$ rpki-client -vvf repo-rpki.idnic.net/repo/435bc130-964a-47b8-922b-83069de67a7c/0/323030313a6466343a646138303a3a2f34382d3438203d3e20313431303735.roa File: 323030313a6466343a646138303a3a2f34382d3438203d3e20313431303735.roa (raw, json) Hash identifier: lah3Lsyh/1yic09nG6WnhdTFrE8YdyloOKzD5mHdMZ4= Subject key identifier: 85:3B:46:E5:55:7B:90:07:31:4B:C8:A5:FB:D4:2D:F7:06:94:7D:BC Certificate issuer: /CN=926C43E6DACC18978406A2C9C57272491FFF9536 Certificate serial: 29843A80C918484BDD10757C288D6FE0362A049F Authority key identifier: 92:6C:43:E6:DA:CC:18:97:84:06:A2:C9:C5:72:72:49:1F:FF:95:36 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/926C43E6DACC18978406A2C9C57272491FFF9536.cer Subject info access: rsync://repo-rpki.idnic.net/repo/435bc130-964a-47b8-922b-83069de67a7c/0/323030313a6466343a646138303a3a2f34382d3438203d3e20313431303735.roa Signing time: Thu 22 May 2025 10:00:01 +0000 ROA not before: Thu 22 May 2025 09:55:01 +0000 ROA not after: Thu 21 May 2026 10:00:01 +0000 asID: 141075 IP address blocks: 2001:df4:da80::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/435bc130-964a-47b8-922b-83069de67a7c/0/926C43E6DACC18978406A2C9C57272491FFF9536.crl rsync://repo-rpki.idnic.net/repo/435bc130-964a-47b8-922b-83069de67a7c/0/926C43E6DACC18978406A2C9C57272491FFF9536.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/926C43E6DACC18978406A2C9C57272491FFF9536.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 03:57:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:84:3a:80:c9:18:48:4b:dd:10:75:7c:28:8d:6f:e0:36:2a:04:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=926C43E6DACC18978406A2C9C57272491FFF9536 Validity Not Before: May 22 09:55:01 2025 GMT Not After : May 21 10:00:01 2026 GMT Subject: CN=853B46E5557B9007314BC8A5FBD42DF706947DBC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:cb:ff:3c:56:84:52:57:7d:73:56:83:25:aa: 83:43:89:14:d5:ed:dd:6b:16:f4:f7:46:7d:50:7a: bb:00:f6:38:66:75:ee:3e:70:2d:12:65:a6:8c:ef: 54:e7:48:20:70:60:d7:4a:85:8c:ce:0b:80:57:5a: 21:28:aa:98:18:69:d6:34:0a:ea:51:fe:ec:80:84: 34:18:c4:20:a9:76:e8:f3:b4:1c:d2:64:ff:b2:f4: 78:a6:2b:cd:14:95:9b:4f:69:e9:c4:69:e2:32:28: 8e:62:ca:6f:63:70:ac:98:3b:30:39:3b:ed:55:0a: 4b:0e:47:41:a1:f1:eb:ab:2d:6b:9d:a4:7d:91:51: c2:06:89:9f:9c:2d:ab:17:a9:0e:8b:72:ea:8c:38: 53:cb:0d:11:9f:01:03:72:90:ab:79:4f:12:b3:64: 56:d9:cc:74:99:cd:e6:93:d0:d2:13:61:97:95:3f: 3a:0d:a5:32:f4:47:d5:41:63:d5:07:83:a8:a4:b0: 97:2a:64:5a:a1:ee:f2:32:73:83:f2:1a:1c:6d:b4: 2b:c2:cf:69:5e:84:d3:47:87:0f:9b:e7:e7:c6:e3: d8:2a:be:98:83:11:47:93:6c:3f:95:ba:d3:d8:7c: f3:ad:15:0f:70:66:84:9c:2e:7a:3f:8a:b6:53:e6: ee:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:3B:46:E5:55:7B:90:07:31:4B:C8:A5:FB:D4:2D:F7:06:94:7D:BC X509v3 Authority Key Identifier: keyid:92:6C:43:E6:DA:CC:18:97:84:06:A2:C9:C5:72:72:49:1F:FF:95:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/435bc130-964a-47b8-922b-83069de67a7c/0/926C43E6DACC18978406A2C9C57272491FFF9536.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/926C43E6DACC18978406A2C9C57272491FFF9536.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/435bc130-964a-47b8-922b-83069de67a7c/0/323030313a6466343a646138303a3a2f34382d3438203d3e20313431303735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:da80::/48 Signature Algorithm: sha256WithRSAEncryption 77:ce:0a:b8:31:8d:e9:0f:13:51:da:26:4c:cb:4f:81:d3:1f: de:a8:a3:b5:55:df:59:1d:02:07:51:b7:67:43:14:0f:1d:16: 9b:93:07:fa:f7:a9:66:fd:99:54:6d:9f:56:2b:e0:a3:b6:f2: a2:68:fc:2b:6c:c3:ae:bf:22:a4:81:23:9e:f4:71:21:0a:84: 1c:f8:16:82:4c:4e:7e:53:82:40:08:ab:2c:ff:53:19:c1:96: 26:59:fb:9b:c4:d8:0a:c2:35:30:56:d8:74:9c:f2:5d:52:ec: 86:bf:f2:f2:46:9f:e5:f4:ec:19:d3:2e:25:89:6e:9a:f7:de: e4:a2:01:4a:52:ac:bf:52:4d:03:85:30:ad:27:71:ac:4e:a8: 97:81:d6:67:c1:ab:b1:d3:3e:9e:36:b5:90:0f:58:22:dc:9e: 18:a0:26:6e:22:ff:ef:2e:8c:d7:a1:a4:2c:dd:a7:8e:dc:4a: 79:07:9d:2e:dc:0c:86:9e:47:06:2f:53:fc:0d:ae:d7:00:df: 65:6f:37:c6:7d:fb:7c:f0:7c:b9:b8:2d:ae:ef:e0:db:2f:e1: f0:ba:97:bd:ba:22:08:6d:68:f8:66:6c:91:9c:12:61:c0:d4: 79:be:ea:ef:ef:d6:af:d7:d8:e8:b8:81:70:aa:de:d8:bb:84: 36:11:bf:7d -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUKYQ6gMkYSEvdEHV8KI1v4DYqBJ8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTI2QzQzRTZEQUNDMTg5Nzg0MDZBMkM5QzU3MjcyNDkx RkZGOTUzNjAeFw0yNTA1MjIwOTU1MDFaFw0yNjA1MjExMDAwMDFaMDMxMTAvBgNV BAMTKDg1M0I0NkU1NTU3QjkwMDczMTRCQzhBNUZCRDQyREY3MDY5NDdEQkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZy/88VoRSV31zVoMlqoNDiRTV 7d1rFvT3Rn1QersA9jhmde4+cC0SZaaM71TnSCBwYNdKhYzOC4BXWiEoqpgYadY0 CupR/uyAhDQYxCCpdujztBzSZP+y9HimK80UlZtPaenEaeIyKI5iym9jcKyYOzA5 O+1VCksOR0Gh8eurLWudpH2RUcIGiZ+cLasXqQ6LcuqMOFPLDRGfAQNykKt5TxKz ZFbZzHSZzeaT0NITYZeVPzoNpTL0R9VBY9UHg6iksJcqZFqh7vIyc4PyGhxttCvC z2lehNNHhw+b5+fG49gqvpiDEUeTbD+VutPYfPOtFQ9wZoScLno/irZT5u7VAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUhTtG5VV7kAcxS8il+9Qt9waUfbwwHwYDVR0j BBgwFoAUkmxD5trMGJeEBqLJxXJySR//lTYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MzViYzEzMC05NjRhLTQ3YjgtOTIyYi04MzA2OWRlNjdhN2MvMC85MjZDNDNFNkRB Q0MxODk3ODQwNkEyQzlDNTcyNzI0OTFGRkY5NTM2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTI2QzQzRTZEQUNDMTg5Nzg0MDZBMkM5QzU3MjcyNDkxRkZG OTUzNi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQzNWJjMTMwLTk2NGEtNDdiOC05 MjJiLTgzMDY5ZGU2N2E3Yy8wLzMyMzAzMDMxM2E2NDY2MzQzYTY0NjEzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDMxMzAzNzM1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9NqAMA0GCSqGSIb3DQEBCwUAA4IBAQB3zgq4MY3pDxNR2iZMy0+B0x/eqKO1Vd9Z HQIHUbdnQxQPHRabkwf696lm/ZlUbZ9WK+CjtvKiaPwrbMOuvyKkgSOe9HEhCoQc +BaCTE5+U4JACKss/1MZwZYmWfubxNgKwjUwVth0nPJdUuyGv/LyRp/l9OwZ0y4l iW6a997kogFKUqy/Uk0DhTCtJ3GsTqiXgdZnwaux0z6eNrWQD1gi3J4YoCZuIv/v LozXoaQs3aeO3Ep5B50u3AyGnkcGL1P8Da7XAN9lbzfGfft88Hy5uC2u7+DbL+Hw upe9uiIIbWj4ZmyRnBJhwNR5vurv79av19jouIFwqt7Yu4Q2Eb99 -----END CERTIFICATE-----Generated at Sat Jun 7 05:01:04 2025 by rpki-client