$ rpki-client -vvf repo-rpki.idnic.net/repo/1b1c9579-56ba-4a70-ba13-3b05a6ccb21e/0/323030313a6466303a6338303a3a2f34382d3438203d3e203538343939.roa File: 323030313a6466303a6338303a3a2f34382d3438203d3e203538343939.roa (raw, json) Hash identifier: +tOA/QTi1erDkh8xjg35ATQ0nh241kswkzy+opupzr4= Subject key identifier: 33:E7:EA:F2:D2:7F:30:16:47:04:E3:BF:D4:BE:E1:A6:35:93:18:A6 Certificate issuer: /CN=F9F21F18D0C5656D8F24B3FFEE0B17A170FAD4A5 Certificate serial: 01DEE8B91107B40F1BB43AA57F1E5B3664D07E33 Authority key identifier: F9:F2:1F:18:D0:C5:65:6D:8F:24:B3:FF:EE:0B:17:A1:70:FA:D4:A5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F9F21F18D0C5656D8F24B3FFEE0B17A170FAD4A5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1b1c9579-56ba-4a70-ba13-3b05a6ccb21e/0/323030313a6466303a6338303a3a2f34382d3438203d3e203538343939.roa Signing time: Mon 02 Jun 2025 01:02:46 +0000 ROA not before: Mon 02 Jun 2025 00:57:46 +0000 ROA not after: Mon 01 Jun 2026 01:02:46 +0000 asID: 58499 IP address blocks: 2001:df0:c80::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1b1c9579-56ba-4a70-ba13-3b05a6ccb21e/0/F9F21F18D0C5656D8F24B3FFEE0B17A170FAD4A5.crl rsync://repo-rpki.idnic.net/repo/1b1c9579-56ba-4a70-ba13-3b05a6ccb21e/0/F9F21F18D0C5656D8F24B3FFEE0B17A170FAD4A5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F9F21F18D0C5656D8F24B3FFEE0B17A170FAD4A5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 19:34:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:de:e8:b9:11:07:b4:0f:1b:b4:3a:a5:7f:1e:5b:36:64:d0:7e:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F9F21F18D0C5656D8F24B3FFEE0B17A170FAD4A5 Validity Not Before: Jun 2 00:57:46 2025 GMT Not After : Jun 1 01:02:46 2026 GMT Subject: CN=33E7EAF2D27F30164704E3BFD4BEE1A6359318A6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:84:49:4e:43:89:3e:f9:0e:62:95:e1:69:78: 56:61:fb:47:01:ab:98:fb:e9:54:12:f4:df:c8:b0: ea:42:d3:09:85:86:a0:c3:74:1e:88:d4:c1:e4:0c: d1:9e:0d:1c:1f:f2:91:bb:8d:59:6f:f4:ed:dd:6d: 0c:91:34:e4:9f:82:3c:65:72:de:ef:dc:bf:b2:54: 76:5a:f6:71:71:a9:d3:de:4d:77:a5:a5:03:41:39: 4c:f3:66:13:72:9d:76:1b:86:fc:14:be:23:2d:30: 9e:50:3d:96:d6:26:b4:26:14:ea:b3:1e:be:77:42: 43:7a:7f:30:fa:a8:6a:70:da:83:28:dc:c0:0e:b3: 78:47:b3:09:89:2a:fd:f7:de:49:d1:9d:46:59:28: 21:f0:88:fd:ab:4b:39:44:fd:e8:97:7d:0a:35:12: 5a:12:0a:65:e3:94:5b:b9:50:1a:90:93:5c:3f:8e: fa:99:90:58:38:77:4d:56:ff:e9:d3:d3:d9:a3:ac: e4:3e:a9:96:fb:b5:7f:7f:cc:72:a2:40:d7:50:d6: b3:92:7b:0b:04:72:18:da:a4:c7:fa:94:02:e9:17: 0d:cc:ca:af:0c:9a:45:80:95:5f:85:4f:9b:b5:b2: 6d:b2:27:29:6b:f9:35:81:07:e4:eb:2c:09:17:bb: 49:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:E7:EA:F2:D2:7F:30:16:47:04:E3:BF:D4:BE:E1:A6:35:93:18:A6 X509v3 Authority Key Identifier: keyid:F9:F2:1F:18:D0:C5:65:6D:8F:24:B3:FF:EE:0B:17:A1:70:FA:D4:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1b1c9579-56ba-4a70-ba13-3b05a6ccb21e/0/F9F21F18D0C5656D8F24B3FFEE0B17A170FAD4A5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F9F21F18D0C5656D8F24B3FFEE0B17A170FAD4A5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1b1c9579-56ba-4a70-ba13-3b05a6ccb21e/0/323030313a6466303a6338303a3a2f34382d3438203d3e203538343939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:c80::/48 Signature Algorithm: sha256WithRSAEncryption 39:d3:e6:2d:f6:f7:bd:45:97:28:b2:5a:23:fe:04:63:cc:a0: 6c:a9:27:59:00:6a:3b:ee:8f:29:52:fa:19:d2:eb:fe:90:c7: 3a:a2:ca:40:d8:bc:18:ec:25:e1:05:3d:4f:13:8a:58:85:49: 11:3e:70:ee:05:54:9d:48:48:ce:a4:b1:87:6f:ea:5f:d8:60: f8:c3:fb:2e:ac:94:b4:4d:ff:2f:7a:22:a4:8b:f2:ca:9d:06: ae:aa:fb:27:dc:97:fd:db:ad:8d:e8:23:24:48:af:3e:4f:9f: 60:57:4c:f1:8c:a4:5e:7e:a5:8c:71:92:a2:9d:6a:5b:4d:4b: 1b:68:d8:f0:b6:93:88:f4:fd:a6:ec:f3:8e:c3:54:e9:17:17: 28:af:00:0f:b5:e8:d5:27:b7:1a:9d:05:9e:2c:49:ac:c3:57: b8:2e:fd:28:16:3b:66:8b:43:a9:b0:45:23:c4:39:31:13:f0: 1a:36:a3:47:f4:b9:8a:a4:d3:a2:1f:87:0b:77:e2:23:5e:94: 4d:06:ab:70:d6:61:2f:64:b9:13:0e:5a:4e:a3:b2:96:23:55: 9e:3a:2f:28:1c:ad:2a:dd:d7:de:5f:40:7b:d5:42:c2:99:4b: 9d:86:7e:a6:c4:70:03:5b:be:70:02:cc:f0:36:b0:cf:17:b9: 2c:a7:1e:81 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUAd7ouREHtA8btDqlfx5bNmTQfjMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjlGMjFGMThEMEM1NjU2RDhGMjRCM0ZGRUUwQjE3QTE3 MEZBRDRBNTAeFw0yNTA2MDIwMDU3NDZaFw0yNjA2MDEwMTAyNDZaMDMxMTAvBgNV BAMTKDMzRTdFQUYyRDI3RjMwMTY0NzA0RTNCRkQ0QkVFMUE2MzU5MzE4QTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxhElOQ4k++Q5ileFpeFZh+0cB q5j76VQS9N/IsOpC0wmFhqDDdB6I1MHkDNGeDRwf8pG7jVlv9O3dbQyRNOSfgjxl ct7v3L+yVHZa9nFxqdPeTXelpQNBOUzzZhNynXYbhvwUviMtMJ5QPZbWJrQmFOqz Hr53QkN6fzD6qGpw2oMo3MAOs3hHswmJKv333knRnUZZKCHwiP2rSzlE/eiXfQo1 EloSCmXjlFu5UBqQk1w/jvqZkFg4d01W/+nT09mjrOQ+qZb7tX9/zHKiQNdQ1rOS ewsEchjapMf6lALpFw3Myq8MmkWAlV+FT5u1sm2yJylr+TWBB+TrLAkXu0n/AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUM+fq8tJ/MBZHBOO/1L7hpjWTGKYwHwYDVR0j BBgwFoAU+fIfGNDFZW2PJLP/7gsXoXD61KUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YjFjOTU3OS01NmJhLTRhNzAtYmExMy0zYjA1YTZjY2IyMWUvMC9GOUYyMUYxOEQw QzU2NTZEOEYyNEIzRkZFRTBCMTdBMTcwRkFENEE1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjlGMjFGMThEMEM1NjU2RDhGMjRCM0ZGRUUwQjE3QTE3MEZB RDRBNS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFiMWM5NTc5LTU2YmEtNGE3MC1i YTEzLTNiMDVhNmNjYjIxZS8wLzMyMzAzMDMxM2E2NDY2MzAzYTYzMzgzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzgzNDM5Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAgAQ3wDIAw DQYJKoZIhvcNAQELBQADggEBADnT5i32971FlyiyWiP+BGPMoGypJ1kAajvujylS +hnS6/6QxzqiykDYvBjsJeEFPU8TiliFSRE+cO4FVJ1ISM6ksYdv6l/YYPjD+y6s lLRN/y96IqSL8sqdBq6q+yfcl/3brY3oIyRIrz5Pn2BXTPGMpF5+pYxxkqKdaltN Sxto2PC2k4j0/abs847DVOkXFyivAA+16NUntxqdBZ4sSazDV7gu/SgWO2aLQ6mw RSPEOTET8Bo2o0f0uYqk06Ifhwt34iNelE0Gq3DWYS9kuRMOWk6jspYjVZ46Lygc rSrd195fQHvVQsKZS52GfqbEcANbvnACzPA2sM8XuSynHoE= -----END CERTIFICATE-----Generated at Mon Oct 20 21:25:11 2025 by rpki-client