$ rpki-client -vvf repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/323030313a6466303a61333a3a2f34382d3438203d3e203435333035.roa File: 323030313a6466303a61333a3a2f34382d3438203d3e203435333035.roa (raw, json) Hash identifier: hlUw25q5eNWFZZoKL6XJ7rDIzMv9Ha/qCoX1PFqE3P4= Subject key identifier: C0:1C:E3:93:7D:F6:8E:BB:CE:14:E3:F2:33:63:9E:12:4C:F6:09:A7 Certificate issuer: /CN=D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD Certificate serial: 4B82C19A8DA0E4F71A1883E70C6CF61CCDADC15E Authority key identifier: D2:5A:04:A0:E4:E5:2F:F4:22:D9:D8:FB:85:7D:23:DC:61:42:E5:FD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/323030313a6466303a61333a3a2f34382d3438203d3e203435333035.roa Signing time: Mon 02 Jun 2025 02:03:09 +0000 ROA not before: Mon 02 Jun 2025 01:58:09 +0000 ROA not after: Mon 01 Jun 2026 02:03:09 +0000 asID: 45305 IP address blocks: 2001:df0:a3::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 06:34:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:82:c1:9a:8d:a0:e4:f7:1a:18:83:e7:0c:6c:f6:1c:cd:ad:c1:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD Validity Not Before: Jun 2 01:58:09 2025 GMT Not After : Jun 1 02:03:09 2026 GMT Subject: CN=C01CE3937DF68EBBCE14E3F233639E124CF609A7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:2d:64:3c:43:b7:fd:1d:d2:34:df:ff:44:a9: 7d:50:2c:d5:bb:3a:52:5e:c1:8e:f0:b4:50:19:a5: cc:90:78:d7:a4:eb:d4:ca:30:4e:bb:c7:b8:c3:83: 47:9e:d5:63:b8:4f:83:79:1c:6a:a7:2b:35:34:22: 88:06:e3:a6:99:27:c3:9e:13:99:91:5c:01:1b:e3: 55:70:99:eb:56:ba:e8:26:2e:dc:85:29:6c:a1:51: 31:e0:6f:04:38:a4:65:d8:8a:31:0b:16:21:8b:8a: 49:97:e4:fb:91:62:45:59:44:cc:5d:fe:d5:d7:ea: 70:f6:36:a3:2f:05:d4:9d:7f:bc:90:f5:17:af:97: 1c:fa:2b:ec:30:d4:f4:a1:31:64:6a:a1:61:4e:5d: e7:c4:11:21:a4:70:a7:82:0e:74:8a:64:46:08:ac: c3:f4:4e:f5:e3:fe:50:be:67:62:1b:9f:6d:70:ab: 90:35:2f:14:2e:77:52:11:75:9e:ea:63:c5:db:9f: 40:ec:4d:a1:62:43:19:f8:20:64:87:08:28:64:8c: b5:b8:a1:e3:77:68:34:e3:ef:db:4f:c7:06:94:90: cf:b2:f0:08:86:4c:4a:6e:00:84:e8:c0:d9:8b:ef: 1b:7e:a3:a2:a6:0f:f5:26:20:4d:61:e7:52:a0:5d: 8f:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:1C:E3:93:7D:F6:8E:BB:CE:14:E3:F2:33:63:9E:12:4C:F6:09:A7 X509v3 Authority Key Identifier: keyid:D2:5A:04:A0:E4:E5:2F:F4:22:D9:D8:FB:85:7D:23:DC:61:42:E5:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/323030313a6466303a61333a3a2f34382d3438203d3e203435333035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:a3::/48 Signature Algorithm: sha256WithRSAEncryption 5a:38:e4:c0:54:26:f6:3b:65:dd:ee:57:74:ef:1a:42:e6:20: 23:ab:cd:38:b5:9e:d5:ef:fe:88:5d:3a:43:4c:38:10:40:db: 5e:cf:a2:f3:77:64:6e:f8:0e:ef:3b:4d:2d:43:74:e7:02:eb: 3d:73:99:3c:fa:30:9c:f6:8b:6d:c2:06:49:31:e5:c7:09:d9: 7c:76:e1:73:54:2c:f8:ff:b8:7b:fd:fc:95:71:b4:ef:42:2d: 2d:e2:14:d2:b0:f9:19:7e:05:59:90:a3:06:57:37:6a:55:24: 59:ed:6c:bc:63:f0:1c:15:67:6c:c2:85:41:23:69:76:2c:9d: 49:f8:4a:ce:e2:59:07:ee:b7:21:e5:3b:46:5f:37:c8:80:f3: 7a:8f:19:64:e1:3c:48:d7:46:aa:a5:2d:22:45:a5:90:7c:b1: 54:7a:f0:a6:05:08:0a:b3:8a:19:93:95:96:db:c8:98:e6:8e: 89:f1:dd:65:4e:70:a5:ee:bf:d1:64:38:a0:bd:72:85:68:9a: 83:79:41:4f:2b:eb:f8:5a:55:dc:ea:58:0f:72:d7:69:e4:6e: 7b:b8:d8:df:78:67:a3:9d:14:04:48:f5:40:b1:8b:24:8b:a8: 08:ea:6a:df:74:b9:b5:ed:92:8a:67:01:63:89:b3:2b:44:fb: a1:11:e0:6f -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUS4LBmo2g5PcaGIPnDGz2HM2twV4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDI1QTA0QTBFNEU1MkZGNDIyRDlEOEZCODU3RDIzREM2 MTQyRTVGRDAeFw0yNTA2MDIwMTU4MDlaFw0yNjA2MDEwMjAzMDlaMDMxMTAvBgNV BAMTKEMwMUNFMzkzN0RGNjhFQkJDRTE0RTNGMjMzNjM5RTEyNENGNjA5QTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHLWQ8Q7f9HdI03/9EqX1QLNW7 OlJewY7wtFAZpcyQeNek69TKME67x7jDg0ee1WO4T4N5HGqnKzU0IogG46aZJ8Oe E5mRXAEb41VwmetWuugmLtyFKWyhUTHgbwQ4pGXYijELFiGLikmX5PuRYkVZRMxd /tXX6nD2NqMvBdSdf7yQ9Revlxz6K+ww1PShMWRqoWFOXefEESGkcKeCDnSKZEYI rMP0TvXj/lC+Z2Ibn21wq5A1LxQud1IRdZ7qY8Xbn0DsTaFiQxn4IGSHCChkjLW4 oeN3aDTj79tPxwaUkM+y8AiGTEpuAITowNmL7xt+o6KmD/UmIE1h51KgXY/bAgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUwBzjk332jrvOFOPyM2OeEkz2CacwHwYDVR0j BBgwFoAU0loEoOTlL/Qi2dj7hX0j3GFC5f0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDk1YzE5Yy0zMjYyLTQ4YzctYWYwMi0zN2E4MzVkMGE3NzkvMC9EMjVBMDRBMEU0 RTUyRkY0MjJEOUQ4RkI4NTdEMjNEQzYxNDJFNUZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDI1QTA0QTBFNEU1MkZGNDIyRDlEOEZCODU3RDIzREM2MTQy RTVGRC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkOTVjMTljLTMyNjItNDhjNy1h ZjAyLTM3YTgzNWQwYTc3OS8wLzMyMzAzMDMxM2E2NDY2MzAzYTYxMzMzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzNDM1MzMzMDM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN8ACjMA0G CSqGSIb3DQEBCwUAA4IBAQBaOOTAVCb2O2Xd7ld07xpC5iAjq804tZ7V7/6IXTpD TDgQQNtez6Lzd2Ru+A7vO00tQ3TnAus9c5k8+jCc9ottwgZJMeXHCdl8duFzVCz4 /7h7/fyVcbTvQi0t4hTSsPkZfgVZkKMGVzdqVSRZ7Wy8Y/AcFWdswoVBI2l2LJ1J +ErO4lkH7rch5TtGXzfIgPN6jxlk4TxI10aqpS0iRaWQfLFUevCmBQgKs4oZk5WW 28iY5o6J8d1lTnCl7r/RZDigvXKFaJqDeUFPK+v4WlXc6lgPctdp5G57uNjfeGej nRQESPVAsYski6gI6mrfdLm17ZKKZwFjibMrRPuhEeBv -----END CERTIFICATE-----Generated at Sat Jun 7 18:31:20 2025 by rpki-client