$ rpki-client -vvf repo-rpki.idnic.net/repo/0de2d090-4766-475c-9cef-7beb585cf241/1/323030313a6466333a646134303a3a2f34382d3438203d3e20313532373730.roa File: 323030313a6466333a646134303a3a2f34382d3438203d3e20313532373730.roa (raw, json) Hash identifier: u0aVe07udqmDfe58UcBPj9st7rR/OUpFHbWFfIMONno= Subject key identifier: 82:E8:F9:F3:D9:71:5A:C3:53:A3:50:1D:77:B4:AD:35:15:7A:A1:CD Certificate issuer: /CN=CE4160CB7000F2DDE9C87291F90D71C10A79E637 Certificate serial: 1CDC6C5846E31782AF3EE358F0ADFE62A6CCCCAC Authority key identifier: CE:41:60:CB:70:00:F2:DD:E9:C8:72:91:F9:0D:71:C1:0A:79:E6:37 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CE4160CB7000F2DDE9C87291F90D71C10A79E637.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0de2d090-4766-475c-9cef-7beb585cf241/1/323030313a6466333a646134303a3a2f34382d3438203d3e20313532373730.roa Signing time: Mon 12 May 2025 12:00:02 +0000 ROA not before: Mon 12 May 2025 11:55:02 +0000 ROA not after: Mon 11 May 2026 12:00:02 +0000 asID: 152770 IP address blocks: 2001:df3:da40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0de2d090-4766-475c-9cef-7beb585cf241/1/CE4160CB7000F2DDE9C87291F90D71C10A79E637.crl rsync://repo-rpki.idnic.net/repo/0de2d090-4766-475c-9cef-7beb585cf241/1/CE4160CB7000F2DDE9C87291F90D71C10A79E637.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CE4160CB7000F2DDE9C87291F90D71C10A79E637.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 02:27:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:dc:6c:58:46:e3:17:82:af:3e:e3:58:f0:ad:fe:62:a6:cc:cc:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CE4160CB7000F2DDE9C87291F90D71C10A79E637 Validity Not Before: May 12 11:55:02 2025 GMT Not After : May 11 12:00:02 2026 GMT Subject: CN=82E8F9F3D9715AC353A3501D77B4AD35157AA1CD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:e6:38:52:2b:ad:3d:8d:a0:69:8b:ca:57:96: 7d:74:8a:0c:9b:ee:27:6f:bf:dc:cd:68:92:05:a5: f7:df:00:ef:c8:87:cd:dc:f8:14:cc:1a:b1:a8:32: 22:af:fe:d6:39:09:23:22:f3:ec:00:d6:6b:dd:07: 15:c0:23:68:de:84:d8:35:4d:eb:8a:93:7b:4a:a8: af:13:f4:28:d6:7c:60:3f:4a:11:bc:da:16:be:88: 1d:de:f9:29:35:02:1e:11:57:c0:86:bb:ec:1e:d0: 3e:ee:5d:b1:f9:26:28:9d:21:2e:48:ee:d1:e8:e1: 65:0f:d1:ad:a2:a7:db:dd:d3:77:58:a9:8f:70:85: 1a:8c:5b:a2:fc:e3:9a:48:5d:94:53:e8:6c:31:53: da:b9:61:e7:3d:f6:15:c4:8c:90:dd:6b:7d:c1:41: 9a:ea:bc:b6:ea:7f:38:5e:a2:a7:75:70:a8:9e:e2: 79:4c:71:98:1d:6a:a4:71:b8:f2:84:e5:96:3c:1b: e9:de:2e:87:8c:63:8b:77:b6:5e:02:12:46:1d:11: 6a:e4:7c:09:59:a4:16:c0:13:c1:c0:94:c7:1f:bb: c8:71:41:d6:43:e5:b1:c1:84:09:12:47:0e:d1:63: ec:c0:8d:d0:d2:57:19:f7:2a:5b:a7:32:cc:01:09: da:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:E8:F9:F3:D9:71:5A:C3:53:A3:50:1D:77:B4:AD:35:15:7A:A1:CD X509v3 Authority Key Identifier: keyid:CE:41:60:CB:70:00:F2:DD:E9:C8:72:91:F9:0D:71:C1:0A:79:E6:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0de2d090-4766-475c-9cef-7beb585cf241/1/CE4160CB7000F2DDE9C87291F90D71C10A79E637.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CE4160CB7000F2DDE9C87291F90D71C10A79E637.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0de2d090-4766-475c-9cef-7beb585cf241/1/323030313a6466333a646134303a3a2f34382d3438203d3e20313532373730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:da40::/48 Signature Algorithm: sha256WithRSAEncryption 61:ab:47:15:19:d9:47:40:a7:22:78:8e:72:2c:20:53:30:87: 26:73:c6:fa:ef:c1:c2:24:72:24:78:74:73:c1:3f:7c:14:d8: 42:1b:18:b5:07:1f:2a:b3:8e:74:89:f6:4f:89:64:f6:f9:d0: 37:30:3d:c2:03:a4:c6:45:63:96:88:62:bc:61:06:9a:40:7a: 3c:37:19:84:69:05:ee:f3:14:d6:49:bd:4f:a3:1c:c4:f5:81: 3c:74:21:95:ec:cc:c9:30:ef:e2:01:6b:67:ca:3a:ea:c2:0c: 70:e6:81:95:41:94:07:3d:b4:0d:09:0e:7e:d6:7b:30:a0:d7: a8:74:d3:cb:31:06:92:2d:20:11:2f:eb:b3:46:ed:f0:9c:4f: 24:fe:f9:8b:64:25:7f:3c:41:4e:9c:d3:38:79:48:44:7d:3e: df:55:84:ba:93:c3:35:df:e3:9d:32:0b:9e:2f:d9:b3:42:91: f6:0a:07:b2:63:d8:df:be:cf:81:b7:94:28:1b:5c:8a:b1:59: cd:f1:ea:66:2c:4e:68:9a:04:f2:58:83:0b:67:44:ef:22:04: 9e:24:5a:38:19:4d:0c:8f:3b:6c:32:11:09:07:61:7f:9b:de: 82:3d:bc:a5:a1:e5:40:2d:42:47:3b:c2:1a:c2:4c:9f:b1:6a: d7:13:e0:58 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUHNxsWEbjF4KvPuNY8K3+YqbMzKwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0U0MTYwQ0I3MDAwRjJEREU5Qzg3MjkxRjkwRDcxQzEw QTc5RTYzNzAeFw0yNTA1MTIxMTU1MDJaFw0yNjA1MTExMjAwMDJaMDMxMTAvBgNV BAMTKDgyRThGOUYzRDk3MTVBQzM1M0EzNTAxRDc3QjRBRDM1MTU3QUExQ0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC55jhSK609jaBpi8pXln10igyb 7idvv9zNaJIFpfffAO/Ih83c+BTMGrGoMiKv/tY5CSMi8+wA1mvdBxXAI2jehNg1 TeuKk3tKqK8T9CjWfGA/ShG82ha+iB3e+Sk1Ah4RV8CGu+we0D7uXbH5JiidIS5I 7tHo4WUP0a2ip9vd03dYqY9whRqMW6L845pIXZRT6GwxU9q5Yec99hXEjJDda33B QZrqvLbqfzheoqd1cKie4nlMcZgdaqRxuPKE5ZY8G+neLoeMY4t3tl4CEkYdEWrk fAlZpBbAE8HAlMcfu8hxQdZD5bHBhAkSRw7RY+zAjdDSVxn3KlunMswBCdrXAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUguj589lxWsNTo1Add7StNRV6oc0wHwYDVR0j BBgwFoAUzkFgy3AA8t3pyHKR+Q1xwQp55jcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZGUyZDA5MC00NzY2LTQ3NWMtOWNlZi03YmViNTg1Y2YyNDEvMS9DRTQxNjBDQjcw MDBGMkRERTlDODcyOTFGOTBENzFDMTBBNzlFNjM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0U0MTYwQ0I3MDAwRjJEREU5Qzg3MjkxRjkwRDcxQzEwQTc5 RTYzNy5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBkZTJkMDkwLTQ3NjYtNDc1Yy05 Y2VmLTdiZWI1ODVjZjI0MS8xLzMyMzAzMDMxM2E2NDY2MzMzYTY0NjEzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMyMzczNzMwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 89pAMA0GCSqGSIb3DQEBCwUAA4IBAQBhq0cVGdlHQKcieI5yLCBTMIcmc8b678HC JHIkeHRzwT98FNhCGxi1Bx8qs450ifZPiWT2+dA3MD3CA6TGRWOWiGK8YQaaQHo8 NxmEaQXu8xTWSb1PoxzE9YE8dCGV7MzJMO/iAWtnyjrqwgxw5oGVQZQHPbQNCQ5+ 1nswoNeodNPLMQaSLSARL+uzRu3wnE8k/vmLZCV/PEFOnNM4eUhEfT7fVYS6k8M1 3+OdMgueL9mzQpH2CgeyY9jfvs+Bt5QoG1yKsVnN8epmLE5omgTyWIMLZ0TvIgSe JFo4GU0MjztsMhEJB2F/m96CPbyloeVALUJHO8IawkyfsWrXE+BY -----END CERTIFICATE-----Generated at Mon Jun 9 00:19:14 2025 by rpki-client