$ rpki-client -vvf repo-rpki.idnic.net/repo/46302810-564c-45b7-8a72-ef6b8f6309c0/0/323030313a6466343a6530303a3a2f34382d3438203d3e20313335343731.roa File: 323030313a6466343a6530303a3a2f34382d3438203d3e20313335343731.roa (raw, json) Hash identifier: PpwdW1Sh67VcI29Rs6SsVeiTKG/TdkizTmZ0n4tpRMU= Subject key identifier: 55:04:50:86:07:3C:19:17:F7:C1:BA:B9:76:55:30:E8:05:95:59:C8 Certificate issuer: /CN=EDBD845A9597FEC4AD90030F9018E4B8B63FCC77 Certificate serial: 314E3109F513815AB63A260250D37D78982E7D01 Authority key identifier: ED:BD:84:5A:95:97:FE:C4:AD:90:03:0F:90:18:E4:B8:B6:3F:CC:77 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EDBD845A9597FEC4AD90030F9018E4B8B63FCC77.cer Subject info access: rsync://repo-rpki.idnic.net/repo/46302810-564c-45b7-8a72-ef6b8f6309c0/0/323030313a6466343a6530303a3a2f34382d3438203d3e20313335343731.roa Signing time: Mon 02 Jun 2025 02:01:56 +0000 ROA not before: Mon 02 Jun 2025 01:56:56 +0000 ROA not after: Mon 01 Jun 2026 02:01:56 +0000 asID: 135471 IP address blocks: 2001:df4:e00::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/46302810-564c-45b7-8a72-ef6b8f6309c0/0/EDBD845A9597FEC4AD90030F9018E4B8B63FCC77.crl rsync://repo-rpki.idnic.net/repo/46302810-564c-45b7-8a72-ef6b8f6309c0/0/EDBD845A9597FEC4AD90030F9018E4B8B63FCC77.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EDBD845A9597FEC4AD90030F9018E4B8B63FCC77.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 17:21:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:4e:31:09:f5:13:81:5a:b6:3a:26:02:50:d3:7d:78:98:2e:7d:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EDBD845A9597FEC4AD90030F9018E4B8B63FCC77 Validity Not Before: Jun 2 01:56:56 2025 GMT Not After : Jun 1 02:01:56 2026 GMT Subject: CN=55045086073C1917F7C1BAB9765530E8059559C8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:c1:a4:8e:a8:07:c6:49:01:08:51:f1:ce:4e: db:da:e0:b1:0e:2b:11:bc:17:76:de:8c:e9:fb:05: 1b:97:4e:37:fd:74:0e:7e:4b:2a:eb:30:83:01:30: 0d:4f:d2:9e:3e:47:97:ac:b8:97:99:89:22:77:19: 32:b3:8f:56:1d:8c:c6:a8:d9:44:f4:bc:00:23:66: 0d:1a:fc:f0:71:39:63:dc:4f:22:7c:86:ab:60:ff: de:a8:19:fe:32:e0:26:86:2e:e8:54:c0:3b:ae:94: 52:83:f9:92:7c:94:ab:96:99:82:42:ca:d5:cc:ca: af:0e:d2:f6:66:2f:f8:8d:33:a8:7c:01:0b:f1:59: 2b:3d:d4:12:4e:17:32:3d:8a:7b:63:6d:34:48:f2: e7:d3:19:c2:f1:b0:31:1d:04:92:34:86:86:ce:ff: 1f:e4:23:51:f2:2b:40:be:1c:1a:b6:6b:6a:11:c6: 70:61:8e:5f:b2:1a:db:27:d4:4e:71:e1:0e:8e:eb: 0d:f0:70:54:f3:d4:49:78:1d:f0:9b:6f:64:e2:7a: b4:40:68:23:c0:6c:7e:44:61:0c:7d:1e:20:a2:57: bb:62:70:e2:18:40:ff:33:33:5e:9f:32:27:7b:cc: 2a:be:bf:30:2c:14:5b:c9:e2:05:d5:54:3b:9c:6f: 83:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:04:50:86:07:3C:19:17:F7:C1:BA:B9:76:55:30:E8:05:95:59:C8 X509v3 Authority Key Identifier: keyid:ED:BD:84:5A:95:97:FE:C4:AD:90:03:0F:90:18:E4:B8:B6:3F:CC:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/46302810-564c-45b7-8a72-ef6b8f6309c0/0/EDBD845A9597FEC4AD90030F9018E4B8B63FCC77.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EDBD845A9597FEC4AD90030F9018E4B8B63FCC77.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/46302810-564c-45b7-8a72-ef6b8f6309c0/0/323030313a6466343a6530303a3a2f34382d3438203d3e20313335343731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:e00::/48 Signature Algorithm: sha256WithRSAEncryption cc:24:0c:51:ae:19:e2:28:ff:2e:3b:0e:30:ad:19:5b:7d:35: 10:54:2e:8f:88:a9:70:82:67:8e:2e:8a:01:96:42:bb:0d:2b: 2d:b1:17:e4:14:a9:29:f9:07:11:12:2a:8c:d9:ec:21:ff:85: ca:ae:45:ed:a3:86:21:2f:b0:4b:d1:13:96:76:6e:55:75:4f: da:15:44:c9:9a:19:0d:11:92:6a:10:f5:87:6d:c4:c0:3d:83: 97:52:dc:81:ad:a0:70:7e:3b:2f:87:84:60:75:11:80:72:7b: af:96:02:7e:d6:1b:51:04:a8:a6:39:9a:f2:d5:3c:e5:86:49: 9b:72:34:d1:01:93:fc:73:da:be:d9:51:ab:0d:2c:bd:b7:4f: 40:94:cd:cf:3d:13:cc:ae:ab:a6:73:3a:e1:96:f4:dd:53:03: 50:35:a1:d8:c8:6f:e8:66:14:bd:92:f4:0b:9e:40:83:af:2c: c1:eb:c8:69:31:fb:b2:6b:ce:ee:5b:48:56:ef:f7:41:62:63: 2a:6d:94:14:c7:76:8c:9a:cf:63:ab:e3:55:b9:40:08:a2:9b: 4a:34:c3:66:03:d0:d6:4a:24:64:aa:74:56:fa:2d:fa:98:89: 1e:b8:f0:a6:18:fe:14:03:0f:01:c2:56:ee:b3:08:9c:9f:3b: 78:2d:a4:2a -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUMU4xCfUTgVq2OiYCUNN9eJgufQEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRURCRDg0NUE5NTk3RkVDNEFEOTAwMzBGOTAxOEU0QjhC NjNGQ0M3NzAeFw0yNTA2MDIwMTU2NTZaFw0yNjA2MDEwMjAxNTZaMDMxMTAvBgNV BAMTKDU1MDQ1MDg2MDczQzE5MTdGN0MxQkFCOTc2NTUzMEU4MDU5NTU5QzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuwaSOqAfGSQEIUfHOTtva4LEO KxG8F3bejOn7BRuXTjf9dA5+SyrrMIMBMA1P0p4+R5esuJeZiSJ3GTKzj1YdjMao 2UT0vAAjZg0a/PBxOWPcTyJ8hqtg/96oGf4y4CaGLuhUwDuulFKD+ZJ8lKuWmYJC ytXMyq8O0vZmL/iNM6h8AQvxWSs91BJOFzI9intjbTRI8ufTGcLxsDEdBJI0hobO /x/kI1HyK0C+HBq2a2oRxnBhjl+yGtsn1E5x4Q6O6w3wcFTz1El4HfCbb2TierRA aCPAbH5EYQx9HiCiV7ticOIYQP8zM16fMid7zCq+vzAsFFvJ4gXVVDucb4OrAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUVQRQhgc8GRf3wbq5dlUw6AWVWcgwHwYDVR0j BBgwFoAU7b2EWpWX/sStkAMPkBjkuLY/zHcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NjMwMjgxMC01NjRjLTQ1YjctOGE3Mi1lZjZiOGY2MzA5YzAvMC9FREJEODQ1QTk1 OTdGRUM0QUQ5MDAzMEY5MDE4RTRCOEI2M0ZDQzc3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRURCRDg0NUE5NTk3RkVDNEFEOTAwMzBGOTAxOEU0QjhCNjNG Q0M3Ny5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ2MzAyODEwLTU2NGMtNDViNy04 YTcyLWVmNmI4ZjYzMDljMC8wLzMyMzAzMDMxM2E2NDY2MzQzYTY1MzAzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMzNTM0MzczMS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfQO ADANBgkqhkiG9w0BAQsFAAOCAQEAzCQMUa4Z4ij/LjsOMK0ZW301EFQuj4ipcIJn ji6KAZZCuw0rLbEX5BSpKfkHERIqjNnsIf+Fyq5F7aOGIS+wS9ETlnZuVXVP2hVE yZoZDRGSahD1h23EwD2Dl1Lcga2gcH47L4eEYHURgHJ7r5YCftYbUQSopjma8tU8 5YZJm3I00QGT/HPavtlRqw0svbdPQJTNzz0TzK6rpnM64Zb03VMDUDWh2Mhv6GYU vZL0C55Ag68swevIaTH7smvO7ltIVu/3QWJjKm2UFMd2jJrPY6vjVblACKKbSjTD ZgPQ1kokZKp0Vvot+piJHrjwphj+FAMPAcJW7rMInJ87eC2kKg== -----END CERTIFICATE-----Generated at Sun Jun 8 11:17:15 2025 by rpki-client