$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a383030303a3a2f34372d3437203d3e203137373237.roa File: 323430343a633030303a383030303a3a2f34372d3437203d3e203137373237.roa (raw, json) Hash identifier: +wv6K4siEG9Fqj7FGWWwpUxyVD+6Y0+K4fRLPRoXP68= Subject key identifier: 74:7E:32:5F:76:2C:73:25:F2:C1:2C:9F:6B:A6:CE:E8:7E:A6:3D:D6 Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 780025619CC7A4B946A9E51D04CD6D2A200C1802 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a383030303a3a2f34372d3437203d3e203137373237.roa Signing time: Mon 05 May 2025 05:02:17 +0000 ROA not before: Mon 05 May 2025 04:57:17 +0000 ROA not after: Mon 04 May 2026 05:02:17 +0000 asID: 17727 IP address blocks: 2404:c000:8000::/47 maxlen: 47 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 19:22:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:00:25:61:9c:c7:a4:b9:46:a9:e5:1d:04:cd:6d:2a:20:0c:18:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: May 5 04:57:17 2025 GMT Not After : May 4 05:02:17 2026 GMT Subject: CN=747E325F762C7325F2C12C9F6BA6CEE87EA63DD6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:8a:7e:ca:de:55:c4:63:27:78:c0:d3:77:5e: 16:6f:ea:1e:a0:84:69:0b:2f:8a:1a:97:b7:e7:ff: 2f:91:d5:da:85:74:ef:06:b6:5e:e7:2c:95:8e:4b: 43:e4:fa:b5:7b:02:72:f0:91:c9:11:53:99:58:b1: cc:e5:57:05:85:c3:ab:b6:7b:ec:f2:04:f6:bf:6f: 5a:90:69:e6:b2:3c:3c:9f:7a:16:b3:69:ef:4d:63: 0d:ce:6e:8e:1d:da:15:cf:aa:18:ba:44:63:f0:f2: 57:08:43:2c:de:03:18:23:2a:b6:9a:c8:af:a8:49: fa:f4:37:83:e4:44:d3:67:59:e0:03:23:7c:1e:16: 79:77:f5:7e:72:53:92:2a:b9:2c:4d:a8:2c:20:5e: 67:ed:9c:38:77:4d:72:69:ed:65:6b:c5:90:ad:19: 4f:cb:63:f0:d6:4e:a5:3d:8c:eb:18:c8:80:f5:bb: 69:9d:ab:2d:50:3e:2c:5d:12:ed:fe:d4:dc:a1:c5: 1d:15:7c:98:85:89:bd:6b:20:e2:04:38:aa:71:e0: 70:58:e6:4e:66:5f:27:80:e8:02:75:6e:0e:d6:0e: 5b:0a:c8:c3:02:8a:3d:e6:df:00:8f:0e:71:c7:a6: 89:9e:00:52:7d:bf:1d:35:36:f7:85:91:d1:ca:9c: c9:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:7E:32:5F:76:2C:73:25:F2:C1:2C:9F:6B:A6:CE:E8:7E:A6:3D:D6 X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a383030303a3a2f34372d3437203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:c000:8000::/47 Signature Algorithm: sha256WithRSAEncryption 99:ae:88:60:c8:a0:0b:ff:49:a6:3a:0b:bd:07:fd:54:03:98: 88:2c:33:95:25:5d:ad:5d:c8:9d:14:b8:51:a0:4d:35:30:8d: e5:e6:00:83:e5:5b:d4:1e:58:13:f6:20:66:a5:c7:ee:4c:c0: eb:db:07:56:6e:58:b1:40:da:7d:8a:65:0b:2f:0b:29:e7:66: dc:63:d7:07:f1:f6:69:f0:ba:f6:e8:64:ca:61:b8:52:68:01: f8:0c:5a:2d:80:e7:8d:93:51:32:ee:ff:f5:51:28:12:c5:ac: 4d:36:fe:ea:9a:36:96:72:fe:fd:c0:02:20:18:48:24:36:21: e6:e8:f4:50:98:21:4f:cc:29:a2:c1:ab:5e:7d:db:ee:72:a0: 7d:2e:84:04:43:db:cc:03:65:90:4d:e7:36:65:87:23:ff:6b: 65:3b:8a:40:b1:3e:22:39:8f:a4:76:f2:4b:9b:b2:3b:52:17: f7:7f:0c:2e:94:9f:68:49:bd:dc:ec:9e:be:06:bd:07:36:c3: 89:74:de:46:e5:75:9a:ab:15:06:2b:07:50:17:e6:f9:b2:67: 53:46:14:6a:b0:98:c4:ea:10:e8:0f:be:75:6e:75:88:75:54: 3d:7a:b4:fe:5b:25:61:a5:03:02:0f:68:88:3e:34:c9:2e:c9: e4:2d:61:e3 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUeAAlYZzHpLlGqeUdBM1tKiAMGAIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNTA1MDUwNDU3MTdaFw0yNjA1MDQwNTAyMTdaMDMxMTAvBgNV BAMTKDc0N0UzMjVGNzYyQzczMjVGMkMxMkM5RjZCQTZDRUU4N0VBNjNERDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClin7K3lXEYyd4wNN3XhZv6h6g hGkLL4oal7fn/y+R1dqFdO8Gtl7nLJWOS0Pk+rV7AnLwkckRU5lYsczlVwWFw6u2 e+zyBPa/b1qQaeayPDyfehazae9NYw3Obo4d2hXPqhi6RGPw8lcIQyzeAxgjKraa yK+oSfr0N4PkRNNnWeADI3weFnl39X5yU5IquSxNqCwgXmftnDh3TXJp7WVrxZCt GU/LY/DWTqU9jOsYyID1u2mdqy1QPixdEu3+1NyhxR0VfJiFib1rIOIEOKpx4HBY 5k5mXyeA6AJ1bg7WDlsKyMMCij3m3wCPDnHHpomeAFJ9vx01NveFkdHKnMnlAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUdH4yX3YscyXywSyfa6bO6H6mPdYwHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzQzMDM0M2E2MzMwMzAzMDNhMzgzMDMwMzAz YTNhMmYzNDM3MmQzNDM3MjAzZDNlMjAzMTM3MzczMjM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcBJATA AIAAMA0GCSqGSIb3DQEBCwUAA4IBAQCZrohgyKAL/0mmOgu9B/1UA5iILDOVJV2t XcidFLhRoE01MI3l5gCD5VvUHlgT9iBmpcfuTMDr2wdWblixQNp9imULLwsp52bc Y9cH8fZp8Lr26GTKYbhSaAH4DFotgOeNk1Ey7v/1USgSxaxNNv7qmjaWcv79wAIg GEgkNiHm6PRQmCFPzCmiwatefdvucqB9LoQEQ9vMA2WQTec2ZYcj/2tlO4pAsT4i OY+kdvJLm7I7Uhf3fwwulJ9oSb3c7J6+Br0HNsOJdN5G5XWaqxUGKwdQF+b5smdT RhRqsJjE6hDoD751bnWIdVQ9erT+WyVhpQMCD2iIPjTJLsnkLWHj -----END CERTIFICATE-----Generated at Sat May 10 19:47:35 2025 by rpki-client