$ rpki-client -vvf repo-rpki.idnic.net/repo/10ff022a-9b16-4b4c-98a2-534994f589d0/0/323030313a6466313a393863303a3a2f34382d3438203d3e20313432333836.roa File: 323030313a6466313a393863303a3a2f34382d3438203d3e20313432333836.roa (raw, json) Hash identifier: knqZS2zET5ty4Hn5ENyXOzq+6kdiMgWMs4wKA0jO5Co= Subject key identifier: A4:EA:CE:A8:C5:A6:80:8F:01:2A:1E:E7:F7:62:68:19:BF:FF:ED:6D Certificate issuer: /CN=7E46C2EE5082354F1494DE6AEA6CDA642769EDF1 Certificate serial: 6AF920B240D93639A8A59F20E17B13C88DFE91DC Authority key identifier: 7E:46:C2:EE:50:82:35:4F:14:94:DE:6A:EA:6C:DA:64:27:69:ED:F1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E46C2EE5082354F1494DE6AEA6CDA642769EDF1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/10ff022a-9b16-4b4c-98a2-534994f589d0/0/323030313a6466313a393863303a3a2f34382d3438203d3e20313432333836.roa Signing time: Tue 25 Mar 2025 10:00:01 +0000 ROA not before: Tue 25 Mar 2025 09:55:01 +0000 ROA not after: Tue 24 Mar 2026 10:00:01 +0000 asID: 142386 IP address blocks: 2001:df1:98c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/10ff022a-9b16-4b4c-98a2-534994f589d0/0/7E46C2EE5082354F1494DE6AEA6CDA642769EDF1.crl rsync://repo-rpki.idnic.net/repo/10ff022a-9b16-4b4c-98a2-534994f589d0/0/7E46C2EE5082354F1494DE6AEA6CDA642769EDF1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E46C2EE5082354F1494DE6AEA6CDA642769EDF1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 21:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:f9:20:b2:40:d9:36:39:a8:a5:9f:20:e1:7b:13:c8:8d:fe:91:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7E46C2EE5082354F1494DE6AEA6CDA642769EDF1 Validity Not Before: Mar 25 09:55:01 2025 GMT Not After : Mar 24 10:00:01 2026 GMT Subject: CN=A4EACEA8C5A6808F012A1EE7F7626819BFFFED6D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:cc:e2:68:7b:b6:80:26:0d:a4:07:28:05:bd: 40:ec:67:14:fa:69:dc:16:11:6f:ad:ed:34:d2:52: 55:34:dd:11:55:a6:55:d6:36:53:ed:cf:fc:d1:e9: b5:e1:90:95:39:14:d5:c1:ca:48:31:a2:7b:07:19: b6:c0:ea:ab:31:d4:3e:bd:c9:c2:0e:4f:74:01:cc: c1:97:78:68:e3:c8:4d:b6:ad:31:d2:47:40:07:a5: 6f:ba:0e:9f:42:e1:8c:db:db:08:d3:4b:75:b0:4d: f4:59:02:c5:de:29:89:22:8a:91:5a:a8:70:38:64: 4a:c8:bf:1e:83:45:d3:79:a0:bd:b1:15:13:91:8e: ad:0f:ae:21:05:15:4d:5c:3e:2c:df:4b:fb:51:a6: 21:37:78:7b:0a:0d:9c:af:30:79:b5:c2:e5:ab:c7: 4b:e2:f9:ca:2d:bc:43:77:0e:61:ec:dc:44:53:2d: bb:71:d9:58:d4:51:7e:5c:59:97:12:41:da:4c:6b: 88:d1:e9:97:2b:50:32:30:fb:ff:19:48:d9:74:39: d0:e5:b1:67:6e:44:2b:04:62:ef:34:e0:d9:97:24: 77:86:ec:a0:2d:ba:f5:ba:16:a1:0f:e0:74:eb:a6: ba:a8:f6:b9:30:e6:ee:28:08:c9:e1:36:7a:e8:66: cd:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:EA:CE:A8:C5:A6:80:8F:01:2A:1E:E7:F7:62:68:19:BF:FF:ED:6D X509v3 Authority Key Identifier: keyid:7E:46:C2:EE:50:82:35:4F:14:94:DE:6A:EA:6C:DA:64:27:69:ED:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/10ff022a-9b16-4b4c-98a2-534994f589d0/0/7E46C2EE5082354F1494DE6AEA6CDA642769EDF1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7E46C2EE5082354F1494DE6AEA6CDA642769EDF1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/10ff022a-9b16-4b4c-98a2-534994f589d0/0/323030313a6466313a393863303a3a2f34382d3438203d3e20313432333836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:98c0::/48 Signature Algorithm: sha256WithRSAEncryption a9:fc:97:d3:96:56:f7:ce:24:13:7e:bf:41:d1:0b:92:87:77: dd:8f:aa:15:f2:14:f4:07:de:fc:ad:12:61:97:8b:52:1e:24: 65:27:fc:a0:77:ef:69:22:f3:0f:53:a6:b8:8a:79:31:37:c1: 0a:cc:92:59:97:6f:c3:96:c0:12:6e:44:4a:d4:50:ce:b2:91: c1:6c:41:b1:09:77:e2:a2:de:8e:00:9d:4c:b3:8d:c6:bb:e9: 12:9a:19:01:3a:0e:15:19:80:37:38:f5:af:a4:6d:48:b4:29: 83:c9:00:df:89:a7:89:9d:9d:10:cd:ea:db:18:6d:17:ea:76: f0:12:9b:24:aa:20:cd:4f:02:cb:a5:e5:55:00:84:7c:b1:c6: 6b:0d:97:5f:2a:ce:ee:ff:d8:b1:4b:fc:08:03:ff:81:7d:6d: 54:f4:16:5a:68:39:dd:0e:3f:87:78:a2:b3:93:9a:36:67:40: d0:85:7b:11:60:97:13:11:8f:82:88:68:18:ac:f1:5b:4d:fa: 44:56:61:30:93:de:48:14:60:7e:9a:0f:9d:7e:f5:eb:68:94: 1a:0c:ef:e4:05:a5:50:d3:cd:97:7f:3e:c9:27:4e:0e:41:50: 32:69:c8:b7:a7:d9:8f:56:55:12:d5:fb:5a:e8:42:23:ce:5b: 51:b0:21:3f -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUavkgskDZNjmopZ8g4XsTyI3+kdwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0U0NkMyRUU1MDgyMzU0RjE0OTRERTZBRUE2Q0RBNjQy NzY5RURGMTAeFw0yNTAzMjUwOTU1MDFaFw0yNjAzMjQxMDAwMDFaMDMxMTAvBgNV BAMTKEE0RUFDRUE4QzVBNjgwOEYwMTJBMUVFN0Y3NjI2ODE5QkZGRkVENkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCzOJoe7aAJg2kBygFvUDsZxT6 adwWEW+t7TTSUlU03RFVplXWNlPtz/zR6bXhkJU5FNXBykgxonsHGbbA6qsx1D69 ycIOT3QBzMGXeGjjyE22rTHSR0AHpW+6Dp9C4Yzb2wjTS3WwTfRZAsXeKYkiipFa qHA4ZErIvx6DRdN5oL2xFRORjq0PriEFFU1cPizfS/tRpiE3eHsKDZyvMHm1wuWr x0vi+cotvEN3DmHs3ERTLbtx2VjUUX5cWZcSQdpMa4jR6ZcrUDIw+/8ZSNl0OdDl sWduRCsEYu804NmXJHeG7KAtuvW6FqEP4HTrprqo9rkw5u4oCMnhNnroZs0PAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUpOrOqMWmgI8BKh7n92JoGb//7W0wHwYDVR0j BBgwFoAUfkbC7lCCNU8UlN5q6mzaZCdp7fEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MGZmMDIyYS05YjE2LTRiNGMtOThhMi01MzQ5OTRmNTg5ZDAvMC83RTQ2QzJFRTUw ODIzNTRGMTQ5NERFNkFFQTZDREE2NDI3NjlFREYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0U0NkMyRUU1MDgyMzU0RjE0OTRERTZBRUE2Q0RBNjQyNzY5 RURGMS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEwZmYwMjJhLTliMTYtNGI0Yy05 OGEyLTUzNDk5NGY1ODlkMC8wLzMyMzAzMDMxM2E2NDY2MzEzYTM5Mzg2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDMyMzMzODM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8ZjAMA0GCSqGSIb3DQEBCwUAA4IBAQCp/JfTllb3ziQTfr9B0QuSh3fdj6oV8hT0 B978rRJhl4tSHiRlJ/ygd+9pIvMPU6a4inkxN8EKzJJZl2/DlsASbkRK1FDOspHB bEGxCXfiot6OAJ1Ms43Gu+kSmhkBOg4VGYA3OPWvpG1ItCmDyQDfiaeJnZ0Qzerb GG0X6nbwEpskqiDNTwLLpeVVAIR8scZrDZdfKs7u/9ixS/wIA/+BfW1U9BZaaDnd Dj+HeKKzk5o2Z0DQhXsRYJcTEY+CiGgYrPFbTfpEVmEwk95IFGB+mg+dfvXraJQa DO/kBaVQ082Xfz7JJ04OQVAyaci3p9mPVlUS1fta6EIjzltRsCE/ -----END CERTIFICATE-----Generated at Sun Apr 6 08:37:48 2025 by rpki-client