$ rpki-client -vvf repo-rpki.idnic.net/repo/82d49179-4d8b-4d2d-abf4-43231deb5b01/0/323030313a6466323a353463303a3a2f34382d3438203d3e20313432333638.roa File: 323030313a6466323a353463303a3a2f34382d3438203d3e20313432333638.roa (raw, json) Hash identifier: ixLzAKntJwguG57KCkj7JdgNgdRNlMJvWELZH5FNYlE= Subject key identifier: 81:67:38:02:21:65:A7:59:13:37:D6:76:95:C7:DA:F0:3D:6B:41:EF Certificate issuer: /CN=3BA10823C279932D7573B930625CD2884433C744 Certificate serial: 2024D5A6FB04EDF7654C7AAAC0FC10D3DA7D5D2C Authority key identifier: 3B:A1:08:23:C2:79:93:2D:75:73:B9:30:62:5C:D2:88:44:33:C7:44 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3BA10823C279932D7573B930625CD2884433C744.cer Subject info access: rsync://repo-rpki.idnic.net/repo/82d49179-4d8b-4d2d-abf4-43231deb5b01/0/323030313a6466323a353463303a3a2f34382d3438203d3e20313432333638.roa Signing time: Sat 01 Mar 2025 08:00:00 +0000 ROA not before: Sat 01 Mar 2025 07:55:00 +0000 ROA not after: Sat 28 Feb 2026 08:00:00 +0000 asID: 142368 IP address blocks: 2001:df2:54c0::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/82d49179-4d8b-4d2d-abf4-43231deb5b01/0/3BA10823C279932D7573B930625CD2884433C744.crl rsync://repo-rpki.idnic.net/repo/82d49179-4d8b-4d2d-abf4-43231deb5b01/0/3BA10823C279932D7573B930625CD2884433C744.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3BA10823C279932D7573B930625CD2884433C744.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 11:00:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:24:d5:a6:fb:04:ed:f7:65:4c:7a:aa:c0:fc:10:d3:da:7d:5d:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3BA10823C279932D7573B930625CD2884433C744 Validity Not Before: Mar 1 07:55:00 2025 GMT Not After : Feb 28 08:00:00 2026 GMT Subject: CN=816738022165A7591337D67695C7DAF03D6B41EF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:01:79:54:a3:3b:2d:59:f3:0a:b9:27:40:c6: 17:3c:bc:e4:4f:b3:e2:3e:9b:c4:dc:b4:f1:cc:b6: 1b:34:e1:d7:2e:c2:0c:02:c2:83:83:62:ae:95:f9: 98:bd:d6:89:0c:5d:2b:7d:78:f6:b7:75:e0:e0:20: 9a:fe:28:31:6b:71:64:8f:49:9b:03:22:15:51:42: 5e:a7:88:8a:3d:94:e8:a8:85:00:9c:0b:98:d8:02: 37:69:df:0f:d5:7a:76:95:b7:1c:1f:8c:e9:26:08: f1:ca:16:27:ec:11:e6:3e:60:4d:8f:d6:4c:19:17: 46:4c:a0:5a:a6:26:a7:73:9e:b6:62:c0:b5:61:c6: fa:51:b6:ab:10:ae:17:3a:78:5c:81:3c:5c:a0:91: 67:a8:e3:00:28:27:d2:ca:3a:d3:fc:3c:f1:b1:12: fb:50:19:53:3d:6c:42:37:f6:61:ad:8d:b6:d1:38: 49:c7:5f:40:7a:05:b5:88:fc:5a:5d:9e:b3:14:0e: ce:da:4f:e8:3a:85:f5:5f:69:f7:af:66:ff:1b:b4: ec:de:14:57:05:cf:8f:99:64:c5:e2:c9:ad:0d:df: 5f:13:47:c8:74:94:44:24:a0:a0:d5:1f:14:7b:e8: 6e:7d:4e:00:6a:fa:66:7c:88:d3:20:ea:a8:75:42: e5:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:67:38:02:21:65:A7:59:13:37:D6:76:95:C7:DA:F0:3D:6B:41:EF X509v3 Authority Key Identifier: keyid:3B:A1:08:23:C2:79:93:2D:75:73:B9:30:62:5C:D2:88:44:33:C7:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/82d49179-4d8b-4d2d-abf4-43231deb5b01/0/3BA10823C279932D7573B930625CD2884433C744.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3BA10823C279932D7573B930625CD2884433C744.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/82d49179-4d8b-4d2d-abf4-43231deb5b01/0/323030313a6466323a353463303a3a2f34382d3438203d3e20313432333638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:54c0::/48 Signature Algorithm: sha256WithRSAEncryption a7:a4:d0:8c:21:28:6a:92:21:e3:7d:5f:25:63:a4:34:12:42: 39:74:4e:23:ac:80:b0:2d:19:15:6c:42:e8:98:b4:1d:22:b8: 3f:f6:01:9b:3c:52:ca:36:8b:f5:3b:ad:19:f3:0e:3d:8c:f7: 95:96:d2:43:af:59:6f:51:a7:67:9c:cf:53:05:73:ed:c6:a0: dd:d3:8c:00:46:29:5c:d6:c6:29:70:37:1e:bc:74:e5:ae:64: 43:d2:3e:53:fe:85:1d:40:26:9a:97:5f:cd:80:38:ed:2d:60: b3:dc:33:39:65:76:13:87:8a:a0:16:e5:f0:06:ce:57:d8:a0: 6a:dd:1f:c6:03:8b:e2:b6:48:e3:91:3e:c8:a9:fd:3a:e5:8c: c5:f0:a9:30:d5:bc:a6:33:69:03:51:c8:55:64:13:2c:ec:22: a5:07:e6:0a:2b:d4:36:33:bf:fe:70:c3:59:b3:82:f5:b1:33: 8b:f4:44:3a:d3:0b:33:e9:66:10:6a:61:46:58:4a:5e:0b:6d: 37:e6:0e:1e:51:3c:b9:4f:13:51:d1:24:6e:ea:16:0b:79:92: 70:a3:cd:b2:a0:49:76:94:f2:51:ff:a2:d8:da:ca:d5:79:c2: 23:ba:d5:9c:a1:81:93:aa:88:72:88:b5:c6:da:b7:f9:9e:a4: 63:9f:ca:19 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUICTVpvsE7fdlTHqqwPwQ09p9XSwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0JBMTA4MjNDMjc5OTMyRDc1NzNCOTMwNjI1Q0QyODg0 NDMzQzc0NDAeFw0yNTAzMDEwNzU1MDBaFw0yNjAyMjgwODAwMDBaMDMxMTAvBgNV BAMTKDgxNjczODAyMjE2NUE3NTkxMzM3RDY3Njk1QzdEQUYwM0Q2QjQxRUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGAXlUozstWfMKuSdAxhc8vORP s+I+m8TctPHMths04dcuwgwCwoODYq6V+Zi91okMXSt9ePa3deDgIJr+KDFrcWSP SZsDIhVRQl6niIo9lOiohQCcC5jYAjdp3w/VenaVtxwfjOkmCPHKFifsEeY+YE2P 1kwZF0ZMoFqmJqdznrZiwLVhxvpRtqsQrhc6eFyBPFygkWeo4wAoJ9LKOtP8PPGx EvtQGVM9bEI39mGtjbbROEnHX0B6BbWI/FpdnrMUDs7aT+g6hfVfafevZv8btOze FFcFz4+ZZMXiya0N318TR8h0lEQkoKDVHxR76G59TgBq+mZ8iNMg6qh1QuVjAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUgWc4AiFlp1kTN9Z2lcfa8D1rQe8wHwYDVR0j BBgwFoAUO6EII8J5ky11c7kwYlzSiEQzx0QwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MmQ0OTE3OS00ZDhiLTRkMmQtYWJmNC00MzIzMWRlYjViMDEvMC8zQkExMDgyM0My Nzk5MzJENzU3M0I5MzA2MjVDRDI4ODQ0MzNDNzQ0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0JBMTA4MjNDMjc5OTMyRDc1NzNCOTMwNjI1Q0QyODg0NDMz Qzc0NC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgyZDQ5MTc5LTRkOGItNGQyZC1h YmY0LTQzMjMxZGViNWIwMS8wLzMyMzAzMDMxM2E2NDY2MzIzYTM1MzQ2MzMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDMyMzMzNjM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8lTAMA0GCSqGSIb3DQEBCwUAA4IBAQCnpNCMIShqkiHjfV8lY6Q0EkI5dE4jrICw LRkVbELomLQdIrg/9gGbPFLKNov1O60Z8w49jPeVltJDr1lvUadnnM9TBXPtxqDd 04wARilc1sYpcDcevHTlrmRD0j5T/oUdQCaal1/NgDjtLWCz3DM5ZXYTh4qgFuXw Bs5X2KBq3R/GA4vitkjjkT7Iqf065YzF8Kkw1bymM2kDUchVZBMs7CKlB+YKK9Q2 M7/+cMNZs4L1sTOL9EQ60wsz6WYQamFGWEpeC2035g4eUTy5TxNR0SRu6hYLeZJw o82yoEl2lPJR/6LY2srVecIjutWcoYGTqohyiLXG2rf5nqRjn8oZ -----END CERTIFICATE-----Generated at Sun Apr 6 08:38:29 2025 by rpki-client