$ rpki-client -vvf repo-rpki.idnic.net/repo/3162d15b-102b-431f-a539-0a932b31366c/0/323030313a6466373a336230303a3a2f34382d3438203d3e20313338313037.roa File: 323030313a6466373a336230303a3a2f34382d3438203d3e20313338313037.roa (raw, json) Hash identifier: 5ZMFCFB2Z2k1wsOQD3WlLnfBqmNmCDqFjaN+cKeJCYg= Subject key identifier: C1:59:87:16:86:6B:AB:AF:B1:AC:19:65:63:B9:31:5E:5B:A3:17:87 Certificate issuer: /CN=986EFE1C2BB8B0E4E1472E9DAA5B775AA4F6689F Certificate serial: 7B0AA2BEDFA4196698F3E4EC7525288BC1F234C2 Authority key identifier: 98:6E:FE:1C:2B:B8:B0:E4:E1:47:2E:9D:AA:5B:77:5A:A4:F6:68:9F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/986EFE1C2BB8B0E4E1472E9DAA5B775AA4F6689F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3162d15b-102b-431f-a539-0a932b31366c/0/323030313a6466373a336230303a3a2f34382d3438203d3e20313338313037.roa Signing time: Mon 02 Jun 2025 02:03:05 +0000 ROA not before: Mon 02 Jun 2025 01:58:05 +0000 ROA not after: Mon 01 Jun 2026 02:03:05 +0000 asID: 138107 IP address blocks: 2001:df7:3b00::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3162d15b-102b-431f-a539-0a932b31366c/0/986EFE1C2BB8B0E4E1472E9DAA5B775AA4F6689F.crl rsync://repo-rpki.idnic.net/repo/3162d15b-102b-431f-a539-0a932b31366c/0/986EFE1C2BB8B0E4E1472E9DAA5B775AA4F6689F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/986EFE1C2BB8B0E4E1472E9DAA5B775AA4F6689F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 03:24:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:0a:a2:be:df:a4:19:66:98:f3:e4:ec:75:25:28:8b:c1:f2:34:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=986EFE1C2BB8B0E4E1472E9DAA5B775AA4F6689F Validity Not Before: Jun 2 01:58:05 2025 GMT Not After : Jun 1 02:03:05 2026 GMT Subject: CN=C1598716866BABAFB1AC196563B9315E5BA31787 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:7f:37:65:62:c5:72:fb:a5:f9:bc:db:d2:76: 09:a3:13:da:4b:2c:81:ee:3e:24:c1:1f:cc:3c:e2: f2:14:be:0b:99:bb:c4:33:db:ae:95:67:2f:23:60: f0:7a:4e:f6:6c:ad:ae:74:a0:4d:b4:55:b2:b5:43: 0d:85:20:68:0b:78:d3:37:50:92:2b:17:ba:02:6b: dc:60:84:a7:0f:9c:95:f8:dc:0b:b1:67:6f:80:82: ab:8d:1c:6d:51:a9:ff:fb:d1:aa:85:5b:50:e2:2f: 63:98:bd:c7:1f:08:72:99:bf:1c:91:d2:1f:09:ec: f9:01:48:35:fb:ea:2b:fa:83:3f:e4:35:c9:4c:ea: af:22:1e:0a:65:51:03:38:c7:f4:f7:79:29:45:2a: 48:b6:19:65:2b:ee:84:23:ac:27:4d:87:58:61:83: e4:d6:07:d9:22:25:19:84:ae:93:fb:76:25:a1:31: 32:e5:74:7e:f6:ae:6f:cc:77:8e:bc:0d:aa:02:bb: 98:53:49:e3:75:dc:cf:3d:69:09:4b:3c:3e:ca:0d: dc:64:19:cb:53:0b:76:1c:7d:ef:91:0f:0a:e6:85: 9f:d2:88:c1:4a:27:cc:d3:9a:ad:9d:bb:d1:0b:86: 55:b3:7c:2f:dc:7d:b3:22:5f:26:cf:85:e9:40:1e: cd:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:59:87:16:86:6B:AB:AF:B1:AC:19:65:63:B9:31:5E:5B:A3:17:87 X509v3 Authority Key Identifier: keyid:98:6E:FE:1C:2B:B8:B0:E4:E1:47:2E:9D:AA:5B:77:5A:A4:F6:68:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3162d15b-102b-431f-a539-0a932b31366c/0/986EFE1C2BB8B0E4E1472E9DAA5B775AA4F6689F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/986EFE1C2BB8B0E4E1472E9DAA5B775AA4F6689F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3162d15b-102b-431f-a539-0a932b31366c/0/323030313a6466373a336230303a3a2f34382d3438203d3e20313338313037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df7:3b00::/48 Signature Algorithm: sha256WithRSAEncryption c2:12:80:f6:91:bd:60:9f:f1:1d:bc:14:f1:92:11:c2:70:23: 0c:11:fc:f7:ca:95:72:65:d4:8a:d5:2b:4e:30:68:34:8e:9e: 49:ce:31:0e:41:f4:54:e3:69:0d:c6:c7:60:aa:26:54:73:ba: 62:d7:e6:67:51:d3:be:b2:d4:f1:dc:dd:9a:ab:6e:60:e9:81: 0c:80:5d:3d:cc:e7:21:77:7d:de:cb:bf:bd:0a:54:54:bf:7e: 22:64:42:48:0a:b2:70:b2:43:f5:dc:ae:dc:d9:22:13:e3:07: 98:d3:56:54:c6:8e:1e:ec:b9:2d:8d:ea:86:2e:cf:f9:37:e9: 60:98:e3:c0:a3:c6:db:89:33:6d:38:7a:cf:7c:45:48:23:57: d5:8a:0a:4c:9f:b8:11:f6:3f:10:f0:42:87:18:af:66:28:00: 34:52:05:61:0f:06:59:70:12:e5:89:92:bf:35:b9:9e:4c:5b: bb:c7:09:3b:05:5d:a4:c0:2e:b6:03:da:19:b3:1f:d9:4f:65: 17:77:c3:d4:f4:c2:0e:be:c8:fe:b8:79:2c:b3:13:fd:cf:7f: 47:57:bc:bd:a9:cf:39:69:15:0a:f6:05:d4:c9:4c:47:03:63: 7d:c7:af:40:40:d9:1a:46:5e:d3:e3:c9:19:3a:1c:c8:54:14: 81:1c:10:48 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUewqivt+kGWaY8+TsdSUoi8HyNMIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTg2RUZFMUMyQkI4QjBFNEUxNDcyRTlEQUE1Qjc3NUFB NEY2Njg5RjAeFw0yNTA2MDIwMTU4MDVaFw0yNjA2MDEwMjAzMDVaMDMxMTAvBgNV BAMTKEMxNTk4NzE2ODY2QkFCQUZCMUFDMTk2NTYzQjkzMTVFNUJBMzE3ODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEfzdlYsVy+6X5vNvSdgmjE9pL LIHuPiTBH8w84vIUvguZu8Qz266VZy8jYPB6TvZsra50oE20VbK1Qw2FIGgLeNM3 UJIrF7oCa9xghKcPnJX43AuxZ2+AgquNHG1Rqf/70aqFW1DiL2OYvccfCHKZvxyR 0h8J7PkBSDX76iv6gz/kNclM6q8iHgplUQM4x/T3eSlFKki2GWUr7oQjrCdNh1hh g+TWB9kiJRmErpP7diWhMTLldH72rm/Md468DaoCu5hTSeN13M89aQlLPD7KDdxk GctTC3Ycfe+RDwrmhZ/SiMFKJ8zTmq2du9ELhlWzfC/cfbMiXybPhelAHs2NAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUwVmHFoZrq6+xrBllY7kxXlujF4cwHwYDVR0j BBgwFoAUmG7+HCu4sOThRy6dqlt3WqT2aJ8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MTYyZDE1Yi0xMDJiLTQzMWYtYTUzOS0wYTkzMmIzMTM2NmMvMC85ODZFRkUxQzJC QjhCMEU0RTE0NzJFOURBQTVCNzc1QUE0RjY2ODlGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTg2RUZFMUMyQkI4QjBFNEUxNDcyRTlEQUE1Qjc3NUFBNEY2 Njg5Ri5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMxNjJkMTViLTEwMmItNDMxZi1h NTM5LTBhOTMyYjMxMzY2Yy8wLzMyMzAzMDMxM2E2NDY2MzczYTMzNjIzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM4MzEzMDM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9zsAMA0GCSqGSIb3DQEBCwUAA4IBAQDCEoD2kb1gn/EdvBTxkhHCcCMMEfz3ypVy ZdSK1StOMGg0jp5JzjEOQfRU42kNxsdgqiZUc7pi1+ZnUdO+stTx3N2aq25g6YEM gF09zOchd33ey7+9ClRUv34iZEJICrJwskP13K7c2SIT4weY01ZUxo4e7LktjeqG Ls/5N+lgmOPAo8bbiTNtOHrPfEVII1fVigpMn7gR9j8Q8EKHGK9mKAA0UgVhDwZZ cBLliZK/NbmeTFu7xwk7BV2kwC62A9oZsx/ZT2UXd8PU9MIOvsj+uHkssxP9z39H V7y9qc85aRUK9gXUyUxHA2N9x69AQNkaRl7T48kZOhzIVBSBHBBI -----END CERTIFICATE-----Generated at Sat Jun 7 21:15:43 2025 by rpki-client