$ rpki-client -vvf repo-rpki.idnic.net/repo/4ffb7767-3de9-4833-b4e7-b1b62ee3cd99/0/323030313a6466323a363030303a3a2f34382d3438203d3e203538333932.roa File: 323030313a6466323a363030303a3a2f34382d3438203d3e203538333932.roa (raw, json) Hash identifier: QXih22W7nob87iMJpd/XyA7yQsTPs1LE60MpY8hw6ss= Subject key identifier: 49:E1:AC:EE:6A:5C:96:9D:F7:FA:CF:49:A7:9F:F3:F5:F8:FD:E5:FD Certificate issuer: /CN=AF504C4E6E3831F756E3BE07469483DFED452516 Certificate serial: 292E6A32C7E934FE9F3AB1B9173022096CC757B5 Authority key identifier: AF:50:4C:4E:6E:38:31:F7:56:E3:BE:07:46:94:83:DF:ED:45:25:16 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF504C4E6E3831F756E3BE07469483DFED452516.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4ffb7767-3de9-4833-b4e7-b1b62ee3cd99/0/323030313a6466323a363030303a3a2f34382d3438203d3e203538333932.roa Signing time: Mon 02 Jun 2025 02:03:12 +0000 ROA not before: Mon 02 Jun 2025 01:58:12 +0000 ROA not after: Mon 01 Jun 2026 02:03:12 +0000 asID: 58392 IP address blocks: 2001:df2:6000::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4ffb7767-3de9-4833-b4e7-b1b62ee3cd99/0/AF504C4E6E3831F756E3BE07469483DFED452516.crl rsync://repo-rpki.idnic.net/repo/4ffb7767-3de9-4833-b4e7-b1b62ee3cd99/0/AF504C4E6E3831F756E3BE07469483DFED452516.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF504C4E6E3831F756E3BE07469483DFED452516.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 17:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:2e:6a:32:c7:e9:34:fe:9f:3a:b1:b9:17:30:22:09:6c:c7:57:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF504C4E6E3831F756E3BE07469483DFED452516 Validity Not Before: Jun 2 01:58:12 2025 GMT Not After : Jun 1 02:03:12 2026 GMT Subject: CN=49E1ACEE6A5C969DF7FACF49A79FF3F5F8FDE5FD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:39:e6:85:45:a3:4d:fb:be:1f:1f:4e:3f:55: dc:01:56:b4:bf:13:db:97:89:74:43:66:c6:73:dc: 53:63:4e:34:89:1a:8e:99:eb:89:19:60:3c:0c:e7: 98:15:6a:87:19:a1:4b:c2:ec:c8:cc:ec:17:54:9b: 4e:f7:c5:d9:c9:6a:6f:dd:5c:68:c7:a0:e1:9a:12: 7b:75:e3:25:56:ad:2b:f4:95:53:12:b2:3e:d7:12: 9c:ea:61:5a:2f:68:72:af:f1:7f:df:61:e7:9e:46: 08:2e:8e:4a:99:0c:f1:63:9e:aa:8d:62:05:d3:e4: 9c:e4:c9:28:03:c0:56:0a:ff:8f:2c:1d:2f:f1:26: c5:e0:a3:2d:d0:95:ce:ce:c6:45:7e:f5:7b:f8:5d: 49:94:4d:53:ea:6e:24:84:5a:49:7f:3f:30:1e:08: 41:2d:66:7a:f0:0c:5c:f3:2c:fc:9e:f2:a7:e8:2f: 9d:d2:a2:a7:49:b6:e0:9f:3b:6e:23:68:53:de:e7: 7c:59:99:0f:be:67:ae:ee:21:c4:0a:6b:66:fd:0d: b3:08:36:72:21:90:8c:c1:fc:90:a9:e0:cf:3e:2d: df:50:f0:e9:0a:67:ea:7b:df:42:5c:57:15:16:c7: ff:4a:0d:1f:63:78:80:fa:34:48:09:68:e0:1c:a7: ab:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:E1:AC:EE:6A:5C:96:9D:F7:FA:CF:49:A7:9F:F3:F5:F8:FD:E5:FD X509v3 Authority Key Identifier: keyid:AF:50:4C:4E:6E:38:31:F7:56:E3:BE:07:46:94:83:DF:ED:45:25:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4ffb7767-3de9-4833-b4e7-b1b62ee3cd99/0/AF504C4E6E3831F756E3BE07469483DFED452516.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF504C4E6E3831F756E3BE07469483DFED452516.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4ffb7767-3de9-4833-b4e7-b1b62ee3cd99/0/323030313a6466323a363030303a3a2f34382d3438203d3e203538333932.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:6000::/48 Signature Algorithm: sha256WithRSAEncryption 9f:bb:fa:21:57:d4:a8:d0:72:31:08:6f:8a:e3:85:8c:82:10: 74:16:46:9b:7b:25:da:72:03:bb:a6:d9:38:08:b6:59:aa:a7: 6f:4a:19:1e:fd:27:f2:43:44:51:35:ba:65:61:6b:94:b8:91: 6f:67:5c:8f:c5:88:71:a9:ba:42:ac:76:e7:0a:bf:eb:de:3b: 16:5a:40:04:5d:b6:14:6f:70:b9:89:61:bc:12:e6:59:85:0d: 0a:6e:89:e8:fd:af:3b:02:26:11:3a:01:a3:ba:f3:b9:e9:41: 47:44:f1:44:45:44:cd:94:12:70:bb:3c:f2:e1:8d:73:cf:bb: 6e:bf:5e:aa:07:f6:78:42:47:b8:0b:c1:cf:50:79:0d:17:42: 9a:20:dd:d5:11:56:a8:38:58:68:c5:55:d1:a0:94:5d:4f:5c: 23:df:01:a0:17:98:96:68:dc:37:7c:36:0d:e6:38:1e:4e:60: 79:08:f4:4b:3a:4d:00:18:45:d0:6e:4d:f5:92:52:6d:3a:23: 85:17:b9:29:09:b0:32:de:ba:46:b1:36:64:c9:7e:1e:2f:19: e0:8f:66:13:ef:f6:ad:c4:af:c6:cd:45:59:c3:d5:4d:99:37: 3f:42:0a:27:8e:a7:4a:a3:56:bc:e2:0b:5c:b5:92:e9:14:af: 7c:70:f9:25 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUKS5qMsfpNP6fOrG5FzAiCWzHV7UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY1MDRDNEU2RTM4MzFGNzU2RTNCRTA3NDY5NDgzREZF RDQ1MjUxNjAeFw0yNTA2MDIwMTU4MTJaFw0yNjA2MDEwMjAzMTJaMDMxMTAvBgNV BAMTKDQ5RTFBQ0VFNkE1Qzk2OURGN0ZBQ0Y0OUE3OUZGM0Y1RjhGREU1RkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/OeaFRaNN+74fH04/VdwBVrS/ E9uXiXRDZsZz3FNjTjSJGo6Z64kZYDwM55gVaocZoUvC7MjM7BdUm073xdnJam/d XGjHoOGaEnt14yVWrSv0lVMSsj7XEpzqYVovaHKv8X/fYeeeRggujkqZDPFjnqqN YgXT5JzkySgDwFYK/48sHS/xJsXgoy3Qlc7OxkV+9Xv4XUmUTVPqbiSEWkl/PzAe CEEtZnrwDFzzLPye8qfoL53SoqdJtuCfO24jaFPe53xZmQ++Z67uIcQKa2b9DbMI NnIhkIzB/JCp4M8+Ld9Q8OkKZ+p730JcVxUWx/9KDR9jeID6NEgJaOAcp6tVAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUSeGs7mpclp33+s9Jp5/z9fj95f0wHwYDVR0j BBgwFoAUr1BMTm44MfdW474HRpSD3+1FJRYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZmZiNzc2Ny0zZGU5LTQ4MzMtYjRlNy1iMWI2MmVlM2NkOTkvMC9BRjUwNEM0RTZF MzgzMUY3NTZFM0JFMDc0Njk0ODNERkVENDUyNTE2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY1MDRDNEU2RTM4MzFGNzU2RTNCRTA3NDY5NDgzREZFRDQ1 MjUxNi5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRmZmI3NzY3LTNkZTktNDgzMy1i NGU3LWIxYjYyZWUzY2Q5OS8wLzMyMzAzMDMxM2E2NDY2MzIzYTM2MzAzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzODMzMzkzMi5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfJg ADANBgkqhkiG9w0BAQsFAAOCAQEAn7v6IVfUqNByMQhviuOFjIIQdBZGm3sl2nID u6bZOAi2Waqnb0oZHv0n8kNEUTW6ZWFrlLiRb2dcj8WIcam6Qqx25wq/6947FlpA BF22FG9wuYlhvBLmWYUNCm6J6P2vOwImEToBo7rzuelBR0TxREVEzZQScLs88uGN c8+7br9eqgf2eEJHuAvBz1B5DRdCmiDd1RFWqDhYaMVV0aCUXU9cI98BoBeYlmjc N3w2DeY4Hk5geQj0SzpNABhF0G5N9ZJSbTojhRe5KQmwMt66RrE2ZMl+Hi8Z4I9m E+/2rcSvxs1FWcPVTZk3P0IKJ46nSqNWvOILXLWS6RSvfHD5JQ== -----END CERTIFICATE-----Generated at Thu Jun 5 18:34:03 2025 by rpki-client