$ rpki-client -vvf repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/323030313a6466323a653838303a3a2f34382d3438203d3e20313339393938.roa File: 323030313a6466323a653838303a3a2f34382d3438203d3e20313339393938.roa (raw, json) Hash identifier: nNX7HtrSmZosplxX3sNrwbTF/yyCS/NG8/khqeK7R2k= Subject key identifier: 84:72:5A:98:CE:38:4D:5D:D6:08:20:BD:49:B2:FC:DC:B5:68:23:5E Certificate issuer: /CN=08D07F010DA28112A94E8800C317B8DF7F1ABF43 Certificate serial: 04D9897FCA297E398C2F2F1EB4B60532FF89B344 Authority key identifier: 08:D0:7F:01:0D:A2:81:12:A9:4E:88:00:C3:17:B8:DF:7F:1A:BF:43 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08D07F010DA28112A94E8800C317B8DF7F1ABF43.cer Subject info access: rsync://repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/323030313a6466323a653838303a3a2f34382d3438203d3e20313339393938.roa Signing time: Mon 02 Jun 2025 02:04:53 +0000 ROA not before: Mon 02 Jun 2025 01:59:53 +0000 ROA not after: Mon 01 Jun 2026 02:04:53 +0000 asID: 139998 IP address blocks: 2001:df2:e880::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/08D07F010DA28112A94E8800C317B8DF7F1ABF43.crl rsync://repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/08D07F010DA28112A94E8800C317B8DF7F1ABF43.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08D07F010DA28112A94E8800C317B8DF7F1ABF43.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 19:14:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:d9:89:7f:ca:29:7e:39:8c:2f:2f:1e:b4:b6:05:32:ff:89:b3:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08D07F010DA28112A94E8800C317B8DF7F1ABF43 Validity Not Before: Jun 2 01:59:53 2025 GMT Not After : Jun 1 02:04:53 2026 GMT Subject: CN=84725A98CE384D5DD60820BD49B2FCDCB568235E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:61:80:70:b2:d2:4d:0f:62:f9:42:d6:90:a0: ce:61:3b:78:8e:dd:59:72:9e:29:13:e9:a2:01:d6: d6:26:1b:38:91:7e:00:39:43:30:a6:cd:28:35:7b: 4d:ee:f8:7b:1c:24:17:aa:55:bb:63:fa:aa:ba:ad: 5e:38:62:92:5b:0d:e1:15:36:52:ed:62:97:a3:64: 8b:82:7a:d2:02:04:32:fa:5f:de:26:d6:66:51:55: 3b:5f:00:07:f8:6e:f0:1e:69:8e:ee:fa:ac:4c:9e: 7e:8c:64:65:21:9c:ac:e9:51:00:82:85:22:6a:40: a7:05:d0:c9:52:69:01:3f:02:24:54:71:04:2e:a4: 51:92:80:11:bc:98:e9:18:2b:c5:ae:04:7a:6f:2d: 59:d8:7a:1d:36:7f:1a:c8:0e:f2:8b:20:94:3c:2f: 49:44:b0:2f:7b:e6:b0:f9:b2:9b:79:74:59:37:f9: 72:52:7e:08:b2:ae:6c:8a:57:a4:8c:6f:8b:76:fa: 68:34:7e:4f:17:7b:80:43:f4:87:1c:e8:3f:93:f1: 16:5a:dc:25:8b:59:4c:22:fd:42:98:b7:ac:8f:ea: ea:00:d9:93:18:a7:ad:c9:a9:8c:a3:18:00:d2:aa: 43:1d:67:73:a0:1b:56:c5:ef:c9:88:6b:3f:b3:0d: 56:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:72:5A:98:CE:38:4D:5D:D6:08:20:BD:49:B2:FC:DC:B5:68:23:5E X509v3 Authority Key Identifier: keyid:08:D0:7F:01:0D:A2:81:12:A9:4E:88:00:C3:17:B8:DF:7F:1A:BF:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/08D07F010DA28112A94E8800C317B8DF7F1ABF43.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08D07F010DA28112A94E8800C317B8DF7F1ABF43.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/323030313a6466323a653838303a3a2f34382d3438203d3e20313339393938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:e880::/48 Signature Algorithm: sha256WithRSAEncryption 12:72:f6:5f:18:ae:08:9d:0e:f2:5a:71:7a:11:2c:5e:29:44: 14:92:9f:48:5e:ef:ce:63:d6:87:bf:9f:b7:55:c1:c1:70:4b: 73:79:70:01:c6:b4:5d:9e:be:18:1c:38:6f:fb:e0:d8:ca:9a: 6f:0c:c6:25:59:f9:8d:09:4d:01:2e:80:95:0c:81:7d:48:e2: af:e0:2b:09:fd:6d:98:d2:e0:8a:4d:fc:74:c5:1b:57:c4:7c: de:85:26:2d:f8:0d:82:a6:b9:3b:93:09:9f:38:2d:d2:70:bb: 0a:13:42:7b:ab:9e:9c:34:0e:18:3f:a7:6b:92:ac:cc:1b:25: a5:55:0b:ae:66:02:a7:bf:64:1c:3f:d3:a5:ac:28:d6:d1:d1: 71:d8:93:c3:04:d4:4e:08:fd:97:0c:20:42:25:bd:70:36:56: 34:62:43:ec:e9:f2:e7:0b:c5:ad:c1:79:81:7c:4c:fa:43:10: 08:55:3e:af:e0:ee:12:be:5c:30:a2:92:db:f8:92:ec:4b:8a: c0:1d:d1:73:ea:38:28:3e:ca:72:e8:2c:7d:45:18:29:9a:84: 5f:61:61:db:a3:7f:8b:cd:6c:f3:00:8e:40:96:0e:0b:6a:7d: b3:8b:38:81:61:90:4c:6e:03:0c:f1:a0:6a:55:ed:3c:20:6a: 07:f1:43:e2 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUBNmJf8opfjmMLy8etLYFMv+Js0QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDhEMDdGMDEwREEyODExMkE5NEU4ODAwQzMxN0I4REY3 RjFBQkY0MzAeFw0yNTA2MDIwMTU5NTNaFw0yNjA2MDEwMjA0NTNaMDMxMTAvBgNV BAMTKDg0NzI1QTk4Q0UzODRENURENjA4MjBCRDQ5QjJGQ0RDQjU2ODIzNUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTYYBwstJND2L5QtaQoM5hO3iO 3VlynikT6aIB1tYmGziRfgA5QzCmzSg1e03u+HscJBeqVbtj+qq6rV44YpJbDeEV NlLtYpejZIuCetICBDL6X94m1mZRVTtfAAf4bvAeaY7u+qxMnn6MZGUhnKzpUQCC hSJqQKcF0MlSaQE/AiRUcQQupFGSgBG8mOkYK8WuBHpvLVnYeh02fxrIDvKLIJQ8 L0lEsC975rD5spt5dFk3+XJSfgiyrmyKV6SMb4t2+mg0fk8Xe4BD9Icc6D+T8RZa 3CWLWUwi/UKYt6yP6uoA2ZMYp63JqYyjGADSqkMdZ3OgG1bF78mIaz+zDVazAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUhHJamM44TV3WCCC9SbL83LVoI14wHwYDVR0j BBgwFoAUCNB/AQ2igRKpTogAwxe4338av0MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MGMyYTEzYi0xZjQwLTRjMDMtYmMzNS1mNjk2MTUxNmQ0ZDkvMC8wOEQwN0YwMTBE QTI4MTEyQTk0RTg4MDBDMzE3QjhERjdGMUFCRjQzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDhEMDdGMDEwREEyODExMkE5NEU4ODAwQzMxN0I4REY3RjFB QkY0My5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzcwYzJhMTNiLTFmNDAtNGMwMy1i YzM1LWY2OTYxNTE2ZDRkOS8wLzMyMzAzMDMxM2E2NDY2MzIzYTY1MzgzODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM5MzkzOTM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8uiAMA0GCSqGSIb3DQEBCwUAA4IBAQAScvZfGK4InQ7yWnF6ESxeKUQUkp9IXu/O Y9aHv5+3VcHBcEtzeXABxrRdnr4YHDhv++DYyppvDMYlWfmNCU0BLoCVDIF9SOKv 4CsJ/W2Y0uCKTfx0xRtXxHzehSYt+A2Cprk7kwmfOC3ScLsKE0J7q56cNA4YP6dr kqzMGyWlVQuuZgKnv2QcP9OlrCjW0dFx2JPDBNROCP2XDCBCJb1wNlY0YkPs6fLn C8WtwXmBfEz6QxAIVT6v4O4SvlwwopLb+JLsS4rAHdFz6jgoPspy6Cx9RRgpmoRf YWHbo3+LzWzzAI5Alg4Lan2ziziBYZBMbgMM8aBqVe08IGoH8UPi -----END CERTIFICATE-----Generated at Sat Jun 7 12:36:44 2025 by rpki-client