$ rpki-client -vvf repo-rpki.idnic.net/repo/96bb333c-982b-4fce-ac81-bc069229e243/0/323030313a6466333a6330303a3a2f34382d3438203d3e203633383732.roa File: 323030313a6466333a6330303a3a2f34382d3438203d3e203633383732.roa (raw, json) Hash identifier: DbPoZnzVJDn8t1MnQ7X+537hTvhkD/yKBSWUNPseJA0= Subject key identifier: 46:D0:FD:20:66:2B:8D:B1:E0:96:9F:2B:D1:D3:8B:E5:17:33:C3:6B Certificate issuer: /CN=6D6BAEDBFDBBAA46BF3DA2185570771627BE7B19 Certificate serial: 11DBDFE5467E6B829EC0F4FF37F716DB01A5E382 Authority key identifier: 6D:6B:AE:DB:FD:BB:AA:46:BF:3D:A2:18:55:70:77:16:27:BE:7B:19 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6D6BAEDBFDBBAA46BF3DA2185570771627BE7B19.cer Subject info access: rsync://repo-rpki.idnic.net/repo/96bb333c-982b-4fce-ac81-bc069229e243/0/323030313a6466333a6330303a3a2f34382d3438203d3e203633383732.roa Signing time: Mon 02 Jun 2025 02:04:50 +0000 ROA not before: Mon 02 Jun 2025 01:59:50 +0000 ROA not after: Mon 01 Jun 2026 02:04:50 +0000 asID: 63872 IP address blocks: 2001:df3:c00::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/96bb333c-982b-4fce-ac81-bc069229e243/0/6D6BAEDBFDBBAA46BF3DA2185570771627BE7B19.crl rsync://repo-rpki.idnic.net/repo/96bb333c-982b-4fce-ac81-bc069229e243/0/6D6BAEDBFDBBAA46BF3DA2185570771627BE7B19.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6D6BAEDBFDBBAA46BF3DA2185570771627BE7B19.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 13:58:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:db:df:e5:46:7e:6b:82:9e:c0:f4:ff:37:f7:16:db:01:a5:e3:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6D6BAEDBFDBBAA46BF3DA2185570771627BE7B19 Validity Not Before: Jun 2 01:59:50 2025 GMT Not After : Jun 1 02:04:50 2026 GMT Subject: CN=46D0FD20662B8DB1E0969F2BD1D38BE51733C36B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:4c:e7:b4:7d:96:b9:92:fc:e6:81:2e:75:32: f4:bc:a1:c0:12:9a:79:e2:dd:9c:5b:87:51:cd:56: 99:5a:59:c2:a0:cf:6a:29:9c:43:68:65:9b:07:ae: 84:74:50:4e:4a:7d:5f:0c:3a:a4:7a:c8:05:8b:fd: e5:2b:a6:a2:2d:a7:9d:14:cd:af:4b:c9:78:8b:86: a4:00:e2:3b:84:41:a9:20:05:37:aa:b0:66:aa:00: 03:6e:0c:9e:b5:4b:7f:b0:ef:ce:70:cc:b2:2f:85: 6e:fe:c9:d2:77:ee:5d:d2:ae:31:89:56:a1:81:f7: a2:b2:11:26:35:ca:f4:08:21:01:61:e3:56:4d:8e: b4:4d:ef:09:0c:93:f3:e3:fd:38:8f:5e:85:4c:80: fd:ac:41:0e:34:f3:64:c8:93:e3:85:2f:50:e1:55: a3:a6:f3:1d:78:31:59:97:5f:1a:26:22:81:9d:1b: 25:4a:7c:0a:b0:2c:21:97:29:0b:83:e8:11:29:ab: 28:68:62:f3:5f:c5:05:f9:ee:bb:39:41:d5:f7:40: cb:e9:41:c6:84:4c:9c:0b:b6:0b:e5:40:01:a2:09: 0b:d7:28:89:22:e3:83:07:9f:18:f8:f1:68:ed:31: 21:51:64:12:42:5f:ee:ee:db:e8:f1:e9:a3:5f:e8: d6:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:D0:FD:20:66:2B:8D:B1:E0:96:9F:2B:D1:D3:8B:E5:17:33:C3:6B X509v3 Authority Key Identifier: keyid:6D:6B:AE:DB:FD:BB:AA:46:BF:3D:A2:18:55:70:77:16:27:BE:7B:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/96bb333c-982b-4fce-ac81-bc069229e243/0/6D6BAEDBFDBBAA46BF3DA2185570771627BE7B19.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6D6BAEDBFDBBAA46BF3DA2185570771627BE7B19.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/96bb333c-982b-4fce-ac81-bc069229e243/0/323030313a6466333a6330303a3a2f34382d3438203d3e203633383732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:c00::/48 Signature Algorithm: sha256WithRSAEncryption 0d:dd:fa:93:2c:a4:4e:d5:6b:b0:57:9e:ce:02:22:21:8c:c5: ba:1d:29:39:e3:f4:7d:de:41:f2:70:d1:f1:a4:d3:63:6c:33: 62:05:06:06:37:f4:bc:56:ed:2b:ad:0a:56:f4:e2:6b:35:ee: 75:7f:7f:7a:8d:7e:8d:81:62:f5:b3:d4:4a:46:25:11:23:fd: fd:da:58:a7:fe:d3:71:66:88:94:28:d9:8d:49:e7:db:e0:bf: bf:58:cc:13:d9:75:66:40:0a:ec:fd:84:c7:36:5f:f1:2d:46: f8:92:83:7c:43:06:5f:dd:17:8c:81:ea:f8:aa:b1:d1:95:18: 53:30:7e:6a:2e:f7:f9:4d:c0:ed:c5:da:2f:c9:a8:40:b2:1c: 8d:c2:10:2a:1d:f6:0d:c7:e1:54:94:9d:87:9e:fe:68:68:e0: 0c:6d:2b:cf:66:b8:ae:7f:ae:20:9c:96:ae:ff:d3:7e:af:ad: 5e:62:dd:6d:54:2e:0c:69:62:69:20:bd:ae:35:2c:8a:16:6b: bf:64:47:aa:9c:7b:95:06:ee:31:4e:87:3b:54:4e:dc:33:8f: 8f:35:90:db:64:42:7c:a2:8c:41:40:d9:7c:01:b4:75:6f:bf: 18:b3:11:28:b6:bf:3a:74:f7:ce:a2:b1:27:be:82:e2:5d:83: 60:d1:3b:ee -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgIUEdvf5UZ+a4KewPT/N/cW2wGl44IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkQ2QkFFREJGREJCQUE0NkJGM0RBMjE4NTU3MDc3MTYy N0JFN0IxOTAeFw0yNTA2MDIwMTU5NTBaFw0yNjA2MDEwMjA0NTBaMDMxMTAvBgNV BAMTKDQ2RDBGRDIwNjYyQjhEQjFFMDk2OUYyQkQxRDM4QkU1MTczM0MzNkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmTOe0fZa5kvzmgS51MvS8ocAS mnni3Zxbh1HNVplaWcKgz2opnENoZZsHroR0UE5KfV8MOqR6yAWL/eUrpqItp50U za9LyXiLhqQA4juEQakgBTeqsGaqAANuDJ61S3+w785wzLIvhW7+ydJ37l3SrjGJ VqGB96KyESY1yvQIIQFh41ZNjrRN7wkMk/Pj/TiPXoVMgP2sQQ4082TIk+OFL1Dh VaOm8x14MVmXXxomIoGdGyVKfAqwLCGXKQuD6BEpqyhoYvNfxQX57rs5QdX3QMvp QcaETJwLtgvlQAGiCQvXKIki44MHnxj48WjtMSFRZBJCX+7u2+jx6aNf6Na9AgMB AAGjggI5MIICNTAdBgNVHQ4EFgQURtD9IGYrjbHglp8r0dOL5Rczw2swHwYDVR0j BBgwFoAUbWuu2/27qka/PaIYVXB3Fie+exkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NmJiMzMzYy05ODJiLTRmY2UtYWM4MS1iYzA2OTIyOWUyNDMvMC82RDZCQUVEQkZE QkJBQTQ2QkYzREEyMTg1NTcwNzcxNjI3QkU3QjE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkQ2QkFFREJGREJCQUE0NkJGM0RBMjE4NTU3MDc3MTYyN0JF N0IxOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk2YmIzMzNjLTk4MmItNGZjZS1h YzgxLWJjMDY5MjI5ZTI0My8wLzMyMzAzMDMxM2E2NDY2MzMzYTYzMzAzMDNhM2Ey ZjM0MzgyZDM0MzgyMDNkM2UyMDM2MzMzODM3MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAgAQ3zDAAw DQYJKoZIhvcNAQELBQADggEBAA3d+pMspE7Va7BXns4CIiGMxbodKTnj9H3eQfJw 0fGk02NsM2IFBgY39LxW7SutClb04ms17nV/f3qNfo2BYvWz1EpGJREj/f3aWKf+ 03FmiJQo2Y1J59vgv79YzBPZdWZACuz9hMc2X/EtRviSg3xDBl/dF4yB6viqsdGV GFMwfmou9/lNwO3F2i/JqECyHI3CECod9g3H4VSUnYee/mho4AxtK89muK5/riCc lq7/036vrV5i3W1ULgxpYmkgva41LIoWa79kR6qce5UG7jFOhztUTtwzj481kNtk QnyijEFA2XwBtHVvvxizESi2vzp0986isSe+guJdg2DRO+4= -----END CERTIFICATE-----Generated at Sat Jun 7 23:07:11 2025 by rpki-client