$ rpki-client -vvf repo-rpki.idnic.net/repo/3521e5ee-5882-4943-b408-43c37582fb0b/0/323030313a6466323a376663303a3a2f34382d3438203d3e20313530323432.roa File: 323030313a6466323a376663303a3a2f34382d3438203d3e20313530323432.roa (raw, json) Hash identifier: E3Afi8brnwwO44QQ7zrLJhjXCklWKJd4s5oimS1XW8A= Subject key identifier: 6B:87:F9:7A:80:17:C6:7A:92:00:DC:3A:FC:CF:00:29:25:0C:12:70 Certificate issuer: /CN=9AF96929E0E99A4F2539BB15137093D976C714CB Certificate serial: 752BE8AEBAC309355705EC8D8C6E6AC0F6C7A663 Authority key identifier: 9A:F9:69:29:E0:E9:9A:4F:25:39:BB:15:13:70:93:D9:76:C7:14:CB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9AF96929E0E99A4F2539BB15137093D976C714CB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3521e5ee-5882-4943-b408-43c37582fb0b/0/323030313a6466323a376663303a3a2f34382d3438203d3e20313530323432.roa Signing time: Thu 22 May 2025 05:00:02 +0000 ROA not before: Thu 22 May 2025 04:55:02 +0000 ROA not after: Thu 21 May 2026 05:00:02 +0000 asID: 150242 IP address blocks: 2001:df2:7fc0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3521e5ee-5882-4943-b408-43c37582fb0b/0/9AF96929E0E99A4F2539BB15137093D976C714CB.crl rsync://repo-rpki.idnic.net/repo/3521e5ee-5882-4943-b408-43c37582fb0b/0/9AF96929E0E99A4F2539BB15137093D976C714CB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9AF96929E0E99A4F2539BB15137093D976C714CB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 02:27:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:2b:e8:ae:ba:c3:09:35:57:05:ec:8d:8c:6e:6a:c0:f6:c7:a6:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9AF96929E0E99A4F2539BB15137093D976C714CB Validity Not Before: May 22 04:55:02 2025 GMT Not After : May 21 05:00:02 2026 GMT Subject: CN=6B87F97A8017C67A9200DC3AFCCF0029250C1270 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:7d:3f:1a:2d:cd:4d:12:d2:dd:f4:ac:7b:2a: 45:b1:9c:1e:c0:cc:70:02:49:23:cc:ec:66:a0:79: c2:7f:af:55:ab:d6:0d:ee:81:49:0a:25:0a:cb:97: 3b:7c:d5:ce:9b:85:31:52:4b:7b:46:35:fc:2d:32: 0b:45:f4:7d:ad:a4:fd:2b:6e:c7:a8:bf:68:70:95: e3:cf:31:b7:c3:99:25:10:f5:fb:f3:73:20:6f:75: 56:83:d8:ad:50:7c:1d:c3:e1:73:d3:20:e4:ac:96: b4:cd:fc:6f:e3:a7:7e:bd:d7:ae:7e:42:e2:03:62: 4d:0d:e6:f2:10:1c:43:0d:6d:2a:c9:1c:ad:eb:f0: 20:2e:e7:2f:12:66:ee:ea:d1:a4:a9:82:e4:99:af: ce:3b:93:59:e0:3a:a2:a4:12:ea:aa:af:5d:1a:dd: 2c:bf:17:7d:04:74:b3:35:dc:e3:a1:25:dd:52:e6: cc:ca:71:e6:50:33:92:8b:05:e1:5b:1b:3c:ac:62: 54:22:c7:f5:b4:70:87:a0:1e:26:55:3a:2f:4b:11: 4c:f8:c8:5c:4c:65:25:52:a8:16:93:6f:4b:a3:0e: 45:1f:a9:59:73:4f:aa:e2:01:96:49:b3:d0:4e:30: d7:2f:be:fb:ba:af:7f:9f:4a:75:5b:5d:35:11:89: 39:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:87:F9:7A:80:17:C6:7A:92:00:DC:3A:FC:CF:00:29:25:0C:12:70 X509v3 Authority Key Identifier: keyid:9A:F9:69:29:E0:E9:9A:4F:25:39:BB:15:13:70:93:D9:76:C7:14:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3521e5ee-5882-4943-b408-43c37582fb0b/0/9AF96929E0E99A4F2539BB15137093D976C714CB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9AF96929E0E99A4F2539BB15137093D976C714CB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3521e5ee-5882-4943-b408-43c37582fb0b/0/323030313a6466323a376663303a3a2f34382d3438203d3e20313530323432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:7fc0::/48 Signature Algorithm: sha256WithRSAEncryption ad:44:64:aa:1a:fd:36:4e:1c:bd:ba:88:4f:35:ac:9f:55:ca: ec:fd:e5:8e:ca:96:99:94:37:e0:ac:3a:b7:8a:a6:69:f5:c6: 6b:e7:fb:64:e1:9d:60:30:ca:0a:85:62:85:f0:52:39:26:93: f3:a2:73:44:78:57:cc:52:4d:26:a5:77:fa:d3:fa:98:26:0c: c7:31:2c:50:6a:68:a7:22:1b:b6:46:78:a3:cb:43:6c:ca:4a: a7:aa:d1:ce:ec:02:6b:c0:36:1c:49:61:c6:de:da:60:26:1e: 99:7d:e9:05:29:4f:d7:c5:ac:fb:57:ae:e1:27:9a:80:73:92: fc:42:ef:4f:82:62:d8:dc:90:d9:9f:b9:dd:34:e2:6f:4a:25: 8e:55:09:e7:5f:9d:cf:86:19:3e:f2:7b:3d:50:95:3d:8c:55: b4:a6:18:b8:0c:fc:30:b1:d6:9b:f4:d0:65:d0:00:c0:3d:dd: 6f:8e:49:eb:7d:45:48:90:8d:98:62:d7:58:c0:ee:a1:16:b6: 70:de:d6:8b:e8:ac:f2:56:21:64:2d:ed:d8:2b:98:5e:ea:3d: 4c:50:11:15:cc:7e:72:ce:08:b3:78:aa:b2:ed:1b:f6:14:dd: 9a:2f:d1:4d:ef:d0:94:fa:0d:c1:40:a8:d3:de:cd:dd:d3:fb: 3d:8f:7c:b6 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUdSvorrrDCTVXBeyNjG5qwPbHpmMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUFGOTY5MjlFMEU5OUE0RjI1MzlCQjE1MTM3MDkzRDk3 NkM3MTRDQjAeFw0yNTA1MjIwNDU1MDJaFw0yNjA1MjEwNTAwMDJaMDMxMTAvBgNV BAMTKDZCODdGOTdBODAxN0M2N0E5MjAwREMzQUZDQ0YwMDI5MjUwQzEyNzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkfT8aLc1NEtLd9Kx7KkWxnB7A zHACSSPM7GagecJ/r1Wr1g3ugUkKJQrLlzt81c6bhTFSS3tGNfwtMgtF9H2tpP0r bseov2hwlePPMbfDmSUQ9fvzcyBvdVaD2K1QfB3D4XPTIOSslrTN/G/jp369165+ QuIDYk0N5vIQHEMNbSrJHK3r8CAu5y8SZu7q0aSpguSZr847k1ngOqKkEuqqr10a 3Sy/F30EdLM13OOhJd1S5szKceZQM5KLBeFbGzysYlQix/W0cIegHiZVOi9LEUz4 yFxMZSVSqBaTb0ujDkUfqVlzT6riAZZJs9BOMNcvvvu6r3+fSnVbXTURiTkHAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUa4f5eoAXxnqSANw6/M8AKSUMEnAwHwYDVR0j BBgwFoAUmvlpKeDpmk8lObsVE3CT2XbHFMswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NTIxZTVlZS01ODgyLTQ5NDMtYjQwOC00M2MzNzU4MmZiMGIvMC85QUY5NjkyOUUw RTk5QTRGMjUzOUJCMTUxMzcwOTNEOTc2QzcxNENCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUFGOTY5MjlFMEU5OUE0RjI1MzlCQjE1MTM3MDkzRDk3NkM3 MTRDQi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM1MjFlNWVlLTU4ODItNDk0My1i NDA4LTQzYzM3NTgyZmIwYi8wLzMyMzAzMDMxM2E2NDY2MzIzYTM3NjY2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMwMzIzNDMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8n/AMA0GCSqGSIb3DQEBCwUAA4IBAQCtRGSqGv02Thy9uohPNayfVcrs/eWOypaZ lDfgrDq3iqZp9cZr5/tk4Z1gMMoKhWKF8FI5JpPzonNEeFfMUk0mpXf60/qYJgzH MSxQaminIhu2Rnijy0NsykqnqtHO7AJrwDYcSWHG3tpgJh6ZfekFKU/Xxaz7V67h J5qAc5L8Qu9PgmLY3JDZn7ndNOJvSiWOVQnnX53Phhk+8ns9UJU9jFW0phi4DPww sdab9NBl0ADAPd1vjknrfUVIkI2YYtdYwO6hFrZw3taL6KzyViFkLe3YK5he6j1M UBEVzH5yzgizeKqy7Rv2FN2aL9FN79CU+g3BQKjT3s3d0/s9j3y2 -----END CERTIFICATE-----Generated at Sun Jun 8 23:29:29 2025 by rpki-client