$ rpki-client -vvf repo-rpki.idnic.net/repo/4d79e7a7-1aae-4e52-bac3-8f7c67ae0a04/0/323030313a6466323a383163303a3a2f34382d3438203d3e20313432333839.roa File: 323030313a6466323a383163303a3a2f34382d3438203d3e20313432333839.roa (raw, json) Hash identifier: DlmZqT9cRSAGh3ZKnjImJtnnzdBwP1WDpr4Ot8v2wkw= Subject key identifier: 2A:A0:C0:C5:99:5B:60:F5:A6:90:61:09:DC:62:A6:FE:7A:03:A7:70 Certificate issuer: /CN=A9CC42A05B0D6CA37960F7C2ABE4B464DB56ACAC Certificate serial: 0C07708C0179BC2FA03430C11668D814F8BBF67E Authority key identifier: A9:CC:42:A0:5B:0D:6C:A3:79:60:F7:C2:AB:E4:B4:64:DB:56:AC:AC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9CC42A05B0D6CA37960F7C2ABE4B464DB56ACAC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4d79e7a7-1aae-4e52-bac3-8f7c67ae0a04/0/323030313a6466323a383163303a3a2f34382d3438203d3e20313432333839.roa Signing time: Fri 09 May 2025 09:00:52 +0000 ROA not before: Fri 09 May 2025 08:55:52 +0000 ROA not after: Fri 08 May 2026 09:00:52 +0000 asID: 142389 IP address blocks: 2001:df2:81c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4d79e7a7-1aae-4e52-bac3-8f7c67ae0a04/0/A9CC42A05B0D6CA37960F7C2ABE4B464DB56ACAC.crl rsync://repo-rpki.idnic.net/repo/4d79e7a7-1aae-4e52-bac3-8f7c67ae0a04/0/A9CC42A05B0D6CA37960F7C2ABE4B464DB56ACAC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9CC42A05B0D6CA37960F7C2ABE4B464DB56ACAC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 13:07:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:07:70:8c:01:79:bc:2f:a0:34:30:c1:16:68:d8:14:f8:bb:f6:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9CC42A05B0D6CA37960F7C2ABE4B464DB56ACAC Validity Not Before: May 9 08:55:52 2025 GMT Not After : May 8 09:00:52 2026 GMT Subject: CN=2AA0C0C5995B60F5A6906109DC62A6FE7A03A770 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:5d:22:25:e1:06:3d:8a:1e:58:a3:58:e5:ff: 56:7b:ce:8d:85:b2:d8:8f:ba:49:a5:a5:1b:73:a1: 0e:ac:67:7d:42:3b:e7:81:ac:47:25:9b:cd:5d:b5: 5d:10:dc:22:bd:a4:d4:99:21:af:bf:28:ed:19:ad: 14:3a:42:b4:3e:0f:5a:1b:df:70:fc:3f:92:39:1f: 9e:78:c3:f3:25:5a:9b:10:38:11:81:db:20:13:1b: 0e:66:d0:25:b9:5b:c5:9f:c7:69:46:b2:fa:2f:ab: 23:a0:ac:4e:0f:8f:0d:66:8c:ac:16:b3:7e:8f:1a: 24:eb:66:79:d5:4a:85:d3:b9:3f:7a:9f:e8:f7:95: e2:bc:e5:67:11:85:73:d3:2d:79:26:43:d6:90:59: f0:3e:78:26:2c:74:0e:06:8e:36:60:96:e2:74:d0: 73:10:76:9a:ae:a7:2e:c5:99:55:45:2d:4d:f2:67: 2d:88:e5:92:15:89:c5:f9:97:08:d4:32:5e:7e:29: 96:38:31:43:dd:67:57:fc:ea:cc:e5:dc:07:cd:1c: a6:4c:2b:e1:ec:b5:75:fa:db:70:4e:34:ed:e9:c0: a1:1f:95:45:6d:c2:53:89:e2:96:5f:9e:c5:49:a0: b5:6e:03:44:80:25:e9:b5:63:fe:29:e6:b9:c4:45: 59:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:A0:C0:C5:99:5B:60:F5:A6:90:61:09:DC:62:A6:FE:7A:03:A7:70 X509v3 Authority Key Identifier: keyid:A9:CC:42:A0:5B:0D:6C:A3:79:60:F7:C2:AB:E4:B4:64:DB:56:AC:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4d79e7a7-1aae-4e52-bac3-8f7c67ae0a04/0/A9CC42A05B0D6CA37960F7C2ABE4B464DB56ACAC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9CC42A05B0D6CA37960F7C2ABE4B464DB56ACAC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4d79e7a7-1aae-4e52-bac3-8f7c67ae0a04/0/323030313a6466323a383163303a3a2f34382d3438203d3e20313432333839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:81c0::/48 Signature Algorithm: sha256WithRSAEncryption 50:73:4c:80:4e:b5:a4:5f:58:12:81:2c:7d:8b:04:2c:c8:c7: 16:3f:66:60:e0:54:2e:fd:aa:df:b2:15:b1:c2:42:35:4c:14: 9f:63:12:69:4b:34:77:00:60:fa:45:d9:2b:df:37:d9:73:f3: f3:16:87:fe:5c:81:82:40:6f:9f:e2:d7:10:d4:4c:2e:98:fc: 28:42:38:8c:ae:d8:35:ce:3d:f0:18:4e:ff:23:56:06:fe:fb: d6:b7:12:57:cf:85:02:be:4d:34:ef:cb:14:14:47:84:dd:68: 7d:4e:bf:93:a4:79:af:c4:8c:1f:47:ee:a0:73:bd:63:cc:c9: 09:5e:bd:7a:ab:7f:c4:6c:44:e6:cf:b4:5e:7e:bb:4e:39:e4: a9:82:ed:88:5d:5b:74:46:f8:06:bd:55:0d:a4:64:ff:86:0f: 92:98:f2:47:7b:39:35:61:de:ca:bd:d3:91:13:02:fb:b5:3a: 2c:51:06:16:3a:93:33:6b:68:b9:9e:1c:5f:03:ed:c0:7c:ce: 29:62:d9:c4:8f:42:e3:0e:15:45:bd:c2:ad:ee:f9:8a:7c:fe: a6:35:0c:e0:c2:86:61:96:22:d0:07:d3:79:16:e9:73:4f:5d: ab:eb:67:99:04:64:98:a1:67:61:cd:7d:e9:e8:b4:43:90:e5: 84:46:7c:69 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUDAdwjAF5vC+gNDDBFmjYFPi79n4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTlDQzQyQTA1QjBENkNBMzc5NjBGN0MyQUJFNEI0NjRE QjU2QUNBQzAeFw0yNTA1MDkwODU1NTJaFw0yNjA1MDgwOTAwNTJaMDMxMTAvBgNV BAMTKDJBQTBDMEM1OTk1QjYwRjVBNjkwNjEwOURDNjJBNkZFN0EwM0E3NzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCaXSIl4QY9ih5Yo1jl/1Z7zo2F stiPukmlpRtzoQ6sZ31CO+eBrEclm81dtV0Q3CK9pNSZIa+/KO0ZrRQ6QrQ+D1ob 33D8P5I5H554w/MlWpsQOBGB2yATGw5m0CW5W8Wfx2lGsvovqyOgrE4Pjw1mjKwW s36PGiTrZnnVSoXTuT96n+j3leK85WcRhXPTLXkmQ9aQWfA+eCYsdA4GjjZgluJ0 0HMQdpqupy7FmVVFLU3yZy2I5ZIVicX5lwjUMl5+KZY4MUPdZ1f86szl3AfNHKZM K+HstXX623BONO3pwKEflUVtwlOJ4pZfnsVJoLVuA0SAJem1Y/4p5rnERVldAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUKqDAxZlbYPWmkGEJ3GKm/noDp3AwHwYDVR0j BBgwFoAUqcxCoFsNbKN5YPfCq+S0ZNtWrKwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZDc5ZTdhNy0xYWFlLTRlNTItYmFjMy04ZjdjNjdhZTBhMDQvMC9BOUNDNDJBMDVC MEQ2Q0EzNzk2MEY3QzJBQkU0QjQ2NERCNTZBQ0FDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTlDQzQyQTA1QjBENkNBMzc5NjBGN0MyQUJFNEI0NjREQjU2 QUNBQy5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRkNzllN2E3LTFhYWUtNGU1Mi1i YWMzLThmN2M2N2FlMGEwNC8wLzMyMzAzMDMxM2E2NDY2MzIzYTM4MzE2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDMyMzMzODM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8oHAMA0GCSqGSIb3DQEBCwUAA4IBAQBQc0yATrWkX1gSgSx9iwQsyMcWP2Zg4FQu /arfshWxwkI1TBSfYxJpSzR3AGD6Rdkr3zfZc/PzFof+XIGCQG+f4tcQ1EwumPwo QjiMrtg1zj3wGE7/I1YG/vvWtxJXz4UCvk0078sUFEeE3Wh9Tr+TpHmvxIwfR+6g c71jzMkJXr16q3/EbETmz7RefrtOOeSpgu2IXVt0RvgGvVUNpGT/hg+SmPJHezk1 Yd7KvdOREwL7tTosUQYWOpMza2i5nhxfA+3AfM4pYtnEj0LjDhVFvcKt7vmKfP6m NQzgwoZhliLQB9N5FulzT12r62eZBGSYoWdhzX3p6LRDkOWERnxp -----END CERTIFICATE-----Generated at Sun Jun 8 02:42:43 2025 by rpki-client