$ rpki-client -vvf repo-rpki.idnic.net/repo/7cf01ec6-8e89-402a-90c7-50c6f14cd242/1/323030313a6466333a643934303a3a2f34382d3438203d3e20313532373732.roa File: 323030313a6466333a643934303a3a2f34382d3438203d3e20313532373732.roa (raw, json) Hash identifier: VG6+4O5llgQnLe8B6hYlDtcuv5x9Z/46JdLy5SPzH+0= Subject key identifier: 78:2B:19:72:27:56:51:1D:62:ED:A5:BE:F5:53:1A:97:60:F3:EA:4F Certificate issuer: /CN=798A229C42DA54D0690064D264AA7AA2375D0419 Certificate serial: 22F29FE7806E126986A2A84D3B765294E4289ACB Authority key identifier: 79:8A:22:9C:42:DA:54:D0:69:00:64:D2:64:AA:7A:A2:37:5D:04:19 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/798A229C42DA54D0690064D264AA7AA2375D0419.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7cf01ec6-8e89-402a-90c7-50c6f14cd242/1/323030313a6466333a643934303a3a2f34382d3438203d3e20313532373732.roa Signing time: Sun 18 May 2025 18:00:02 +0000 ROA not before: Sun 18 May 2025 17:55:02 +0000 ROA not after: Sun 17 May 2026 18:00:02 +0000 asID: 152772 IP address blocks: 2001:df3:d940::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7cf01ec6-8e89-402a-90c7-50c6f14cd242/1/798A229C42DA54D0690064D264AA7AA2375D0419.crl rsync://repo-rpki.idnic.net/repo/7cf01ec6-8e89-402a-90c7-50c6f14cd242/1/798A229C42DA54D0690064D264AA7AA2375D0419.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/798A229C42DA54D0690064D264AA7AA2375D0419.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:43:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:f2:9f:e7:80:6e:12:69:86:a2:a8:4d:3b:76:52:94:e4:28:9a:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=798A229C42DA54D0690064D264AA7AA2375D0419 Validity Not Before: May 18 17:55:02 2025 GMT Not After : May 17 18:00:02 2026 GMT Subject: CN=782B19722756511D62EDA5BEF5531A9760F3EA4F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:32:49:2d:27:47:75:ec:84:c5:a1:8a:da:fd: 95:d1:da:e5:0b:5d:7e:cc:bf:ca:84:0a:b1:69:9d: 56:a9:36:a6:5c:5c:36:70:8c:09:bb:32:8d:60:9f: 56:92:e7:de:1f:cf:86:c2:b7:ad:71:4b:d8:b3:7e: 8a:91:3c:48:1f:a7:5f:62:7a:77:98:4b:4a:97:55: 55:03:56:3e:b3:6f:2d:d6:b0:83:6e:73:3e:c6:e8: 52:8b:c4:a1:71:d3:af:6d:7c:ca:d7:35:e9:f9:e9: dc:5c:44:1c:5e:f0:af:25:bb:45:77:51:d8:02:80: 2d:ea:77:4e:6c:b0:5c:60:30:39:33:a5:45:9f:87: ab:48:1e:9c:e2:af:7f:61:e7:d0:e4:2f:1a:c6:0c: dc:32:b8:83:f7:7b:e0:30:b6:69:72:dc:8e:5f:d8: 19:68:2c:39:3e:10:a7:da:fd:e3:1c:c6:10:78:3d: 7d:40:88:f4:51:d0:2b:89:6b:a6:0d:3c:3a:9b:80: 8b:b1:5e:c4:51:59:98:3b:49:7d:46:05:97:33:88: e5:b6:4f:b4:5c:12:4c:df:79:2c:0e:7f:9b:8e:09: cd:b9:ab:02:fb:d1:d0:0d:89:18:97:8f:61:9c:36: 86:e9:d7:09:fa:5c:cf:34:8b:60:e5:e2:d8:3f:60: c1:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:2B:19:72:27:56:51:1D:62:ED:A5:BE:F5:53:1A:97:60:F3:EA:4F X509v3 Authority Key Identifier: keyid:79:8A:22:9C:42:DA:54:D0:69:00:64:D2:64:AA:7A:A2:37:5D:04:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7cf01ec6-8e89-402a-90c7-50c6f14cd242/1/798A229C42DA54D0690064D264AA7AA2375D0419.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/798A229C42DA54D0690064D264AA7AA2375D0419.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7cf01ec6-8e89-402a-90c7-50c6f14cd242/1/323030313a6466333a643934303a3a2f34382d3438203d3e20313532373732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:d940::/48 Signature Algorithm: sha256WithRSAEncryption 64:37:e8:29:93:68:f3:90:43:8a:e6:6f:51:94:95:7a:e6:68: 3a:f8:29:4d:fa:08:3a:ee:b8:1c:83:87:1c:cf:0b:6a:64:19: 88:e9:ab:ba:ba:c3:24:90:b9:06:9d:2f:01:91:9d:63:38:4f: 93:53:81:5e:2b:da:8a:d1:58:15:f8:5e:1d:72:d9:17:f4:56: 39:00:f7:a7:6e:fa:6b:34:f3:70:4a:3a:ad:09:ee:93:87:2d: 14:15:e0:63:38:6d:0d:78:f3:92:29:36:ef:5f:1d:a4:89:80: d5:f8:10:e7:55:11:21:91:8a:dd:91:94:94:58:ed:6e:ce:f0: 7f:37:60:8e:1d:bd:13:21:b2:98:05:97:ba:17:fa:54:7f:2a: fe:fe:9b:88:4d:f5:35:87:1e:b2:85:1b:91:bb:a8:05:61:7d: e8:48:93:47:f1:b9:65:b2:ad:d3:41:32:1f:0b:7c:58:02:9a: 3f:a3:92:c5:76:43:40:62:a1:1a:4f:56:02:ff:69:f0:cc:40: 66:c1:3f:6f:19:4e:69:64:51:d1:24:77:56:cf:a3:39:7a:38: 4a:4c:8f:c3:4a:b7:59:1f:8a:62:9f:20:28:0a:3f:59:3d:60: 28:b8:84:af:71:7e:12:df:bb:d0:dd:cb:c9:df:64:29:3e:40: db:96:91:e3 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUIvKf54BuEmmGoqhNO3ZSlOQomsswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzk4QTIyOUM0MkRBNTREMDY5MDA2NEQyNjRBQTdBQTIz NzVEMDQxOTAeFw0yNTA1MTgxNzU1MDJaFw0yNjA1MTcxODAwMDJaMDMxMTAvBgNV BAMTKDc4MkIxOTcyMjc1NjUxMUQ2MkVEQTVCRUY1NTMxQTk3NjBGM0VBNEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpMkktJ0d17ITFoYra/ZXR2uUL XX7Mv8qECrFpnVapNqZcXDZwjAm7Mo1gn1aS594fz4bCt61xS9izfoqRPEgfp19i eneYS0qXVVUDVj6zby3WsINucz7G6FKLxKFx069tfMrXNen56dxcRBxe8K8lu0V3 UdgCgC3qd05ssFxgMDkzpUWfh6tIHpzir39h59DkLxrGDNwyuIP3e+Awtmly3I5f 2BloLDk+EKfa/eMcxhB4PX1AiPRR0CuJa6YNPDqbgIuxXsRRWZg7SX1GBZcziOW2 T7RcEkzfeSwOf5uOCc25qwL70dANiRiXj2GcNobp1wn6XM80i2Dl4tg/YMF1AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUeCsZcidWUR1i7aW+9VMal2Dz6k8wHwYDVR0j BBgwFoAUeYoinELaVNBpAGTSZKp6ojddBBkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 Y2YwMWVjNi04ZTg5LTQwMmEtOTBjNy01MGM2ZjE0Y2QyNDIvMS83OThBMjI5QzQy REE1NEQwNjkwMDY0RDI2NEFBN0FBMjM3NUQwNDE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzk4QTIyOUM0MkRBNTREMDY5MDA2NEQyNjRBQTdBQTIzNzVE MDQxOS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdjZjAxZWM2LThlODktNDAyYS05 MGM3LTUwYzZmMTRjZDI0Mi8xLzMyMzAzMDMxM2E2NDY2MzMzYTY0MzkzNDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNTMyMzczNzMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 89lAMA0GCSqGSIb3DQEBCwUAA4IBAQBkN+gpk2jzkEOK5m9RlJV65mg6+ClN+gg6 7rgcg4cczwtqZBmI6au6usMkkLkGnS8BkZ1jOE+TU4FeK9qK0VgV+F4dctkX9FY5 APenbvprNPNwSjqtCe6Thy0UFeBjOG0NePOSKTbvXx2kiYDV+BDnVREhkYrdkZSU WO1uzvB/N2COHb0TIbKYBZe6F/pUfyr+/puITfU1hx6yhRuRu6gFYX3oSJNH8bll sq3TQTIfC3xYApo/o5LFdkNAYqEaT1YC/2nwzEBmwT9vGU5pZFHRJHdWz6M5ejhK TI/DSrdZH4pinyAoCj9ZPWAouISvcX4S37vQ3cvJ32QpPkDblpHj -----END CERTIFICATE-----Generated at Thu Jun 5 18:39:45 2025 by rpki-client