$ rpki-client -vvf repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/323430343a326363303a3a2f33322d3438203d3e20313331373336.roa File: 323430343a326363303a3a2f33322d3438203d3e20313331373336.roa (raw, json) Hash identifier: h8DSOqlAB7DM5TJQosNDXf2STLaxOgc/wT91U1wd/Qs= Subject key identifier: 4F:22:C4:AF:AF:4B:81:22:45:D0:F2:3E:21:F2:42:15:B9:6C:10:51 Certificate issuer: /CN=DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A Certificate serial: 0EDC1D2262CADE0149C5C9800E791846194E9156 Authority key identifier: DF:8E:F2:99:4C:B5:42:09:F2:C2:A3:9A:7B:CE:7D:A0:D9:C3:4E:4A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/323430343a326363303a3a2f33322d3438203d3e20313331373336.roa Signing time: Thu 15 May 2025 10:00:01 +0000 ROA not before: Thu 15 May 2025 09:55:01 +0000 ROA not after: Thu 14 May 2026 10:00:01 +0000 asID: 131736 IP address blocks: 2404:2cc0::/32 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.crl rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 07:45:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:dc:1d:22:62:ca:de:01:49:c5:c9:80:0e:79:18:46:19:4e:91:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A Validity Not Before: May 15 09:55:01 2025 GMT Not After : May 14 10:00:01 2026 GMT Subject: CN=4F22C4AFAF4B812245D0F23E21F24215B96C1051 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:d6:ba:45:48:ce:45:d9:76:29:a0:d6:45:ab: 26:1b:1f:21:16:e5:b8:e3:00:91:73:21:1d:ed:c8: 98:da:71:15:32:ed:42:70:91:f6:58:39:33:5e:20: e1:9f:97:9e:f0:10:bb:3c:1d:95:21:f0:ac:a9:8b: 57:9a:d4:ab:c9:f9:17:50:0a:24:a6:7b:6d:a3:0b: 7f:57:10:03:2e:f5:56:dc:18:b3:1e:5f:fc:c4:50: d0:80:78:ae:93:df:95:a3:5e:97:67:3c:8a:44:b6: 22:b9:66:55:9b:ee:a3:d7:7a:21:30:d5:bd:af:fe: 6e:82:8f:33:30:31:08:c5:20:71:36:a3:1a:d8:99: 1a:5b:9a:8e:52:c4:2c:18:0c:b6:77:1e:ee:5b:a3: 1b:79:58:7b:b2:5a:c4:db:19:63:57:bb:06:5d:6e: ee:5d:35:1d:ee:13:03:d8:c2:cf:80:33:d4:fa:ea: de:0f:88:42:68:ee:c1:7f:01:a2:80:3e:8a:e3:29: c5:d5:90:5e:b7:0d:d8:60:8a:a6:ee:2a:ff:ce:f7: 6d:cc:ab:6a:d9:e3:7c:7f:91:fa:d6:ee:ed:e0:92: 10:e0:7d:c8:33:bb:ec:e4:8e:e6:e9:fe:13:41:1f: 4a:94:23:f8:66:56:6f:de:6d:d5:0a:7a:3a:9a:13: db:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:22:C4:AF:AF:4B:81:22:45:D0:F2:3E:21:F2:42:15:B9:6C:10:51 X509v3 Authority Key Identifier: keyid:DF:8E:F2:99:4C:B5:42:09:F2:C2:A3:9A:7B:CE:7D:A0:D9:C3:4E:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF8EF2994CB54209F2C2A39A7BCE7DA0D9C34E4A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/925cda36-693a-4c1a-ba9e-e0e178112140/0/323430343a326363303a3a2f33322d3438203d3e20313331373336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2404:2cc0::/32 Signature Algorithm: sha256WithRSAEncryption 69:04:45:86:0f:dd:4a:fd:31:37:8e:65:32:34:7b:38:89:43: 35:31:91:fc:1a:6d:2f:ed:b6:89:00:bf:87:96:db:40:d1:70: 8b:1b:ed:c2:95:6c:31:f6:e7:80:30:00:d4:63:5c:0b:b1:dd: 01:2b:0b:e4:8c:80:1a:ae:4f:ba:29:12:82:05:8b:a3:f0:20: 01:60:fd:47:0d:f5:8b:3e:dd:a9:a5:ee:f4:99:f6:2f:38:27: f0:40:1b:24:9d:a0:cf:b2:95:27:f3:a6:1b:d9:34:a8:3f:62: 6a:6d:98:1d:f7:cf:ed:aa:1b:71:d4:af:db:ba:f8:52:f9:c7: b4:75:16:1f:46:9e:73:45:a5:36:b5:fd:5b:0e:9d:f4:b2:ef: f0:0b:97:71:11:bd:ef:aa:ce:03:b8:09:ac:b0:db:f1:ff:64: df:5e:42:a6:79:c1:10:47:79:0d:b9:fc:39:9f:3d:60:cc:c1: d6:50:8e:2e:77:38:15:fb:d8:9c:1c:ee:a6:67:53:70:1e:39: 2a:0a:06:13:8b:5a:58:00:a9:f2:01:a6:d3:97:9c:42:4c:88: 7e:75:a8:8c:2e:45:eb:ee:41:09:cf:53:3b:43:7b:04:0d:b0: c7:a5:43:e3:c4:d2:47:bd:bd:e3:d8:3a:19:70:64:75:02:3f: 4d:60:a2:54 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUDtwdImLK3gFJxcmADnkYRhlOkVYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREY4RUYyOTk0Q0I1NDIwOUYyQzJBMzlBN0JDRTdEQTBE OUMzNEU0QTAeFw0yNTA1MTUwOTU1MDFaFw0yNjA1MTQxMDAwMDFaMDMxMTAvBgNV BAMTKDRGMjJDNEFGQUY0QjgxMjI0NUQwRjIzRTIxRjI0MjE1Qjk2QzEwNTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA1rpFSM5F2XYpoNZFqyYbHyEW 5bjjAJFzIR3tyJjacRUy7UJwkfZYOTNeIOGfl57wELs8HZUh8Kypi1ea1KvJ+RdQ CiSme22jC39XEAMu9VbcGLMeX/zEUNCAeK6T35WjXpdnPIpEtiK5ZlWb7qPXeiEw 1b2v/m6CjzMwMQjFIHE2oxrYmRpbmo5SxCwYDLZ3Hu5boxt5WHuyWsTbGWNXuwZd bu5dNR3uEwPYws+AM9T66t4PiEJo7sF/AaKAPorjKcXVkF63DdhgiqbuKv/O923M q2rZ43x/kfrW7u3gkhDgfcgzu+zkjubp/hNBH0qUI/hmVm/ebdUKejqaE9vfAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUTyLEr69LgSJF0PI+IfJCFblsEFEwHwYDVR0j BBgwFoAU347ymUy1QgnywqOae859oNnDTkowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MjVjZGEzNi02OTNhLTRjMWEtYmE5ZS1lMGUxNzgxMTIxNDAvMC9ERjhFRjI5OTRD QjU0MjA5RjJDMkEzOUE3QkNFN0RBMEQ5QzM0RTRBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREY4RUYyOTk0Q0I1NDIwOUYyQzJBMzlBN0JDRTdEQTBEOUMz NEU0QS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkyNWNkYTM2LTY5M2EtNGMxYS1i YTllLWUwZTE3ODExMjE0MC8wLzMyMzQzMDM0M2EzMjYzNjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzMTM3MzMzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQELMAwDQYJKoZI hvcNAQELBQADggEBAGkERYYP3Ur9MTeOZTI0eziJQzUxkfwabS/ttokAv4eW20DR cIsb7cKVbDH254AwANRjXAux3QErC+SMgBquT7opEoIFi6PwIAFg/UcN9Ys+3aml 7vSZ9i84J/BAGySdoM+ylSfzphvZNKg/YmptmB33z+2qG3HUr9u6+FL5x7R1Fh9G nnNFpTa1/VsOnfSy7/ALl3ERve+qzgO4Cayw2/H/ZN9eQqZ5wRBHeQ25/DmfPWDM wdZQji53OBX72Jwc7qZnU3AeOSoKBhOLWlgAqfIBptOXnEJMiH51qIwuRevuQQnP UztDewQNsMelQ+PE0ke9vePYOhlwZHUCP01golQ= -----END CERTIFICATE-----Generated at Thu Jun 5 19:13:25 2025 by rpki-client