$ rpki-client -vvf repo-rpki.idnic.net/repo/2fd80d96-ef1b-44b2-903a-7f6da941a836/0/323030313a6466343a623130303a3a2f34382d3438203d3e20313337333331.roa File: 323030313a6466343a623130303a3a2f34382d3438203d3e20313337333331.roa (raw, json) Hash identifier: N5WXqZ6Jw+zSS8rnedVuQEefp7BbCpCEzbN4PssNcrU= Subject key identifier: AC:1F:53:88:0E:29:C8:8C:5D:92:EC:55:AF:DC:82:B3:EC:74:03:BA Certificate issuer: /CN=A500108F09BF54E5603B5C1F6E6325A561FE7126 Certificate serial: 795252C525326519BAE0E7901DEDB6DC7523C937 Authority key identifier: A5:00:10:8F:09:BF:54:E5:60:3B:5C:1F:6E:63:25:A5:61:FE:71:26 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A500108F09BF54E5603B5C1F6E6325A561FE7126.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2fd80d96-ef1b-44b2-903a-7f6da941a836/0/323030313a6466343a623130303a3a2f34382d3438203d3e20313337333331.roa Signing time: Mon 02 Jun 2025 02:04:25 +0000 ROA not before: Mon 02 Jun 2025 01:59:25 +0000 ROA not after: Mon 01 Jun 2026 02:04:25 +0000 asID: 137331 IP address blocks: 2001:df4:b100::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2fd80d96-ef1b-44b2-903a-7f6da941a836/0/A500108F09BF54E5603B5C1F6E6325A561FE7126.crl rsync://repo-rpki.idnic.net/repo/2fd80d96-ef1b-44b2-903a-7f6da941a836/0/A500108F09BF54E5603B5C1F6E6325A561FE7126.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A500108F09BF54E5603B5C1F6E6325A561FE7126.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 00:11:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:52:52:c5:25:32:65:19:ba:e0:e7:90:1d:ed:b6:dc:75:23:c9:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A500108F09BF54E5603B5C1F6E6325A561FE7126 Validity Not Before: Jun 2 01:59:25 2025 GMT Not After : Jun 1 02:04:25 2026 GMT Subject: CN=AC1F53880E29C88C5D92EC55AFDC82B3EC7403BA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:82:e3:9e:b9:cc:54:b6:f7:52:72:f8:dc:2c: 7a:5d:6e:29:90:e9:4c:5f:b7:79:51:46:f7:a3:49: be:78:a3:c4:25:4c:83:ce:ba:31:6c:e8:d1:bc:28: 4f:c2:c4:c6:55:fa:cc:24:0c:7f:53:a1:69:0f:76: a4:dd:bd:a2:38:77:74:77:0e:f0:b8:d9:e9:da:0e: 09:1b:60:31:f1:23:bb:52:32:1f:34:91:af:0a:b6: 20:39:ac:1f:4f:27:77:54:6f:3e:fb:97:81:a2:08: 4c:66:f4:ca:ac:5c:7b:18:0d:f1:ce:77:93:e1:68: dd:51:b0:0e:de:8d:dc:3d:43:9d:da:34:d1:46:47: e4:e7:51:f0:18:58:42:3d:fc:68:1a:25:a1:1a:71: 1c:36:27:b8:f2:e9:e8:5b:90:62:44:4d:27:f3:02: 63:17:d8:ef:5b:c5:e1:0a:90:60:c6:ab:02:b2:eb: 8a:4f:b7:bf:b9:61:d8:77:90:89:cb:b3:56:8d:70: 9f:09:ae:d0:24:d7:4d:ac:9d:5f:9e:25:de:7e:ca: 73:f2:e5:69:31:a0:14:da:90:5b:8b:5b:47:da:da: 5a:11:82:a7:50:b8:76:11:54:3d:60:ed:72:41:c7: 58:cb:e9:66:f9:93:a7:49:11:26:31:c6:34:54:81: f4:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:1F:53:88:0E:29:C8:8C:5D:92:EC:55:AF:DC:82:B3:EC:74:03:BA X509v3 Authority Key Identifier: keyid:A5:00:10:8F:09:BF:54:E5:60:3B:5C:1F:6E:63:25:A5:61:FE:71:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2fd80d96-ef1b-44b2-903a-7f6da941a836/0/A500108F09BF54E5603B5C1F6E6325A561FE7126.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A500108F09BF54E5603B5C1F6E6325A561FE7126.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2fd80d96-ef1b-44b2-903a-7f6da941a836/0/323030313a6466343a623130303a3a2f34382d3438203d3e20313337333331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:b100::/48 Signature Algorithm: sha256WithRSAEncryption 7a:1a:05:64:80:ee:66:15:fc:f8:67:1b:f7:ed:2a:05:d7:e8: 72:02:55:0b:db:a8:35:c6:6c:f8:aa:b1:3b:82:89:9d:99:73: ac:fc:2e:b3:9f:ec:21:5c:82:ff:bb:3b:41:a1:51:3d:cb:7f: 96:55:91:0e:f7:81:ab:91:70:1b:1b:fe:6c:2d:73:fd:f7:7b: ae:40:35:ee:68:46:0c:fc:5e:8b:97:51:81:e1:2a:b7:da:f4: c4:cb:e8:91:7f:f7:80:3f:eb:39:cf:53:17:4f:4b:b8:48:74: 26:d8:8b:0c:2f:6f:b4:f6:75:27:1e:98:11:b7:da:75:20:3a: d4:42:44:70:e1:3f:c2:75:20:71:ac:6b:22:14:ae:ff:80:62: 9f:4d:ec:8c:31:e8:56:1b:cc:c6:7a:4d:5d:22:5d:37:63:68: 40:1f:46:6a:c0:d5:18:ef:cc:46:63:05:f0:5a:0e:fe:4e:28: 87:ed:84:5a:7d:24:d0:87:b0:3c:7c:e9:e8:25:3c:60:23:be: bf:50:6f:38:8f:f9:54:0f:52:26:12:23:61:b8:50:25:a8:ce: e8:d9:66:40:9e:6a:86:3f:bb:68:cd:a2:ec:ff:88:0c:01:77: 4c:47:5d:5a:b9:91:dd:74:dd:96:7b:f3:e1:7e:09:75:e7:ea: d3:e3:a1:b4 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUeVJSxSUyZRm64OeQHe223HUjyTcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTUwMDEwOEYwOUJGNTRFNTYwM0I1QzFGNkU2MzI1QTU2 MUZFNzEyNjAeFw0yNTA2MDIwMTU5MjVaFw0yNjA2MDEwMjA0MjVaMDMxMTAvBgNV BAMTKEFDMUY1Mzg4MEUyOUM4OEM1RDkyRUM1NUFGREM4MkIzRUM3NDAzQkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPguOeucxUtvdScvjcLHpdbimQ 6Uxft3lRRvejSb54o8QlTIPOujFs6NG8KE/CxMZV+swkDH9ToWkPdqTdvaI4d3R3 DvC42enaDgkbYDHxI7tSMh80ka8KtiA5rB9PJ3dUbz77l4GiCExm9MqsXHsYDfHO d5PhaN1RsA7ejdw9Q53aNNFGR+TnUfAYWEI9/GgaJaEacRw2J7jy6ehbkGJETSfz AmMX2O9bxeEKkGDGqwKy64pPt7+5Ydh3kInLs1aNcJ8JrtAk102snV+eJd5+ynPy 5WkxoBTakFuLW0fa2loRgqdQuHYRVD1g7XJBx1jL6Wb5k6dJESYxxjRUgfTXAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUrB9TiA4pyIxdkuxVr9yCs+x0A7owHwYDVR0j BBgwFoAUpQAQjwm/VOVgO1wfbmMlpWH+cSYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZmQ4MGQ5Ni1lZjFiLTQ0YjItOTAzYS03ZjZkYTk0MWE4MzYvMC9BNTAwMTA4RjA5 QkY1NEU1NjAzQjVDMUY2RTYzMjVBNTYxRkU3MTI2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTUwMDEwOEYwOUJGNTRFNTYwM0I1QzFGNkU2MzI1QTU2MUZF NzEyNi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJmZDgwZDk2LWVmMWItNDRiMi05 MDNhLTdmNmRhOTQxYTgzNi8wLzMyMzAzMDMxM2E2NDY2MzQzYTYyMzEzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM3MzMzMzMxLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9LEAMA0GCSqGSIb3DQEBCwUAA4IBAQB6GgVkgO5mFfz4Zxv37SoF1+hyAlUL26g1 xmz4qrE7gomdmXOs/C6zn+whXIL/uztBoVE9y3+WVZEO94GrkXAbG/5sLXP993uu QDXuaEYM/F6Ll1GB4Sq32vTEy+iRf/eAP+s5z1MXT0u4SHQm2IsML2+09nUnHpgR t9p1IDrUQkRw4T/CdSBxrGsiFK7/gGKfTeyMMehWG8zGek1dIl03Y2hAH0ZqwNUY 78xGYwXwWg7+TiiH7YRafSTQh7A8fOnoJTxgI76/UG84j/lUD1ImEiNhuFAlqM7o 2WZAnmqGP7tozaLs/4gMAXdMR11auZHddN2We/Phfgl15+rT46G0 -----END CERTIFICATE-----Generated at Sat Jun 7 16:09:15 2025 by rpki-client