$ rpki-client -vvf repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/323430343a343863303a3a2f33322d3332203d3e20313338313334.roa File: 323430343a343863303a3a2f33322d3332203d3e20313338313334.roa (raw, json) Hash identifier: /uE3RoNjstpZuWvkeLBYaDpbs3/pa2JGUNOwerwb9Qk= Subject key identifier: 02:36:64:AB:67:39:31:AC:63:52:EE:98:DC:4C:13:D2:61:97:29:23 Certificate issuer: /CN=C3F80A35C1C6877BBE49719B908D029FBFCDDBB0 Certificate serial: 5E92A538F1B57B0B878EF35FCF68532FFD675627 Authority key identifier: C3:F8:0A:35:C1:C6:87:7B:BE:49:71:9B:90:8D:02:9F:BF:CD:DB:B0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/323430343a343863303a3a2f33322d3332203d3e20313338313334.roa Signing time: Fri 13 Jun 2025 18:59:29 +0000 ROA not before: Fri 13 Jun 2025 18:54:29 +0000 ROA not after: Fri 12 Jun 2026 18:59:29 +0000 asID: 138134 IP address blocks: 2404:48c0::/32 maxlen: 32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.crl rsync://repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 20:53:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:92:a5:38:f1:b5:7b:0b:87:8e:f3:5f:cf:68:53:2f:fd:67:56:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3F80A35C1C6877BBE49719B908D029FBFCDDBB0 Validity Not Before: Jun 13 18:54:29 2025 GMT Not After : Jun 12 18:59:29 2026 GMT Subject: CN=023664AB673931AC6352EE98DC4C13D261972923 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:c6:74:d7:cd:47:72:4a:56:e4:11:e2:22:7a: ee:c9:2d:72:66:e2:1a:98:e9:bc:6e:8e:37:eb:99: 32:da:12:e7:d3:1e:a1:61:8d:6d:ee:1d:72:d8:3c: fc:e3:18:5c:f6:6c:12:77:01:59:1d:a0:ff:46:65: da:32:e8:bf:c5:b9:5c:4f:4c:8d:7a:1b:03:87:f3: a1:7a:7d:80:5e:6c:ca:ad:b5:26:54:37:d5:2f:b4: 31:2f:17:f0:d7:c3:c0:f4:7b:86:36:f0:87:60:30: 78:4a:9a:92:c5:aa:d3:ba:9b:f0:19:7c:95:40:89: 49:9e:53:8e:6a:7b:ca:7d:71:f8:ae:9e:e4:6a:2e: 77:61:6c:5c:08:e7:b3:13:23:f8:fe:8b:ce:99:c7: 1f:64:07:ec:d8:df:b6:e8:81:b3:d1:11:c4:d5:13: 9b:83:52:83:38:d7:65:e3:2a:f7:14:06:96:0a:59: bc:aa:93:6f:0d:92:b7:94:7d:56:ec:5f:36:bb:1e: f5:ac:d3:01:6e:72:98:8a:fe:29:03:41:f2:bd:14: 45:c8:04:04:66:ba:66:1b:de:8f:7b:a4:b5:e5:27: 86:da:0e:78:d2:fe:8a:d6:89:c2:24:f3:98:60:39: 7c:2a:5c:40:7d:3a:38:44:f5:05:fb:17:24:92:57: a9:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:36:64:AB:67:39:31:AC:63:52:EE:98:DC:4C:13:D2:61:97:29:23 X509v3 Authority Key Identifier: keyid:C3:F8:0A:35:C1:C6:87:7B:BE:49:71:9B:90:8D:02:9F:BF:CD:DB:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/323430343a343863303a3a2f33322d3332203d3e20313338313334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:48c0::/32 Signature Algorithm: sha256WithRSAEncryption 6d:b0:55:55:5c:5d:90:d6:65:f0:64:8f:d6:60:00:11:07:63: e5:37:d7:3f:3d:ac:02:9e:95:b9:69:85:40:49:a3:22:4d:c5: e4:a6:9b:d2:19:f5:d0:f9:cd:54:01:5b:7d:33:ae:86:15:98: 67:7b:73:60:9a:45:a6:2c:99:e0:f8:fc:07:2c:6d:d6:35:86: c2:0b:5b:fc:38:63:ef:f6:bc:a6:6e:9a:95:df:60:37:c7:fa: 05:94:94:35:c8:1e:ea:12:ae:b5:76:7c:76:f9:79:7c:94:9d: 5d:d4:e5:fb:5e:9b:41:a9:96:32:ba:ab:0c:0a:e4:77:92:43: a4:03:f8:b7:df:56:87:5f:28:9f:4a:c7:cb:eb:fe:ba:b8:1a: 65:e2:15:e8:ce:ec:8f:e9:f8:90:d4:d7:b5:8a:b9:08:3e:01: f2:28:92:46:2f:08:2d:7e:7f:de:7f:e0:ec:e7:b4:a8:63:3d: 43:96:b6:5d:50:6f:6e:dc:f8:b2:85:a1:e5:d0:64:a4:f2:58: 65:a7:82:6d:4a:f1:da:58:5c:03:2e:5d:33:f5:96:2e:be:ab: aa:ef:dc:20:8f:54:ea:c7:87:8b:b7:35:92:31:ef:0d:66:9f: 8c:74:21:79:0c:e1:9c:ad:f7:a9:2e:0b:99:8e:d0:07:16:ee: a5:3f:e2:0a -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUXpKlOPG1ewuHjvNfz2hTL/1nVicwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNGODBBMzVDMUM2ODc3QkJFNDk3MTlCOTA4RDAyOUZC RkNEREJCMDAeFw0yNTA2MTMxODU0MjlaFw0yNjA2MTIxODU5MjlaMDMxMTAvBgNV BAMTKDAyMzY2NEFCNjczOTMxQUM2MzUyRUU5OERDNEMxM0QyNjE5NzI5MjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfxnTXzUdySlbkEeIieu7JLXJm 4hqY6bxujjfrmTLaEufTHqFhjW3uHXLYPPzjGFz2bBJ3AVkdoP9GZdoy6L/FuVxP TI16GwOH86F6fYBebMqttSZUN9UvtDEvF/DXw8D0e4Y28IdgMHhKmpLFqtO6m/AZ fJVAiUmeU45qe8p9cfiunuRqLndhbFwI57MTI/j+i86Zxx9kB+zY37bogbPREcTV E5uDUoM412XjKvcUBpYKWbyqk28NkreUfVbsXza7HvWs0wFucpiK/ikDQfK9FEXI BARmumYb3o97pLXlJ4baDnjS/orWicIk85hgOXwqXEB9OjhE9QX7FySSV6l7AgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUAjZkq2c5MaxjUu6Y3EwT0mGXKSMwHwYDVR0j BBgwFoAUw/gKNcHGh3u+SXGbkI0Cn7/N27AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j Y2Y2OGFiYS05NTE1LTRkMTItYWFjMi04Y2VlNWRiMmE0OGYvMC9DM0Y4MEEzNUMx QzY4NzdCQkU0OTcxOUI5MDhEMDI5RkJGQ0REQkIwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzNGODBBMzVDMUM2ODc3QkJFNDk3MTlCOTA4RDAyOUZCRkNE REJCMC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NjZjY4YWJhLTk1MTUtNGQxMi1h YWMyLThjZWU1ZGIyYTQ4Zi8wLzMyMzQzMDM0M2EzNDM4NjMzMDNhM2EyZjMzMzIy ZDMzMzIyMDNkM2UyMDMxMzMzODMxMzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQESMAwDQYJKoZI hvcNAQELBQADggEBAG2wVVVcXZDWZfBkj9ZgABEHY+U31z89rAKelblphUBJoyJN xeSmm9IZ9dD5zVQBW30zroYVmGd7c2CaRaYsmeD4/AcsbdY1hsILW/w4Y+/2vKZu mpXfYDfH+gWUlDXIHuoSrrV2fHb5eXyUnV3U5ftem0GpljK6qwwK5HeSQ6QD+Lff VodfKJ9Kx8vr/rq4GmXiFejO7I/p+JDU17WKuQg+AfIokkYvCC1+f95/4OzntKhj PUOWtl1Qb27c+LKFoeXQZKTyWGWngm1K8dpYXAMuXTP1li6+q6rv3CCPVOrHh4u3 NZIx7w1mn4x0IXkM4Zyt96kuC5mO0AcW7qU/4go= -----END CERTIFICATE-----Generated at Thu Nov 6 01:33:25 2025 by rpki-client