$ rpki-client -vvf repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a383030323a3a2f34382d3438203d3e203137373237.roa File: 323430343a633030303a383030323a3a2f34382d3438203d3e203137373237.roa (raw, json) Hash identifier: T1OwAQzxcA7kPdMTEHnAnWaWwm6STe/cFlP0Ks85w3c= Subject key identifier: 67:0B:AE:5F:52:26:00:13:3A:04:08:D1:3E:FC:F5:87:1D:E9:F5:6D Certificate issuer: /CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Certificate serial: 0E888318F14B5231433687FCFF7A7534F6AE9751 Authority key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject info access: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a383030323a3a2f34382d3438203d3e203137373237.roa Signing time: Mon 05 May 2025 05:02:17 +0000 ROA not before: Mon 05 May 2025 04:57:17 +0000 ROA not after: Mon 04 May 2026 05:02:17 +0000 asID: 17727 IP address blocks: 2404:c000:8002::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 19:22:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:88:83:18:f1:4b:52:31:43:36:87:fc:ff:7a:75:34:f6:ae:97:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Validity Not Before: May 5 04:57:17 2025 GMT Not After : May 4 05:02:17 2026 GMT Subject: CN=670BAE5F522600133A0408D13EFCF5871DE9F56D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:c3:a9:63:ab:2b:4d:89:8f:43:a6:c2:1f:8b: 49:58:4c:f7:fc:06:27:e4:1a:a4:44:46:42:c1:b9: 29:1e:e3:ed:03:a4:17:18:fa:af:b9:34:e5:20:19: 5a:67:cd:f7:7d:d4:20:f3:3d:64:26:41:2e:8f:5c: fd:ca:86:6a:49:9f:37:e3:6c:2a:83:16:8e:51:f5: 9d:3b:6a:df:6c:c4:44:a1:4b:90:50:8e:a0:02:47: ba:af:bc:9b:53:30:f5:bb:b0:30:41:01:41:12:d4: 2d:c5:62:b6:cc:a1:0e:89:e9:3a:b6:85:93:b0:47: e9:c2:bf:6d:1c:ce:c4:2d:30:80:94:18:e4:69:ba: ef:86:8e:c3:94:75:b3:a0:e1:b2:29:03:93:06:75: 3a:c6:90:ed:98:06:c2:8a:4c:87:0d:ae:81:7c:66: 46:d3:f0:1a:3a:c0:cd:82:b7:2e:cd:20:ef:d2:68: 2b:41:42:43:e6:6a:91:29:ee:6d:b7:20:93:94:b8: 3b:7f:f0:7b:e6:ad:f3:54:12:a3:3f:0c:25:c8:37: 8c:5e:b3:db:36:76:ad:01:78:71:9e:dd:8e:4d:1c: 7b:f5:ad:b6:a5:8b:65:c1:74:7b:dd:eb:93:39:12: 87:5b:4c:d4:b4:ab:62:92:58:2d:d3:a1:ff:5c:e6: f3:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:0B:AE:5F:52:26:00:13:3A:04:08:D1:3E:FC:F5:87:1D:E9:F5:6D X509v3 Authority Key Identifier: keyid:F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/323430343a633030303a383030323a3a2f34382d3438203d3e203137373237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:c000:8002::/48 Signature Algorithm: sha256WithRSAEncryption 6c:7a:2b:27:ab:89:e7:a5:47:88:53:e1:be:70:6e:16:cf:1a: b0:70:b8:23:c4:7f:eb:39:22:73:30:95:4b:33:0a:93:a8:03: 52:6a:24:3f:98:87:e5:71:a5:8b:b1:61:90:d1:6d:a8:dc:39: 32:d5:cb:bb:94:00:62:a0:2a:55:9f:24:5e:2f:13:ab:4d:a9: fe:6d:b5:2a:37:eb:61:ae:1f:a7:a6:e5:aa:a8:db:5e:2d:67: 94:c7:50:d8:e2:77:15:92:3d:c4:8f:a0:97:21:78:0f:8a:70: e8:a6:1d:a0:ee:8b:3d:a4:8e:8f:58:04:10:c2:41:44:98:d7: 2b:ea:db:25:84:45:08:9f:cd:cd:3f:67:f8:7e:61:ed:c4:38: e2:76:3b:34:a3:2a:10:1e:6c:77:f8:66:30:6e:59:7c:a8:91: 77:a8:9a:bc:75:6d:9d:c2:04:5d:62:02:04:49:59:2c:4a:d5: 14:96:b1:2e:73:05:6c:94:63:dd:84:ca:17:74:87:2a:65:b4: 05:52:27:b2:24:a6:80:73:68:10:20:79:fd:93:b2:4f:df:88: d5:7b:78:aa:a5:8c:20:a6:80:c1:b7:21:6b:59:e8:b7:4a:13: 6c:ad:40:32:a2:2c:9b:b2:c7:b3:4d:1a:4a:f7:61:cd:20:81: 92:8a:9b:e6 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUDoiDGPFLUjFDNof8/3p1NPaul1EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNE NjdENjUxMTAeFw0yNTA1MDUwNDU3MTdaFw0yNjA1MDQwNTAyMTdaMDMxMTAvBgNV BAMTKDY3MEJBRTVGNTIyNjAwMTMzQTA0MDhEMTNFRkNGNTg3MURFOUY1NkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQw6ljqytNiY9DpsIfi0lYTPf8 BifkGqRERkLBuSke4+0DpBcY+q+5NOUgGVpnzfd91CDzPWQmQS6PXP3KhmpJnzfj bCqDFo5R9Z07at9sxEShS5BQjqACR7qvvJtTMPW7sDBBAUES1C3FYrbMoQ6J6Tq2 hZOwR+nCv20czsQtMICUGORpuu+GjsOUdbOg4bIpA5MGdTrGkO2YBsKKTIcNroF8 ZkbT8Bo6wM2Cty7NIO/SaCtBQkPmapEp7m23IJOUuDt/8HvmrfNUEqM/DCXIN4xe s9s2dq0BeHGe3Y5NHHv1rbali2XBdHvd65M5EodbTNS0q2KSWC3Tof9c5vMxAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUZwuuX1ImABM6BAjRPvz1hx3p9W0wHwYDVR0j BBgwFoAU85mhoMGP6NvaI84hdeDLI9Z9ZREwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMC9GMzk5QTFBMEMx OEZFOERCREEyM0NFMjE3NUUwQ0IyM0Q2N0Q2NTExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM5OUExQTBDMThGRThEQkRBMjNDRTIxNzVFMENCMjNENjdE NjUxMS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJmLTcyNWUtNDM5OS04 NjlhLTRiMWZjZjJjNmEwYy8wLzMyMzQzMDM0M2E2MzMwMzAzMDNhMzgzMDMwMzIz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM3MzczMjM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJATA AIACMA0GCSqGSIb3DQEBCwUAA4IBAQBseisnq4nnpUeIU+G+cG4WzxqwcLgjxH/r OSJzMJVLMwqTqANSaiQ/mIflcaWLsWGQ0W2o3Dky1cu7lABioCpVnyReLxOrTan+ bbUqN+thrh+npuWqqNteLWeUx1DY4ncVkj3Ej6CXIXgPinDoph2g7os9pI6PWAQQ wkFEmNcr6tslhEUIn83NP2f4fmHtxDjidjs0oyoQHmx3+GYwbll8qJF3qJq8dW2d wgRdYgIESVksStUUlrEucwVslGPdhMoXdIcqZbQFUieyJKaAc2gQIHn9k7JP34jV e3iqpYwgpoDBtyFrWei3ShNsrUAyoiybssezTRpK92HNIIGSipvm -----END CERTIFICATE-----Generated at Sun May 11 00:14:28 2025 by rpki-client