$ rpki-client -vvf repo-rpki.idnic.net/repo/a124aa8c-dedc-4376-9381-0a81e6bcc564/0/323030313a6466333a373130303a3a2f34382d3438203d3e20313336383638.roa File: 323030313a6466333a373130303a3a2f34382d3438203d3e20313336383638.roa (raw, json) Hash identifier: gxzjhOqlSfyvVQV8GuZutKZCxMRY+U2lIgUsJNuDYjo= Subject key identifier: 59:48:1B:77:DF:7B:2B:68:0E:7E:94:FC:60:EF:E5:E2:7F:0D:51:E7 Certificate issuer: /CN=4DF415D2DB760C39855B3F3D9CF3CE441A783E36 Certificate serial: 0C28A88177CCE7C601F61BF78B978D013C8E158B Authority key identifier: 4D:F4:15:D2:DB:76:0C:39:85:5B:3F:3D:9C:F3:CE:44:1A:78:3E:36 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF415D2DB760C39855B3F3D9CF3CE441A783E36.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a124aa8c-dedc-4376-9381-0a81e6bcc564/0/323030313a6466333a373130303a3a2f34382d3438203d3e20313336383638.roa Signing time: Mon 02 Jun 2025 01:02:37 +0000 ROA not before: Mon 02 Jun 2025 00:57:37 +0000 ROA not after: Mon 01 Jun 2026 01:02:37 +0000 asID: 136868 IP address blocks: 2001:df3:7100::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a124aa8c-dedc-4376-9381-0a81e6bcc564/0/4DF415D2DB760C39855B3F3D9CF3CE441A783E36.crl rsync://repo-rpki.idnic.net/repo/a124aa8c-dedc-4376-9381-0a81e6bcc564/0/4DF415D2DB760C39855B3F3D9CF3CE441A783E36.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF415D2DB760C39855B3F3D9CF3CE441A783E36.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 17:32:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:28:a8:81:77:cc:e7:c6:01:f6:1b:f7:8b:97:8d:01:3c:8e:15:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DF415D2DB760C39855B3F3D9CF3CE441A783E36 Validity Not Before: Jun 2 00:57:37 2025 GMT Not After : Jun 1 01:02:37 2026 GMT Subject: CN=59481B77DF7B2B680E7E94FC60EFE5E27F0D51E7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:58:66:e6:57:ce:2a:b8:fb:41:01:5f:79:49: 9c:62:2d:b5:4e:9f:6f:28:b1:1c:35:31:98:ea:6c: b3:3b:c1:29:23:41:78:db:b1:7a:7b:ad:c7:e6:8a: 5a:96:9c:b3:93:c9:e4:7e:18:96:cf:a5:c0:8c:02: 1e:8b:6f:d5:17:bc:ff:61:04:72:3d:f3:ff:8a:da: 46:81:7a:d9:0d:5d:32:08:79:67:e9:81:76:fb:fe: 19:95:33:55:bb:2b:2c:31:9d:4c:b9:86:5d:ce:d8: dd:36:94:5d:d4:d2:58:0d:f9:d4:77:9b:57:da:38: de:e9:71:13:88:9d:43:62:83:8e:41:95:0c:ef:d7: e2:e1:f2:a4:fc:8b:fc:33:b7:2f:3b:f8:32:13:6d: fc:36:41:85:7a:33:53:9b:93:18:ec:ca:f0:59:47: 8a:b1:21:b9:66:d1:48:67:19:0d:da:ba:88:8f:3d: 4b:06:b8:e6:34:a4:1a:4b:31:af:46:3f:53:bc:ae: 5f:50:49:11:4b:f5:71:7f:66:42:20:58:b4:13:ea: 54:a7:a8:8d:46:7e:e7:ab:31:7f:d1:50:3a:b5:c3: 6c:78:a9:d8:c2:c9:b1:7a:4f:47:3e:76:8a:20:2b: e3:4b:28:b0:2d:69:f1:18:88:6a:fa:6c:4a:1e:44: 4b:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:48:1B:77:DF:7B:2B:68:0E:7E:94:FC:60:EF:E5:E2:7F:0D:51:E7 X509v3 Authority Key Identifier: keyid:4D:F4:15:D2:DB:76:0C:39:85:5B:3F:3D:9C:F3:CE:44:1A:78:3E:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a124aa8c-dedc-4376-9381-0a81e6bcc564/0/4DF415D2DB760C39855B3F3D9CF3CE441A783E36.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF415D2DB760C39855B3F3D9CF3CE441A783E36.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a124aa8c-dedc-4376-9381-0a81e6bcc564/0/323030313a6466333a373130303a3a2f34382d3438203d3e20313336383638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:7100::/48 Signature Algorithm: sha256WithRSAEncryption 9a:39:69:15:e2:86:ab:ee:60:00:2f:d5:f4:23:b2:b6:cc:ac: 80:cd:7c:ec:d8:1b:f6:70:87:3e:cc:18:d0:c8:e3:94:a4:d9: 33:91:03:28:e3:7f:cd:27:53:1c:90:8a:ed:f2:e8:39:11:04: 9e:44:97:e2:fe:09:16:f5:67:bd:99:10:2a:e5:4f:0d:7c:fe: 4f:25:00:89:f9:eb:2b:dc:38:4d:71:8d:25:50:0d:0e:61:bd: 6e:7a:e9:37:2f:8f:af:b8:4c:0f:86:f3:71:51:3c:1e:69:24: 8c:3d:54:f1:7f:3a:fd:b3:ad:0f:90:b9:de:37:39:e1:f0:36: 92:30:fd:da:4e:c2:f5:c7:47:e7:3d:2e:54:6d:fd:53:8a:ed: b2:a8:2e:38:65:09:60:58:26:3c:53:04:40:a3:09:65:75:72: d6:0a:24:af:3d:71:bd:34:52:33:44:34:52:78:1b:1f:02:01: d6:b6:c2:80:59:23:99:6b:f7:0f:b6:59:06:0b:97:a2:87:2f: 01:59:57:0f:a2:d8:77:56:12:47:c7:88:a0:11:84:3f:26:47: ce:ba:54:c6:50:7a:2f:48:16:08:3a:e9:73:13:85:af:a2:8a: 1d:7a:e8:d2:51:d8:df:83:43:b1:70:76:0e:06:d4:7a:85:12: 69:f1:47:78 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUDCiogXfM58YB9hv3i5eNATyOFYswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERGNDE1RDJEQjc2MEMzOTg1NUIzRjNEOUNGM0NFNDQx QTc4M0UzNjAeFw0yNTA2MDIwMDU3MzdaFw0yNjA2MDEwMTAyMzdaMDMxMTAvBgNV BAMTKDU5NDgxQjc3REY3QjJCNjgwRTdFOTRGQzYwRUZFNUUyN0YwRDUxRTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0WGbmV84quPtBAV95SZxiLbVO n28osRw1MZjqbLM7wSkjQXjbsXp7rcfmilqWnLOTyeR+GJbPpcCMAh6Lb9UXvP9h BHI98/+K2kaBetkNXTIIeWfpgXb7/hmVM1W7KywxnUy5hl3O2N02lF3U0lgN+dR3 m1faON7pcROInUNig45BlQzv1+Lh8qT8i/wzty87+DITbfw2QYV6M1ObkxjsyvBZ R4qxIblm0UhnGQ3auoiPPUsGuOY0pBpLMa9GP1O8rl9QSRFL9XF/ZkIgWLQT6lSn qI1GfuerMX/RUDq1w2x4qdjCybF6T0c+doogK+NLKLAtafEYiGr6bEoeREvxAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUWUgbd997K2gOfpT8YO/l4n8NUecwHwYDVR0j BBgwFoAUTfQV0tt2DDmFWz89nPPORBp4PjYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTI0YWE4Yy1kZWRjLTQzNzYtOTM4MS0wYTgxZTZiY2M1NjQvMC80REY0MTVEMkRC NzYwQzM5ODU1QjNGM0Q5Q0YzQ0U0NDFBNzgzRTM2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNERGNDE1RDJEQjc2MEMzOTg1NUIzRjNEOUNGM0NFNDQxQTc4 M0UzNi5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ExMjRhYThjLWRlZGMtNDM3Ni05 MzgxLTBhODFlNmJjYzU2NC8wLzMyMzAzMDMxM2E2NDY2MzMzYTM3MzEzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzMzM2MzgzNjM4LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 83EAMA0GCSqGSIb3DQEBCwUAA4IBAQCaOWkV4oar7mAAL9X0I7K2zKyAzXzs2Bv2 cIc+zBjQyOOUpNkzkQMo43/NJ1MckIrt8ug5EQSeRJfi/gkW9We9mRAq5U8NfP5P JQCJ+esr3DhNcY0lUA0OYb1ueuk3L4+vuEwPhvNxUTweaSSMPVTxfzr9s60PkLne Nznh8DaSMP3aTsL1x0fnPS5Ubf1Tiu2yqC44ZQlgWCY8UwRAowlldXLWCiSvPXG9 NFIzRDRSeBsfAgHWtsKAWSOZa/cPtlkGC5eihy8BWVcPoth3VhJHx4igEYQ/JkfO ulTGUHovSBYIOulzE4WvooodeujSUdjfg0OxcHYOBtR6hRJp8Ud4 -----END CERTIFICATE-----Generated at Sun Jun 8 06:12:58 2025 by rpki-client