$ rpki-client -vvf repo-rpki.idnic.net/repo/14ef1920-8523-4ed4-b357-9de9a0c91710/0/323030313a6466363a353930303a3a2f34382d3438203d3e20313338303536.roa File: 323030313a6466363a353930303a3a2f34382d3438203d3e20313338303536.roa (raw, json) Hash identifier: ikCBqyTFwh6uj+sGxPztwL+n3kc9cKQDHNdVREbe7FA= Subject key identifier: BD:AF:1B:18:1A:69:CA:D1:9A:8A:85:C7:F1:F8:89:DA:49:AB:62:0D Certificate issuer: /CN=65AE765288A08C9301DB21B4DDDD966B2F23A7EB Certificate serial: 672F70EE564A2DED5301DAF674462DF157677C8B Authority key identifier: 65:AE:76:52:88:A0:8C:93:01:DB:21:B4:DD:DD:96:6B:2F:23:A7:EB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/65AE765288A08C9301DB21B4DDDD966B2F23A7EB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/14ef1920-8523-4ed4-b357-9de9a0c91710/0/323030313a6466363a353930303a3a2f34382d3438203d3e20313338303536.roa Signing time: Mon 01 Jul 2024 01:03:08 +0000 ROA not before: Mon 01 Jul 2024 00:58:08 +0000 ROA not after: Mon 30 Jun 2025 01:03:08 +0000 asID: 138056 IP address blocks: 2001:df6:5900::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/14ef1920-8523-4ed4-b357-9de9a0c91710/0/65AE765288A08C9301DB21B4DDDD966B2F23A7EB.crl rsync://repo-rpki.idnic.net/repo/14ef1920-8523-4ed4-b357-9de9a0c91710/0/65AE765288A08C9301DB21B4DDDD966B2F23A7EB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/65AE765288A08C9301DB21B4DDDD966B2F23A7EB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Apr 2025 20:59:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:2f:70:ee:56:4a:2d:ed:53:01:da:f6:74:46:2d:f1:57:67:7c:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=65AE765288A08C9301DB21B4DDDD966B2F23A7EB Validity Not Before: Jul 1 00:58:08 2024 GMT Not After : Jun 30 01:03:08 2025 GMT Subject: CN=BDAF1B181A69CAD19A8A85C7F1F889DA49AB620D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:73:ce:45:c4:b9:ef:b2:5b:db:15:47:7c:83: 16:33:fa:11:bd:be:22:63:d2:cb:03:1f:26:74:53: a5:49:59:6c:02:d9:c3:aa:fd:37:7b:83:69:34:b4: 47:17:b6:2e:6a:3f:22:7a:1b:69:4d:3b:29:75:8f: 20:3c:89:fa:d8:ee:c9:c6:8c:fe:c8:e8:5c:4e:aa: d8:e8:06:25:c2:90:50:67:5a:91:fe:4e:3e:0d:0e: e6:5d:1c:21:7d:fb:1e:4b:65:46:03:6b:72:90:c1: 49:2b:21:69:e8:62:c7:14:72:be:1f:bd:e9:17:29: 3e:c0:4e:eb:36:fb:a2:3e:c7:7f:e0:a8:6e:f6:b6: 9e:5e:f0:96:3a:39:9e:f1:a2:1e:c5:43:85:d3:95: 56:35:6b:ed:34:2a:e8:d8:f3:7d:1c:40:24:9b:d9: b2:f9:13:22:56:f3:94:70:ce:94:f1:fe:c6:d2:e7: d0:73:0a:3e:cc:0b:da:99:d4:59:ac:bb:d6:d3:0a: 12:fa:d9:a3:db:13:c9:70:44:c0:da:e8:2b:91:74: c1:3c:a2:be:0c:8d:ee:db:bf:71:0c:cb:c7:b3:65: 04:73:ec:b7:e1:d7:60:50:e9:43:a0:18:76:a9:68: cd:f6:9b:24:ef:6c:e3:22:a3:1e:63:9f:7d:09:26: 8a:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:AF:1B:18:1A:69:CA:D1:9A:8A:85:C7:F1:F8:89:DA:49:AB:62:0D X509v3 Authority Key Identifier: keyid:65:AE:76:52:88:A0:8C:93:01:DB:21:B4:DD:DD:96:6B:2F:23:A7:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/14ef1920-8523-4ed4-b357-9de9a0c91710/0/65AE765288A08C9301DB21B4DDDD966B2F23A7EB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/65AE765288A08C9301DB21B4DDDD966B2F23A7EB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/14ef1920-8523-4ed4-b357-9de9a0c91710/0/323030313a6466363a353930303a3a2f34382d3438203d3e20313338303536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df6:5900::/48 Signature Algorithm: sha256WithRSAEncryption 19:86:7a:65:6e:ee:9f:73:41:90:22:0a:cf:5b:e3:ee:45:8c: 2f:9c:f3:67:17:e1:1d:b2:58:4a:f8:11:be:0e:85:38:34:d9: 29:18:c7:f6:6e:6c:b5:55:a8:26:15:3c:bd:42:7d:d3:78:00: 52:bc:6c:01:45:58:ff:06:f4:4d:a4:85:30:87:2c:1f:da:85: 53:02:2e:b1:aa:87:c7:8c:7f:af:38:fa:1c:6e:3d:87:8a:6f: 82:91:0b:c7:6c:fd:00:20:e8:39:69:3c:1b:66:5f:c2:b8:c0: e1:f2:e1:8d:17:db:31:69:b5:ff:80:88:22:af:37:14:1f:af: 88:8e:59:da:a0:8a:b3:cf:fc:e7:de:21:64:57:80:25:a6:14: db:a3:4c:71:98:83:4e:a4:25:4c:eb:ef:a4:ac:b7:7b:6e:95: 56:f6:e9:82:92:29:81:5a:85:1d:09:bd:50:37:4e:9f:f8:ec: 25:2a:df:ae:c5:62:99:57:00:a9:02:c5:29:6b:e1:cc:24:70: 7c:7c:77:cd:d5:7e:a6:62:c6:fc:ad:c6:ea:2c:3f:49:d9:3f: 41:7a:c6:9e:bf:05:c9:e8:7c:92:29:da:54:09:59:b1:6a:40: 16:f7:8a:a2:9c:c2:11:e8:1b:98:45:5b:bf:39:2d:69:56:cd: 93:ff:21:e0 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUZy9w7lZKLe1TAdr2dEYt8VdnfIswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjVBRTc2NTI4OEEwOEM5MzAxREIyMUI0RERERDk2NkIy RjIzQTdFQjAeFw0yNDA3MDEwMDU4MDhaFw0yNTA2MzAwMTAzMDhaMDMxMTAvBgNV BAMTKEJEQUYxQjE4MUE2OUNBRDE5QThBODVDN0YxRjg4OURBNDlBQjYyMEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnc85FxLnvslvbFUd8gxYz+hG9 viJj0ssDHyZ0U6VJWWwC2cOq/Td7g2k0tEcXti5qPyJ6G2lNOyl1jyA8ifrY7snG jP7I6FxOqtjoBiXCkFBnWpH+Tj4NDuZdHCF9+x5LZUYDa3KQwUkrIWnoYscUcr4f vekXKT7ATus2+6I+x3/gqG72tp5e8JY6OZ7xoh7FQ4XTlVY1a+00KujY830cQCSb 2bL5EyJW85RwzpTx/sbS59BzCj7MC9qZ1Fmsu9bTChL62aPbE8lwRMDa6CuRdME8 or4Mje7bv3EMy8ezZQRz7Lfh12BQ6UOgGHapaM32myTvbOMiox5jn30JJoo7AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUva8bGBppytGaioXH8fiJ2kmrYg0wHwYDVR0j BBgwFoAUZa52UoigjJMB2yG03d2Way8jp+swDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NGVmMTkyMC04NTIzLTRlZDQtYjM1Ny05ZGU5YTBjOTE3MTAvMC82NUFFNzY1Mjg4 QTA4QzkzMDFEQjIxQjREREREOTY2QjJGMjNBN0VCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjVBRTc2NTI4OEEwOEM5MzAxREIyMUI0RERERDk2NkIyRjIz QTdFQi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE0ZWYxOTIwLTg1MjMtNGVkNC1i MzU3LTlkZTlhMGM5MTcxMC8wLzMyMzAzMDMxM2E2NDY2MzYzYTM1MzkzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM4MzAzNTM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9lkAMA0GCSqGSIb3DQEBCwUAA4IBAQAZhnplbu6fc0GQIgrPW+PuRYwvnPNnF+Ed slhK+BG+DoU4NNkpGMf2bmy1VagmFTy9Qn3TeABSvGwBRVj/BvRNpIUwhywf2oVT Ai6xqofHjH+vOPocbj2Him+CkQvHbP0AIOg5aTwbZl/CuMDh8uGNF9sxabX/gIgi rzcUH6+IjlnaoIqzz/zn3iFkV4AlphTbo0xxmINOpCVM6++krLd7bpVW9umCkimB WoUdCb1QN06f+OwlKt+uxWKZVwCpAsUpa+HMJHB8fHfN1X6mYsb8rcbqLD9J2T9B esaevwXJ6HySKdpUCVmxakAW94qinMIR6BuYRVu/OS1pVs2T/yHg -----END CERTIFICATE-----Generated at Sun Apr 6 13:43:49 2025 by rpki-client