$ rpki-client -vvf repo-rpki.idnic.net/repo/918ad7a6-c907-4359-aba5-d5748ba16176/0/323030313a6466303a333330303a3a2f34382d3438203d3e20313333383339.roa File: 323030313a6466303a333330303a3a2f34382d3438203d3e20313333383339.roa (raw, json) Hash identifier: 4N6LRCptGvt5p5Z3fi0q5sQmHj3OTG0hHztRBZdu+t8= Subject key identifier: B2:5D:4E:5A:6E:EB:7A:FB:80:C2:EC:04:8A:AA:CE:33:5D:FF:4A:A3 Certificate issuer: /CN=C7D4D30314160FDACB9582CF972E90EC10AE206F Certificate serial: 1961627772BB5E12364F8181D645389DBADD289B Authority key identifier: C7:D4:D3:03:14:16:0F:DA:CB:95:82:CF:97:2E:90:EC:10:AE:20:6F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C7D4D30314160FDACB9582CF972E90EC10AE206F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/918ad7a6-c907-4359-aba5-d5748ba16176/0/323030313a6466303a333330303a3a2f34382d3438203d3e20313333383339.roa Signing time: Mon 02 Jun 2025 02:03:59 +0000 ROA not before: Mon 02 Jun 2025 01:58:59 +0000 ROA not after: Mon 01 Jun 2026 02:03:59 +0000 asID: 133839 IP address blocks: 2001:df0:3300::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/918ad7a6-c907-4359-aba5-d5748ba16176/0/C7D4D30314160FDACB9582CF972E90EC10AE206F.crl rsync://repo-rpki.idnic.net/repo/918ad7a6-c907-4359-aba5-d5748ba16176/0/C7D4D30314160FDACB9582CF972E90EC10AE206F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C7D4D30314160FDACB9582CF972E90EC10AE206F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 18:14:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:61:62:77:72:bb:5e:12:36:4f:81:81:d6:45:38:9d:ba:dd:28:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C7D4D30314160FDACB9582CF972E90EC10AE206F Validity Not Before: Jun 2 01:58:59 2025 GMT Not After : Jun 1 02:03:59 2026 GMT Subject: CN=B25D4E5A6EEB7AFB80C2EC048AAACE335DFF4AA3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:00:4a:a1:e9:99:21:7f:4b:52:5c:2d:dd:52: c4:6d:bf:b5:f4:19:fe:7f:23:d7:ea:cf:47:3c:63: 0b:50:a0:64:6d:21:e8:fc:d2:9f:18:f6:25:52:e1: fc:e7:df:38:2b:de:77:f1:20:12:01:05:9e:3b:88: fa:ea:ed:82:21:d7:3f:c6:05:c7:1f:d7:15:a9:62: 4d:d6:a1:f9:fd:26:69:01:cd:18:7d:d9:9e:d7:b9: ec:70:ff:8d:aa:fd:bb:3c:f5:e6:88:8e:57:36:f5: 81:9a:a1:1c:af:b5:9a:a0:06:99:89:4e:74:bc:5b: 13:9d:31:ce:7b:fd:86:12:0b:7c:40:e5:78:ff:86: 34:4c:99:c3:83:66:03:d3:d3:36:d1:df:ff:41:bf: 86:0b:68:8a:3f:f4:9d:75:85:0c:32:63:29:14:72: 74:69:eb:65:43:38:8e:10:8b:2a:0d:35:dd:7f:9a: 69:db:ff:a0:75:95:ae:d6:fa:2e:cf:04:06:e6:10: 13:0d:7b:5c:e7:5c:59:66:c0:ee:2d:df:99:8f:f7: 88:67:5b:c5:d4:95:e5:69:3e:a8:1e:d3:79:8a:73: 40:4e:5a:48:4d:af:b3:a2:12:31:2a:5a:1e:bb:b0: 7a:b2:80:ad:7f:4d:ce:e3:40:f6:51:d9:0b:88:a7: 52:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:5D:4E:5A:6E:EB:7A:FB:80:C2:EC:04:8A:AA:CE:33:5D:FF:4A:A3 X509v3 Authority Key Identifier: keyid:C7:D4:D3:03:14:16:0F:DA:CB:95:82:CF:97:2E:90:EC:10:AE:20:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/918ad7a6-c907-4359-aba5-d5748ba16176/0/C7D4D30314160FDACB9582CF972E90EC10AE206F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C7D4D30314160FDACB9582CF972E90EC10AE206F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/918ad7a6-c907-4359-aba5-d5748ba16176/0/323030313a6466303a333330303a3a2f34382d3438203d3e20313333383339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df0:3300::/48 Signature Algorithm: sha256WithRSAEncryption 1f:40:dc:b8:05:a6:bb:ed:a5:ad:ce:dc:5d:d0:fd:c4:58:06: a2:5b:3c:5c:cc:87:a3:ee:bc:4f:a7:28:45:c5:c1:62:2d:a8: 78:6b:e7:54:1a:a5:3b:3c:03:ea:c9:6e:5d:ab:62:d9:d4:64: 29:23:8b:4a:4e:fa:c4:e2:cc:29:fc:e2:ff:26:5c:a8:90:cc: d8:58:4e:5f:4a:76:64:02:ab:d7:23:9d:03:a8:f6:eb:a7:b8: d8:f4:6c:76:4a:a2:d7:f9:98:5d:1e:43:50:af:d1:f9:a3:eb: ae:bc:1c:30:af:aa:39:0b:c1:a6:bb:3e:08:95:e0:01:49:2a: 82:c4:d6:e1:35:b4:dc:cf:d1:79:54:fa:7d:bb:5d:28:84:b1: e6:6a:7a:58:48:b1:f8:55:5c:f8:ce:78:93:92:98:81:b1:c2: 38:ce:cc:4f:8e:25:a7:55:f3:8d:07:0a:8e:e4:78:25:ce:a1: 98:da:64:a3:43:da:57:bd:3e:ab:91:ba:31:7f:77:4e:d0:0b: bd:6d:81:d8:68:75:d5:20:d0:06:9a:e2:2a:43:9d:9b:bd:52: fc:c7:47:58:52:ff:28:bb:57:d5:58:46:16:bd:39:69:03:88: 25:5f:2b:22:c6:b0:70:2d:8e:76:42:a2:db:ad:a0:46:3c:8c: 18:a3:75:1d -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUGWFid3K7XhI2T4GB1kU4nbrdKJswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzdENEQzMDMxNDE2MEZEQUNCOTU4MkNGOTcyRTkwRUMx MEFFMjA2RjAeFw0yNTA2MDIwMTU4NTlaFw0yNjA2MDEwMjAzNTlaMDMxMTAvBgNV BAMTKEIyNUQ0RTVBNkVFQjdBRkI4MEMyRUMwNDhBQUFDRTMzNURGRjRBQTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZAEqh6Zkhf0tSXC3dUsRtv7X0 Gf5/I9fqz0c8YwtQoGRtIej80p8Y9iVS4fzn3zgr3nfxIBIBBZ47iPrq7YIh1z/G Bccf1xWpYk3Wofn9JmkBzRh92Z7Xuexw/42q/bs89eaIjlc29YGaoRyvtZqgBpmJ TnS8WxOdMc57/YYSC3xA5Xj/hjRMmcODZgPT0zbR3/9Bv4YLaIo/9J11hQwyYykU cnRp62VDOI4QiyoNNd1/mmnb/6B1la7W+i7PBAbmEBMNe1znXFlmwO4t35mP94hn W8XUleVpPqge03mKc0BOWkhNr7OiEjEqWh67sHqygK1/Tc7jQPZR2QuIp1LhAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUsl1OWm7revuAwuwEiqrOM13/SqMwHwYDVR0j BBgwFoAUx9TTAxQWD9rLlYLPly6Q7BCuIG8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MThhZDdhNi1jOTA3LTQzNTktYWJhNS1kNTc0OGJhMTYxNzYvMC9DN0Q0RDMwMzE0 MTYwRkRBQ0I5NTgyQ0Y5NzJFOTBFQzEwQUUyMDZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzdENEQzMDMxNDE2MEZEQUNCOTU4MkNGOTcyRTkwRUMxMEFF MjA2Ri5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkxOGFkN2E2LWM5MDctNDM1OS1h YmE1LWQ1NzQ4YmExNjE3Ni8wLzMyMzAzMDMxM2E2NDY2MzAzYTMzMzMzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzMzMzgzMzM5LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8DMAMA0GCSqGSIb3DQEBCwUAA4IBAQAfQNy4Baa77aWtztxd0P3EWAaiWzxczIej 7rxPpyhFxcFiLah4a+dUGqU7PAPqyW5dq2LZ1GQpI4tKTvrE4swp/OL/JlyokMzY WE5fSnZkAqvXI50DqPbrp7jY9Gx2SqLX+ZhdHkNQr9H5o+uuvBwwr6o5C8Gmuz4I leABSSqCxNbhNbTcz9F5VPp9u10ohLHmanpYSLH4VVz4zniTkpiBscI4zsxPjiWn VfONBwqO5HglzqGY2mSjQ9pXvT6rkboxf3dO0Au9bYHYaHXVINAGmuIqQ52bvVL8 x0dYUv8ou1fVWEYWvTlpA4glXysixrBwLY52QqLbraBGPIwYo3Ud -----END CERTIFICATE-----Generated at Fri Jun 6 17:13:41 2025 by rpki-client