$ rpki-client -vvf repo-rpki.idnic.net/repo/a758c80e-a328-4f8c-a03f-91c3c26214a2/0/323030313a6466343a336230303a3a2f34382d3438203d3e203535363838.roa File: 323030313a6466343a336230303a3a2f34382d3438203d3e203535363838.roa (raw, json) Hash identifier: ejfVv9si1K2MpeXhh8zMJGLdHAeeV0dhSQaga8rtoCM= Subject key identifier: CB:21:88:07:4C:1E:D8:AF:B7:4A:1D:40:73:29:DE:DF:EC:1C:56:47 Certificate issuer: /CN=ACC3D79AB1BEF62BC0095B6F6AC3F3446AA90353 Certificate serial: 0BB8CB2D611C3C3C59B9E3770C0E8C2214A95703 Authority key identifier: AC:C3:D7:9A:B1:BE:F6:2B:C0:09:5B:6F:6A:C3:F3:44:6A:A9:03:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ACC3D79AB1BEF62BC0095B6F6AC3F3446AA90353.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a758c80e-a328-4f8c-a03f-91c3c26214a2/0/323030313a6466343a336230303a3a2f34382d3438203d3e203535363838.roa Signing time: Mon 02 Jun 2025 01:02:48 +0000 ROA not before: Mon 02 Jun 2025 00:57:48 +0000 ROA not after: Mon 01 Jun 2026 01:02:48 +0000 asID: 55688 IP address blocks: 2001:df4:3b00::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a758c80e-a328-4f8c-a03f-91c3c26214a2/0/ACC3D79AB1BEF62BC0095B6F6AC3F3446AA90353.crl rsync://repo-rpki.idnic.net/repo/a758c80e-a328-4f8c-a03f-91c3c26214a2/0/ACC3D79AB1BEF62BC0095B6F6AC3F3446AA90353.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ACC3D79AB1BEF62BC0095B6F6AC3F3446AA90353.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 10:32:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:b8:cb:2d:61:1c:3c:3c:59:b9:e3:77:0c:0e:8c:22:14:a9:57:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ACC3D79AB1BEF62BC0095B6F6AC3F3446AA90353 Validity Not Before: Jun 2 00:57:48 2025 GMT Not After : Jun 1 01:02:48 2026 GMT Subject: CN=CB2188074C1ED8AFB74A1D407329DEDFEC1C5647 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:02:45:bf:1b:08:08:9d:e5:d8:87:0e:15:0e: 2f:d5:27:89:58:67:57:e6:2c:c8:d8:f6:ca:ba:52: d7:5f:ed:3f:b4:00:e3:2a:21:da:d6:e8:a4:1f:90: bc:74:79:14:22:fb:15:ec:ad:13:ff:e0:9a:72:2b: 01:4e:be:e0:6d:48:e0:ef:eb:ec:75:c8:c5:f9:ee: 3f:bb:0f:c9:7a:e6:98:84:ba:79:aa:18:d4:4f:e0: 1e:b0:14:4a:72:f8:d1:c9:95:55:b4:7f:ed:6b:49: 10:1f:b0:db:56:d9:13:12:fc:7a:12:4b:2e:cc:00: 47:2f:01:e9:8b:ae:4e:a7:27:d5:1c:6d:8d:2b:c3: 51:04:bf:4e:11:b5:40:0a:40:bf:5a:fa:2e:19:35: 56:51:15:df:36:2c:7b:2b:22:73:ce:b8:21:cc:2d: da:86:47:bf:bd:00:bc:97:51:f1:fc:cd:f7:f5:40: 49:54:4c:37:da:66:fb:2f:4b:8d:b7:62:98:0c:c5: 37:f9:6c:8b:c1:db:34:59:cc:ad:7d:d2:2b:be:f3: 73:18:d4:51:2f:54:a2:b6:2f:19:2a:b2:b2:59:36: 8f:7e:58:a7:f3:45:f8:cc:31:cc:06:ac:a8:85:57: 35:30:f0:cb:3f:23:6f:8e:7d:2d:90:11:ad:30:30: 51:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:21:88:07:4C:1E:D8:AF:B7:4A:1D:40:73:29:DE:DF:EC:1C:56:47 X509v3 Authority Key Identifier: keyid:AC:C3:D7:9A:B1:BE:F6:2B:C0:09:5B:6F:6A:C3:F3:44:6A:A9:03:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a758c80e-a328-4f8c-a03f-91c3c26214a2/0/ACC3D79AB1BEF62BC0095B6F6AC3F3446AA90353.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/ACC3D79AB1BEF62BC0095B6F6AC3F3446AA90353.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a758c80e-a328-4f8c-a03f-91c3c26214a2/0/323030313a6466343a336230303a3a2f34382d3438203d3e203535363838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:3b00::/48 Signature Algorithm: sha256WithRSAEncryption 09:1c:0c:52:0e:99:1e:1f:49:7b:9b:e1:bd:c4:cd:64:c5:31: 2d:f9:86:96:94:c2:f5:37:e9:51:76:2e:a2:73:35:c7:1a:c7: 4c:8f:0d:1f:9c:51:26:45:62:bd:90:7a:da:43:05:d7:7a:2d: 74:5f:6b:17:7f:c6:e4:e0:22:7b:ea:0d:95:ce:f8:7f:2e:3e: c4:8c:fb:c9:e3:15:8c:6b:c1:47:8f:91:53:8f:ff:10:bc:a3: 02:05:23:ef:4f:d4:02:53:50:33:8f:38:7d:98:6c:0b:32:a3: e9:fd:4a:cb:a7:21:77:cd:17:e9:0d:e5:11:bb:ee:a1:6d:07: cc:c0:ec:1a:9b:59:d2:b7:51:05:44:ce:32:74:dc:4f:bb:db: 3e:b8:4a:2f:54:97:7c:ca:9a:10:ef:7b:33:dd:5e:4b:6f:80: af:56:17:5c:f0:e8:f6:eb:f0:95:2b:5d:d3:8f:32:a9:7f:49: 3b:80:19:bf:f8:03:ad:4c:02:e6:f7:ff:2e:ba:c8:c0:76:1f: 44:ab:64:e4:8b:8f:5f:20:c2:ee:c4:a2:28:e7:1c:33:8d:69: d2:e0:75:95:eb:ce:33:5e:ee:33:70:e1:0b:af:79:a2:0b:ab: 88:7a:18:e1:ea:9d:b6:62:7d:8a:f5:33:f2:01:ed:fe:05:03: be:7d:bc:d4 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgIUC7jLLWEcPDxZueN3DA6MIhSpVwMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUNDM0Q3OUFCMUJFRjYyQkMwMDk1QjZGNkFDM0YzNDQ2 QUE5MDM1MzAeFw0yNTA2MDIwMDU3NDhaFw0yNjA2MDEwMTAyNDhaMDMxMTAvBgNV BAMTKENCMjE4ODA3NEMxRUQ4QUZCNzRBMUQ0MDczMjlERURGRUMxQzU2NDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/AkW/GwgIneXYhw4VDi/VJ4lY Z1fmLMjY9sq6Utdf7T+0AOMqIdrW6KQfkLx0eRQi+xXsrRP/4JpyKwFOvuBtSODv 6+x1yMX57j+7D8l65piEunmqGNRP4B6wFEpy+NHJlVW0f+1rSRAfsNtW2RMS/HoS Sy7MAEcvAemLrk6nJ9UcbY0rw1EEv04RtUAKQL9a+i4ZNVZRFd82LHsrInPOuCHM LdqGR7+9ALyXUfH8zff1QElUTDfaZvsvS423YpgMxTf5bIvB2zRZzK190iu+83MY 1FEvVKK2LxkqsrJZNo9+WKfzRfjMMcwGrKiFVzUw8Ms/I2+OfS2QEa0wMFEfAgMB AAGjggI7MIICNzAdBgNVHQ4EFgQUyyGIB0we2K+3Sh1Acyne3+wcVkcwHwYDVR0j BBgwFoAUrMPXmrG+9ivACVtvasPzRGqpA1MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NzU4YzgwZS1hMzI4LTRmOGMtYTAzZi05MWMzYzI2MjE0YTIvMC9BQ0MzRDc5QUIx QkVGNjJCQzAwOTVCNkY2QUMzRjM0NDZBQTkwMzUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUNDM0Q3OUFCMUJFRjYyQkMwMDk1QjZGNkFDM0YzNDQ2QUE5 MDM1My5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3NThjODBlLWEzMjgtNGY4Yy1h MDNmLTkxYzNjMjYyMTRhMi8wLzMyMzAzMDMxM2E2NDY2MzQzYTMzNjIzMDMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzNTM2MzgzOC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABDfQ7 ADANBgkqhkiG9w0BAQsFAAOCAQEACRwMUg6ZHh9Je5vhvcTNZMUxLfmGlpTC9Tfp UXYuonM1xxrHTI8NH5xRJkVivZB62kMF13otdF9rF3/G5OAie+oNlc74fy4+xIz7 yeMVjGvBR4+RU4//ELyjAgUj70/UAlNQM484fZhsCzKj6f1Ky6chd80X6Q3lEbvu oW0HzMDsGptZ0rdRBUTOMnTcT7vbPrhKL1SXfMqaEO97M91eS2+Ar1YXXPDo9uvw lStd048yqX9JO4AZv/gDrUwC5vf/LrrIwHYfRKtk5IuPXyDC7sSiKOccM41p0uB1 levOM17uM3DhC695oguriHoY4eqdtmJ9ivUz8gHt/gUDvn281A== -----END CERTIFICATE-----Generated at Thu Jun 5 18:12:48 2025 by rpki-client