$ rpki-client -vvf repo-rpki.idnic.net/repo/5fb808eb-c98e-4036-be9a-193bbcc64892/1/323030313a6466333a633234303a3a2f34382d3438203d3e20313532343430.roa File: 323030313a6466333a633234303a3a2f34382d3438203d3e20313532343430.roa (raw, json) Hash identifier: 2T9LVqRaEUG/PyNEPNkJKeM+yCzpYg+aQeXewlr7el8= Subject key identifier: 6F:F4:C6:ED:36:3A:DD:7A:04:25:81:8E:AA:8A:68:69:59:27:B6:41 Certificate issuer: /CN=11A839F5FB6B345FB1586C56F146C0D80026AB7E Certificate serial: 249571C81A566760D855E83FEF59F164838EBF00 Authority key identifier: 11:A8:39:F5:FB:6B:34:5F:B1:58:6C:56:F1:46:C0:D8:00:26:AB:7E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11A839F5FB6B345FB1586C56F146C0D80026AB7E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5fb808eb-c98e-4036-be9a-193bbcc64892/1/323030313a6466333a633234303a3a2f34382d3438203d3e20313532343430.roa Signing time: Wed 21 May 2025 07:02:23 +0000 ROA not before: Wed 21 May 2025 06:57:23 +0000 ROA not after: Wed 20 May 2026 07:02:23 +0000 asID: 152440 IP address blocks: 2001:df3:c240::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5fb808eb-c98e-4036-be9a-193bbcc64892/1/11A839F5FB6B345FB1586C56F146C0D80026AB7E.crl rsync://repo-rpki.idnic.net/repo/5fb808eb-c98e-4036-be9a-193bbcc64892/1/11A839F5FB6B345FB1586C56F146C0D80026AB7E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11A839F5FB6B345FB1586C56F146C0D80026AB7E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 17:38:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:95:71:c8:1a:56:67:60:d8:55:e8:3f:ef:59:f1:64:83:8e:bf:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=11A839F5FB6B345FB1586C56F146C0D80026AB7E Validity Not Before: May 21 06:57:23 2025 GMT Not After : May 20 07:02:23 2026 GMT Subject: CN=6FF4C6ED363ADD7A0425818EAA8A68695927B641 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:2d:6a:c3:b3:d8:16:d6:73:54:df:22:9d:3c: 9d:c3:f8:1b:59:72:c1:a9:06:c4:bc:34:5c:53:eb: c9:5c:13:97:18:42:40:9f:81:17:46:75:45:9a:59: 01:6c:df:80:bf:53:a0:18:e3:90:34:7f:76:93:fd: 0b:80:46:a7:5a:88:c8:71:69:fc:1f:a2:5b:fe:8c: c0:71:cb:47:97:b5:57:26:6f:c6:b8:98:b6:96:85: 4a:76:a5:bb:91:e1:6e:89:8d:35:7f:92:91:c0:54: 3a:a6:e7:4b:28:cb:8e:27:d8:52:36:f0:43:e7:2f: b5:97:45:f0:eb:45:60:d9:a1:42:20:e4:33:1e:98: fd:92:93:ab:b0:40:5d:17:a6:4f:c4:85:7c:4e:28: fe:da:18:60:ae:13:10:84:e8:45:df:00:79:d8:c4: fb:a6:65:24:76:a4:07:a4:10:75:a4:53:60:fc:71: c3:a5:ca:a5:e9:1b:44:4a:a3:c1:f1:15:d0:21:8c: 6e:44:ae:bc:d0:f4:69:d0:eb:df:d1:fc:8e:ec:af: a7:84:70:01:b2:1f:de:80:c1:f6:25:57:ca:06:50: 80:85:cf:f2:7a:ae:de:6a:a3:7b:c3:b7:8d:f8:4b: f5:45:fb:4c:b1:dd:e8:4e:9b:36:ff:24:fa:ed:d2: 85:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:F4:C6:ED:36:3A:DD:7A:04:25:81:8E:AA:8A:68:69:59:27:B6:41 X509v3 Authority Key Identifier: keyid:11:A8:39:F5:FB:6B:34:5F:B1:58:6C:56:F1:46:C0:D8:00:26:AB:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5fb808eb-c98e-4036-be9a-193bbcc64892/1/11A839F5FB6B345FB1586C56F146C0D80026AB7E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11A839F5FB6B345FB1586C56F146C0D80026AB7E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5fb808eb-c98e-4036-be9a-193bbcc64892/1/323030313a6466333a633234303a3a2f34382d3438203d3e20313532343430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:c240::/48 Signature Algorithm: sha256WithRSAEncryption 8b:e4:92:61:c9:a1:81:e5:50:09:96:53:99:39:b6:54:82:09: 1a:22:5c:6e:c8:6a:41:c9:90:24:f2:ec:67:38:e5:d0:64:68: e9:1d:45:26:40:1f:62:fb:f1:49:5d:e3:b0:9b:54:ba:81:5c: 93:48:1b:9c:77:c1:46:3f:c4:b5:4a:d5:48:31:a5:0d:e7:0a: ca:7b:2d:0f:41:39:c4:59:eb:4f:a9:e0:71:7b:89:ef:0f:d5: 18:c3:12:70:f9:f6:9e:43:24:6b:51:1d:71:26:76:c0:3c:29: 6b:a8:69:5f:bd:d2:52:18:23:ff:fd:d0:1d:d6:73:e5:76:8f: 69:f0:c3:59:e7:01:cc:a4:c1:0b:74:cf:96:19:72:f9:fc:e7: 16:bf:da:10:01:3f:5c:15:5e:d7:62:9a:6b:50:75:5f:e1:6e: 0d:ce:db:b9:2a:16:4f:56:45:02:ee:88:48:29:8b:21:9a:6e: a2:fa:2d:72:b7:6f:5d:fb:ee:eb:5e:55:cd:3c:70:1d:c5:84: a1:5e:6c:2c:44:c3:be:20:19:57:ba:6a:d5:5a:53:25:e9:a6: b2:40:27:88:1c:c1:74:63:4a:0b:a4:82:8e:c1:4c:a6:1d:e1: d0:98:06:93:15:bd:4a:5c:5d:ab:78:18:3a:68:d1:71:ac:11: 45:07:bb:24 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUJJVxyBpWZ2DYVeg/71nxZIOOvwAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTFBODM5RjVGQjZCMzQ1RkIxNTg2QzU2RjE0NkMwRDgw MDI2QUI3RTAeFw0yNTA1MjEwNjU3MjNaFw0yNjA1MjAwNzAyMjNaMDMxMTAvBgNV BAMTKDZGRjRDNkVEMzYzQUREN0EwNDI1ODE4RUFBOEE2ODY5NTkyN0I2NDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDoLWrDs9gW1nNU3yKdPJ3D+BtZ csGpBsS8NFxT68lcE5cYQkCfgRdGdUWaWQFs34C/U6AY45A0f3aT/QuARqdaiMhx afwfolv+jMBxy0eXtVcmb8a4mLaWhUp2pbuR4W6JjTV/kpHAVDqm50soy44n2FI2 8EPnL7WXRfDrRWDZoUIg5DMemP2Sk6uwQF0Xpk/EhXxOKP7aGGCuExCE6EXfAHnY xPumZSR2pAekEHWkU2D8ccOlyqXpG0RKo8HxFdAhjG5ErrzQ9GnQ69/R/I7sr6eE cAGyH96AwfYlV8oGUICFz/J6rt5qo3vDt434S/VF+0yx3ehOmzb/JPrt0oVRAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUb/TG7TY63XoEJYGOqopoaVkntkEwHwYDVR0j BBgwFoAUEag59ftrNF+xWGxW8UbA2AAmq34wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZmI4MDhlYi1jOThlLTQwMzYtYmU5YS0xOTNiYmNjNjQ4OTIvMS8xMUE4MzlGNUZC NkIzNDVGQjE1ODZDNTZGMTQ2QzBEODAwMjZBQjdFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTFBODM5RjVGQjZCMzQ1RkIxNTg2QzU2RjE0NkMwRDgwMDI2 QUI3RS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVmYjgwOGViLWM5OGUtNDAzNi1i ZTlhLTE5M2JiY2M2NDg5Mi8xLzMyMzAzMDMxM2E2NDY2MzMzYTYzMzIzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMyMzQzNDMwLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 88JAMA0GCSqGSIb3DQEBCwUAA4IBAQCL5JJhyaGB5VAJllOZObZUggkaIlxuyGpB yZAk8uxnOOXQZGjpHUUmQB9i+/FJXeOwm1S6gVyTSBucd8FGP8S1StVIMaUN5wrK ey0PQTnEWetPqeBxe4nvD9UYwxJw+faeQyRrUR1xJnbAPClrqGlfvdJSGCP//dAd 1nPldo9p8MNZ5wHMpMELdM+WGXL5/OcWv9oQAT9cFV7XYpprUHVf4W4Nztu5KhZP VkUC7ohIKYshmm6i+i1yt29d++7rXlXNPHAdxYShXmwsRMO+IBlXumrVWlMl6aay QCeIHMF0Y0oLpIKOwUymHeHQmAaTFb1KXF2reBg6aNFxrBFFB7sk -----END CERTIFICATE-----Generated at Thu Jun 5 18:42:12 2025 by rpki-client