$ rpki-client -vvf repo-rpki.idnic.net/repo/14ef1920-8523-4ed4-b357-9de9a0c91710/0/323030313a6466363a353930303a3a2f34382d3438203d3e20313338303536.roa File: 323030313a6466363a353930303a3a2f34382d3438203d3e20313338303536.roa (raw, json) Hash identifier: LgOYiZeIIYet155UBAg0l2uIirVSZ4M3B9DiKsyKUTo= Subject key identifier: 8E:10:14:BF:3A:59:17:20:7C:6D:6A:18:2A:ED:9C:B4:84:35:5B:E8 Certificate issuer: /CN=65AE765288A08C9301DB21B4DDDD966B2F23A7EB Certificate serial: 3C6C34EDE053388A5D11BAD1D81F73CC80727C52 Authority key identifier: 65:AE:76:52:88:A0:8C:93:01:DB:21:B4:DD:DD:96:6B:2F:23:A7:EB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/65AE765288A08C9301DB21B4DDDD966B2F23A7EB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/14ef1920-8523-4ed4-b357-9de9a0c91710/0/323030313a6466363a353930303a3a2f34382d3438203d3e20313338303536.roa Signing time: Mon 02 Jun 2025 01:03:11 +0000 ROA not before: Mon 02 Jun 2025 00:58:11 +0000 ROA not after: Mon 01 Jun 2026 01:03:11 +0000 asID: 138056 IP address blocks: 2001:df6:5900::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/14ef1920-8523-4ed4-b357-9de9a0c91710/0/65AE765288A08C9301DB21B4DDDD966B2F23A7EB.crl rsync://repo-rpki.idnic.net/repo/14ef1920-8523-4ed4-b357-9de9a0c91710/0/65AE765288A08C9301DB21B4DDDD966B2F23A7EB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/65AE765288A08C9301DB21B4DDDD966B2F23A7EB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 20:39:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:6c:34:ed:e0:53:38:8a:5d:11:ba:d1:d8:1f:73:cc:80:72:7c:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=65AE765288A08C9301DB21B4DDDD966B2F23A7EB Validity Not Before: Jun 2 00:58:11 2025 GMT Not After : Jun 1 01:03:11 2026 GMT Subject: CN=8E1014BF3A5917207C6D6A182AED9CB484355BE8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:df:b7:96:5c:87:e2:68:c9:9e:a9:41:49:22: e3:df:b4:19:a0:b5:bf:0d:88:aa:4a:54:0d:ba:03: 2b:fd:58:70:20:72:48:f5:26:21:07:51:93:98:ba: 49:0b:ba:ea:ad:23:c0:4c:07:88:f7:7a:f9:b5:6d: 5f:4a:04:2d:6e:41:f9:66:da:3e:ca:93:8e:8d:20: f7:af:a6:bf:08:7d:a0:bc:6a:89:5c:2d:d8:67:d6: b7:03:11:73:7f:b9:76:4c:6f:9c:3f:82:f0:70:91: d8:fd:06:3f:11:23:9a:74:fd:ee:b4:91:71:6f:22: c9:d1:42:f9:3e:14:c8:36:d8:b5:f2:97:24:02:49: f1:50:83:2d:50:ba:9a:12:93:6b:93:18:54:dc:cc: 92:11:f8:10:6a:b4:18:bf:dd:7c:d5:d7:3e:80:0a: 74:5b:fa:02:f9:a4:20:c5:f3:7b:70:7e:dd:f6:6f: 24:d0:3f:4b:84:c1:36:60:ae:d1:e9:b7:86:04:0b: 4b:dd:72:7f:59:4c:dd:f5:d2:9f:3c:09:e1:68:c6: d4:68:4e:85:de:d9:ac:b9:6b:13:0d:56:ab:d4:ef: 07:d6:eb:48:03:b2:7c:b8:96:16:b0:b8:c3:a5:ce: da:af:7d:8c:99:5c:88:04:06:cd:1b:b6:13:cd:13: 24:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:10:14:BF:3A:59:17:20:7C:6D:6A:18:2A:ED:9C:B4:84:35:5B:E8 X509v3 Authority Key Identifier: keyid:65:AE:76:52:88:A0:8C:93:01:DB:21:B4:DD:DD:96:6B:2F:23:A7:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/14ef1920-8523-4ed4-b357-9de9a0c91710/0/65AE765288A08C9301DB21B4DDDD966B2F23A7EB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/65AE765288A08C9301DB21B4DDDD966B2F23A7EB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/14ef1920-8523-4ed4-b357-9de9a0c91710/0/323030313a6466363a353930303a3a2f34382d3438203d3e20313338303536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df6:5900::/48 Signature Algorithm: sha256WithRSAEncryption 6a:10:c3:f4:99:d2:02:31:72:ba:40:34:d3:6b:de:aa:f0:e6: e9:71:03:61:af:21:ae:a5:15:9c:40:66:5e:9c:06:d9:91:86: 62:0a:2a:8a:23:a9:1b:fc:dc:dc:9d:3b:de:0f:6a:23:3f:ac: 07:47:ce:a9:50:83:5c:39:d9:e2:bd:51:c0:4f:98:3a:7b:cc: 7a:0d:95:f7:64:68:6d:74:2a:f2:ed:85:02:49:8c:ef:f9:1e: a9:b0:c5:4b:44:46:f8:8c:d5:e4:b4:c2:64:5e:7e:24:3e:4c: 93:9c:1f:bd:b0:aa:4d:bf:22:76:5b:72:58:6c:55:0b:59:4f: 92:4c:06:35:e6:b0:58:6b:a5:7d:b4:f5:da:0d:cb:f6:e2:7d: 02:9f:0c:71:ae:39:94:15:b1:ca:d5:20:7b:dc:8f:9f:0a:19: a2:35:a5:b2:5e:7b:70:3c:19:e7:e8:1f:bd:9d:56:43:94:b9: 3e:85:28:db:d7:a2:0a:c1:5b:fa:e0:24:f8:88:7b:d2:00:59: 78:28:51:30:ed:ee:c3:50:b1:c9:02:e5:38:39:44:5f:54:15: 2d:72:5c:31:58:65:93:64:61:74:3c:c8:6c:d0:ff:4c:ca:b9: 24:e5:e1:ef:0a:58:4e:20:c7:ee:77:ca:6c:57:e4:fe:1b:78: 9d:ce:24:60 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUPGw07eBTOIpdEbrR2B9zzIByfFIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjVBRTc2NTI4OEEwOEM5MzAxREIyMUI0RERERDk2NkIy RjIzQTdFQjAeFw0yNTA2MDIwMDU4MTFaFw0yNjA2MDEwMTAzMTFaMDMxMTAvBgNV BAMTKDhFMTAxNEJGM0E1OTE3MjA3QzZENkExODJBRUQ5Q0I0ODQzNTVCRTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDC37eWXIfiaMmeqUFJIuPftBmg tb8NiKpKVA26Ayv9WHAgckj1JiEHUZOYukkLuuqtI8BMB4j3evm1bV9KBC1uQflm 2j7Kk46NIPevpr8IfaC8aolcLdhn1rcDEXN/uXZMb5w/gvBwkdj9Bj8RI5p0/e60 kXFvIsnRQvk+FMg22LXylyQCSfFQgy1QupoSk2uTGFTczJIR+BBqtBi/3XzV1z6A CnRb+gL5pCDF83twft32byTQP0uEwTZgrtHpt4YEC0vdcn9ZTN310p88CeFoxtRo ToXe2ay5axMNVqvU7wfW60gDsny4lhawuMOlztqvfYyZXIgEBs0bthPNEyTXAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUjhAUvzpZFyB8bWoYKu2ctIQ1W+gwHwYDVR0j BBgwFoAUZa52UoigjJMB2yG03d2Way8jp+swDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NGVmMTkyMC04NTIzLTRlZDQtYjM1Ny05ZGU5YTBjOTE3MTAvMC82NUFFNzY1Mjg4 QTA4QzkzMDFEQjIxQjREREREOTY2QjJGMjNBN0VCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjVBRTc2NTI4OEEwOEM5MzAxREIyMUI0RERERDk2NkIyRjIz QTdFQi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE0ZWYxOTIwLTg1MjMtNGVkNC1i MzU3LTlkZTlhMGM5MTcxMC8wLzMyMzAzMDMxM2E2NDY2MzYzYTM1MzkzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM4MzAzNTM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9lkAMA0GCSqGSIb3DQEBCwUAA4IBAQBqEMP0mdICMXK6QDTTa96q8ObpcQNhryGu pRWcQGZenAbZkYZiCiqKI6kb/NzcnTveD2ojP6wHR86pUINcOdnivVHAT5g6e8x6 DZX3ZGhtdCry7YUCSYzv+R6psMVLREb4jNXktMJkXn4kPkyTnB+9sKpNvyJ2W3JY bFULWU+STAY15rBYa6V9tPXaDcv24n0CnwxxrjmUFbHK1SB73I+fChmiNaWyXntw PBnn6B+9nVZDlLk+hSjb16IKwVv64CT4iHvSAFl4KFEw7e7DULHJAuU4OURfVBUt clwxWGWTZGF0PMhs0P9Myrkk5eHvClhOIMfud8psV+T+G3idziRg -----END CERTIFICATE-----Generated at Thu Jun 5 18:50:57 2025 by rpki-client