$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9d7cb-6cfb-4de0-9daa-d222b7a89072/0/323030313a6466313a316334303a3a2f34382d3438203d3e20313439393533.roa File: 323030313a6466313a316334303a3a2f34382d3438203d3e20313439393533.roa (raw, json) Hash identifier: 7NwT3lu9JZjfjgapimGfIHaWTUgpUh5i3OuwyUj48VY= Subject key identifier: B4:E0:23:3D:96:50:C1:8B:B5:1C:94:95:59:F4:48:26:33:30:14:14 Certificate issuer: /CN=DBB18CCF58914524AFB113FE13359CC6B08EFBF3 Certificate serial: 487C52A7F188A73AC0706D60D83C8EB2A2ECED4C Authority key identifier: DB:B1:8C:CF:58:91:45:24:AF:B1:13:FE:13:35:9C:C6:B0:8E:FB:F3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DBB18CCF58914524AFB113FE13359CC6B08EFBF3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/27d9d7cb-6cfb-4de0-9daa-d222b7a89072/0/323030313a6466313a316334303a3a2f34382d3438203d3e20313439393533.roa Signing time: Fri 16 May 2025 11:00:00 +0000 ROA not before: Fri 16 May 2025 10:55:00 +0000 ROA not after: Fri 15 May 2026 11:00:00 +0000 asID: 149953 IP address blocks: 2001:df1:1c40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/27d9d7cb-6cfb-4de0-9daa-d222b7a89072/0/DBB18CCF58914524AFB113FE13359CC6B08EFBF3.crl rsync://repo-rpki.idnic.net/repo/27d9d7cb-6cfb-4de0-9daa-d222b7a89072/0/DBB18CCF58914524AFB113FE13359CC6B08EFBF3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DBB18CCF58914524AFB113FE13359CC6B08EFBF3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 19:01:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:7c:52:a7:f1:88:a7:3a:c0:70:6d:60:d8:3c:8e:b2:a2:ec:ed:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DBB18CCF58914524AFB113FE13359CC6B08EFBF3 Validity Not Before: May 16 10:55:00 2025 GMT Not After : May 15 11:00:00 2026 GMT Subject: CN=B4E0233D9650C18BB51C949559F4482633301414 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:83:44:1f:0c:cd:c9:1c:a0:41:89:7c:5e:71: 77:ce:c6:b0:b6:0e:c8:58:cb:52:77:96:d0:44:50: ff:24:2a:0d:92:b3:0e:3e:b0:cb:5c:9e:d3:da:d1: 7e:5b:0f:04:db:39:ae:ba:98:0c:32:5f:eb:80:3e: 39:24:5c:ff:67:d4:ea:66:53:fe:10:0f:0d:5b:11: db:5f:35:76:74:1a:e1:c1:97:60:6f:df:03:f0:65: 07:ff:b3:20:76:2d:9a:aa:84:38:a3:20:4d:30:39: e5:4c:ad:4b:14:98:69:01:09:18:44:66:8b:3b:67: 89:4f:eb:71:4c:4f:60:91:8f:01:0a:ab:d4:ed:c9: 60:77:e8:35:69:63:98:80:2a:5f:d9:7d:ea:70:27: ab:df:a6:93:65:8e:e6:99:79:25:d4:d4:08:ce:e1: ee:07:11:ee:36:7f:04:7a:31:91:61:95:73:81:5e: 07:20:c8:f4:57:ad:76:aa:9a:8c:5b:13:d6:3c:f2: 54:6e:ec:d3:ac:c9:ed:e8:39:57:39:6b:0c:9b:a1: 78:52:0f:90:c6:09:bc:f9:80:64:3c:b4:f0:6b:1b: 18:9a:5d:22:4f:a2:0f:8c:25:f7:d2:94:2e:f4:b2: 7a:84:66:aa:d0:b7:0b:a0:d2:56:6e:9c:f2:94:2b: 56:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:E0:23:3D:96:50:C1:8B:B5:1C:94:95:59:F4:48:26:33:30:14:14 X509v3 Authority Key Identifier: keyid:DB:B1:8C:CF:58:91:45:24:AF:B1:13:FE:13:35:9C:C6:B0:8E:FB:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/27d9d7cb-6cfb-4de0-9daa-d222b7a89072/0/DBB18CCF58914524AFB113FE13359CC6B08EFBF3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DBB18CCF58914524AFB113FE13359CC6B08EFBF3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9d7cb-6cfb-4de0-9daa-d222b7a89072/0/323030313a6466313a316334303a3a2f34382d3438203d3e20313439393533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:1c40::/48 Signature Algorithm: sha256WithRSAEncryption a1:d6:dc:a6:f0:be:d3:f8:f9:9d:69:c1:0b:73:9a:3e:67:cd: 5c:47:4f:30:ea:25:08:c4:17:cf:e9:5e:50:64:8e:4c:cc:3b: 61:30:2c:3f:1b:2b:75:8a:a3:c7:13:0d:53:f1:a3:10:83:9c: 7b:e2:ea:73:16:16:37:a3:6a:ea:6e:26:f9:b5:fc:10:c7:e2: 9d:23:ea:a4:96:5e:5b:5a:2a:c4:b7:a3:33:2f:6f:63:a7:a5: 1d:19:fb:b7:ae:aa:b7:fa:cc:b2:76:35:c1:08:5b:f6:bd:08: 40:8f:8c:18:0a:8c:c5:f4:a4:d1:f5:ef:6d:98:b9:8c:84:0d: 67:5d:c8:0d:a9:17:18:84:21:1e:2b:f8:01:66:09:48:ae:7b: 2c:61:2e:a3:69:60:da:91:a7:7f:95:1d:86:52:54:c2:01:25: f2:81:7e:3c:13:01:ef:c2:a4:01:90:e3:4f:12:8e:40:31:14: da:43:03:f6:fa:34:01:86:e6:b2:e8:30:e4:d8:0e:59:37:88: 33:82:89:ac:d1:08:37:31:f4:ee:ed:e5:b6:ed:45:d5:e6:3f: d3:ba:37:fc:4f:b4:9d:df:6e:bf:4b:ea:05:af:10:30:1a:fc: 83:60:60:11:93:68:48:5a:c2:d1:9d:8d:e3:b1:66:22:6a:7b: b3:72:00:a5 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUSHxSp/GIpzrAcG1g2DyOsqLs7UwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREJCMThDQ0Y1ODkxNDUyNEFGQjExM0ZFMTMzNTlDQzZC MDhFRkJGMzAeFw0yNTA1MTYxMDU1MDBaFw0yNjA1MTUxMTAwMDBaMDMxMTAvBgNV BAMTKEI0RTAyMzNEOTY1MEMxOEJCNTFDOTQ5NTU5RjQ0ODI2MzMzMDE0MTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXg0QfDM3JHKBBiXxecXfOxrC2 DshYy1J3ltBEUP8kKg2Ssw4+sMtcntPa0X5bDwTbOa66mAwyX+uAPjkkXP9n1Opm U/4QDw1bEdtfNXZ0GuHBl2Bv3wPwZQf/syB2LZqqhDijIE0wOeVMrUsUmGkBCRhE Zos7Z4lP63FMT2CRjwEKq9TtyWB36DVpY5iAKl/ZfepwJ6vfppNljuaZeSXU1AjO 4e4HEe42fwR6MZFhlXOBXgcgyPRXrXaqmoxbE9Y88lRu7NOsye3oOVc5awyboXhS D5DGCbz5gGQ8tPBrGxiaXSJPog+MJffSlC70snqEZqrQtwug0lZunPKUK1aXAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUtOAjPZZQwYu1HJSVWfRIJjMwFBQwHwYDVR0j BBgwFoAU27GMz1iRRSSvsRP+EzWcxrCO+/MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y N2Q5ZDdjYi02Y2ZiLTRkZTAtOWRhYS1kMjIyYjdhODkwNzIvMC9EQkIxOENDRjU4 OTE0NTI0QUZCMTEzRkUxMzM1OUNDNkIwOEVGQkYzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREJCMThDQ0Y1ODkxNDUyNEFGQjExM0ZFMTMzNTlDQzZCMDhF RkJGMy5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlkN2NiLTZjZmItNGRlMC05 ZGFhLWQyMjJiN2E4OTA3Mi8wLzMyMzAzMDMxM2E2NDY2MzEzYTMxNjMzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDM5MzkzNTMzLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8RxAMA0GCSqGSIb3DQEBCwUAA4IBAQCh1tym8L7T+PmdacELc5o+Z81cR08w6iUI xBfP6V5QZI5MzDthMCw/Gyt1iqPHEw1T8aMQg5x74upzFhY3o2rqbib5tfwQx+Kd I+qkll5bWirEt6MzL29jp6UdGfu3rqq3+syydjXBCFv2vQhAj4wYCozF9KTR9e9t mLmMhA1nXcgNqRcYhCEeK/gBZglIrnssYS6jaWDakad/lR2GUlTCASXygX48EwHv wqQBkONPEo5AMRTaQwP2+jQBhuay6DDk2A5ZN4gzgoms0Qg3MfTu7eW27UXV5j/T ujf8T7Sd326/S+oFrxAwGvyDYGARk2hIWsLRnY3jsWYianuzcgCl -----END CERTIFICATE-----Generated at Sat Jun 7 15:31:06 2025 by rpki-client