$ rpki-client -vvf repo-rpki.idnic.net/repo/1bae58ac-5917-4069-9a6c-83dc1ba32126/0/323030313a6466303a3232393a3a2f34382d3438203d3e20313331373738.roa File: 323030313a6466303a3232393a3a2f34382d3438203d3e20313331373738.roa (raw, json) Hash identifier: Kw/2sJDovbqcLamhNn36qpz8RozjhJRdtUEEKJ4rTNg= Subject key identifier: 3C:F5:09:C4:F4:E1:08:0B:59:39:51:B0:61:A8:B0:E5:28:12:17:BA Certificate issuer: /CN=0FFE5F19FBEB5489FFCCDF37FEFE0A0C6AB5695E Certificate serial: 67AA184946206D6122250F0215946C181D25C549 Authority key identifier: 0F:FE:5F:19:FB:EB:54:89:FF:CC:DF:37:FE:FE:0A:0C:6A:B5:69:5E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FFE5F19FBEB5489FFCCDF37FEFE0A0C6AB5695E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1bae58ac-5917-4069-9a6c-83dc1ba32126/0/323030313a6466303a3232393a3a2f34382d3438203d3e20313331373738.roa Signing time: Mon 02 Jun 2025 02:04:19 +0000 ROA not before: Mon 02 Jun 2025 01:59:19 +0000 ROA not after: Mon 01 Jun 2026 02:04:19 +0000 asID: 131778 IP address blocks: 2001:df0:229::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1bae58ac-5917-4069-9a6c-83dc1ba32126/0/0FFE5F19FBEB5489FFCCDF37FEFE0A0C6AB5695E.crl rsync://repo-rpki.idnic.net/repo/1bae58ac-5917-4069-9a6c-83dc1ba32126/0/0FFE5F19FBEB5489FFCCDF37FEFE0A0C6AB5695E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FFE5F19FBEB5489FFCCDF37FEFE0A0C6AB5695E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 02:57:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:aa:18:49:46:20:6d:61:22:25:0f:02:15:94:6c:18:1d:25:c5:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0FFE5F19FBEB5489FFCCDF37FEFE0A0C6AB5695E Validity Not Before: Jun 2 01:59:19 2025 GMT Not After : Jun 1 02:04:19 2026 GMT Subject: CN=3CF509C4F4E1080B593951B061A8B0E5281217BA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:63:c0:a7:2a:c2:5e:c8:2f:6d:fc:89:3f:f7: 48:82:33:4d:16:5f:3c:08:da:e6:9a:71:2b:3e:aa: 53:a3:32:c0:1e:f0:c4:d7:74:dd:50:60:d6:be:49: 78:c1:65:12:dc:13:fd:61:e2:0b:0e:d0:43:bc:a0: 4b:bf:13:5d:94:4b:3b:15:72:c0:33:b8:4b:8b:fd: 70:05:1f:4c:11:0a:3c:0f:a4:0c:ba:01:6d:63:64: fd:3e:82:04:0a:4b:75:57:3e:91:b7:10:b5:40:2f: 8b:f9:98:7f:b6:2c:f1:e0:9b:93:1a:2b:56:b5:54: bb:fb:fc:b6:77:06:7b:fc:10:dc:70:54:61:7a:db: ef:97:76:59:49:92:f5:5b:bb:1c:9a:3f:b2:18:bf: 6a:f3:b3:14:e2:94:d8:be:8f:9e:7e:49:24:a0:c6: d3:27:5a:38:53:9f:ce:7b:96:bb:b4:39:a3:4d:d3: ee:ae:32:09:6f:6d:53:fc:cb:13:82:33:8d:34:9f: cf:16:99:98:36:8e:fd:f8:48:44:e3:ab:35:dc:ee: 86:ee:4f:79:80:f6:50:8b:84:b4:8c:d7:cc:38:ab: 5a:1f:79:0a:98:46:fc:d4:ca:63:de:9c:ed:ec:31: 98:a1:5d:88:02:21:07:4c:b0:0d:9c:8c:2f:18:5d: f7:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:F5:09:C4:F4:E1:08:0B:59:39:51:B0:61:A8:B0:E5:28:12:17:BA X509v3 Authority Key Identifier: keyid:0F:FE:5F:19:FB:EB:54:89:FF:CC:DF:37:FE:FE:0A:0C:6A:B5:69:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1bae58ac-5917-4069-9a6c-83dc1ba32126/0/0FFE5F19FBEB5489FFCCDF37FEFE0A0C6AB5695E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FFE5F19FBEB5489FFCCDF37FEFE0A0C6AB5695E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1bae58ac-5917-4069-9a6c-83dc1ba32126/0/323030313a6466303a3232393a3a2f34382d3438203d3e20313331373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:229::/48 Signature Algorithm: sha256WithRSAEncryption c5:3a:a2:6c:34:ec:a7:6c:0a:8a:46:6c:f5:6e:28:ff:85:af: ac:30:ce:ec:be:69:bf:c4:32:eb:f8:5f:f4:24:62:79:3a:81: 6e:73:b7:e4:84:e2:6e:ca:c0:9a:b5:79:ad:c8:0c:f1:d9:26: c7:ef:45:07:5d:a0:9b:6e:17:e1:ad:ed:3d:9a:1f:61:e7:8c: 4a:e3:79:38:1c:ad:46:99:67:f4:39:69:c0:5c:97:d9:e9:65: c1:49:84:ad:e2:c2:44:db:00:3a:dd:90:9d:d8:00:b4:1a:23: d6:ea:9f:31:8c:d8:9a:f2:f3:89:be:6a:c8:99:4f:c0:91:56: 37:33:11:98:31:85:e4:f8:17:34:b9:9c:36:80:44:c8:1c:4e: 81:9d:a9:4c:6e:78:fe:cc:f3:f7:a6:aa:7a:d4:16:e5:da:9a: 87:e1:b6:5b:c8:9c:4e:83:88:41:49:13:c0:43:8f:fd:3d:97: 92:61:f1:55:59:f6:0a:c2:0e:c5:93:aa:34:23:48:8d:73:e0: 43:04:1d:21:7c:5b:2d:9f:81:51:4f:d3:32:d1:d9:97:57:bc: d7:d2:12:3c:d0:da:ee:09:34:b3:65:8e:91:14:ad:79:86:bd: ee:06:d5:62:2a:fa:34:dd:99:e5:64:30:87:ad:39:52:87:c2: 81:75:dd:04 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUZ6oYSUYgbWEiJQ8CFZRsGB0lxUkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEZGRTVGMTlGQkVCNTQ4OUZGQ0NERjM3RkVGRTBBMEM2 QUI1Njk1RTAeFw0yNTA2MDIwMTU5MTlaFw0yNjA2MDEwMjA0MTlaMDMxMTAvBgNV BAMTKDNDRjUwOUM0RjRFMTA4MEI1OTM5NTFCMDYxQThCMEU1MjgxMjE3QkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMY8CnKsJeyC9t/Ik/90iCM00W XzwI2uaacSs+qlOjMsAe8MTXdN1QYNa+SXjBZRLcE/1h4gsO0EO8oEu/E12USzsV csAzuEuL/XAFH0wRCjwPpAy6AW1jZP0+ggQKS3VXPpG3ELVAL4v5mH+2LPHgm5Ma K1a1VLv7/LZ3Bnv8ENxwVGF62++XdllJkvVbuxyaP7IYv2rzsxTilNi+j55+SSSg xtMnWjhTn857lru0OaNN0+6uMglvbVP8yxOCM400n88WmZg2jv34SETjqzXc7obu T3mA9lCLhLSM18w4q1ofeQqYRvzUymPenO3sMZihXYgCIQdMsA2cjC8YXfczAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUPPUJxPThCAtZOVGwYaiw5SgSF7owHwYDVR0j BBgwFoAUD/5fGfvrVIn/zN83/v4KDGq1aV4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YmFlNThhYy01OTE3LTQwNjktOWE2Yy04M2RjMWJhMzIxMjYvMC8wRkZFNUYxOUZC RUI1NDg5RkZDQ0RGMzdGRUZFMEEwQzZBQjU2OTVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEZGRTVGMTlGQkVCNTQ4OUZGQ0NERjM3RkVGRTBBMEM2QUI1 Njk1RS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFiYWU1OGFjLTU5MTctNDA2OS05 YTZjLTgzZGMxYmEzMjEyNi8wLzMyMzAzMDMxM2E2NDY2MzAzYTMyMzIzOTNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzMTM3MzczOC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfAC KTANBgkqhkiG9w0BAQsFAAOCAQEAxTqibDTsp2wKikZs9W4o/4WvrDDO7L5pv8Qy 6/hf9CRieTqBbnO35ITibsrAmrV5rcgM8dkmx+9FB12gm24X4a3tPZofYeeMSuN5 OBytRpln9DlpwFyX2ellwUmEreLCRNsAOt2QndgAtBoj1uqfMYzYmvLzib5qyJlP wJFWNzMRmDGF5PgXNLmcNoBEyBxOgZ2pTG54/szz96aqetQW5dqah+G2W8icToOI QUkTwEOP/T2XkmHxVVn2CsIOxZOqNCNIjXPgQwQdIXxbLZ+BUU/TMtHZl1e819IS PNDa7gk0s2WOkRSteYa97gbVYir6NN2Z5WQwh605UofCgXXdBA== -----END CERTIFICATE-----Generated at Sat Jun 7 23:01:56 2025 by rpki-client