$ rpki-client -vvf repo-rpki.idnic.net/repo/0d4dcde3-757f-43d4-ade2-ff0887cc2487/0/323030313a6466303a376234303a3a2f34382d3438203d3e20313439333938.roa File: 323030313a6466303a376234303a3a2f34382d3438203d3e20313439333938.roa (raw, json) Hash identifier: psLXI8EhSprvLBeHE4NaEuLwpqU51lfxmeH1s52rh8s= Subject key identifier: 80:7C:4D:92:69:D1:60:68:6B:DB:81:66:0E:8C:B3:D3:AA:35:21:49 Certificate issuer: /CN=14CB3B6CE8B43BB7439AAEA86D73DF3AF1594D9E Certificate serial: 56BA7DBE587B640C26019BF39A11F2E5818D46AA Authority key identifier: 14:CB:3B:6C:E8:B4:3B:B7:43:9A:AE:A8:6D:73:DF:3A:F1:59:4D:9E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14CB3B6CE8B43BB7439AAEA86D73DF3AF1594D9E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0d4dcde3-757f-43d4-ade2-ff0887cc2487/0/323030313a6466303a376234303a3a2f34382d3438203d3e20313439333938.roa Signing time: Mon 19 May 2025 07:00:00 +0000 ROA not before: Mon 19 May 2025 06:55:00 +0000 ROA not after: Mon 18 May 2026 07:00:00 +0000 asID: 149398 IP address blocks: 2001:df0:7b40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0d4dcde3-757f-43d4-ade2-ff0887cc2487/0/14CB3B6CE8B43BB7439AAEA86D73DF3AF1594D9E.crl rsync://repo-rpki.idnic.net/repo/0d4dcde3-757f-43d4-ade2-ff0887cc2487/0/14CB3B6CE8B43BB7439AAEA86D73DF3AF1594D9E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14CB3B6CE8B43BB7439AAEA86D73DF3AF1594D9E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 02:27:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:ba:7d:be:58:7b:64:0c:26:01:9b:f3:9a:11:f2:e5:81:8d:46:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=14CB3B6CE8B43BB7439AAEA86D73DF3AF1594D9E Validity Not Before: May 19 06:55:00 2025 GMT Not After : May 18 07:00:00 2026 GMT Subject: CN=807C4D9269D160686BDB81660E8CB3D3AA352149 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:0d:32:32:8c:98:eb:97:0a:83:e1:17:34:40: 07:1e:8a:2d:a5:98:a0:35:aa:60:6b:b8:b5:d7:c0: b5:4e:fd:91:15:9d:58:c2:8c:05:1e:cc:dd:a0:91: 67:6b:60:6f:48:6a:ae:e3:9b:88:1d:20:08:c8:71: 24:8e:29:30:da:e8:62:b4:d0:da:4d:33:c7:64:89: ee:a8:a1:6f:14:fe:8a:95:d7:52:55:4c:de:6a:22: ca:a6:b8:0a:b5:31:b7:b7:c1:f4:87:5c:c0:7f:2d: fd:82:55:00:f4:d9:60:6f:bb:a7:d1:a6:75:ca:4b: 6a:66:3e:48:d7:4b:cd:3b:95:d3:20:74:13:e8:ea: 48:20:02:21:5d:31:95:8b:ed:18:4a:ba:c6:ec:93: 34:5c:2c:f5:bb:3f:1a:17:c9:8f:d4:2c:45:76:3f: 96:0d:64:e8:0d:87:bf:22:f5:42:ca:dc:61:5c:0f: 96:d1:fe:3e:a8:f2:e1:7c:36:9b:f4:fa:74:e5:59: 10:f0:33:db:d9:1d:fb:6d:80:14:96:24:cc:c7:00: d0:54:07:fa:0f:3a:20:04:70:b3:a2:7d:89:99:2a: 4a:aa:b1:d5:d2:7f:03:a1:5b:e2:07:28:6d:53:45: cf:16:0d:6c:2e:08:1c:31:4c:b0:bd:a7:9f:d0:78: 4c:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:7C:4D:92:69:D1:60:68:6B:DB:81:66:0E:8C:B3:D3:AA:35:21:49 X509v3 Authority Key Identifier: keyid:14:CB:3B:6C:E8:B4:3B:B7:43:9A:AE:A8:6D:73:DF:3A:F1:59:4D:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0d4dcde3-757f-43d4-ade2-ff0887cc2487/0/14CB3B6CE8B43BB7439AAEA86D73DF3AF1594D9E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14CB3B6CE8B43BB7439AAEA86D73DF3AF1594D9E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0d4dcde3-757f-43d4-ade2-ff0887cc2487/0/323030313a6466303a376234303a3a2f34382d3438203d3e20313439333938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:7b40::/48 Signature Algorithm: sha256WithRSAEncryption 2d:c7:80:0b:69:bd:68:38:ca:ec:5b:13:da:56:3d:d4:32:ad: 83:40:59:c3:92:7d:a6:ad:7c:ad:cc:af:0f:87:22:23:e0:b4: 93:cc:2d:5e:b9:17:1c:9f:65:bf:66:52:97:19:70:71:d3:e1: ac:3c:c5:e5:b9:f7:c5:3e:57:c9:f2:87:48:e1:83:e3:67:6e: f9:58:7d:03:7f:23:09:40:c0:be:5c:f8:d9:8a:23:08:d2:9d: ab:37:b2:7d:54:54:7c:17:12:20:8c:87:68:6e:4e:58:f2:a0: f0:51:0f:d6:c9:bb:c9:85:0d:c2:91:29:58:32:65:72:b2:c7: 30:d2:02:d1:e4:a2:a2:19:52:9c:be:5e:41:81:14:29:54:15: e0:63:77:37:70:da:2a:95:80:98:b7:88:4f:9d:d0:22:42:8c: 63:50:95:91:b2:b6:3e:ba:6a:52:f3:7b:f7:98:15:ef:e3:79: 0f:a5:d4:19:b1:7d:61:04:c4:83:22:ff:50:d2:62:fc:2f:5b: 6d:bb:99:85:6f:f6:ec:f9:14:d4:df:98:6b:3b:14:f0:74:fd: b9:6f:85:90:29:f6:5f:65:04:c9:a2:57:e0:cc:8b:ff:43:08: 65:2a:08:85:1b:61:9f:84:1e:7a:da:64:0d:59:a1:96:98:21: c1:3c:57:7b -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUVrp9vlh7ZAwmAZvzmhHy5YGNRqowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTRDQjNCNkNFOEI0M0JCNzQzOUFBRUE4NkQ3M0RGM0FG MTU5NEQ5RTAeFw0yNTA1MTkwNjU1MDBaFw0yNjA1MTgwNzAwMDBaMDMxMTAvBgNV BAMTKDgwN0M0RDkyNjlEMTYwNjg2QkRCODE2NjBFOENCM0QzQUEzNTIxNDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDiDTIyjJjrlwqD4Rc0QAceii2l mKA1qmBruLXXwLVO/ZEVnVjCjAUezN2gkWdrYG9Iaq7jm4gdIAjIcSSOKTDa6GK0 0NpNM8dkie6ooW8U/oqV11JVTN5qIsqmuAq1Mbe3wfSHXMB/Lf2CVQD02WBvu6fR pnXKS2pmPkjXS807ldMgdBPo6kggAiFdMZWL7RhKusbskzRcLPW7PxoXyY/ULEV2 P5YNZOgNh78i9ULK3GFcD5bR/j6o8uF8Npv0+nTlWRDwM9vZHfttgBSWJMzHANBU B/oPOiAEcLOifYmZKkqqsdXSfwOhW+IHKG1TRc8WDWwuCBwxTLC9p5/QeEw1AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUgHxNkmnRYGhr24FmDoyz06o1IUkwHwYDVR0j BBgwFoAUFMs7bOi0O7dDmq6obXPfOvFZTZ4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZDRkY2RlMy03NTdmLTQzZDQtYWRlMi1mZjA4ODdjYzI0ODcvMC8xNENCM0I2Q0U4 QjQzQkI3NDM5QUFFQTg2RDczREYzQUYxNTk0RDlFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTRDQjNCNkNFOEI0M0JCNzQzOUFBRUE4NkQ3M0RGM0FGMTU5 NEQ5RS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBkNGRjZGUzLTc1N2YtNDNkNC1h ZGUyLWZmMDg4N2NjMjQ4Ny8wLzMyMzAzMDMxM2E2NDY2MzAzYTM3NjIzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDM5MzMzOTM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8HtAMA0GCSqGSIb3DQEBCwUAA4IBAQAtx4ALab1oOMrsWxPaVj3UMq2DQFnDkn2m rXytzK8PhyIj4LSTzC1euRccn2W/ZlKXGXBx0+GsPMXluffFPlfJ8odI4YPjZ275 WH0DfyMJQMC+XPjZiiMI0p2rN7J9VFR8FxIgjIdobk5Y8qDwUQ/WybvJhQ3CkSlY MmVysscw0gLR5KKiGVKcvl5BgRQpVBXgY3c3cNoqlYCYt4hPndAiQoxjUJWRsrY+ umpS83v3mBXv43kPpdQZsX1hBMSDIv9Q0mL8L1ttu5mFb/bs+RTU35hrOxTwdP25 b4WQKfZfZQTJolfgzIv/QwhlKgiFG2GfhB562mQNWaGWmCHBPFd7 -----END CERTIFICATE-----Generated at Sun Jun 8 22:40:40 2025 by rpki-client