$ rpki-client -vvf repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/323430353a6334303a363030303a3a2f33362d3336203d3e20313338383837.roa File: 323430353a6334303a363030303a3a2f33362d3336203d3e20313338383837.roa (raw, json) Hash identifier: 9Hphz4rTA2sQyZSSBKURj5EBn+fJ7avpUnADOEhDzkQ= Subject key identifier: 17:B8:0B:5C:D3:C8:8A:5A:B3:5C:54:5C:21:45:5E:85:DA:73:B6:E3 Certificate issuer: /CN=80F9ED59290AD77DE2856ECFD8340E28FF858E3D Certificate serial: 2FF49817AC334502F7CBAEE51E9B9A30E57FBF47 Authority key identifier: 80:F9:ED:59:29:0A:D7:7D:E2:85:6E:CF:D8:34:0E:28:FF:85:8E:3D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/323430353a6334303a363030303a3a2f33362d3336203d3e20313338383837.roa Signing time: Thu 01 May 2025 11:00:01 +0000 ROA not before: Thu 01 May 2025 10:55:01 +0000 ROA not after: Thu 30 Apr 2026 11:00:01 +0000 asID: 138887 IP address blocks: 2405:c40:6000::/36 maxlen: 36 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.crl rsync://repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 13:28:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:f4:98:17:ac:33:45:02:f7:cb:ae:e5:1e:9b:9a:30:e5:7f:bf:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=80F9ED59290AD77DE2856ECFD8340E28FF858E3D Validity Not Before: May 1 10:55:01 2025 GMT Not After : Apr 30 11:00:01 2026 GMT Subject: CN=17B80B5CD3C88A5AB35C545C21455E85DA73B6E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:cb:08:0b:d7:c2:38:1c:72:07:8e:86:56:e7: 63:33:02:d7:fa:bf:3f:14:ee:98:92:76:8e:eb:45: 72:14:e3:5c:77:a8:02:56:a2:a3:ce:43:cb:75:93: 2e:b4:39:b8:b8:90:07:98:4e:f5:61:43:45:bc:65: c0:1c:c9:f4:d0:8e:77:09:4c:57:bb:cc:9d:d9:0d: 74:b2:16:d0:72:63:3c:1d:03:46:77:30:e5:50:4f: e6:60:0e:36:7e:0c:cf:56:2f:76:89:ae:b5:13:de: 87:a6:03:88:45:f8:45:1d:6b:34:8c:74:77:93:05: c0:df:c5:cf:e0:0e:a8:84:92:42:7b:2a:37:fb:ba: b6:ca:c7:22:15:f4:df:56:cb:18:dd:d1:bd:82:14: 3a:ef:26:fe:9a:c2:ed:ea:b5:88:ad:76:84:7d:0c: 5a:04:12:d3:c8:a4:75:59:4e:cc:dd:c2:4a:d5:69: 02:c5:dd:4d:b1:17:9c:bf:d6:1f:db:90:d8:59:87: a3:3c:7e:74:cf:8d:41:4d:f5:85:12:00:d6:c4:82: 0d:18:e1:9a:f5:24:7b:f6:46:a8:f8:3f:45:76:a6: e5:b7:99:2c:a3:ac:fa:0a:1b:53:56:03:5a:bc:11: c2:2c:0d:fa:c7:73:99:31:17:a9:30:08:e6:46:57: e6:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:B8:0B:5C:D3:C8:8A:5A:B3:5C:54:5C:21:45:5E:85:DA:73:B6:E3 X509v3 Authority Key Identifier: keyid:80:F9:ED:59:29:0A:D7:7D:E2:85:6E:CF:D8:34:0E:28:FF:85:8E:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/323430353a6334303a363030303a3a2f33362d3336203d3e20313338383837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2405:c40:6000::/36 Signature Algorithm: sha256WithRSAEncryption 31:05:a3:0c:e6:6b:35:48:db:25:26:6c:5c:4b:bf:e1:2a:bc: f2:58:54:d0:41:d2:3c:2c:8b:b3:e1:cf:9d:49:51:47:7f:ec: 77:a2:21:09:2b:a9:8b:48:c9:de:f0:cb:13:f8:e1:35:80:0f: bc:e6:96:c2:ea:c7:dc:ab:69:cb:48:37:ad:33:51:a3:61:46: a6:be:d3:d8:77:34:80:e8:c4:11:12:4f:de:2e:e0:69:56:0f: 22:ce:88:63:21:ce:2c:4c:75:68:d5:ef:74:de:89:ba:ad:ab: f8:3e:13:f0:1f:d5:2b:1e:60:fd:7c:d9:85:8d:7b:df:f4:e7: ef:d3:bc:b7:8b:5f:c4:f9:cf:7d:7f:07:56:ce:a4:17:aa:40: 76:ea:8f:68:f8:ed:79:4e:c9:55:1b:83:cc:66:4c:68:df:f9: 25:61:e3:1a:84:de:35:30:d3:b0:ee:71:e8:fa:db:ed:83:8d: 60:84:79:9b:a8:1d:80:23:c3:97:e8:11:47:ec:dc:53:cb:a0: da:68:fc:6e:b1:87:5b:bb:d3:4f:6b:9a:55:7f:e3:fb:d5:0e: 77:71:66:18:3b:1b:27:b1:7e:12:97:4a:67:0f:28:54:ff:0a: e9:33:58:30:77:99:80:e8:bc:0f:22:4a:47:45:a7:c7:2b:62: f7:4d:a8:95 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUL/SYF6wzRQL3y67lHpuaMOV/v0cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODBGOUVENTkyOTBBRDc3REUyODU2RUNGRDgzNDBFMjhG Rjg1OEUzRDAeFw0yNTA1MDExMDU1MDFaFw0yNjA0MzAxMTAwMDFaMDMxMTAvBgNV BAMTKDE3QjgwQjVDRDNDODhBNUFCMzVDNTQ1QzIxNDU1RTg1REE3M0I2RTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDywgL18I4HHIHjoZW52MzAtf6 vz8U7piSdo7rRXIU41x3qAJWoqPOQ8t1ky60Obi4kAeYTvVhQ0W8ZcAcyfTQjncJ TFe7zJ3ZDXSyFtByYzwdA0Z3MOVQT+ZgDjZ+DM9WL3aJrrUT3oemA4hF+EUdazSM dHeTBcDfxc/gDqiEkkJ7Kjf7urbKxyIV9N9Wyxjd0b2CFDrvJv6awu3qtYitdoR9 DFoEEtPIpHVZTszdwkrVaQLF3U2xF5y/1h/bkNhZh6M8fnTPjUFN9YUSANbEgg0Y 4Zr1JHv2Rqj4P0V2puW3mSyjrPoKG1NWA1q8EcIsDfrHc5kxF6kwCOZGV+a9AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUF7gLXNPIilqzXFRcIUVehdpztuMwHwYDVR0j BBgwFoAUgPntWSkK133ihW7P2DQOKP+Fjj0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MDdjODhkYS0yYjU2LTQ4N2UtOWVmZS01NzExNzBiMTAyODYvMC84MEY5RUQ1OTI5 MEFENzdERTI4NTZFQ0ZEODM0MEUyOEZGODU4RTNELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODBGOUVENTkyOTBBRDc3REUyODU2RUNGRDgzNDBFMjhGRjg1 OEUzRC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MwN2M4OGRhLTJiNTYtNDg3ZS05 ZWZlLTU3MTE3MGIxMDI4Ni8wLzMyMzQzMDM1M2E2MzM0MzAzYTM2MzAzMDMwM2Ez YTJmMzMzNjJkMzMzNjIwM2QzZTIwMzEzMzM4MzgzODM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYEJAUM QGAwDQYJKoZIhvcNAQELBQADggEBADEFowzmazVI2yUmbFxLv+EqvPJYVNBB0jws i7Phz51JUUd/7HeiIQkrqYtIyd7wyxP44TWAD7zmlsLqx9yractIN60zUaNhRqa+ 09h3NIDoxBEST94u4GlWDyLOiGMhzixMdWjV73Teibqtq/g+E/Af1SseYP182YWN e9/05+/TvLeLX8T5z31/B1bOpBeqQHbqj2j47XlOyVUbg8xmTGjf+SVh4xqE3jUw 07Ducej62+2DjWCEeZuoHYAjw5foEUfs3FPLoNpo/G6xh1u7009rmlV/4/vVDndx Zhg7GyexfhKXSmcPKFT/CukzWDB3mYDovA8iSkdFp8crYvdNqJU= -----END CERTIFICATE-----Generated at Sat May 10 02:48:49 2025 by rpki-client