$ rpki-client -vvf repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a393331303a3a2f34342d3434203d3e20313333373938.roa File: 323430323a353638303a393331303a3a2f34342d3434203d3e20313333373938.roa (raw, json) Hash identifier: P0oL/nw6pSlVBQYlidCCKadKGQlPMBSUpgkAprWXgTA= Subject key identifier: 6A:3C:B4:91:77:D2:92:7A:B0:A5:8F:07:05:73:04:CE:C3:F9:B0:E0 Certificate issuer: /CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Certificate serial: 3661E51F3ED1486ABFBDB0AF821D164958D28584 Authority key identifier: 34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a393331303a3a2f34342d3434203d3e20313333373938.roa Signing time: Tue 27 May 2025 17:29:47 +0000 ROA not before: Tue 27 May 2025 17:24:47 +0000 ROA not after: Tue 26 May 2026 17:29:47 +0000 asID: 133798 IP address blocks: 2402:5680:9310::/44 maxlen: 44 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:29:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:61:e5:1f:3e:d1:48:6a:bf:bd:b0:af:82:1d:16:49:58:d2:85:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=347A275985EAE5BC9BA6C5CB929C06FA84C16B39 Validity Not Before: May 27 17:24:47 2025 GMT Not After : May 26 17:29:47 2026 GMT Subject: CN=6A3CB49177D2927AB0A58F07057304CEC3F9B0E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:cf:4f:a8:a8:14:6d:34:0c:5a:19:20:4c:c4: 73:b2:f3:9c:b7:ba:a6:ca:c0:20:14:61:ca:c5:f3: af:cf:ef:66:89:eb:f3:81:3a:89:56:39:7d:43:35: 61:89:9d:ea:3e:2a:f8:6d:f6:47:23:2d:38:83:af: cc:95:53:c7:25:f2:99:82:65:d4:94:df:56:9f:d4: 14:a9:9d:d8:5a:7d:dd:4c:54:6a:f2:4b:5d:a3:00: 33:09:68:f7:78:27:de:64:ea:42:b8:c4:27:46:68: 1a:d9:9c:2c:26:51:fd:8e:72:12:9a:57:0f:79:b5: 89:39:55:bd:d7:fb:b5:6f:be:12:18:2b:1f:59:74: a1:f7:d0:f8:90:08:3a:99:7c:f6:0b:87:b8:1b:25: 84:c0:8f:68:84:30:39:27:27:48:f5:11:6c:a3:e8: 2c:14:2a:33:69:49:cd:b7:a1:50:d5:69:46:ba:72: 03:7e:33:ca:58:79:65:3e:6d:46:0b:b7:b7:df:99: 7a:15:b4:83:ec:eb:4e:2e:44:b4:36:e8:0c:aa:91: 54:52:13:52:81:06:f9:0e:e0:ac:41:35:1f:bb:b6: 6a:f6:7b:f4:5d:5c:9b:86:99:b1:1d:09:97:dc:28: ed:c6:b6:b1:ff:1d:ab:1d:ce:55:d0:9d:03:6a:5e: 19:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:3C:B4:91:77:D2:92:7A:B0:A5:8F:07:05:73:04:CE:C3:F9:B0:E0 X509v3 Authority Key Identifier: keyid:34:7A:27:59:85:EA:E5:BC:9B:A6:C5:CB:92:9C:06:FA:84:C1:6B:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/347A275985EAE5BC9BA6C5CB929C06FA84C16B39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c303e6bb-7349-47aa-a4cd-51d8a0e222f6/0/323430323a353638303a393331303a3a2f34342d3434203d3e20313333373938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:5680:9310::/44 Signature Algorithm: sha256WithRSAEncryption 42:51:e8:67:1e:3f:30:a8:1d:4a:06:be:fd:30:95:25:53:f0: b1:73:0d:f4:f2:30:1d:59:ef:04:0c:c3:46:3f:74:82:97:20: 8c:53:0e:7d:68:e0:2b:f0:d4:b3:ab:7a:e5:b2:8d:e2:6f:67: 04:40:7f:4d:c4:4f:ff:da:06:02:26:6e:ba:cb:a0:6e:40:5a: 23:9d:fb:f6:22:13:f8:42:b3:94:16:a1:4b:b2:b8:4d:a1:c5: 04:ad:69:3c:9d:28:1a:3e:9c:32:3f:df:5e:3b:8c:53:0b:d8: 25:7f:0a:7b:09:39:22:f7:56:36:11:41:d3:6c:e6:0a:62:ff: a7:0b:3c:cd:ea:f9:79:99:bb:fe:c8:b0:0d:35:ec:ec:1c:71: 4f:66:62:77:f2:1c:ed:a8:e1:91:b3:94:4a:db:20:0a:9b:d9: a3:04:5f:1d:6f:82:35:46:fe:88:ba:a5:b0:e5:a5:fd:68:f6: dd:2a:ef:48:cc:b0:dc:d1:80:d8:ae:d8:d8:9b:66:f2:cb:c5: 75:13:58:40:cd:c4:28:4e:49:25:ff:9c:13:c2:24:ee:17:75: c2:48:40:65:bc:28:14:cc:77:df:2f:45:df:bc:e7:de:b5:77: 7e:29:d6:cf:3b:e7:a1:ac:63:19:3c:38:81:51:b6:56:71:55: a6:6c:21:b3 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUNmHlHz7RSGq/vbCvgh0WSVjShYQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4 NEMxNkIzOTAeFw0yNTA1MjcxNzI0NDdaFw0yNjA1MjYxNzI5NDdaMDMxMTAvBgNV BAMTKDZBM0NCNDkxNzdEMjkyN0FCMEE1OEYwNzA1NzMwNENFQzNGOUIwRTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDnz0+oqBRtNAxaGSBMxHOy85y3 uqbKwCAUYcrF86/P72aJ6/OBOolWOX1DNWGJneo+Kvht9kcjLTiDr8yVU8cl8pmC ZdSU31af1BSpndhafd1MVGryS12jADMJaPd4J95k6kK4xCdGaBrZnCwmUf2OchKa Vw95tYk5Vb3X+7VvvhIYKx9ZdKH30PiQCDqZfPYLh7gbJYTAj2iEMDknJ0j1EWyj 6CwUKjNpSc23oVDVaUa6cgN+M8pYeWU+bUYLt7ffmXoVtIPs604uRLQ26AyqkVRS E1KBBvkO4KxBNR+7tmr2e/RdXJuGmbEdCZfcKO3GtrH/HasdzlXQnQNqXhnrAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUajy0kXfSknqwpY8HBXMEzsP5sOAwHwYDVR0j BBgwFoAUNHonWYXq5bybpsXLkpwG+oTBazkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MzAzZTZiYi03MzQ5LTQ3YWEtYTRjZC01MWQ4YTBlMjIyZjYvMC8zNDdBMjc1OTg1 RUFFNUJDOUJBNkM1Q0I5MjlDMDZGQTg0QzE2QjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQ3QTI3NTk4NUVBRTVCQzlCQTZDNUNCOTI5QzA2RkE4NEMx NkIzOS5jZXIwgawGCCsGAQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MzMDNlNmJiLTczNDktNDdhYS1h NGNkLTUxZDhhMGUyMjJmNi8wLzMyMzQzMDMyM2EzNTM2MzgzMDNhMzkzMzMxMzAz YTNhMmYzNDM0MmQzNDM0MjAzZDNlMjAzMTMzMzMzNzM5Mzgucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQk AlaAkxAwDQYJKoZIhvcNAQELBQADggEBAEJR6GcePzCoHUoGvv0wlSVT8LFzDfTy MB1Z7wQMw0Y/dIKXIIxTDn1o4Cvw1LOreuWyjeJvZwRAf03ET//aBgImbrrLoG5A WiOd+/YiE/hCs5QWoUuyuE2hxQStaTydKBo+nDI/3147jFML2CV/CnsJOSL3VjYR QdNs5gpi/6cLPM3q+XmZu/7IsA017OwccU9mYnfyHO2o4ZGzlErbIAqb2aMEXx1v gjVG/oi6pbDlpf1o9t0q70jMsNzRgNiu2NibZvLLxXUTWEDNxChOSSX/nBPCJO4X dcJIQGW8KBTMd98vRd+85961d34p1s8756GsYxk8OIFRtlZxVaZsIbM= -----END CERTIFICATE-----Generated at Thu Jun 19 12:47:00 2025 by rpki-client