$ rpki-client -vvf repo-rpki.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/323030313a6466353a643230303a3a2f34382d3438203d3e203436303530.roa File: 323030313a6466353a643230303a3a2f34382d3438203d3e203436303530.roa (raw, json) Hash identifier: rdX2P/62Fs2A7bSHrzzBOblACv/dlOvxDsyqbDOTmes= Subject key identifier: 9C:C5:64:E2:7E:A9:87:68:17:49:C2:C3:39:EB:E4:2B:39:EF:A7:5C Certificate issuer: /CN=1661A1BC89CCADD4C7BE723052AE5900DE181E06 Certificate serial: 3E90D4BBDF3F8769C635266B3599902F55398B03 Authority key identifier: 16:61:A1:BC:89:CC:AD:D4:C7:BE:72:30:52:AE:59:00:DE:18:1E:06 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1661A1BC89CCADD4C7BE723052AE5900DE181E06.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/323030313a6466353a643230303a3a2f34382d3438203d3e203436303530.roa Signing time: Fri 11 Jul 2025 07:02:23 +0000 ROA not before: Fri 11 Jul 2025 06:57:23 +0000 ROA not after: Fri 10 Jul 2026 07:02:23 +0000 asID: 46050 IP address blocks: 2001:df5:d200::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/1661A1BC89CCADD4C7BE723052AE5900DE181E06.crl rsync://repo-rpki.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/1661A1BC89CCADD4C7BE723052AE5900DE181E06.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1661A1BC89CCADD4C7BE723052AE5900DE181E06.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Jul 2025 20:47:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:90:d4:bb:df:3f:87:69:c6:35:26:6b:35:99:90:2f:55:39:8b:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1661A1BC89CCADD4C7BE723052AE5900DE181E06 Validity Not Before: Jul 11 06:57:23 2025 GMT Not After : Jul 10 07:02:23 2026 GMT Subject: CN=9CC564E27EA987681749C2C339EBE42B39EFA75C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:4d:e9:f5:66:7e:2f:61:6c:cc:00:eb:02:d7: 8c:c6:f2:9e:69:75:2d:ed:fe:99:28:f6:f7:70:da: 79:9b:5a:dd:b8:df:64:2b:24:81:19:8a:78:3e:6d: ba:cd:3a:d4:5a:1f:54:f4:69:e4:c4:8c:82:f6:3f: 7a:35:30:46:c1:77:91:b8:54:66:cf:97:bf:ed:ad: 08:87:cf:d9:97:75:56:95:30:95:e2:82:a8:48:7d: 58:6d:86:68:8f:e1:11:b4:7d:54:4b:e7:2c:46:63: 90:34:b7:27:64:9b:4c:2a:32:ee:57:dd:dd:cb:45: 5b:3f:71:a7:e5:bf:26:a2:40:d5:35:81:ea:b2:1c: c3:8b:cb:90:df:04:93:90:a8:51:ca:21:6e:cc:f1: 12:5f:6f:85:18:73:07:2b:6c:5f:18:f1:2e:ab:82: b3:82:b7:2b:94:3e:5a:cc:f7:03:43:6c:10:ac:fa: 65:6b:dc:fa:76:43:39:d8:53:82:b8:e5:9b:cb:cc: 1b:fd:44:36:f1:74:c1:de:82:c3:49:9e:03:d6:53: 40:92:8d:1c:a3:34:72:e9:dc:36:93:6a:20:3d:91: 32:12:65:83:8a:95:4a:4a:23:3b:19:26:00:5c:73: 2c:25:79:5f:fe:23:7a:c3:a3:ce:7a:5e:14:82:56: ce:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:C5:64:E2:7E:A9:87:68:17:49:C2:C3:39:EB:E4:2B:39:EF:A7:5C X509v3 Authority Key Identifier: keyid:16:61:A1:BC:89:CC:AD:D4:C7:BE:72:30:52:AE:59:00:DE:18:1E:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/1661A1BC89CCADD4C7BE723052AE5900DE181E06.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1661A1BC89CCADD4C7BE723052AE5900DE181E06.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/323030313a6466353a643230303a3a2f34382d3438203d3e203436303530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df5:d200::/48 Signature Algorithm: sha256WithRSAEncryption 96:6c:06:a1:dc:e7:cd:42:1e:d8:45:36:f9:ea:e0:b6:4d:42: 74:4b:df:ab:e5:56:b0:03:45:d6:59:7c:be:ae:bf:ef:61:1e: f0:a4:9b:9b:74:db:93:f9:83:e9:38:ac:14:48:c1:14:21:63: fd:1a:59:4b:63:40:4d:ab:aa:2e:84:f1:6e:39:14:b8:19:88: f7:f5:b1:da:03:25:47:4d:cc:78:8e:fa:76:f2:3d:c3:f5:bd: 7e:07:98:93:32:bd:bb:ce:f8:02:82:c8:02:bd:24:5a:d6:05: 0b:e6:bd:2e:41:84:8d:14:df:2d:50:97:1d:d0:be:af:7f:da: f9:85:d2:89:4e:bc:8e:6d:d0:92:7e:3c:32:0c:dd:79:49:7c: 92:d5:7a:c2:95:75:b5:70:0e:48:c1:d0:41:ad:dc:45:46:67: 20:e7:ae:9f:cd:d4:6d:13:46:05:aa:16:74:4c:f6:2b:48:d2: 5a:d3:9e:45:bd:a8:9d:c6:a5:09:2c:ad:62:eb:06:1a:24:fd: be:14:3d:1f:73:0f:2e:3f:fa:60:14:fa:4a:75:95:7b:be:5f: 4d:ac:46:44:74:d7:a6:2f:c3:d7:69:46:5a:16:fa:40:4b:e8: 13:4d:c1:24:a0:5a:c2:ff:c6:fb:1d:12:f6:08:46:18:09:f8: 84:14:20:59 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUPpDUu98/h2nGNSZrNZmQL1U5iwMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY2MUExQkM4OUNDQURENEM3QkU3MjMwNTJBRTU5MDBE RTE4MUUwNjAeFw0yNTA3MTEwNjU3MjNaFw0yNjA3MTAwNzAyMjNaMDMxMTAvBgNV BAMTKDlDQzU2NEUyN0VBOTg3NjgxNzQ5QzJDMzM5RUJFNDJCMzlFRkE3NUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGTen1Zn4vYWzMAOsC14zG8p5p dS3t/pko9vdw2nmbWt2432QrJIEZing+bbrNOtRaH1T0aeTEjIL2P3o1MEbBd5G4 VGbPl7/trQiHz9mXdVaVMJXigqhIfVhthmiP4RG0fVRL5yxGY5A0tydkm0wqMu5X 3d3LRVs/caflvyaiQNU1geqyHMOLy5DfBJOQqFHKIW7M8RJfb4UYcwcrbF8Y8S6r grOCtyuUPlrM9wNDbBCs+mVr3Pp2QznYU4K45ZvLzBv9RDbxdMHegsNJngPWU0CS jRyjNHLp3DaTaiA9kTISZYOKlUpKIzsZJgBccywleV/+I3rDo856XhSCVs6NAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUnMVk4n6ph2gXScLDOevkKznvp1wwHwYDVR0j BBgwFoAUFmGhvInMrdTHvnIwUq5ZAN4YHgYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MGQyZDNlMy00YzIwLTRhOTAtODMzZS1lYWQ0M2MzMzk5MWUvMC8xNjYxQTFCQzg5 Q0NBREQ0QzdCRTcyMzA1MkFFNTkwMERFMTgxRTA2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTY2MUExQkM4OUNDQURENEM3QkU3MjMwNTJBRTU5MDBERTE4 MUUwNi5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QwZDJkM2UzLTRjMjAtNGE5MC04 MzNlLWVhZDQzYzMzOTkxZS8wLzMyMzAzMDMxM2E2NDY2MzUzYTY0MzIzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzQzNjMwMzUzMC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfXS ADANBgkqhkiG9w0BAQsFAAOCAQEAlmwGodznzUIe2EU2+ergtk1CdEvfq+VWsANF 1ll8vq6/72Ee8KSbm3Tbk/mD6TisFEjBFCFj/RpZS2NATauqLoTxbjkUuBmI9/Wx 2gMlR03MeI76dvI9w/W9fgeYkzK9u874AoLIAr0kWtYFC+a9LkGEjRTfLVCXHdC+ r3/a+YXSiU68jm3Qkn48MgzdeUl8ktV6wpV1tXAOSMHQQa3cRUZnIOeun83UbRNG BaoWdEz2K0jSWtOeRb2oncalCSytYusGGiT9vhQ9H3MPLj/6YBT6SnWVe75fTaxG RHTXpi/D12lGWhb6QEvoE03BJKBawv/G+x0S9ghGGAn4hBQgWQ== -----END CERTIFICATE-----Generated at Mon Jul 21 23:17:23 2025 by rpki-client