$ rpki-client -vvf repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a363a3a2f34382d3438203d3e203338353030.roa File: 323430333a323730303a363a3a2f34382d3438203d3e203338353030.roa (raw, json) Hash identifier: jvNDZEnqhiROy2saBd3ptbOt84MblTLhLgl0wHJO/VY= Subject key identifier: 6D:EA:35:53:4F:70:C9:09:5F:E9:C5:47:CB:17:DD:9F:0D:2E:91:B3 Certificate issuer: /CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Certificate serial: 01D48C37119B701474FF320D42368E373A5A6238 Authority key identifier: BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a363a3a2f34382d3438203d3e203338353030.roa Signing time: Mon 02 Jun 2025 02:03:51 +0000 ROA not before: Mon 02 Jun 2025 01:58:51 +0000 ROA not after: Mon 01 Jun 2026 02:03:51 +0000 asID: 38500 IP address blocks: 2403:2700:6::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 11:37:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:d4:8c:37:11:9b:70:14:74:ff:32:0d:42:36:8e:37:3a:5a:62:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Validity Not Before: Jun 2 01:58:51 2025 GMT Not After : Jun 1 02:03:51 2026 GMT Subject: CN=6DEA35534F70C9095FE9C547CB17DD9F0D2E91B3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:72:36:99:a9:c7:b4:cf:03:d3:09:75:e1:b5: dd:ca:c4:19:d1:18:aa:b4:0a:e0:17:62:79:6a:67: 75:13:1f:f4:e9:5e:c0:4b:09:86:7d:0b:5f:56:fb: 63:f0:e6:fd:8e:40:56:91:29:d0:74:d3:98:50:a7: f0:59:ca:da:26:a1:92:65:6e:53:cd:d3:a2:c7:2d: c0:2c:00:c8:b1:0f:5d:80:b9:92:50:d4:71:6e:2d: e0:9a:4e:f5:cc:3f:b5:e5:6b:68:1e:2c:e4:21:c8: 86:19:ba:bf:1c:07:bc:c0:28:3d:28:8d:d5:92:5d: db:6a:2b:f3:f7:15:34:df:4d:cf:e9:47:e3:ef:d9: 83:c1:12:1d:3b:e8:ac:15:80:3d:79:5d:47:05:54: 11:d5:c6:7f:2a:78:82:41:e4:bf:49:c7:43:9c:35: 78:29:ae:43:8c:19:aa:f8:61:8c:58:3c:7c:37:65: ec:0d:9e:84:ce:c1:49:c1:10:41:51:a6:33:77:3a: 9f:64:c1:a7:80:cc:bc:40:88:2f:8a:c4:da:80:2c: f7:33:2f:a4:6c:ac:78:96:c3:f2:21:be:14:e5:11: 04:e5:d1:5d:87:34:8e:cc:3b:9f:60:01:79:a1:9f: d7:95:a6:47:49:c6:4d:6b:79:03:3a:47:15:82:91: 93:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:EA:35:53:4F:70:C9:09:5F:E9:C5:47:CB:17:DD:9F:0D:2E:91:B3 X509v3 Authority Key Identifier: keyid:BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a363a3a2f34382d3438203d3e203338353030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2700:6::/48 Signature Algorithm: sha256WithRSAEncryption b1:53:58:de:de:8a:4d:c3:32:fd:79:49:05:0f:af:c6:9d:c1: 3e:46:d3:80:f4:e2:a2:90:08:40:0c:6b:10:f4:33:84:ad:e9: aa:dd:b6:2e:94:9d:d1:60:76:52:70:cd:ab:d9:6d:db:a7:82: fe:e9:a6:b9:46:79:7c:fe:f8:dd:55:85:32:e4:cf:f5:a0:71: b2:56:04:1b:fb:89:fd:8a:ab:c3:a7:11:50:7f:0d:12:1e:34: 74:72:e4:dd:88:73:c2:c9:4d:a5:c4:ea:93:cb:db:0b:35:c0: c4:de:3c:bf:7b:64:6c:6c:a2:df:28:f0:13:f6:ad:a6:49:e3: 8c:b9:0e:44:27:a1:85:d7:76:a5:9a:49:e3:d8:ae:d4:13:43: 97:b0:c3:cc:6d:89:3d:16:d5:f3:15:e7:98:66:2b:29:d4:d3: f2:9f:29:e8:61:f1:63:f9:df:bf:96:96:a3:8e:72:7d:bc:bd: 8f:10:0a:01:05:4c:81:44:31:0d:9f:9e:dd:2a:6c:f8:3c:69: c8:01:ad:ab:1a:17:f5:41:65:b5:1c:ac:6f:06:a5:55:f0:5a: d6:22:bc:3f:51:70:6d:fa:7e:60:8e:2b:2f:93:24:36:24:7f: 4c:d3:0a:ae:e7:53:54:d7:4e:53:fb:02:fe:15:32:1f:13:d5: 0c:be:ae:e4 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUAdSMNxGbcBR0/zINQjaONzpaYjgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVD RTFEQjFEMDAeFw0yNTA2MDIwMTU4NTFaFw0yNjA2MDEwMjAzNTFaMDMxMTAvBgNV BAMTKDZERUEzNTUzNEY3MEM5MDk1RkU5QzU0N0NCMTdERDlGMEQyRTkxQjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtcjaZqce0zwPTCXXhtd3KxBnR GKq0CuAXYnlqZ3UTH/TpXsBLCYZ9C19W+2Pw5v2OQFaRKdB005hQp/BZytomoZJl blPN06LHLcAsAMixD12AuZJQ1HFuLeCaTvXMP7Xla2geLOQhyIYZur8cB7zAKD0o jdWSXdtqK/P3FTTfTc/pR+Pv2YPBEh076KwVgD15XUcFVBHVxn8qeIJB5L9Jx0Oc NXgprkOMGar4YYxYPHw3ZewNnoTOwUnBEEFRpjN3Op9kwaeAzLxAiC+KxNqALPcz L6RsrHiWw/IhvhTlEQTl0V2HNI7MO59gAXmhn9eVpkdJxk1reQM6RxWCkZOlAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUbeo1U09wyQlf6cVHyxfdnw0ukbMwHwYDVR0j BBgwFoAUuwUpPT6dzQ9K2SYQDBkYhc4dsdAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MDQwNjhmMy1hNzViLTQ3NjQtOWU4MC0xZmE1NzI5MjA3ZmMvMC9CQjA1MjkzRDNF OURDRDBGNEFEOTI2MTAwQzE5MTg4NUNFMURCMUQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVDRTFE QjFEMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IwNDA2OGYzLWE3NWItNDc2NC05 ZTgwLTFmYTU3MjkyMDdmYy8wLzMyMzQzMDMzM2EzMjM3MzAzMDNhMzYzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAMnAAAGMA0G CSqGSIb3DQEBCwUAA4IBAQCxU1je3opNwzL9eUkFD6/GncE+RtOA9OKikAhADGsQ 9DOEremq3bYulJ3RYHZScM2r2W3bp4L+6aa5Rnl8/vjdVYUy5M/1oHGyVgQb+4n9 iqvDpxFQfw0SHjR0cuTdiHPCyU2lxOqTy9sLNcDE3jy/e2RsbKLfKPAT9q2mSeOM uQ5EJ6GF13almknj2K7UE0OXsMPMbYk9FtXzFeeYZisp1NPynynoYfFj+d+/lpaj jnJ9vL2PEAoBBUyBRDENn57dKmz4PGnIAa2rGhf1QWW1HKxvBqVV8FrWIrw/UXBt +n5gjisvkyQ2JH9M0wqu51NU105T+wL+FTIfE9UMvq7k -----END CERTIFICATE-----Generated at Sun Jun 15 22:40:52 2025 by rpki-client