$ rpki-client -vvf repo-rpki.idnic.net/repo/1ca292b2-4ae4-41df-887a-c172c3e1ae73/0/323030313a6466303a353463303a3a2f34382d3438203d3e20313431353936.roa File: 323030313a6466303a353463303a3a2f34382d3438203d3e20313431353936.roa (raw, json) Hash identifier: JfuES0kaATSQOVSGSxANPI5Fc3cOe+x8BKWfAi4CWYs= Subject key identifier: 40:2B:41:1E:9A:1B:B7:BD:59:8E:7B:F2:EC:17:89:EB:B1:31:17:5A Certificate issuer: /CN=139934661CE07BEBBFA824F7225502B15AE8B653 Certificate serial: 63F2EF78983EAEFEE4E8C9ADE008489BF544E8AB Authority key identifier: 13:99:34:66:1C:E0:7B:EB:BF:A8:24:F7:22:55:02:B1:5A:E8:B6:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/139934661CE07BEBBFA824F7225502B15AE8B653.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ca292b2-4ae4-41df-887a-c172c3e1ae73/0/323030313a6466303a353463303a3a2f34382d3438203d3e20313431353936.roa Signing time: Tue 03 Jun 2025 11:02:31 +0000 ROA not before: Tue 03 Jun 2025 10:57:31 +0000 ROA not after: Tue 02 Jun 2026 11:02:31 +0000 asID: 141596 IP address blocks: 2001:df0:54c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ca292b2-4ae4-41df-887a-c172c3e1ae73/0/139934661CE07BEBBFA824F7225502B15AE8B653.crl rsync://repo-rpki.idnic.net/repo/1ca292b2-4ae4-41df-887a-c172c3e1ae73/0/139934661CE07BEBBFA824F7225502B15AE8B653.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/139934661CE07BEBBFA824F7225502B15AE8B653.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 21:16:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:f2:ef:78:98:3e:ae:fe:e4:e8:c9:ad:e0:08:48:9b:f5:44:e8:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=139934661CE07BEBBFA824F7225502B15AE8B653 Validity Not Before: Jun 3 10:57:31 2025 GMT Not After : Jun 2 11:02:31 2026 GMT Subject: CN=402B411E9A1BB7BD598E7BF2EC1789EBB131175A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:f8:e9:f3:00:d8:3c:1c:f2:86:4c:9a:4b:6d: 4a:1e:42:01:3a:77:f9:a0:5c:99:9d:37:9f:02:f5: d8:9b:24:ea:5b:ba:20:75:82:2d:aa:63:e0:c4:75: c6:ec:3a:d5:67:46:05:06:d8:d1:97:77:78:b0:b4: 92:da:fa:f0:80:48:45:7e:11:a1:2f:0d:56:d6:48: 15:16:42:15:c4:52:0e:60:9e:11:46:95:65:f1:4c: 31:b2:df:58:7e:b5:70:53:ac:ec:10:75:eb:6b:58: bb:9e:01:a7:30:fb:cb:b3:24:27:fc:9e:4b:ec:f7: 04:09:b0:67:be:57:0f:10:ec:97:ab:d6:4e:71:95: 6d:d3:08:e6:75:1f:89:18:c2:44:e4:0f:86:6d:cf: 50:9e:37:4c:33:36:8c:f2:1c:c1:23:03:6a:1f:aa: db:59:bf:52:db:96:92:0d:28:29:c4:47:3a:08:0f: 35:f6:64:93:1d:12:e8:2a:ed:18:19:05:fb:5b:87: 4d:51:00:bd:08:b7:cc:bd:b4:4b:40:d0:c5:bf:de: 9a:c0:e3:7e:53:82:32:6d:ea:72:c3:05:83:9a:6c: 3b:b1:17:5d:cc:19:19:13:0a:de:c1:d3:90:52:72: b5:ae:6f:44:ab:90:dd:23:ac:1f:3c:bd:b5:2e:be: ca:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:2B:41:1E:9A:1B:B7:BD:59:8E:7B:F2:EC:17:89:EB:B1:31:17:5A X509v3 Authority Key Identifier: keyid:13:99:34:66:1C:E0:7B:EB:BF:A8:24:F7:22:55:02:B1:5A:E8:B6:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ca292b2-4ae4-41df-887a-c172c3e1ae73/0/139934661CE07BEBBFA824F7225502B15AE8B653.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/139934661CE07BEBBFA824F7225502B15AE8B653.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ca292b2-4ae4-41df-887a-c172c3e1ae73/0/323030313a6466303a353463303a3a2f34382d3438203d3e20313431353936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:54c0::/48 Signature Algorithm: sha256WithRSAEncryption 16:d8:52:44:77:db:bd:00:8a:00:87:b4:44:d3:f3:af:ec:bb: 94:65:f5:82:9e:51:61:dc:ad:68:86:ee:2b:92:ab:38:10:84: a2:85:30:e6:97:42:cb:7d:88:16:22:4f:69:bd:52:cf:1c:fa: f4:01:fe:4e:93:04:bc:68:c1:b4:44:82:3c:48:b2:ba:1c:39: 06:45:1b:21:1c:ff:6f:fc:82:69:79:ec:af:4b:a8:4c:ef:df: b4:df:c6:3d:ad:1b:df:70:1e:4c:3d:22:f3:74:35:6f:68:ce: 0a:1b:9f:d3:c4:e6:53:47:a8:d2:65:65:42:d5:b6:45:ff:36: f4:55:63:46:51:23:56:68:6f:0b:c5:66:11:79:c6:0f:2b:26: b2:4d:b1:bc:9d:d9:64:ec:96:85:61:0e:bc:5d:1f:7e:d3:83: c5:00:91:1e:8d:7b:7a:30:2f:57:85:f2:5a:e8:11:bb:7b:f9: 2a:21:7a:72:41:ae:2a:6b:d5:a3:95:22:1c:ff:33:ce:23:a5: 6f:e4:bd:6a:21:75:47:c1:63:fd:ba:5f:40:c7:b3:81:d2:f3: ca:5c:eb:a9:b8:d8:b9:14:2e:ac:5e:4a:a7:ea:55:05:ab:89: 27:d1:d8:04:7e:04:b7:26:38:71:4b:23:a0:22:2e:5a:38:89: c9:30:11:c0 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUY/LveJg+rv7k6Mmt4AhIm/VE6KswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTM5OTM0NjYxQ0UwN0JFQkJGQTgyNEY3MjI1NTAyQjE1 QUU4QjY1MzAeFw0yNTA2MDMxMDU3MzFaFw0yNjA2MDIxMTAyMzFaMDMxMTAvBgNV BAMTKDQwMkI0MTFFOUExQkI3QkQ1OThFN0JGMkVDMTc4OUVCQjEzMTE3NUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8+OnzANg8HPKGTJpLbUoeQgE6 d/mgXJmdN58C9dibJOpbuiB1gi2qY+DEdcbsOtVnRgUG2NGXd3iwtJLa+vCASEV+ EaEvDVbWSBUWQhXEUg5gnhFGlWXxTDGy31h+tXBTrOwQdetrWLueAacw+8uzJCf8 nkvs9wQJsGe+Vw8Q7Jer1k5xlW3TCOZ1H4kYwkTkD4Ztz1CeN0wzNozyHMEjA2of qttZv1LblpINKCnERzoIDzX2ZJMdEugq7RgZBftbh01RAL0It8y9tEtA0MW/3prA 435TgjJt6nLDBYOabDuxF13MGRkTCt7B05BScrWub0SrkN0jrB88vbUuvsqzAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUQCtBHpobt71Zjnvy7BeJ67ExF1owHwYDVR0j BBgwFoAUE5k0Zhzge+u/qCT3IlUCsVrotlMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x Y2EyOTJiMi00YWU0LTQxZGYtODg3YS1jMTcyYzNlMWFlNzMvMC8xMzk5MzQ2NjFD RTA3QkVCQkZBODI0RjcyMjU1MDJCMTVBRThCNjUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTM5OTM0NjYxQ0UwN0JFQkJGQTgyNEY3MjI1NTAyQjE1QUU4 QjY1My5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFjYTI5MmIyLTRhZTQtNDFkZi04 ODdhLWMxNzJjM2UxYWU3My8wLzMyMzAzMDMxM2E2NDY2MzAzYTM1MzQ2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDMxMzUzOTM2LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8FTAMA0GCSqGSIb3DQEBCwUAA4IBAQAW2FJEd9u9AIoAh7RE0/Ov7LuUZfWCnlFh 3K1ohu4rkqs4EISihTDml0LLfYgWIk9pvVLPHPr0Af5OkwS8aMG0RII8SLK6HDkG RRshHP9v/IJpeeyvS6hM79+038Y9rRvfcB5MPSLzdDVvaM4KG5/TxOZTR6jSZWVC 1bZF/zb0VWNGUSNWaG8LxWYRecYPKyayTbG8ndlk7JaFYQ68XR9+04PFAJEejXt6 MC9XhfJa6BG7e/kqIXpyQa4qa9WjlSIc/zPOI6Vv5L1qIXVHwWP9ul9Ax7OB0vPK XOupuNi5FC6sXkqn6lUFq4kn0dgEfgS3JjhxSyOgIi5aOInJMBHA -----END CERTIFICATE-----Generated at Fri Jun 6 16:50:05 2025 by rpki-client