$ rpki-client -vvf repo-rpki.idnic.net/repo/8b4f8511-07b3-4a61-bd04-2e665c9278fc/0/323030313a6466323a623230303a3a2f34382d3438203d3e203233363934.roa File: 323030313a6466323a623230303a3a2f34382d3438203d3e203233363934.roa (raw, json) Hash identifier: CbVKZtVYvVOggDO1uOKPHPfiUdMOnMjVJFDe5xCk8Yw= Subject key identifier: 95:3D:00:5D:A8:A4:87:AC:A0:41:EE:74:F9:F5:63:74:5B:57:A1:52 Certificate issuer: /CN=3E0D060F214DF8E6493243033EBD30ABD627ED36 Certificate serial: 5A59861B76331EBE5A82092F680EFDC7CC78851F Authority key identifier: 3E:0D:06:0F:21:4D:F8:E6:49:32:43:03:3E:BD:30:AB:D6:27:ED:36 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E0D060F214DF8E6493243033EBD30ABD627ED36.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8b4f8511-07b3-4a61-bd04-2e665c9278fc/0/323030313a6466323a623230303a3a2f34382d3438203d3e203233363934.roa Signing time: Thu 08 May 2025 11:00:01 +0000 ROA not before: Thu 08 May 2025 10:55:01 +0000 ROA not after: Thu 07 May 2026 11:00:01 +0000 asID: 23694 IP address blocks: 2001:df2:b200::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8b4f8511-07b3-4a61-bd04-2e665c9278fc/0/3E0D060F214DF8E6493243033EBD30ABD627ED36.crl rsync://repo-rpki.idnic.net/repo/8b4f8511-07b3-4a61-bd04-2e665c9278fc/0/3E0D060F214DF8E6493243033EBD30ABD627ED36.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E0D060F214DF8E6493243033EBD30ABD627ED36.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 04:32:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:59:86:1b:76:33:1e:be:5a:82:09:2f:68:0e:fd:c7:cc:78:85:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E0D060F214DF8E6493243033EBD30ABD627ED36 Validity Not Before: May 8 10:55:01 2025 GMT Not After : May 7 11:00:01 2026 GMT Subject: CN=953D005DA8A487ACA041EE74F9F563745B57A152 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:7f:8c:f4:fe:10:dd:63:94:61:7d:1f:9b:f6: f9:b3:5a:a9:d4:bc:1a:6a:f4:b0:c6:b7:bd:14:a2: 66:9c:41:26:49:c2:d3:19:09:90:85:34:7a:b5:eb: a0:10:5e:21:25:97:e0:6d:0d:78:e2:91:a9:94:b0: 50:f3:a7:23:21:e1:d4:19:fe:a2:33:b3:fa:68:21: eb:89:00:de:ad:b4:7e:37:86:ca:fb:9b:1f:84:c0: 1e:7f:da:49:12:18:e6:d5:e7:25:20:2a:aa:04:ea: 73:23:36:5b:d4:bf:37:c4:cf:fa:84:2c:f1:5c:b9: 9d:5e:ac:62:a3:97:1c:8e:63:5f:b7:05:67:d8:7e: 0d:94:25:47:97:d4:42:ac:59:38:d8:f8:19:49:1c: 55:36:78:04:46:3e:01:94:3d:c8:0d:f6:08:4b:ac: d0:6c:d4:6b:a5:5b:33:ef:23:ca:43:da:c4:40:27: 2e:21:7e:5b:d0:b7:9e:bd:c4:7a:2e:35:b9:b7:e7: 05:fe:b3:12:4c:12:11:c7:9f:4f:08:cc:72:0f:b3: 6c:e4:22:40:71:c0:1f:5a:4c:46:6f:9f:ca:3a:10: 12:11:01:84:3b:cd:98:d3:12:83:fd:af:7c:10:ea: 04:27:1a:e9:3e:48:01:79:c8:1d:52:1b:1f:59:6a: 1d:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:3D:00:5D:A8:A4:87:AC:A0:41:EE:74:F9:F5:63:74:5B:57:A1:52 X509v3 Authority Key Identifier: keyid:3E:0D:06:0F:21:4D:F8:E6:49:32:43:03:3E:BD:30:AB:D6:27:ED:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8b4f8511-07b3-4a61-bd04-2e665c9278fc/0/3E0D060F214DF8E6493243033EBD30ABD627ED36.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E0D060F214DF8E6493243033EBD30ABD627ED36.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8b4f8511-07b3-4a61-bd04-2e665c9278fc/0/323030313a6466323a623230303a3a2f34382d3438203d3e203233363934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:b200::/48 Signature Algorithm: sha256WithRSAEncryption b8:9e:52:39:b6:68:83:ac:19:28:03:2a:41:fe:a2:61:cb:65: f0:6e:0b:19:04:5c:03:1e:8d:8f:d6:a7:d5:fc:a1:1b:7f:e8: 23:3b:86:dd:a5:5c:11:b7:0c:d3:49:b9:1e:d2:44:e6:3a:f7: f3:09:74:f0:8c:bf:e0:8e:f9:49:09:d1:3f:79:34:e9:cc:68: 69:c4:26:d6:d9:fb:cc:06:92:92:20:17:b0:45:9c:46:ca:ac: 7f:ce:1c:88:c2:0b:17:f4:29:3c:19:91:36:19:2d:19:4f:3d: 72:72:2e:e9:53:2f:8d:ef:e7:cf:0e:f0:44:52:11:60:e6:0d: c2:ff:29:15:2c:ed:87:82:da:2c:fd:2b:39:da:92:89:6d:ec: 17:55:e4:bb:6b:ac:be:ec:b4:23:a8:68:bb:3a:06:bc:15:a3: af:5f:30:08:bf:0c:40:40:e8:2f:82:1b:53:b4:8a:6d:e1:eb: 53:ab:8e:c5:7b:12:09:da:68:2e:b9:65:90:29:a8:28:d4:e0: 57:91:92:0c:a4:a8:d0:28:d5:fc:18:32:5e:ba:5e:a5:8c:19: f0:4e:1c:b4:2e:1a:b4:eb:25:ab:bf:39:88:0e:09:63:11:6e: 73:c9:27:16:c6:f4:58:63:81:3d:8d:54:61:ec:55:41:2c:61: 7f:17:e0:c4 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUWlmGG3YzHr5aggkvaA79x8x4hR8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0UwRDA2MEYyMTRERjhFNjQ5MzI0MzAzM0VCRDMwQUJE NjI3RUQzNjAeFw0yNTA1MDgxMDU1MDFaFw0yNjA1MDcxMTAwMDFaMDMxMTAvBgNV BAMTKDk1M0QwMDVEQThBNDg3QUNBMDQxRUU3NEY5RjU2Mzc0NUI1N0ExNTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJf4z0/hDdY5RhfR+b9vmzWqnU vBpq9LDGt70UomacQSZJwtMZCZCFNHq166AQXiEll+BtDXjikamUsFDzpyMh4dQZ /qIzs/poIeuJAN6ttH43hsr7mx+EwB5/2kkSGObV5yUgKqoE6nMjNlvUvzfEz/qE LPFcuZ1erGKjlxyOY1+3BWfYfg2UJUeX1EKsWTjY+BlJHFU2eARGPgGUPcgN9ghL rNBs1GulWzPvI8pD2sRAJy4hflvQt569xHouNbm35wX+sxJMEhHHn08IzHIPs2zk IkBxwB9aTEZvn8o6EBIRAYQ7zZjTEoP9r3wQ6gQnGuk+SAF5yB1SGx9Zah2ZAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUlT0AXaikh6ygQe50+fVjdFtXoVIwHwYDVR0j BBgwFoAUPg0GDyFN+OZJMkMDPr0wq9Yn7TYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YjRmODUxMS0wN2IzLTRhNjEtYmQwNC0yZTY2NWM5Mjc4ZmMvMC8zRTBEMDYwRjIx NERGOEU2NDkzMjQzMDMzRUJEMzBBQkQ2MjdFRDM2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0UwRDA2MEYyMTRERjhFNjQ5MzI0MzAzM0VCRDMwQUJENjI3 RUQzNi5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhiNGY4NTExLTA3YjMtNGE2MS1i ZDA0LTJlNjY1YzkyNzhmYy8wLzMyMzAzMDMxM2E2NDY2MzIzYTYyMzIzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzIzMzM2MzkzNC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfKy ADANBgkqhkiG9w0BAQsFAAOCAQEAuJ5SObZog6wZKAMqQf6iYctl8G4LGQRcAx6N j9an1fyhG3/oIzuG3aVcEbcM00m5HtJE5jr38wl08Iy/4I75SQnRP3k06cxoacQm 1tn7zAaSkiAXsEWcRsqsf84ciMILF/QpPBmRNhktGU89cnIu6VMvje/nzw7wRFIR YOYNwv8pFSzth4LaLP0rOdqSiW3sF1Xku2usvuy0I6houzoGvBWjr18wCL8MQEDo L4IbU7SKbeHrU6uOxXsSCdpoLrllkCmoKNTgV5GSDKSo0CjV/BgyXrpepYwZ8E4c tC4atOslq785iA4JYxFuc8knFsb0WGOBPY1UYexVQSxhfxfgxA== -----END CERTIFICATE-----Generated at Thu Jun 5 18:34:43 2025 by rpki-client