$ rpki-client -vvf repo-rpki.idnic.net/repo/60442043-244e-4b87-b00c-e57f4871d0ef/0/323030313a6466303a3261373a3a2f34382d3438203d3e203535363937.roa File: 323030313a6466303a3261373a3a2f34382d3438203d3e203535363937.roa (raw, json) Hash identifier: pJwvm882Mg2XhUmsTwO4kQV+vaRmkryt9jvtdZPqIks= Subject key identifier: A8:EC:FB:F6:4C:2D:D3:BE:EE:84:6A:A7:65:5D:2C:2F:27:08:C4:AD Certificate issuer: /CN=1FA59BCEE428AFC03264229113A5539024697A14 Certificate serial: 2291CE5E2BEEEE453FACAD870A4CD9B9244F4109 Authority key identifier: 1F:A5:9B:CE:E4:28:AF:C0:32:64:22:91:13:A5:53:90:24:69:7A:14 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1FA59BCEE428AFC03264229113A5539024697A14.cer Subject info access: rsync://repo-rpki.idnic.net/repo/60442043-244e-4b87-b00c-e57f4871d0ef/0/323030313a6466303a3261373a3a2f34382d3438203d3e203535363937.roa Signing time: Mon 02 Jun 2025 02:03:20 +0000 ROA not before: Mon 02 Jun 2025 01:58:20 +0000 ROA not after: Mon 01 Jun 2026 02:03:20 +0000 asID: 55697 IP address blocks: 2001:df0:2a7::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/60442043-244e-4b87-b00c-e57f4871d0ef/0/1FA59BCEE428AFC03264229113A5539024697A14.crl rsync://repo-rpki.idnic.net/repo/60442043-244e-4b87-b00c-e57f4871d0ef/0/1FA59BCEE428AFC03264229113A5539024697A14.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1FA59BCEE428AFC03264229113A5539024697A14.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 14:20:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:91:ce:5e:2b:ee:ee:45:3f:ac:ad:87:0a:4c:d9:b9:24:4f:41:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1FA59BCEE428AFC03264229113A5539024697A14 Validity Not Before: Jun 2 01:58:20 2025 GMT Not After : Jun 1 02:03:20 2026 GMT Subject: CN=A8ECFBF64C2DD3BEEE846AA7655D2C2F2708C4AD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:d5:c8:d7:06:dc:8d:48:8a:f4:7e:59:41:82: a5:ae:16:4e:c8:81:28:a2:1d:7d:08:19:6f:fd:d1: da:09:58:d6:b9:f2:7d:4f:2d:4e:74:d9:19:6d:fb: e2:b4:a5:58:04:ee:71:52:1f:22:9c:66:ff:e0:54: 84:d2:a9:28:31:5c:ee:4c:b1:ac:43:e7:ed:ca:c4: d5:8c:4f:a2:77:98:45:70:53:fe:47:4f:f5:38:51: a8:58:0b:94:37:b8:2a:2d:7e:a6:9f:fc:43:a8:ba: 92:f7:9b:e2:ee:fd:d5:30:fc:c4:68:ab:dd:d0:a9: bd:2c:44:70:e2:aa:5e:19:a8:6b:f4:68:d4:86:ab: 26:7f:b8:1e:7d:71:58:69:8d:7c:e8:7d:fb:e3:63: 9b:81:ef:de:7f:44:f5:6f:d3:74:92:df:14:08:21: 79:5d:06:40:ed:0a:1a:e9:b5:21:e0:fc:60:c0:8b: 9c:c5:2e:60:97:fd:58:d2:86:28:da:47:78:58:0d: ac:f7:34:d1:0e:24:43:b5:55:48:37:0b:65:1b:63: 16:82:9f:d0:46:35:9b:2a:13:9c:e7:58:ae:27:a7: d8:38:98:28:3e:70:34:ee:3d:9a:4b:3a:0d:9c:34: 10:23:f8:44:37:f8:5d:10:aa:ee:98:98:15:fd:39: a7:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:EC:FB:F6:4C:2D:D3:BE:EE:84:6A:A7:65:5D:2C:2F:27:08:C4:AD X509v3 Authority Key Identifier: keyid:1F:A5:9B:CE:E4:28:AF:C0:32:64:22:91:13:A5:53:90:24:69:7A:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/60442043-244e-4b87-b00c-e57f4871d0ef/0/1FA59BCEE428AFC03264229113A5539024697A14.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1FA59BCEE428AFC03264229113A5539024697A14.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/60442043-244e-4b87-b00c-e57f4871d0ef/0/323030313a6466303a3261373a3a2f34382d3438203d3e203535363937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:2a7::/48 Signature Algorithm: sha256WithRSAEncryption af:e3:f5:c7:d9:f7:65:f4:cf:4a:c8:f4:e0:47:68:8f:f0:79: 09:cb:fa:58:30:1f:7e:0f:3f:5c:31:d3:f6:67:68:30:87:f5: 33:4f:91:1a:f7:76:13:4f:e3:6a:14:f0:c0:6e:1e:dd:93:59: 43:45:3b:ae:cb:83:af:03:e7:35:9d:51:be:09:4a:a1:0f:6d: 5a:7e:a1:b9:07:75:d2:de:bb:4b:63:5f:ad:e5:6f:22:30:6d: 8e:68:71:61:14:df:34:fc:e5:00:ed:35:f6:7b:72:96:bc:6c: 68:b1:ba:ed:b1:33:ca:c0:ac:11:d0:70:2d:39:6d:7e:eb:c7: cd:f2:26:49:fe:12:e5:94:40:40:3b:40:dd:29:ff:0c:0b:92: bb:aa:ed:d7:07:a7:0b:16:70:3c:19:43:73:1b:2a:60:a9:f8: 99:d7:79:ff:b7:4e:41:ee:d9:d9:ef:13:dd:53:e4:f0:f0:ce: 72:cb:f4:44:48:d6:1f:07:19:fc:d7:1f:96:a3:9a:3f:b6:df: 4a:f2:b0:e3:f7:7d:29:fa:22:4c:8a:02:a3:39:69:83:75:17: ee:e8:0a:fc:00:11:af:99:1c:3d:44:e7:a1:7d:88:e8:0e:14: 23:4a:99:56:cd:57:5c:1e:9d:e6:66:93:81:93:6f:d0:91:88: 83:51:f2:67 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUIpHOXivu7kU/rK2HCkzZuSRPQQkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUZBNTlCQ0VFNDI4QUZDMDMyNjQyMjkxMTNBNTUzOTAy NDY5N0ExNDAeFw0yNTA2MDIwMTU4MjBaFw0yNjA2MDEwMjAzMjBaMDMxMTAvBgNV BAMTKEE4RUNGQkY2NEMyREQzQkVFRTg0NkFBNzY1NUQyQzJGMjcwOEM0QUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCl1cjXBtyNSIr0fllBgqWuFk7I gSiiHX0IGW/90doJWNa58n1PLU502Rlt++K0pVgE7nFSHyKcZv/gVITSqSgxXO5M saxD5+3KxNWMT6J3mEVwU/5HT/U4UahYC5Q3uCotfqaf/EOoupL3m+Lu/dUw/MRo q93Qqb0sRHDiql4ZqGv0aNSGqyZ/uB59cVhpjXzoffvjY5uB795/RPVv03SS3xQI IXldBkDtChrptSHg/GDAi5zFLmCX/VjShijaR3hYDaz3NNEOJEO1VUg3C2UbYxaC n9BGNZsqE5znWK4np9g4mCg+cDTuPZpLOg2cNBAj+EQ3+F0Qqu6YmBX9OacFAgMB AAGjggI5MIICNTAdBgNVHQ4EFgQUqOz79kwt077uhGqnZV0sLycIxK0wHwYDVR0j BBgwFoAUH6WbzuQor8AyZCKRE6VTkCRpehQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MDQ0MjA0My0yNDRlLTRiODctYjAwYy1lNTdmNDg3MWQwZWYvMC8xRkE1OUJDRUU0 MjhBRkMwMzI2NDIyOTExM0E1NTM5MDI0Njk3QTE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUZBNTlCQ0VFNDI4QUZDMDMyNjQyMjkxMTNBNTUzOTAyNDY5 N0ExNC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYwNDQyMDQzLTI0NGUtNGI4Ny1i MDBjLWU1N2Y0ODcxZDBlZi8wLzMyMzAzMDMxM2E2NDY2MzAzYTMyNjEzNzNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzUzNjM5Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAgAQ3wAqcw DQYJKoZIhvcNAQELBQADggEBAK/j9cfZ92X0z0rI9OBHaI/weQnL+lgwH34PP1wx 0/ZnaDCH9TNPkRr3dhNP42oU8MBuHt2TWUNFO67Lg68D5zWdUb4JSqEPbVp+obkH ddLeu0tjX63lbyIwbY5ocWEU3zT85QDtNfZ7cpa8bGixuu2xM8rArBHQcC05bX7r x83yJkn+EuWUQEA7QN0p/wwLkruq7dcHpwsWcDwZQ3MbKmCp+JnXef+3TkHu2dnv E91T5PDwznLL9ERI1h8HGfzXH5ajmj+230rysOP3fSn6IkyKAqM5aYN1F+7oCvwA Ea+ZHD1E56F9iOgOFCNKmVbNV1weneZmk4GTb9CRiINR8mc= -----END CERTIFICATE-----Generated at Thu Jun 5 18:34:35 2025 by rpki-client