$ rpki-client -vvf repo-rpki.idnic.net/repo/90652bc6-8bb6-4f26-88b1-380dac18e268/0/323030313a6466343a386230303a3a2f34382d3438203d3e20313337333235.roa File: 323030313a6466343a386230303a3a2f34382d3438203d3e20313337333235.roa (raw, json) Hash identifier: DF3AVMFkkHthZsKMcu2e1oc5wU3JAvdlvToRf4vXYY0= Subject key identifier: 0A:95:D6:61:D7:D2:09:50:EF:81:79:EC:E3:66:B4:65:28:88:00:2B Certificate issuer: /CN=9CA6DB3A7AC14D26875264793FB5D488BCF01F45 Certificate serial: 0A2A9E20401528BEE26E51B5BFFD26101445CC07 Authority key identifier: 9C:A6:DB:3A:7A:C1:4D:26:87:52:64:79:3F:B5:D4:88:BC:F0:1F:45 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9CA6DB3A7AC14D26875264793FB5D488BCF01F45.cer Subject info access: rsync://repo-rpki.idnic.net/repo/90652bc6-8bb6-4f26-88b1-380dac18e268/0/323030313a6466343a386230303a3a2f34382d3438203d3e20313337333235.roa Signing time: Mon 02 Jun 2025 02:04:55 +0000 ROA not before: Mon 02 Jun 2025 01:59:55 +0000 ROA not after: Mon 01 Jun 2026 02:04:55 +0000 asID: 137325 IP address blocks: 2001:df4:8b00::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/90652bc6-8bb6-4f26-88b1-380dac18e268/0/9CA6DB3A7AC14D26875264793FB5D488BCF01F45.crl rsync://repo-rpki.idnic.net/repo/90652bc6-8bb6-4f26-88b1-380dac18e268/0/9CA6DB3A7AC14D26875264793FB5D488BCF01F45.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9CA6DB3A7AC14D26875264793FB5D488BCF01F45.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 20:50:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:2a:9e:20:40:15:28:be:e2:6e:51:b5:bf:fd:26:10:14:45:cc:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9CA6DB3A7AC14D26875264793FB5D488BCF01F45 Validity Not Before: Jun 2 01:59:55 2025 GMT Not After : Jun 1 02:04:55 2026 GMT Subject: CN=0A95D661D7D20950EF8179ECE366B4652888002B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:5c:6a:fd:84:4c:09:2e:17:a7:fe:d6:8a:91: ea:23:eb:34:cc:d9:40:82:46:c2:fa:9c:81:2c:c7: d5:cb:83:ee:5a:26:f2:de:3d:88:72:db:53:40:13: b7:a4:dd:83:22:b6:9e:29:3d:69:d9:c1:91:3a:1e: 59:26:84:f6:df:bc:44:8f:09:ec:b2:7a:c0:f7:a9: 2c:b0:e5:3e:d2:90:46:2d:9a:66:41:1f:c5:03:64: c7:ab:86:70:0f:a7:02:ce:d1:53:b8:76:eb:b8:ca: 0f:63:68:7d:8e:48:ff:a1:57:45:a3:57:df:ae:04: 21:2b:62:d6:45:56:a4:b6:fe:86:0d:0d:f8:0f:4d: 8d:fc:2f:fb:61:7e:a9:f4:0d:32:bd:12:9f:d7:01: eb:4a:09:e3:be:4f:c8:a9:a6:97:30:58:17:34:bf: a5:4b:0b:b3:e1:30:e2:c9:77:41:11:a4:38:20:19: a4:09:91:3c:f7:ff:78:e6:43:34:26:35:ec:58:86: cf:db:a9:87:be:e8:76:b6:ce:61:00:0f:9d:e5:52: 4c:b7:7f:ab:f4:f6:95:fe:a5:36:2a:28:58:44:d1: 76:f5:c7:95:c4:5f:27:1c:91:4c:7c:49:aa:66:91: 06:ca:73:73:64:1b:78:7b:04:8f:ba:b0:0a:4f:9b: 4a:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:95:D6:61:D7:D2:09:50:EF:81:79:EC:E3:66:B4:65:28:88:00:2B X509v3 Authority Key Identifier: keyid:9C:A6:DB:3A:7A:C1:4D:26:87:52:64:79:3F:B5:D4:88:BC:F0:1F:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/90652bc6-8bb6-4f26-88b1-380dac18e268/0/9CA6DB3A7AC14D26875264793FB5D488BCF01F45.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9CA6DB3A7AC14D26875264793FB5D488BCF01F45.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/90652bc6-8bb6-4f26-88b1-380dac18e268/0/323030313a6466343a386230303a3a2f34382d3438203d3e20313337333235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:8b00::/48 Signature Algorithm: sha256WithRSAEncryption 22:00:0f:70:7f:a1:60:72:07:d8:ed:43:f9:02:73:bf:0a:d1: 24:a5:52:d5:84:40:9b:56:20:a4:6a:d5:e2:15:be:b2:a8:9a: 87:37:65:15:98:75:8e:3e:4e:ed:1e:1e:80:cc:3e:48:eb:fa: e4:37:13:83:6d:bb:7a:62:e4:f9:e2:12:8b:86:8a:02:1c:cc: e0:61:36:fa:3e:3e:ff:90:d3:45:64:dd:2a:0c:c3:65:0c:cc: 3b:a5:4b:9d:ee:3a:de:c7:e8:5b:f3:44:75:18:31:1d:2c:fe: fe:cc:fe:f0:94:6d:8e:6e:14:6e:8e:2d:11:25:ed:b0:b1:24: 0c:6a:33:69:29:55:c6:1f:9c:dc:13:24:85:cf:fc:4f:42:01: 2b:ae:bf:d7:44:4d:2d:ff:6c:58:b9:52:06:0e:6c:1b:3d:26: 9c:bb:76:d5:8f:36:4f:90:80:18:88:16:8b:76:ba:9b:e7:28: d1:83:8b:93:81:f6:39:c7:d3:44:60:07:64:d6:9a:6f:2c:30: fb:09:f3:aa:84:25:e1:84:85:a8:d0:cb:16:b8:80:02:3d:17: 41:b2:f3:bc:19:13:ec:7e:aa:e5:72:6c:d3:53:32:1a:5d:27: be:7c:8f:81:ea:16:97:39:c8:c0:6a:01:9c:59:f7:f0:bd:e5: 9d:4c:13:f6 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUCiqeIEAVKL7iblG1v/0mEBRFzAcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUNBNkRCM0E3QUMxNEQyNjg3NTI2NDc5M0ZCNUQ0ODhC Q0YwMUY0NTAeFw0yNTA2MDIwMTU5NTVaFw0yNjA2MDEwMjA0NTVaMDMxMTAvBgNV BAMTKDBBOTVENjYxRDdEMjA5NTBFRjgxNzlFQ0UzNjZCNDY1Mjg4ODAwMkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLXGr9hEwJLhen/taKkeoj6zTM 2UCCRsL6nIEsx9XLg+5aJvLePYhy21NAE7ek3YMitp4pPWnZwZE6HlkmhPbfvESP CeyyesD3qSyw5T7SkEYtmmZBH8UDZMerhnAPpwLO0VO4duu4yg9jaH2OSP+hV0Wj V9+uBCErYtZFVqS2/oYNDfgPTY38L/thfqn0DTK9Ep/XAetKCeO+T8ipppcwWBc0 v6VLC7PhMOLJd0ERpDggGaQJkTz3/3jmQzQmNexYhs/bqYe+6Ha2zmEAD53lUky3 f6v09pX+pTYqKFhE0Xb1x5XEXycckUx8SapmkQbKc3NkG3h7BI+6sApPm0rhAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUCpXWYdfSCVDvgXns42a0ZSiIACswHwYDVR0j BBgwFoAUnKbbOnrBTSaHUmR5P7XUiLzwH0UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MDY1MmJjNi04YmI2LTRmMjYtODhiMS0zODBkYWMxOGUyNjgvMC85Q0E2REIzQTdB QzE0RDI2ODc1MjY0NzkzRkI1RDQ4OEJDRjAxRjQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUNBNkRCM0E3QUMxNEQyNjg3NTI2NDc5M0ZCNUQ0ODhCQ0Yw MUY0NS5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkwNjUyYmM2LThiYjYtNGYyNi04 OGIxLTM4MGRhYzE4ZTI2OC8wLzMyMzAzMDMxM2E2NDY2MzQzYTM4NjIzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM3MzMzMjM1LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 9IsAMA0GCSqGSIb3DQEBCwUAA4IBAQAiAA9wf6FgcgfY7UP5AnO/CtEkpVLVhECb ViCkatXiFb6yqJqHN2UVmHWOPk7tHh6AzD5I6/rkNxODbbt6YuT54hKLhooCHMzg YTb6Pj7/kNNFZN0qDMNlDMw7pUud7jrex+hb80R1GDEdLP7+zP7wlG2ObhRuji0R Je2wsSQMajNpKVXGH5zcEySFz/xPQgErrr/XRE0t/2xYuVIGDmwbPSacu3bVjzZP kIAYiBaLdrqb5yjRg4uTgfY5x9NEYAdk1ppvLDD7CfOqhCXhhIWo0MsWuIACPRdB svO8GRPsfqrlcmzTUzIaXSe+fI+B6haXOcjAagGcWffwveWdTBP2 -----END CERTIFICATE-----Generated at Fri Jun 6 17:03:36 2025 by rpki-client