$ rpki-client -vvf repo-rpki.idnic.net/repo/6728c77b-2100-4f2a-90d9-08c53e841e1b/0/323030313a6466333a666438303a3a2f34382d3438203d3e20313430343432.roa File: 323030313a6466333a666438303a3a2f34382d3438203d3e20313430343432.roa (raw, json) Hash identifier: 6nfQfvYHsKjsaw/P97GpMinNY5TWkRYJKWFHck6y3/Q= Subject key identifier: 04:6E:03:36:4D:39:29:61:C3:D7:ED:10:4D:5B:F5:D8:DD:89:AC:13 Certificate issuer: /CN=DBE91560EBE58F31F01F543D751B03FC02EA7D9E Certificate serial: 09822EB44EEED5756E315863B109EC09955AB90D Authority key identifier: DB:E9:15:60:EB:E5:8F:31:F0:1F:54:3D:75:1B:03:FC:02:EA:7D:9E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DBE91560EBE58F31F01F543D751B03FC02EA7D9E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6728c77b-2100-4f2a-90d9-08c53e841e1b/0/323030313a6466333a666438303a3a2f34382d3438203d3e20313430343432.roa Signing time: Mon 02 Jun 2025 02:02:59 +0000 ROA not before: Mon 02 Jun 2025 01:57:59 +0000 ROA not after: Mon 01 Jun 2026 02:02:59 +0000 asID: 140442 IP address blocks: 2001:df3:fd80::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6728c77b-2100-4f2a-90d9-08c53e841e1b/0/DBE91560EBE58F31F01F543D751B03FC02EA7D9E.crl rsync://repo-rpki.idnic.net/repo/6728c77b-2100-4f2a-90d9-08c53e841e1b/0/DBE91560EBE58F31F01F543D751B03FC02EA7D9E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DBE91560EBE58F31F01F543D751B03FC02EA7D9E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 15:11:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:82:2e:b4:4e:ee:d5:75:6e:31:58:63:b1:09:ec:09:95:5a:b9:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DBE91560EBE58F31F01F543D751B03FC02EA7D9E Validity Not Before: Jun 2 01:57:59 2025 GMT Not After : Jun 1 02:02:59 2026 GMT Subject: CN=046E03364D392961C3D7ED104D5BF5D8DD89AC13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:ce:cd:ab:83:5d:72:32:e1:2d:31:67:ec:a4: c1:7a:a5:dc:06:eb:2f:92:1c:34:08:72:a4:79:14: 76:1b:30:e8:e8:9f:db:1b:8f:14:db:8b:23:02:a5: 68:70:d4:0a:62:3a:f9:e0:e5:d1:a2:fd:72:e2:f3: f8:d9:43:6a:5b:39:87:76:a9:e7:80:d3:d1:fb:f5: 6e:3b:6f:e5:13:3b:39:47:cb:ca:52:65:0c:91:ff: ba:ee:2b:25:d7:b7:45:82:5d:79:b9:88:15:af:ae: 13:85:a9:7a:70:c4:55:fa:23:60:fe:14:75:16:b1: b7:6c:8c:d0:b0:59:49:75:cb:09:82:ca:8f:f2:8f: b6:60:72:a1:e9:de:2b:75:88:8a:df:95:d3:71:51: 81:a3:d0:fa:40:d6:74:1e:15:f2:d7:57:70:c4:59: 30:f8:b7:77:39:4b:38:5e:0e:95:12:ec:ec:6d:5f: 0b:db:85:5e:57:f7:a9:0b:2e:32:4d:54:d7:aa:8d: 45:fd:97:81:f5:99:76:d3:e4:7f:ea:74:20:ee:df: 30:94:92:b1:82:de:13:0c:2f:26:ed:52:8a:1a:e9: 2a:17:3b:53:1c:98:0d:5a:ea:f5:fa:4f:b4:9f:72: 00:0f:26:20:f3:7e:bd:50:9a:b5:ff:fd:32:c4:74: 8d:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:6E:03:36:4D:39:29:61:C3:D7:ED:10:4D:5B:F5:D8:DD:89:AC:13 X509v3 Authority Key Identifier: keyid:DB:E9:15:60:EB:E5:8F:31:F0:1F:54:3D:75:1B:03:FC:02:EA:7D:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6728c77b-2100-4f2a-90d9-08c53e841e1b/0/DBE91560EBE58F31F01F543D751B03FC02EA7D9E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DBE91560EBE58F31F01F543D751B03FC02EA7D9E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6728c77b-2100-4f2a-90d9-08c53e841e1b/0/323030313a6466333a666438303a3a2f34382d3438203d3e20313430343432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:fd80::/48 Signature Algorithm: sha256WithRSAEncryption 44:7e:64:6d:dd:2c:e3:27:25:29:c2:77:30:ce:2a:11:1d:33: 08:cb:97:bf:0c:c6:8a:34:f2:97:aa:0f:95:ac:9a:63:77:ff: b9:05:40:2e:97:db:2a:ff:6e:57:f7:fe:76:68:56:4a:25:04: ec:6c:da:b2:49:59:7b:d9:71:4b:b2:17:96:19:03:71:3e:ff: 44:ab:40:7d:38:c7:90:a6:d0:3b:3f:e7:9d:42:40:2a:b5:80: bf:64:4c:fe:d3:bd:92:d8:f1:c4:a2:90:c1:7d:d7:b1:41:d5: d1:b2:2b:57:3a:d1:83:23:96:ad:d3:b8:bb:67:53:3f:22:8e: 24:ee:89:92:b6:ee:df:0d:6a:41:79:db:99:ea:18:45:c9:8d: 29:94:33:1d:93:89:52:76:84:87:8b:8f:0e:9b:3d:bb:78:17: e5:a2:bd:02:0a:60:16:7c:1e:d5:d2:4a:7a:85:8d:5f:7d:2d: 03:35:6a:e0:05:c1:a6:f5:84:5b:2a:9b:b4:88:71:fe:ad:ff: d3:fd:a3:9e:55:bf:d8:15:07:e9:89:2d:a2:7c:17:21:11:de: f1:c4:ca:c1:70:c6:d8:0f:cc:67:9f:3a:d4:95:ee:d7:25:22: 73:7f:d3:a3:2b:54:32:51:19:92:06:33:49:2e:6d:80:40:47: df:fd:9e:e3 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUCYIutE7u1XVuMVhjsQnsCZVauQ0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREJFOTE1NjBFQkU1OEYzMUYwMUY1NDNENzUxQjAzRkMw MkVBN0Q5RTAeFw0yNTA2MDIwMTU3NTlaFw0yNjA2MDEwMjAyNTlaMDMxMTAvBgNV BAMTKDA0NkUwMzM2NEQzOTI5NjFDM0Q3RUQxMDRENUJGNUQ4REQ4OUFDMTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7zs2rg11yMuEtMWfspMF6pdwG 6y+SHDQIcqR5FHYbMOjon9sbjxTbiyMCpWhw1ApiOvng5dGi/XLi8/jZQ2pbOYd2 qeeA09H79W47b+UTOzlHy8pSZQyR/7ruKyXXt0WCXXm5iBWvrhOFqXpwxFX6I2D+ FHUWsbdsjNCwWUl1ywmCyo/yj7ZgcqHp3it1iIrfldNxUYGj0PpA1nQeFfLXV3DE WTD4t3c5SzheDpUS7OxtXwvbhV5X96kLLjJNVNeqjUX9l4H1mXbT5H/qdCDu3zCU krGC3hMMLybtUooa6SoXO1McmA1a6vX6T7SfcgAPJiDzfr1QmrX//TLEdI2vAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUBG4DNk05KWHD1+0QTVv12N2JrBMwHwYDVR0j BBgwFoAU2+kVYOvljzHwH1Q9dRsD/ALqfZ4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NzI4Yzc3Yi0yMTAwLTRmMmEtOTBkOS0wOGM1M2U4NDFlMWIvMC9EQkU5MTU2MEVC RTU4RjMxRjAxRjU0M0Q3NTFCMDNGQzAyRUE3RDlFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREJFOTE1NjBFQkU1OEYzMUYwMUY1NDNENzUxQjAzRkMwMkVB N0Q5RS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY3MjhjNzdiLTIxMDAtNGYyYS05 MGQ5LTA4YzUzZTg0MWUxYi8wLzMyMzAzMDMxM2E2NDY2MzMzYTY2NjQzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDMwMzQzNDMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8/2AMA0GCSqGSIb3DQEBCwUAA4IBAQBEfmRt3SzjJyUpwncwzioRHTMIy5e/DMaK NPKXqg+VrJpjd/+5BUAul9sq/25X9/52aFZKJQTsbNqySVl72XFLsheWGQNxPv9E q0B9OMeQptA7P+edQkAqtYC/ZEz+072S2PHEopDBfdexQdXRsitXOtGDI5at07i7 Z1M/Io4k7omStu7fDWpBeduZ6hhFyY0plDMdk4lSdoSHi48Omz27eBflor0CCmAW fB7V0kp6hY1ffS0DNWrgBcGm9YRbKpu0iHH+rf/T/aOeVb/YFQfpiS2ifBchEd7x xMrBcMbYD8xnnzrUle7XJSJzf9OjK1QyURmSBjNJLm2AQEff/Z7j -----END CERTIFICATE-----Generated at Fri Jun 6 16:48:00 2025 by rpki-client