aJDAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUqiiml12Nqj16GE+kyGV4IzZTbgAwHwYDVR0j BBgwFoAUuwUpPT6dzQ9K2SYQDBkYhc4dsdAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MDQwNjhmMy1hNzViLTQ3NjQtOWU4MC0xZmE1NzI5MjA3ZmMvMC9CQjA1MjkzRDNF OURDRDBGNEFEOTI2MTAwQzE5MTg4NUNFMURCMUQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVDRTFE QjFEMC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IwNDA2OGYzLWE3NWItNDc2NC05 ZTgwLTFmYTU3MjkyMDdmYy8wLzMyMzQzMDMzM2EzMjM3MzAzMDNhMzQzMDMwMzYz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMDMwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAMn AEAGMA0GCSqGSIb3DQEBCwUAA4IBAQC0y8pJ28LdbkqkiEqcVo+sJuB2o+oZFPJB WVpHkplHuOegfw9vMwh4gI/mTq+y/Q/02dMzAhi4xBUWn/iR8gQA2KIEyK6/Wg/a J0V0WTQFEXxKCjgYzCDbc3iIiu6Tz+nQbp7TD86j+CnFITfZ+NkkSf86Nx2jqRaY oq04oVrBH0u5abdNQ7yL0Z4KG0d3HFv2GROuUs+8qYuymPCaUwK+s/N8gfBjRjj0 S1iWrLWebxkiPmrnGZNhR7caeonXawPvtS35Q57ftdiBx8KFktN9q2mbBPj0D618 fgn71W4SVqhSuX4kOWBgu2FDUbZ+xUcXjGA3A507ZfFbVmeYMRQt -----END CERTIFICATE-----Generated at Wed Nov 5 12:37:32 2025 by rpki-client