$ rpki-client -vvf repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/323030313a6466313a363338303a3a2f34382d3438203d3e203435333035.roa File: 323030313a6466313a363338303a3a2f34382d3438203d3e203435333035.roa (raw, json) Hash identifier: G7BNKn0aQeDATXJ1JamzPIxZOqsRSSDm9xJMQAbHt5c= Subject key identifier: 32:A2:49:67:60:D5:D4:6E:79:42:D5:BC:A7:77:FB:7E:70:F5:78:B5 Certificate issuer: /CN=D68CA7C6F514D7168C00790717FB869AF68B125E Certificate serial: 4842E37AB091BB0F15D60DE6A8F1376AF77DA705 Authority key identifier: D6:8C:A7:C6:F5:14:D7:16:8C:00:79:07:17:FB:86:9A:F6:8B:12:5E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D68CA7C6F514D7168C00790717FB869AF68B125E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/323030313a6466313a363338303a3a2f34382d3438203d3e203435333035.roa Signing time: Mon 05 May 2025 06:00:00 +0000 ROA not before: Mon 05 May 2025 05:55:00 +0000 ROA not after: Mon 04 May 2026 06:00:00 +0000 asID: 45305 IP address blocks: 2001:df1:6380::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/D68CA7C6F514D7168C00790717FB869AF68B125E.crl rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/D68CA7C6F514D7168C00790717FB869AF68B125E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D68CA7C6F514D7168C00790717FB869AF68B125E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 10:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:42:e3:7a:b0:91:bb:0f:15:d6:0d:e6:a8:f1:37:6a:f7:7d:a7:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D68CA7C6F514D7168C00790717FB869AF68B125E Validity Not Before: May 5 05:55:00 2025 GMT Not After : May 4 06:00:00 2026 GMT Subject: CN=32A2496760D5D46E7942D5BCA777FB7E70F578B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:7a:46:6a:e8:b8:61:a1:74:cf:eb:ab:c7:2e: 03:eb:00:6c:50:b1:1d:92:b2:bf:5f:e4:22:3c:6d: 53:4e:3b:84:f9:fc:24:38:a9:d4:c4:de:94:d8:81: 17:92:4c:31:78:c1:62:59:20:83:60:b4:1c:95:92: 6c:98:69:98:86:4e:38:d3:ee:da:86:ff:ad:e7:22: fb:3f:7f:72:50:5f:95:ff:52:13:31:5a:99:49:56: 33:0a:df:72:4e:14:79:46:79:eb:21:59:da:67:20: 2f:df:69:aa:a2:df:c3:00:f4:eb:b3:f8:9b:c5:af: 02:f7:e7:31:e9:1f:a4:76:30:6e:78:ff:d6:28:86: 75:62:be:26:d6:bf:3d:4d:a6:fa:9c:8e:89:7b:d0: 8c:1a:71:f4:72:64:9f:d3:aa:a9:06:d8:eb:c5:c0: 0e:0f:75:d6:a2:cd:06:ba:71:7d:70:35:d9:4d:47: 84:77:9c:3f:50:1e:70:b4:80:81:66:9c:b3:e3:42: b4:65:df:7d:38:38:09:ae:f0:48:6d:6c:2f:9f:98: 31:e2:85:69:53:60:cc:1f:66:d8:28:ea:56:16:e7: 20:f1:8b:c6:85:39:21:1a:95:1c:be:3b:d2:23:03: e7:49:9b:a4:1c:6c:12:19:15:2e:d6:86:38:62:ba: 60:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:A2:49:67:60:D5:D4:6E:79:42:D5:BC:A7:77:FB:7E:70:F5:78:B5 X509v3 Authority Key Identifier: keyid:D6:8C:A7:C6:F5:14:D7:16:8C:00:79:07:17:FB:86:9A:F6:8B:12:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/D68CA7C6F514D7168C00790717FB869AF68B125E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D68CA7C6F514D7168C00790717FB869AF68B125E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/323030313a6466313a363338303a3a2f34382d3438203d3e203435333035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:6380::/48 Signature Algorithm: sha256WithRSAEncryption 55:31:d7:ec:8d:1a:30:c4:7a:e7:a8:37:1f:90:e9:5f:72:41: 50:5b:61:80:c5:2d:a3:2a:a2:d5:c2:ef:82:aa:b3:b1:3c:6c: e8:42:fd:84:52:0a:17:fe:13:16:e1:d1:51:32:a7:05:31:65: b3:6a:4b:ad:59:be:bd:92:1c:84:02:75:c6:14:0a:a7:b4:3e: 85:d3:7f:7c:cc:01:60:9d:1f:ad:24:de:12:73:7b:72:46:20: aa:d7:67:1d:c9:c5:5c:26:b9:98:09:96:67:97:67:49:d3:75: d8:a8:9b:34:8d:28:16:fd:cf:cd:e1:cd:57:24:fa:30:f9:ad: 1d:33:c8:b0:f2:74:6f:7b:85:13:d2:a5:39:16:07:9c:90:df: 1f:72:77:a1:c1:ce:8b:6e:57:95:7b:3b:c4:85:b2:7a:8e:c4: da:49:ad:bc:44:b8:be:c7:2a:d0:67:2a:04:d1:b1:9c:9a:1f: 13:11:a1:fc:5c:60:bb:3a:31:9a:43:cc:dd:9a:dc:3a:14:92: 2f:94:f2:bd:a2:b4:92:df:65:88:c1:85:c9:05:1b:93:86:46: 5a:d4:6e:da:dd:bb:62:19:23:dd:30:b1:8d:42:64:39:a7:15: 28:c9:0a:80:f5:38:13:61:e8:6e:b0:2c:69:e7:42:79:8f:38: 76:98:c1:78 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUSELjerCRuw8V1g3mqPE3avd9pwUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDY4Q0E3QzZGNTE0RDcxNjhDMDA3OTA3MTdGQjg2OUFG NjhCMTI1RTAeFw0yNTA1MDUwNTU1MDBaFw0yNjA1MDQwNjAwMDBaMDMxMTAvBgNV BAMTKDMyQTI0OTY3NjBENUQ0NkU3OTQyRDVCQ0E3NzdGQjdFNzBGNTc4QjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDwekZq6LhhoXTP66vHLgPrAGxQ sR2Ssr9f5CI8bVNOO4T5/CQ4qdTE3pTYgReSTDF4wWJZIINgtByVkmyYaZiGTjjT 7tqG/63nIvs/f3JQX5X/UhMxWplJVjMK33JOFHlGeeshWdpnIC/faaqi38MA9Ouz +JvFrwL35zHpH6R2MG54/9YohnVivibWvz1Npvqcjol70IwacfRyZJ/TqqkG2OvF wA4PddaizQa6cX1wNdlNR4R3nD9QHnC0gIFmnLPjQrRl3304OAmu8EhtbC+fmDHi hWlTYMwfZtgo6lYW5yDxi8aFOSEalRy+O9IjA+dJm6QcbBIZFS7WhjhiumAfAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUMqJJZ2DV1G55QtW8p3f7fnD1eLUwHwYDVR0j BBgwFoAU1oynxvUU1xaMAHkHF/uGmvaLEl4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZGRjMWRkOC02ZDI1LTQ3YzctYWFhNC1iZGRmMWI5ZDY3N2UvMC9ENjhDQTdDNkY1 MTRENzE2OEMwMDc5MDcxN0ZCODY5QUY2OEIxMjVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDY4Q0E3QzZGNTE0RDcxNjhDMDA3OTA3MTdGQjg2OUFGNjhC MTI1RS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFkZGMxZGQ4LTZkMjUtNDdjNy1h YWE0LWJkZGYxYjlkNjc3ZS8wLzMyMzAzMDMxM2E2NDY2MzEzYTM2MzMzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzQzNTMzMzAzNS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfFj gDANBgkqhkiG9w0BAQsFAAOCAQEAVTHX7I0aMMR656g3H5DpX3JBUFthgMUtoyqi 1cLvgqqzsTxs6EL9hFIKF/4TFuHRUTKnBTFls2pLrVm+vZIchAJ1xhQKp7Q+hdN/ fMwBYJ0frSTeEnN7ckYgqtdnHcnFXCa5mAmWZ5dnSdN12KibNI0oFv3PzeHNVyT6 MPmtHTPIsPJ0b3uFE9KlORYHnJDfH3J3ocHOi25XlXs7xIWyeo7E2kmtvES4vscq 0GcqBNGxnJofExGh/FxguzoxmkPM3ZrcOhSSL5TyvaK0kt9liMGFyQUbk4ZGWtRu 2t27Yhkj3TCxjUJkOacVKMkKgPU4E2HobrAsaedCeY84dpjBeA== -----END CERTIFICATE-----Generated at Sun Jun 8 04:14:54 2025 by rpki-client