$ rpki-client -vvf repo-rpki.idnic.net/repo/140e9c9f-d607-4497-af28-4d2b9092d5a6/0/323030313a6466323a633738303a3a2f34382d3438203d3e20313339393836.roa File: 323030313a6466323a633738303a3a2f34382d3438203d3e20313339393836.roa (raw, json) Hash identifier: 75/DAONeN65KHxljOFhq+chBgFEKtm0A6zWkkY+QXDo= Subject key identifier: 4D:83:DD:AC:55:0B:53:B9:9A:CF:D6:86:93:CC:64:F8:E3:06:9E:46 Certificate issuer: /CN=95C3BA7F23B6351721F77DA8020731F9DA46B3C8 Certificate serial: 1A5C56FD71DD10E2E3D3B4E47D0B42C093A6BD84 Authority key identifier: 95:C3:BA:7F:23:B6:35:17:21:F7:7D:A8:02:07:31:F9:DA:46:B3:C8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95C3BA7F23B6351721F77DA8020731F9DA46B3C8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/140e9c9f-d607-4497-af28-4d2b9092d5a6/0/323030313a6466323a633738303a3a2f34382d3438203d3e20313339393836.roa Signing time: Mon 02 Jun 2025 02:04:03 +0000 ROA not before: Mon 02 Jun 2025 01:59:03 +0000 ROA not after: Mon 01 Jun 2026 02:04:03 +0000 asID: 139986 IP address blocks: 2001:df2:c780::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/140e9c9f-d607-4497-af28-4d2b9092d5a6/0/95C3BA7F23B6351721F77DA8020731F9DA46B3C8.crl rsync://repo-rpki.idnic.net/repo/140e9c9f-d607-4497-af28-4d2b9092d5a6/0/95C3BA7F23B6351721F77DA8020731F9DA46B3C8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95C3BA7F23B6351721F77DA8020731F9DA46B3C8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 00:02:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:5c:56:fd:71:dd:10:e2:e3:d3:b4:e4:7d:0b:42:c0:93:a6:bd:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95C3BA7F23B6351721F77DA8020731F9DA46B3C8 Validity Not Before: Jun 2 01:59:03 2025 GMT Not After : Jun 1 02:04:03 2026 GMT Subject: CN=4D83DDAC550B53B99ACFD68693CC64F8E3069E46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:a3:41:e1:1f:ee:68:7c:99:31:49:86:74:7a: b4:a1:25:40:91:2b:b3:1b:d2:a5:c4:6f:2f:4e:db: 83:ba:bd:5f:fa:b0:d6:f7:7b:14:e4:76:4c:7a:2a: 8f:3a:76:f1:74:1f:51:c2:cd:d9:70:5a:bc:74:7d: 70:26:ef:b1:35:f4:8a:67:b7:59:5b:14:57:46:e1: 58:86:cf:f1:7a:8d:f6:90:c8:32:63:3a:81:88:4a: 4e:87:5d:82:73:cf:54:00:a0:09:d7:7a:e0:3e:2e: f9:14:c3:b8:c5:24:7f:fb:d0:95:de:c4:d1:12:78: b6:47:27:53:75:be:e7:76:40:ab:47:73:df:0e:ba: 5b:45:ef:9e:13:b4:e1:1c:a1:ca:36:d1:12:1f:3b: 5f:45:f7:d3:64:65:12:56:86:3b:58:6c:10:41:83: 38:56:bd:7e:58:52:6d:c5:c8:0a:1a:61:72:1b:83: 28:66:a1:02:8c:4a:32:3b:16:ed:d2:7b:28:6b:bb: 04:9c:10:ce:8a:df:24:93:57:db:a6:ce:35:9a:21: ae:99:12:86:99:46:90:ac:13:67:ac:d2:a0:be:95: f3:2e:bf:5b:69:8d:59:32:a7:38:21:4f:8b:60:d9: 1b:17:c1:08:99:41:f9:02:a6:08:d6:a9:25:bd:29: a5:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:83:DD:AC:55:0B:53:B9:9A:CF:D6:86:93:CC:64:F8:E3:06:9E:46 X509v3 Authority Key Identifier: keyid:95:C3:BA:7F:23:B6:35:17:21:F7:7D:A8:02:07:31:F9:DA:46:B3:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/140e9c9f-d607-4497-af28-4d2b9092d5a6/0/95C3BA7F23B6351721F77DA8020731F9DA46B3C8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95C3BA7F23B6351721F77DA8020731F9DA46B3C8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/140e9c9f-d607-4497-af28-4d2b9092d5a6/0/323030313a6466323a633738303a3a2f34382d3438203d3e20313339393836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:c780::/48 Signature Algorithm: sha256WithRSAEncryption 63:5b:13:38:61:ef:32:ef:c0:96:d6:ae:f0:ee:ef:47:4d:7b: 99:e5:a1:9c:5e:3a:01:cb:45:8f:f5:8c:76:4f:4c:7d:ea:45: 01:5c:e4:97:35:f9:c9:62:e0:86:1c:a4:2e:48:22:8a:88:e3: 86:1f:07:24:fc:e5:96:29:01:be:de:de:eb:61:d6:28:05:43: 41:54:0b:5b:7b:31:3f:aa:f2:86:8d:a6:9b:d7:80:c8:21:09: 05:74:d4:82:69:a4:93:fb:f1:ad:c2:f1:27:73:4f:cc:ff:4e: 21:9f:e6:ed:f4:1d:e7:ee:f6:30:70:61:c2:72:a7:f3:ac:aa: d3:57:06:e1:97:8b:a4:0e:b8:e1:82:ad:b1:48:f0:08:aa:4b: be:92:39:45:36:5a:9c:81:b1:8f:2b:37:e2:9b:c3:f3:67:c3: 12:29:0c:30:5d:28:9b:e6:c7:3c:90:28:56:0b:60:2b:0f:75: 6c:86:c4:bc:29:1a:6a:ed:f4:02:23:d4:1c:b0:4d:51:70:0c: 87:06:16:37:e9:84:b5:a6:07:09:8a:bc:98:4e:0e:14:34:bf: a4:95:7e:27:97:19:e9:a2:12:bb:1b:54:c5:ec:25:00:da:f0: 66:91:ab:d3:bd:98:b2:44:5b:5a:6c:1e:0e:f2:d2:74:7f:5d: 24:66:b6:91 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUGlxW/XHdEOLj07TkfQtCwJOmvYQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTVDM0JBN0YyM0I2MzUxNzIxRjc3REE4MDIwNzMxRjlE QTQ2QjNDODAeFw0yNTA2MDIwMTU5MDNaFw0yNjA2MDEwMjA0MDNaMDMxMTAvBgNV BAMTKDREODNEREFDNTUwQjUzQjk5QUNGRDY4NjkzQ0M2NEY4RTMwNjlFNDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTo0HhH+5ofJkxSYZ0erShJUCR K7Mb0qXEby9O24O6vV/6sNb3exTkdkx6Ko86dvF0H1HCzdlwWrx0fXAm77E19Ipn t1lbFFdG4ViGz/F6jfaQyDJjOoGISk6HXYJzz1QAoAnXeuA+LvkUw7jFJH/70JXe xNESeLZHJ1N1vud2QKtHc98OultF754TtOEcoco20RIfO19F99NkZRJWhjtYbBBB gzhWvX5YUm3FyAoaYXIbgyhmoQKMSjI7Fu3SeyhruwScEM6K3ySTV9umzjWaIa6Z EoaZRpCsE2es0qC+lfMuv1tpjVkypzghT4tg2RsXwQiZQfkCpgjWqSW9KaWXAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUTYPdrFULU7maz9aGk8xk+OMGnkYwHwYDVR0j BBgwFoAUlcO6fyO2NRch932oAgcx+dpGs8gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NDBlOWM5Zi1kNjA3LTQ0OTctYWYyOC00ZDJiOTA5MmQ1YTYvMC85NUMzQkE3RjIz QjYzNTE3MjFGNzdEQTgwMjA3MzFGOURBNDZCM0M4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTVDM0JBN0YyM0I2MzUxNzIxRjc3REE4MDIwNzMxRjlEQTQ2 QjNDOC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE0MGU5YzlmLWQ2MDctNDQ5Ny1h ZjI4LTRkMmI5MDkyZDVhNi8wLzMyMzAzMDMxM2E2NDY2MzIzYTYzMzczODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM5MzkzODM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8seAMA0GCSqGSIb3DQEBCwUAA4IBAQBjWxM4Ye8y78CW1q7w7u9HTXuZ5aGcXjoB y0WP9Yx2T0x96kUBXOSXNfnJYuCGHKQuSCKKiOOGHwck/OWWKQG+3t7rYdYoBUNB VAtbezE/qvKGjaab14DIIQkFdNSCaaST+/GtwvEnc0/M/04hn+bt9B3n7vYwcGHC cqfzrKrTVwbhl4ukDrjhgq2xSPAIqku+kjlFNlqcgbGPKzfim8PzZ8MSKQwwXSib 5sc8kChWC2ArD3VshsS8KRpq7fQCI9QcsE1RcAyHBhY36YS1pgcJiryYTg4UNL+k lX4nlxnpohK7G1TF7CUA2vBmkavTvZiyRFtabB4O8tJ0f10kZraR -----END CERTIFICATE-----Generated at Sat Jun 7 17:46:58 2025 by rpki-client