$ rpki-client -vvf repo-rpki.idnic.net/repo/927a6f34-1b6e-4e92-b2d2-0b9301a666a5/0/323430323a653330303a3a2f33322d3438203d3e20313331373036.roa File: 323430323a653330303a3a2f33322d3438203d3e20313331373036.roa (raw, json) Hash identifier: EV88jOIELhWBAVSmJqvptwA4m5UyL3dS/vav1cA94d8= Subject key identifier: F6:23:ED:E6:6D:DD:DF:7A:1A:3B:F8:D9:6B:63:E0:0E:EB:80:EF:A0 Certificate issuer: /CN=8DEDABAD21AD1A6BEF27E91FCEE30465563DFE72 Certificate serial: 79CCA938FB37E91F93DB4E2516DE6E5CD4B93ACC Authority key identifier: 8D:ED:AB:AD:21:AD:1A:6B:EF:27:E9:1F:CE:E3:04:65:56:3D:FE:72 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DEDABAD21AD1A6BEF27E91FCEE30465563DFE72.cer Subject info access: rsync://repo-rpki.idnic.net/repo/927a6f34-1b6e-4e92-b2d2-0b9301a666a5/0/323430323a653330303a3a2f33322d3438203d3e20313331373036.roa Signing time: Mon 02 Jun 2025 02:03:04 +0000 ROA not before: Mon 02 Jun 2025 01:58:04 +0000 ROA not after: Mon 01 Jun 2026 02:03:04 +0000 asID: 131706 IP address blocks: 2402:e300::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/927a6f34-1b6e-4e92-b2d2-0b9301a666a5/0/8DEDABAD21AD1A6BEF27E91FCEE30465563DFE72.crl rsync://repo-rpki.idnic.net/repo/927a6f34-1b6e-4e92-b2d2-0b9301a666a5/0/8DEDABAD21AD1A6BEF27E91FCEE30465563DFE72.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DEDABAD21AD1A6BEF27E91FCEE30465563DFE72.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 02:37:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:cc:a9:38:fb:37:e9:1f:93:db:4e:25:16:de:6e:5c:d4:b9:3a:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8DEDABAD21AD1A6BEF27E91FCEE30465563DFE72 Validity Not Before: Jun 2 01:58:04 2025 GMT Not After : Jun 1 02:03:04 2026 GMT Subject: CN=F623EDE66DDDDF7A1A3BF8D96B63E00EEB80EFA0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:31:bf:3e:ed:ae:5b:fe:77:48:cd:e7:f6:cf: ea:94:7a:d2:69:14:e5:ea:2d:af:53:e0:a0:1f:82: 74:80:34:c3:86:ff:50:83:73:39:61:06:97:7a:3d: d7:7e:ae:8f:73:31:78:29:14:0d:b6:45:a2:61:3e: a3:f8:41:ea:82:97:56:d7:0e:da:9f:64:43:e8:36: 54:b5:60:63:40:d0:b3:f7:2f:51:97:8b:c2:c9:b8: 56:55:99:4a:a0:9b:2b:81:bb:a1:66:b2:f2:67:c4: d9:3e:99:49:8b:15:f3:c9:67:f8:36:91:d0:b6:52: 1b:0f:a4:03:2e:76:9b:07:cd:9d:de:28:81:e9:63: 66:f2:cc:d3:11:43:00:ce:75:1a:a9:a1:ad:d0:62: 5d:37:89:0e:60:32:2f:d9:79:d6:09:29:1d:18:b8: 5c:fe:60:05:3a:de:c0:6e:b2:50:f7:0f:53:dc:95: 03:df:bd:67:8c:db:90:ba:fe:c3:54:23:82:82:6e: 6e:cc:77:51:25:d7:c1:25:35:22:fd:3b:00:54:17: 2a:da:8b:0f:66:a2:68:58:b7:68:62:9f:35:bd:7c: 30:5f:f9:26:43:cf:fd:3d:e2:0e:ca:70:e6:2e:5c: a3:3e:26:cc:66:ab:22:df:d0:db:5b:5d:2d:85:bc: e8:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:23:ED:E6:6D:DD:DF:7A:1A:3B:F8:D9:6B:63:E0:0E:EB:80:EF:A0 X509v3 Authority Key Identifier: keyid:8D:ED:AB:AD:21:AD:1A:6B:EF:27:E9:1F:CE:E3:04:65:56:3D:FE:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/927a6f34-1b6e-4e92-b2d2-0b9301a666a5/0/8DEDABAD21AD1A6BEF27E91FCEE30465563DFE72.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DEDABAD21AD1A6BEF27E91FCEE30465563DFE72.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/927a6f34-1b6e-4e92-b2d2-0b9301a666a5/0/323430323a653330303a3a2f33322d3438203d3e20313331373036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:e300::/32 Signature Algorithm: sha256WithRSAEncryption 46:b1:43:96:b0:ce:9f:13:b1:1c:cb:79:81:0c:8a:13:05:47: fd:6d:52:f0:6c:a0:45:c7:a8:ea:2f:29:2e:09:dc:c6:ce:4c: c9:1f:65:cc:a6:b4:ac:11:d9:85:9c:6f:9a:90:ff:b3:19:01: 9e:c6:6a:31:19:81:e7:d8:5d:c9:a3:e8:95:70:f8:e4:76:83: 6a:f8:74:c8:c5:d7:ad:32:d9:7f:a8:9e:71:f3:4d:62:9f:c5: f1:f4:2d:d0:f2:f1:4f:48:81:3b:94:2b:66:7f:9e:5f:be:6d: 52:f5:01:2d:33:cd:76:4b:7d:75:6e:d7:5c:a2:fa:f6:30:90: 5a:fa:b8:e2:63:9d:f1:46:60:39:40:f2:06:47:18:1b:93:3c: 3d:e3:a0:8c:c8:1d:ef:84:be:d5:cb:5f:d6:13:f0:d6:cc:6e: 43:a0:4f:f0:53:de:e6:c6:49:57:56:0c:b7:39:60:d3:00:ea: 45:c3:1f:6e:23:5b:f4:36:be:56:cb:3e:e0:21:4c:1e:7c:8c: b8:23:c0:66:5a:49:1a:74:ac:90:32:0f:aa:5d:ac:d1:a8:e5: 7b:4d:23:02:ce:fe:c2:79:11:85:b0:0a:a3:1e:a0:00:18:dc: 71:04:d6:58:18:04:e9:7d:ba:f1:95:a9:3d:a9:c3:f1:2a:9a: ad:5f:07:f1 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUecypOPs36R+T204lFt5uXNS5OswwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOERFREFCQUQyMUFEMUE2QkVGMjdFOTFGQ0VFMzA0NjU1 NjNERkU3MjAeFw0yNTA2MDIwMTU4MDRaFw0yNjA2MDEwMjAzMDRaMDMxMTAvBgNV BAMTKEY2MjNFREU2NkRERERGN0ExQTNCRjhEOTZCNjNFMDBFRUI4MEVGQTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTMb8+7a5b/ndIzef2z+qUetJp FOXqLa9T4KAfgnSANMOG/1CDczlhBpd6Pdd+ro9zMXgpFA22RaJhPqP4QeqCl1bX DtqfZEPoNlS1YGNA0LP3L1GXi8LJuFZVmUqgmyuBu6FmsvJnxNk+mUmLFfPJZ/g2 kdC2UhsPpAMudpsHzZ3eKIHpY2byzNMRQwDOdRqpoa3QYl03iQ5gMi/ZedYJKR0Y uFz+YAU63sBuslD3D1PclQPfvWeM25C6/sNUI4KCbm7Md1El18ElNSL9OwBUFyra iw9momhYt2hinzW9fDBf+SZDz/094g7KcOYuXKM+JsxmqyLf0NtbXS2FvOinAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQU9iPt5m3d33oaO/jZa2PgDuuA76AwHwYDVR0j BBgwFoAUje2rrSGtGmvvJ+kfzuMEZVY9/nIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MjdhNmYzNC0xYjZlLTRlOTItYjJkMi0wYjkzMDFhNjY2YTUvMC84REVEQUJBRDIx QUQxQTZCRUYyN0U5MUZDRUUzMDQ2NTU2M0RGRTcyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOERFREFCQUQyMUFEMUE2QkVGMjdFOTFGQ0VFMzA0NjU1NjNE RkU3Mi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkyN2E2ZjM0LTFiNmUtNGU5Mi1i MmQyLTBiOTMwMWE2NjZhNS8wLzMyMzQzMDMyM2E2NTMzMzAzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzMTM3MzAzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQC4wAwDQYJKoZI hvcNAQELBQADggEBAEaxQ5awzp8TsRzLeYEMihMFR/1tUvBsoEXHqOovKS4J3MbO TMkfZcymtKwR2YWcb5qQ/7MZAZ7GajEZgefYXcmj6JVw+OR2g2r4dMjF160y2X+o nnHzTWKfxfH0LdDy8U9IgTuUK2Z/nl++bVL1AS0zzXZLfXVu11yi+vYwkFr6uOJj nfFGYDlA8gZHGBuTPD3joIzIHe+EvtXLX9YT8NbMbkOgT/BT3ubGSVdWDLc5YNMA 6kXDH24jW/Q2vlbLPuAhTB58jLgjwGZaSRp0rJAyD6pdrNGo5XtNIwLO/sJ5EYWw CqMeoAAY3HEE1lgYBOl9uvGVqT2pw/Eqmq1fB/E= -----END CERTIFICATE-----Generated at Mon Jun 30 05:48:10 2025 by rpki-client