$ rpki-client -vvf repo-rpki.idnic.net/repo/16da0e82-0764-45d3-aed9-fd258e72b6e2/1/323030313a6466333a646663303a3a2f34382d3438203d3e20313532383030.roa File: 323030313a6466333a646663303a3a2f34382d3438203d3e20313532383030.roa (raw, json) Hash identifier: Sfdp2ETmAB6FU1WSvmecpTzRs2Nz0Rf6LLcGShnuuzQ= Subject key identifier: 00:7A:05:7F:30:E0:9B:A0:3C:44:59:9C:6D:E5:82:B9:E0:06:33:9E Certificate issuer: /CN=3FFDC502E90AF8E66FDDCD0A6DF31D168F38BAA6 Certificate serial: 585011DA3BDDE10E1D9363AA3792D28744ADE61F Authority key identifier: 3F:FD:C5:02:E9:0A:F8:E6:6F:DD:CD:0A:6D:F3:1D:16:8F:38:BA:A6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3FFDC502E90AF8E66FDDCD0A6DF31D168F38BAA6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/16da0e82-0764-45d3-aed9-fd258e72b6e2/1/323030313a6466333a646663303a3a2f34382d3438203d3e20313532383030.roa Signing time: Tue 27 May 2025 15:00:50 +0000 ROA not before: Tue 27 May 2025 14:55:50 +0000 ROA not after: Tue 26 May 2026 15:00:50 +0000 asID: 152800 IP address blocks: 2001:df3:dfc0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/16da0e82-0764-45d3-aed9-fd258e72b6e2/1/3FFDC502E90AF8E66FDDCD0A6DF31D168F38BAA6.crl rsync://repo-rpki.idnic.net/repo/16da0e82-0764-45d3-aed9-fd258e72b6e2/1/3FFDC502E90AF8E66FDDCD0A6DF31D168F38BAA6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3FFDC502E90AF8E66FDDCD0A6DF31D168F38BAA6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 10:24:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:50:11:da:3b:dd:e1:0e:1d:93:63:aa:37:92:d2:87:44:ad:e6:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3FFDC502E90AF8E66FDDCD0A6DF31D168F38BAA6 Validity Not Before: May 27 14:55:50 2025 GMT Not After : May 26 15:00:50 2026 GMT Subject: CN=007A057F30E09BA03C44599C6DE582B9E006339E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:cb:26:6d:e7:80:a7:15:1d:d1:6e:da:37:7b: 2a:15:4e:38:3e:25:8c:99:fe:c7:83:5b:9f:c4:86: ea:4c:1b:2e:94:0e:6e:e8:e5:33:e4:fc:da:8f:56: 03:2d:ba:fb:dd:a8:f7:1e:8d:e4:70:8e:32:6b:99: 26:9c:93:8b:8d:b7:c1:31:7f:a1:b5:82:6a:ad:74: 35:af:b5:65:2f:2e:4d:5e:fa:9a:8f:c9:e3:4f:6b: 29:53:c9:c7:cc:1c:18:13:dd:8f:30:97:c1:43:e2: 0f:20:0b:fe:47:b4:b9:bb:e8:2a:00:93:d1:c9:1e: de:18:51:f6:32:54:c0:6a:b0:25:d4:08:a1:49:e2: 58:8b:ef:e8:b2:1d:04:5b:7a:2f:cd:14:c1:e1:6e: 22:5c:6a:92:b8:e7:03:68:35:42:09:dd:af:42:0f: 09:51:69:22:8d:14:59:3e:85:38:0d:0c:42:67:16: d3:9b:4b:a3:f5:3a:3f:5a:d9:28:ac:04:0a:eb:1d: ab:cf:04:c3:8a:e1:46:5f:d9:90:df:47:09:39:8f: 80:6d:82:12:68:f4:fb:62:ad:92:dc:73:52:d1:95: 12:a5:85:41:25:ad:e6:14:e2:70:28:74:0d:1d:42: 88:c3:38:22:2d:df:dc:27:dd:05:d5:73:16:3f:9b: ea:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:7A:05:7F:30:E0:9B:A0:3C:44:59:9C:6D:E5:82:B9:E0:06:33:9E X509v3 Authority Key Identifier: keyid:3F:FD:C5:02:E9:0A:F8:E6:6F:DD:CD:0A:6D:F3:1D:16:8F:38:BA:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/16da0e82-0764-45d3-aed9-fd258e72b6e2/1/3FFDC502E90AF8E66FDDCD0A6DF31D168F38BAA6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3FFDC502E90AF8E66FDDCD0A6DF31D168F38BAA6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/16da0e82-0764-45d3-aed9-fd258e72b6e2/1/323030313a6466333a646663303a3a2f34382d3438203d3e20313532383030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:dfc0::/48 Signature Algorithm: sha256WithRSAEncryption 9c:9b:dd:8e:a2:d9:9b:05:0a:0a:2e:2c:34:4f:a5:62:d1:73: 98:72:6f:a8:a2:21:1a:19:66:9b:84:7b:0e:44:e0:62:b8:3e: d0:75:73:30:18:7d:51:04:9f:6b:0a:b2:30:6e:7f:63:62:00: f3:bc:f7:57:c1:26:1f:99:01:6c:a5:6f:9f:94:cc:c3:a8:69: a9:9d:52:45:3c:7d:b3:20:e7:4f:c8:92:f7:03:31:62:13:1e: b6:41:7f:c5:43:fd:c0:2b:40:7c:df:52:18:b3:01:a2:64:ef: 9e:94:c1:26:d0:3b:dc:2f:07:b8:5c:2d:cb:ff:3d:61:18:45: 4b:c9:c9:99:1b:7c:57:7f:57:0a:b7:7d:20:0f:5c:80:e7:5c: 5d:6f:39:d1:3f:d8:c5:a9:d8:9e:8b:5c:a9:5b:d9:6d:62:e6: 03:36:96:81:9d:dd:ff:4f:81:8a:33:2f:84:e1:5e:aa:aa:c3: ec:7a:5c:e8:0b:28:c0:67:c2:70:3d:a1:2b:d8:66:0c:e4:c3: 06:6f:c3:37:2d:fc:00:6f:6d:83:a5:f1:dd:2a:9c:78:d3:68: 55:75:8a:e7:d0:86:68:90:92:d4:62:45:17:da:5d:73:9b:7f: 7d:e0:ef:be:35:31:d4:b0:66:25:f6:01:76:37:43:9b:1b:9a: 86:7b:be:ae -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUWFAR2jvd4Q4dk2OqN5LSh0St5h8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0ZGREM1MDJFOTBBRjhFNjZGRERDRDBBNkRGMzFEMTY4 RjM4QkFBNjAeFw0yNTA1MjcxNDU1NTBaFw0yNjA1MjYxNTAwNTBaMDMxMTAvBgNV BAMTKDAwN0EwNTdGMzBFMDlCQTAzQzQ0NTk5QzZERTU4MkI5RTAwNjMzOUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcyyZt54CnFR3Rbto3eyoVTjg+ JYyZ/seDW5/EhupMGy6UDm7o5TPk/NqPVgMtuvvdqPcejeRwjjJrmSack4uNt8Ex f6G1gmqtdDWvtWUvLk1e+pqPyeNPaylTycfMHBgT3Y8wl8FD4g8gC/5HtLm76CoA k9HJHt4YUfYyVMBqsCXUCKFJ4liL7+iyHQRbei/NFMHhbiJcapK45wNoNUIJ3a9C DwlRaSKNFFk+hTgNDEJnFtObS6P1Oj9a2SisBArrHavPBMOK4UZf2ZDfRwk5j4Bt ghJo9PtirZLcc1LRlRKlhUElreYU4nAodA0dQojDOCIt39wn3QXVcxY/m+qbAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUAHoFfzDgm6A8RFmcbeWCueAGM54wHwYDVR0j BBgwFoAUP/3FAukK+OZv3c0KbfMdFo84uqYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NmRhMGU4Mi0wNzY0LTQ1ZDMtYWVkOS1mZDI1OGU3MmI2ZTIvMS8zRkZEQzUwMkU5 MEFGOEU2NkZERENEMEE2REYzMUQxNjhGMzhCQUE2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0ZGREM1MDJFOTBBRjhFNjZGRERDRDBBNkRGMzFEMTY4RjM4 QkFBNi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE2ZGEwZTgyLTA3NjQtNDVkMy1h ZWQ5LWZkMjU4ZTcyYjZlMi8xLzMyMzAzMDMxM2E2NDY2MzMzYTY0NjY2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMyMzgzMDMwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 89/AMA0GCSqGSIb3DQEBCwUAA4IBAQCcm92OotmbBQoKLiw0T6Vi0XOYcm+ooiEa GWabhHsOROBiuD7QdXMwGH1RBJ9rCrIwbn9jYgDzvPdXwSYfmQFspW+flMzDqGmp nVJFPH2zIOdPyJL3AzFiEx62QX/FQ/3AK0B831IYswGiZO+elMEm0DvcLwe4XC3L /z1hGEVLycmZG3xXf1cKt30gD1yA51xdbznRP9jFqdiei1ypW9ltYuYDNpaBnd3/ T4GKMy+E4V6qqsPselzoCyjAZ8JwPaEr2GYM5MMGb8M3LfwAb22DpfHdKpx402hV dYrn0IZokJLUYkUX2l1zm3994O++NTHUsGYl9gF2N0ObG5qGe76u -----END CERTIFICATE-----Generated at Sat Jun 7 04:20:25 2025 by rpki-client