$ rpki-client -vvf repo-rpki.idnic.net/repo/a844e1b2-93c6-48ae-96cc-ed83829f5a20/0/323030313a6466333a663738303a3a2f34382d3438203d3e20313431303532.roa File: 323030313a6466333a663738303a3a2f34382d3438203d3e20313431303532.roa (raw, json) Hash identifier: aCyW8NmDjZMCh2+G52q/vKX95rKhz1Ux4WduaPd1TnU= Subject key identifier: 91:C0:BF:B5:B8:4B:2B:2E:12:4F:22:71:34:60:FA:33:3F:54:C2:6F Certificate issuer: /CN=56091C1067601EE93D3C4D25CDA071DC6C463934 Certificate serial: 6238074941ADDB82D2289EF83DB359F7BBD090ED Authority key identifier: 56:09:1C:10:67:60:1E:E9:3D:3C:4D:25:CD:A0:71:DC:6C:46:39:34 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/56091C1067601EE93D3C4D25CDA071DC6C463934.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a844e1b2-93c6-48ae-96cc-ed83829f5a20/0/323030313a6466333a663738303a3a2f34382d3438203d3e20313431303532.roa Signing time: Thu 28 Aug 2025 11:00:00 +0000 ROA not before: Thu 28 Aug 2025 10:55:00 +0000 ROA not after: Thu 27 Aug 2026 11:00:00 +0000 asID: 141052 IP address blocks: 2001:df3:f780::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a844e1b2-93c6-48ae-96cc-ed83829f5a20/0/56091C1067601EE93D3C4D25CDA071DC6C463934.crl rsync://repo-rpki.idnic.net/repo/a844e1b2-93c6-48ae-96cc-ed83829f5a20/0/56091C1067601EE93D3C4D25CDA071DC6C463934.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/56091C1067601EE93D3C4D25CDA071DC6C463934.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 20:44:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:38:07:49:41:ad:db:82:d2:28:9e:f8:3d:b3:59:f7:bb:d0:90:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=56091C1067601EE93D3C4D25CDA071DC6C463934 Validity Not Before: Aug 28 10:55:00 2025 GMT Not After : Aug 27 11:00:00 2026 GMT Subject: CN=91C0BFB5B84B2B2E124F22713460FA333F54C26F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:66:c5:52:77:c6:0c:cb:ef:42:ae:97:38:0d: ee:d3:60:ee:05:82:71:32:3f:89:40:9a:a1:b1:41: 1b:9d:89:70:31:66:2f:d6:a9:5e:ae:fd:64:cf:b7: ab:92:ec:f6:c2:44:c2:a7:5e:e8:5b:f5:cb:79:0e: 45:b9:28:95:e4:16:09:79:9e:33:1d:9c:76:42:21: 03:e6:1f:8d:37:62:a7:c9:92:47:86:61:1d:41:69: 24:fc:40:5f:81:70:b1:1c:b1:87:e5:90:41:cc:68: 19:3d:fd:f8:b6:db:b1:f3:9e:cc:a5:96:03:d1:70: 0a:26:b9:8c:cf:d3:24:67:96:c8:18:94:65:3e:97: 06:36:26:5a:5f:5f:7e:f4:f9:6f:e0:d6:94:69:e3: 8a:6d:7c:30:f4:52:a1:99:b3:06:d1:ee:cc:96:57: 90:fd:b5:56:a4:16:8b:7c:29:c4:c9:54:2d:58:77: 44:23:0a:89:fc:c1:14:61:75:c9:26:bb:df:73:e9: 6a:e7:7b:20:a5:3e:e0:a6:ac:2b:79:0b:d2:f0:82: 23:8c:63:48:4a:78:75:47:94:cd:c8:df:0a:3f:0e: a9:1f:8d:f6:d8:b3:3a:7b:4c:07:f0:5d:a9:22:b5: 08:b5:17:c1:77:f0:3c:55:70:d4:0c:d3:39:ab:e1: 9b:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:C0:BF:B5:B8:4B:2B:2E:12:4F:22:71:34:60:FA:33:3F:54:C2:6F X509v3 Authority Key Identifier: keyid:56:09:1C:10:67:60:1E:E9:3D:3C:4D:25:CD:A0:71:DC:6C:46:39:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a844e1b2-93c6-48ae-96cc-ed83829f5a20/0/56091C1067601EE93D3C4D25CDA071DC6C463934.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/56091C1067601EE93D3C4D25CDA071DC6C463934.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a844e1b2-93c6-48ae-96cc-ed83829f5a20/0/323030313a6466333a663738303a3a2f34382d3438203d3e20313431303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:f780::/48 Signature Algorithm: sha256WithRSAEncryption 36:bd:7f:7d:bd:6b:dc:04:50:2e:cc:23:1f:71:ae:94:ab:49: d6:39:92:fd:e4:2d:c3:9c:94:cf:5b:03:8d:98:6f:07:8c:b8: f1:ba:f3:77:56:f7:23:ed:63:b7:cf:fe:20:c3:db:13:b5:2e: dd:fd:8d:78:0d:5d:e7:f5:75:61:b1:1b:3e:aa:a3:5c:e8:91: 74:9e:11:12:89:c9:0b:17:39:d7:f2:f9:3c:2e:f6:a0:c3:0e: 19:7b:4f:ba:a7:e7:fd:1b:86:32:47:72:70:d7:66:e3:6f:86: 30:9d:d2:1d:66:3e:63:b5:95:ce:83:db:69:cc:fd:45:ca:a9: 5e:d1:98:f6:76:be:a2:14:75:87:d9:1a:48:78:11:64:05:b5: 74:75:fa:e5:86:f4:b1:b0:4e:9b:67:c5:21:f6:79:3a:ea:ff: fc:70:e5:f0:74:49:87:05:e3:00:a1:5a:9c:7a:58:69:70:19: b8:27:85:ae:fb:0f:31:c3:e7:bb:c5:b9:76:b9:cc:f1:dd:f2: ff:8d:1f:6b:f1:52:66:9f:61:c8:8c:0c:98:17:04:8c:2d:cc: 94:0f:24:88:7e:b9:5d:22:ca:72:54:f4:09:d6:34:40:4d:b3: 4e:9f:95:ad:3e:99:5a:c2:f3:50:cb:17:63:13:e8:2b:fb:42: 49:b5:83:fa -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUYjgHSUGt24LSKJ74PbNZ97vQkO0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTYwOTFDMTA2NzYwMUVFOTNEM0M0RDI1Q0RBMDcxREM2 QzQ2MzkzNDAeFw0yNTA4MjgxMDU1MDBaFw0yNjA4MjcxMTAwMDBaMDMxMTAvBgNV BAMTKDkxQzBCRkI1Qjg0QjJCMkUxMjRGMjI3MTM0NjBGQTMzM0Y1NEMyNkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5ZsVSd8YMy+9Crpc4De7TYO4F gnEyP4lAmqGxQRudiXAxZi/WqV6u/WTPt6uS7PbCRMKnXuhb9ct5DkW5KJXkFgl5 njMdnHZCIQPmH403YqfJkkeGYR1BaST8QF+BcLEcsYflkEHMaBk9/fi227Hznsyl lgPRcAomuYzP0yRnlsgYlGU+lwY2JlpfX370+W/g1pRp44ptfDD0UqGZswbR7syW V5D9tVakFot8KcTJVC1Yd0QjCon8wRRhdckmu99z6WrneyClPuCmrCt5C9LwgiOM Y0hKeHVHlM3I3wo/DqkfjfbYszp7TAfwXakitQi1F8F38DxVcNQM0zmr4Zv3AgMB AAGjggI9MIICOTAdBgNVHQ4EFgQUkcC/tbhLKy4STyJxNGD6Mz9Uwm8wHwYDVR0j BBgwFoAUVgkcEGdgHuk9PE0lzaBx3GxGOTQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ODQ0ZTFiMi05M2M2LTQ4YWUtOTZjYy1lZDgzODI5ZjVhMjAvMC81NjA5MUMxMDY3 NjAxRUU5M0QzQzREMjVDREEwNzFEQzZDNDYzOTM0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTYwOTFDMTA2NzYwMUVFOTNEM0M0RDI1Q0RBMDcxREM2QzQ2 MzkzNC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDRlMWIyLTkzYzYtNDhhZS05 NmNjLWVkODM4MjlmNWEyMC8wLzMyMzAzMDMxM2E2NDY2MzMzYTY2MzczODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDMxMzAzNTMyLnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8/eAMA0GCSqGSIb3DQEBCwUAA4IBAQA2vX99vWvcBFAuzCMfca6Uq0nWOZL95C3D nJTPWwONmG8HjLjxuvN3Vvcj7WO3z/4gw9sTtS7d/Y14DV3n9XVhsRs+qqNc6JF0 nhESickLFznX8vk8Lvagww4Ze0+6p+f9G4YyR3Jw12bjb4YwndIdZj5jtZXOg9tp zP1Fyqle0Zj2dr6iFHWH2RpIeBFkBbV0dfrlhvSxsE6bZ8Uh9nk66v/8cOXwdEmH BeMAoVqcelhpcBm4J4Wu+w8xw+e7xbl2uczx3fL/jR9r8VJmn2HIjAyYFwSMLcyU DySIfrldIspyVPQJ1jRATbNOn5WtPplawvNQyxdjE+gr+0JJtYP6 -----END CERTIFICATE-----Generated at Mon Sep 8 09:36:03 2025 by rpki-client